CAPE Sandbox

Analysis

Category	Package	Started	Completed	Duration	Options	Log
FILE	chrome	2026-04-14 10:06:35	2026-04-14 10:09:38	183 seconds	Show Options	Show Log

procdump=1
amsidump=1

2025-12-02 01:31:19,000 [root] INFO: Date set to: 20260414T03:06:29, timeout set to: 150
2026-04-14 04:06:29,015 [root] DEBUG: Starting analyzer from: C:\tmpn7j73yx1
2026-04-14 04:06:29,015 [root] DEBUG: Storing results at: C:\xIxZfzpRZ
2026-04-14 04:06:29,015 [root] DEBUG: Pipe server name: \\.\PIPE\CQGnLcofE
2026-04-14 04:06:29,015 [root] DEBUG: Python path: C:\olddocs
2026-04-14 04:06:29,015 [root] DEBUG: No analysis package specified, trying to detect it automagically
2026-04-14 04:06:29,015 [root] INFO: Automatically selected analysis package "chrome"
2026-04-14 04:06:29,015 [root] DEBUG: Importing analysis package "chrome"...
2026-04-14 04:06:29,031 [root] DEBUG: Initializing analysis package "chrome"...
2026-04-14 04:06:29,031 [root] INFO: Analyzer: Package modules.packages.chrome does not specify a DLL option
2026-04-14 04:06:29,031 [root] INFO: Analyzer: Package modules.packages.chrome does not specify a DLL_64 option
2026-04-14 04:06:29,031 [root] INFO: Analyzer: Package modules.packages.chrome does not specify a loader option
2026-04-14 04:06:29,031 [root] INFO: Analyzer: Package modules.packages.chrome does not specify a loader_64 option
2026-04-14 04:06:29,093 [root] DEBUG: Importing auxiliary module "modules.auxiliary.browser"...
2026-04-14 04:06:29,093 [root] DEBUG: Importing auxiliary module "modules.auxiliary.curtain"...
2026-04-14 04:06:29,109 [root] DEBUG: Importing auxiliary module "modules.auxiliary.default_apps"...
2026-04-14 04:06:29,125 [root] DEBUG: Importing auxiliary module "modules.auxiliary.digisig"...
2026-04-14 04:06:29,140 [root] DEBUG: Importing auxiliary module "modules.auxiliary.disguise"...
2026-04-14 04:06:29,156 [root] DEBUG: Importing auxiliary module "modules.auxiliary.evtx"...
2026-04-14 04:06:29,187 [root] DEBUG: Importing auxiliary module "modules.auxiliary.fiddler"...
2026-04-14 04:06:29,187 [root] DEBUG: Importing auxiliary module "modules.auxiliary.human"...
2026-04-14 04:06:29,203 [root] DEBUG: Importing auxiliary module "modules.auxiliary.screenshots"...
2026-04-14 04:06:29,203 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageChops'
2026-04-14 04:06:29,296 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageGrab'
2026-04-14 04:06:29,296 [lib.api.screenshot] DEBUG: Importing 'PIL.ImageDraw'
2026-04-14 04:06:29,312 [root] DEBUG: Importing auxiliary module "modules.auxiliary.sysmon"...
2026-04-14 04:06:29,312 [root] DEBUG: Importing auxiliary module "modules.auxiliary.tlsdump"...
2026-04-14 04:06:29,312 [root] DEBUG: Importing auxiliary module "modules.auxiliary.usage"...
2026-04-14 04:06:29,312 [root] DEBUG: Initializing auxiliary module "Browser"...
2026-04-14 04:06:29,312 [root] DEBUG: Started auxiliary module Browser
2026-04-14 04:06:29,312 [root] DEBUG: Initializing auxiliary module "Curtain"...
2026-04-14 04:06:29,312 [root] DEBUG: Started auxiliary module Curtain
2026-04-14 04:06:29,312 [root] DEBUG: Initializing auxiliary module "DefaultApps"...
2026-04-14 04:06:29,359 [modules.auxiliary.default_apps] DEBUG: Getting current user SID using WinAPI
2026-04-14 04:06:29,359 [root] DEBUG: Started auxiliary module DefaultApps
2026-04-14 04:06:29,359 [root] DEBUG: Initializing auxiliary module "DigiSig"...
2026-04-14 04:06:29,359 [modules.auxiliary.digisig] INFO: signtool.exe was not found in bin/
2026-04-14 04:06:29,359 [modules.auxiliary.digisig] INFO: dummy
2026-04-14 04:06:29,359 [modules.auxiliary.digisig] INFO: Skipping authenticode validation, unsupported analyzer package
2026-04-14 04:06:29,375 [root] DEBUG: Started auxiliary module DigiSig
2026-04-14 04:06:29,375 [root] DEBUG: Initializing auxiliary module "Disguise"...
2026-04-14 04:06:29,687 [modules.auxiliary.disguise] INFO: Setting NoRecentDocsHistory
2026-04-14 04:06:29,687 [root] WARNING: Cannot execute auxiliary module Disguise: [WinError 2] The system cannot find the file specified
2026-04-14 04:06:29,687 [root] DEBUG: Initializing auxiliary module "Evtx"...
2026-04-14 04:06:29,687 [modules.auxiliary.evtx] INFO: Loading audit policy C:\tmpn7j73yx1\bin\auditpol.csv
2026-04-14 04:06:29,890 [modules.auxiliary.evtx] INFO: Wiping logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:06:31,000 [root] DEBUG: Started auxiliary module Evtx
2026-04-14 04:06:31,000 [root] DEBUG: Initializing auxiliary module "Fiddler"...
2026-04-14 04:06:31,000 [modules.auxiliary.fiddler] INFO: fiddler package: dummy
2026-04-14 04:06:31,015 [root] DEBUG: Started auxiliary module Fiddler
2026-04-14 04:06:31,015 [root] DEBUG: Initializing auxiliary module "Human"...
2026-04-14 04:06:31,015 [root] DEBUG: Started auxiliary module Human
2026-04-14 04:06:31,015 [root] DEBUG: Initializing auxiliary module "Screenshots"...
2026-04-14 04:06:31,015 [root] DEBUG: Started auxiliary module Screenshots
2026-04-14 04:06:31,015 [root] DEBUG: Initializing auxiliary module "Sysmon"...
2026-04-14 04:06:31,015 [modules.auxiliary.sysmon] INFO: Seeing if we need to update sysmon config
2026-04-14 04:06:31,015 [root] DEBUG: Started auxiliary module Sysmon
2026-04-14 04:06:31,015 [root] DEBUG: Initializing auxiliary module "TLSDumpMasterSecrets"...
2026-04-14 04:06:31,015 [modules.auxiliary.sysmon] INFO: Found Sysmon Executable
2026-04-14 04:06:31,015 [modules.auxiliary.sysmon] INFO: Found Sysmon config
2026-04-14 04:06:31,031 [modules.auxiliary.tlsdump] INFO: lsass.exe found, pid 560
2026-04-14 04:06:31,031 [lib.api.process] INFO: Monitor config for process 560: C:\tmpn7j73yx1\dll\560.ini
2026-04-14 04:06:31,031 [lib.api.process] INFO: Option 'procdump' with value '1' sent to monitor
2026-04-14 04:06:31,031 [lib.api.process] INFO: Option 'amsidump' with value '1' sent to monitor
2026-04-14 04:06:31,031 [lib.api.process] INFO: Option 'tlsdump' with value '1' sent to monitor
2026-04-14 04:06:31,031 [lib.api.process] INFO: 64-bit DLL to inject is C:\tmpn7j73yx1\dll\ySRzCS.dll, loader C:\tmpn7j73yx1\bin\mTYBCMuS.exe
2026-04-14 04:06:31,078 [root] DEBUG: Loader: Injecting process 560 with C:\tmpn7j73yx1\dll\ySRzCS.dll.
2026-04-14 04:06:31,125 [root] DEBUG: 560: Python path set to 'C:\olddocs'.
2026-04-14 04:06:31,125 [root] DEBUG: 560: Disabling sleep skipping.
2026-04-14 04:06:31,125 [root] DEBUG: 560: Process dumps enabled.
2026-04-14 04:06:31,125 [root] DEBUG: 560: AMSI dumping enabled.
2026-04-14 04:06:31,125 [root] DEBUG: 560: TLS secret dump mode enabled.
2026-04-14 04:06:31,140 [root] DEBUG: 560: Monitor initialised: 64-bit capemon loaded in process 560 at 0x000007FEF5C00000, thread 2900, image base 0x00000000FF510000, stack from 0x0000000001A72000-0x0000000001A80000
2026-04-14 04:06:31,140 [root] DEBUG: 560: Commandline: C:\Windows\system32\lsass.exe
2026-04-14 04:06:31,156 [root] DEBUG: 560: Hooked 5 out of 5 functions
2026-04-14 04:06:31,156 [root] DEBUG: InjectDllViaThread: Successfully injected Dll into process via RtlCreateUserThread.
2026-04-14 04:06:31,156 [root] DEBUG: Successfully injected DLL C:\tmpn7j73yx1\dll\ySRzCS.dll.
2026-04-14 04:06:31,156 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 560
2026-04-14 04:06:31,156 [root] DEBUG: Started auxiliary module TLSDumpMasterSecrets
2026-04-14 04:06:31,156 [root] DEBUG: Initializing auxiliary module "Usage"...
2026-04-14 04:06:31,156 [root] DEBUG: Started auxiliary module Usage
2026-04-14 04:06:33,203 [modules.auxiliary.sysmon] INFO: Clearing existing sysmon logs
2026-04-14 04:06:33,906 [root] INFO: Restarting WMI Service
2026-04-14 04:06:38,062 [lib.api.process] INFO: Successfully executed process from path "C:\Program Files\Google\Chrome\Application\chrome.exe" with arguments "--no-sandbox --test-type --ignore-ssl-errors "C:\Users\pgabriel\AppData\Local\Temp\Minyrefydd _ 221_m_.html"" with pid 2252
2026-04-14 04:06:38,062 [lib.api.process] INFO: Monitor config for process 2252: C:\tmpn7j73yx1\dll\2252.ini
2026-04-14 04:06:38,062 [lib.api.process] INFO: Option 'procdump' with value '1' sent to monitor
2026-04-14 04:06:38,062 [lib.api.process] INFO: Option 'amsidump' with value '1' sent to monitor
2026-04-14 04:06:38,062 [lib.api.process] INFO: 64-bit DLL to inject is C:\tmpn7j73yx1\dll\ySRzCS.dll, loader C:\tmpn7j73yx1\bin\mTYBCMuS.exe
2026-04-14 04:06:38,078 [root] DEBUG: Loader: Injecting process 2252 (thread 2208) with C:\tmpn7j73yx1\dll\ySRzCS.dll.
2026-04-14 04:06:38,078 [root] DEBUG: InjectDllViaIAT: Successfully patched IAT.
2026-04-14 04:06:38,093 [root] DEBUG: Successfully injected DLL C:\tmpn7j73yx1\dll\ySRzCS.dll.
2026-04-14 04:06:38,093 [lib.api.process] INFO: Injected into suspended 64-bit process with pid 2252
2026-04-14 04:06:40,093 [lib.api.process] INFO: Successfully resumed process with pid 2252
2026-04-14 04:06:40,156 [root] DEBUG: 2252: Python path set to 'C:\olddocs'.
2026-04-14 04:06:40,156 [root] DEBUG: 2252: Disabling sleep skipping.
2026-04-14 04:06:40,156 [root] DEBUG: 2252: Process dumps enabled.
2026-04-14 04:06:40,156 [root] DEBUG: 2252: AMSI dumping enabled.
2026-04-14 04:06:40,156 [root] DEBUG: 2252: Dropped file limit defaulting to 100.
2026-04-14 04:06:40,171 [root] DEBUG: 2252: Chrome-specific hook-set enabled.
2026-04-14 04:06:40,171 [root] DEBUG: 2252: Monitor initialised: 64-bit capemon loaded in process 2252 at 0x000007FEF5C00000, thread 2208, image base 0x000000013F490000, stack from 0x00000000009A2000-0x00000000009B0000
2026-04-14 04:06:40,171 [root] DEBUG: 2252: Commandline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --no-sandbox --test-type --ignore-ssl-errors "C:\Users\pgabriel\AppData\Local\Temp\Minyrefydd _ 221_m_.html"
2026-04-14 04:06:40,187 [root] DEBUG: 2252: Hooked 16 out of 16 functions
2026-04-14 04:06:40,218 [root] DEBUG: 2252: RestoreHeaders: Restored original import table.
2026-04-14 04:06:40,218 [root] INFO: Loaded monitor into process with pid 2252
2026-04-14 04:06:40,218 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD140000: C:\Windows\system32\cryptbase (0xf000 bytes).
2026-04-14 04:06:40,234 [root] DEBUG: 2252: DLL loaded at 0x000007FEF8EA0000: C:\Windows\system32\WINMM (0x3b000 bytes).
2026-04-14 04:06:40,234 [root] DEBUG: 2252: caller_dispatch: Added region at 0x000000013F490000 to tracked regions list (ntdll::NtClose returns to 0x000000013F597089, thread 2208).
2026-04-14 04:06:40,234 [root] DEBUG: 2252: caller_dispatch: Scanning calling region at 0x000000013F490000...
2026-04-14 04:06:40,249 [root] DEBUG: 2252: ProcessImageBase: Main module image at 0x000000013F490000 unmodified (entropy change 0.000000e+00)
2026-04-14 04:06:40,249 [root] DEBUG: 2252: DLL loaded at 0x000007FEFC020000: C:\Windows\system32\ntmarta (0x2d000 bytes).
2026-04-14 04:06:40,249 [root] DEBUG: 2252: DLL loaded at 0x000007FEFF190000: C:\Windows\system32\WLDAP32 (0x52000 bytes).
2026-04-14 04:06:40,249 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3020: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:40,249 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3020
2026-04-14 04:06:40,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD0E0000: C:\Windows\system32\apphelp (0x57000 bytes).
2026-04-14 04:06:40,265 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3020
2026-04-14 04:06:40,281 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
2026-04-14 04:06:40,281 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAAA0000: C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0 (0x4000 bytes).
2026-04-14 04:06:40,296 [root] DEBUG: 2252: DLL loaded at 0x000007FEFE360000: C:\Windows\system32\shell32 (0xd88000 bytes).
2026-04-14 04:06:43,203 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:06:45,203 [root] DEBUG: 2252: DLL loaded at 0x000007FEDF1A0000: C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome (0xa41f000 bytes).
2026-04-14 04:06:45,218 [root] DEBUG: 2252: DLL loaded at 0x000007FEEB6A0000: C:\Windows\system32\dbghelp (0x125000 bytes).
2026-04-14 04:06:45,218 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB010000: C:\Windows\system32\IPHLPAPI (0x27000 bytes).
2026-04-14 04:06:45,218 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB080000: C:\Windows\system32\WINNSI (0xb000 bytes).
2026-04-14 04:06:45,249 [root] DEBUG: 2252: DLL loaded at 0x000007FEEB5E0000: C:\Windows\system32\UIAutomationCore (0xba000 bytes).
2026-04-14 04:06:45,249 [root] DEBUG: 2252: DLL loaded at 0x00000000776F0000: C:\Windows\system32\PSAPI (0x7000 bytes).
2026-04-14 04:06:45,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEF2120000: C:\Windows\system32\OLEACC (0x54000 bytes).
2026-04-14 04:06:45,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD070000: C:\Windows\system32\Secur32 (0xb000 bytes).
2026-04-14 04:06:45,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD410000: C:\Windows\system32\USERENV (0x1e000 bytes).
2026-04-14 04:06:45,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD2E0000: C:\Windows\system32\profapi (0xf000 bytes).
2026-04-14 04:06:45,265 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD470000: C:\Windows\system32\WINTRUST (0x3b000 bytes).
2026-04-14 04:06:45,312 [root] DEBUG: 2252: DLL loaded at 0x000007FEEEE30000: C:\Windows\system32\DWrite (0x196000 bytes).
2026-04-14 04:06:45,328 [root] DEBUG: 2252: DLL loaded at 0x000007FEF9A40000: C:\Windows\system32\WINSPOOL.DRV (0x71000 bytes).
2026-04-14 04:06:45,343 [root] DEBUG: 2252: DLL loaded at 0x000007FEFA290000: C:\Windows\system32\WINHTTP (0x71000 bytes).
2026-04-14 04:06:45,359 [root] DEBUG: 2252: DLL loaded at 0x000007FEFA220000: C:\Windows\system32\webio (0x65000 bytes).
2026-04-14 04:06:45,359 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAE80000: C:\Windows\system32\dhcpcsvc (0x18000 bytes).
2026-04-14 04:06:45,375 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAAA0000: C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0 (0x4000 bytes).
2026-04-14 04:06:45,375 [root] DEBUG: 2252: DLL loaded at 0x000007FEFE360000: C:\Windows\system32\shell32 (0xd88000 bytes).
2026-04-14 04:06:45,406 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB8A0000: C:\Windows\system32\uxtheme (0x56000 bytes).
2026-04-14 04:06:45,406 [root] DEBUG: 2252: DLL loaded at 0x000007FEFC590000: C:\Windows\system32\GPAPI (0x1b000 bytes).
2026-04-14 04:06:45,421 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAC90000: C:\Windows\system32\wkscli (0x15000 bytes).
2026-04-14 04:06:45,421 [root] DEBUG: 2252: DLL loaded at 0x000007FEFACF0000: C:\Windows\system32\netutils (0xc000 bytes).
2026-04-14 04:06:45,500 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAD00000: C:\Windows\system32\netapi32 (0x16000 bytes).
2026-04-14 04:06:45,500 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCE60000: C:\Windows\system32\srvcli (0x23000 bytes).
2026-04-14 04:06:45,515 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBD10000: C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\COMCTL32 (0x1f4000 bytes).
2026-04-14 04:06:45,562 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB390000: C:\Windows\system32\NLAapi (0x15000 bytes).
2026-04-14 04:06:45,578 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAEE0000: C:\Windows\system32\dhcpcsvc6 (0x11000 bytes).
2026-04-14 04:06:45,593 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB4C0000: C:\Windows\system32\dwmapi (0x18000 bytes).
2026-04-14 04:06:45,593 [root] DEBUG: 2252: DLL loaded at 0x000007FEFF0F0000: C:\Windows\system32\CLBCatQ (0x99000 bytes).
2026-04-14 04:06:45,593 [root] DEBUG: 2252: DLL loaded at 0x000007FEFE360000: C:\Windows\system32\SHELL32 (0xd88000 bytes).
2026-04-14 04:06:45,609 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAEC0000: C:\Windows\system32\WTSAPI32 (0x11000 bytes).
2026-04-14 04:06:45,625 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD210000: C:\Windows\system32\WINSTA (0x3d000 bytes).
2026-04-14 04:06:45,656 [root] DEBUG: 2252: DLL loaded at 0x000007FEEB540000: C:\Windows\system32\mscms (0x9c000 bytes).
2026-04-14 04:06:45,656 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBBE0000: C:\Windows\System32\MMDevApi (0x4b000 bytes).
2026-04-14 04:06:45,656 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBAB0000: C:\Windows\System32\PROPSYS (0x12c000 bytes).
2026-04-14 04:06:45,671 [root] DEBUG: 2252: DLL loaded at 0x000007FEFF2D0000: C:\Windows\system32\SETUPAPI (0x1d7000 bytes).
2026-04-14 04:06:45,671 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 2624: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:45,671 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD430000: C:\Windows\system32\CFGMGR32 (0x36000 bytes).
2026-04-14 04:06:45,671 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 2624
2026-04-14 04:06:45,671 [root] DEBUG: 2252: DLL loaded at 0x000007FEFD680000: C:\Windows\system32\DEVOBJ (0x1a000 bytes).
2026-04-14 04:06:45,671 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 2624
2026-04-14 04:06:45,687 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index
2026-04-14 04:06:45,687 [root] DEBUG: 2252: DLL loaded at 0x000007FEEF9E0000: C:\Windows\System32\Wpc (0x6f000 bytes).
2026-04-14 04:06:45,703 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCCF0000: C:\Windows\System32\wevtapi (0x6d000 bytes).
2026-04-14 04:06:45,703 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 1812: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:45,703 [root] DEBUG: 2252: DLL loaded at 0x000007FEFABF0000: C:\Windows\system32\samcli (0x14000 bytes).
2026-04-14 04:06:45,718 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1812
2026-04-14 04:06:45,718 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Version
2026-04-14 04:06:45,718 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1812
2026-04-14 04:06:45,718 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB920000: C:\Windows\system32\SAMLIB (0x1d000 bytes).
2026-04-14 04:06:45,765 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 216: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:45,765 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 216
2026-04-14 04:06:45,765 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 216
2026-04-14 04:06:45,781 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History
2026-04-14 04:06:45,843 [root] DEBUG: 2252: DLL loaded at 0x000007FEFC3E0000: C:\Windows\system32\FirewallAPI (0xbb000 bytes).
2026-04-14 04:06:45,875 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old~RF13e727.TMP size is 327, Max size: 100000000
2026-04-14 04:06:45,875 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK
2026-04-14 04:06:45,875 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
2026-04-14 04:06:45,875 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log
2026-04-14 04:06:45,875 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
2026-04-14 04:06:45,875 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log size is 0, Max size: 100000000
2026-04-14 04:06:45,890 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\CURRENT size is 16, Max size: 100000000
2026-04-14 04:06:45,906 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG size is 351, Max size: 100000000
2026-04-14 04:06:45,906 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old size is 311, Max size: 100000000
2026-04-14 04:06:45,921 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001 size is 41, Max size: 100000000
2026-04-14 04:06:45,937 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK size is 0, Max size: 100000000
2026-04-14 04:06:45,968 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
2026-04-14 04:06:45,984 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000001.dbtmp
2026-04-14 04:06:46,000 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:06:46,390 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp
2026-04-14 04:06:46,406 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp size is 1, Max size: 100000000
2026-04-14 04:06:46,500 [lib.common.results] INFO: File 1776164806296875000.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:06:46,531 [lib.common.results] INFO: File 1776164806312500000.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:06:46,531 [lib.common.results] INFO: File 1776164806281250000.Application.evtx.gz size is 6956, Max size: 100000000
2026-04-14 04:06:46,609 [lib.common.results] INFO: File 1776164806437500000.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:06:46,625 [lib.common.results] INFO: File 1776164806484375000.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:06:46,656 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAAA0000: C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0 (0x4000 bytes).
2026-04-14 04:06:46,656 [lib.common.results] INFO: File 1776164806515625000.Security.evtx.gz size is 16009, Max size: 100000000
2026-04-14 04:06:46,671 [lib.common.results] INFO: File 1776164806531250000.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:06:46,734 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old~RF13eaa2.TMP size is 329, Max size: 100000000
2026-04-14 04:06:46,750 [lib.common.results] INFO: File 1776164806609375000.System.evtx.gz size is 8716, Max size: 100000000
2026-04-14 04:06:46,765 [lib.common.results] INFO: File 1776164806609375000.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:06:46,796 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\index
2026-04-14 04:06:46,812 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001
2026-04-14 04:06:46,828 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
2026-04-14 04:06:46,890 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBC30000: C:\Windows\system32\POWRPROF (0x2c000 bytes).
2026-04-14 04:06:46,924 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
2026-04-14 04:06:46,924 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 1820: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:46,924 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1820
2026-04-14 04:06:46,924 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1820
2026-04-14 04:06:46,940 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 200: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:46,940 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 200
2026-04-14 04:06:47,133 [root] DEBUG: 2252: DLL loaded at 0x000007FEF9780000: C:\Windows\system32\explorerframe (0x1ca000 bytes).
2026-04-14 04:06:47,133 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB530000: C:\Windows\system32\DUser (0x43000 bytes).
2026-04-14 04:06:47,180 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB580000: C:\Windows\system32\DUI70 (0xf2000 bytes).
2026-04-14 04:06:47,196 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old~RF13ec57.TMP size is 317, Max size: 100000000
2026-04-14 04:06:47,229 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000001
2026-04-14 04:06:47,276 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 1776: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:47,276 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1776
2026-04-14 04:06:47,276 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1776
2026-04-14 04:06:47,345 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
2026-04-14 04:06:47,360 [root] DEBUG: 2252: DLL loaded at 0x000007FEEF380000: C:\Windows\system32\wlanapi (0x20000 bytes).
2026-04-14 04:06:47,368 [root] DEBUG: 2252: DLL loaded at 0x000007FEFACB0000: C:\Windows\system32\wlanutil (0x7000 bytes).
2026-04-14 04:06:47,398 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBC30000: C:\Windows\system32\POWRPROF (0x2c000 bytes).
2026-04-14 04:06:47,409 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBC30000: C:\Windows\system32\POWRPROF (0x2c000 bytes).
2026-04-14 04:06:47,453 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 1960: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:47,460 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1960
2026-04-14 04:06:47,462 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 1960
2026-04-14 04:06:47,503 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCA30000: C:\Windows\system32\mswsock (0x55000 bytes).
2026-04-14 04:06:47,510 [root] DEBUG: 2252: DLL loaded at 0x000007FEFC4A0000: C:\Windows\System32\wshtcpip (0x7000 bytes).
2026-04-14 04:06:47,617 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\bd5f3c8b-a2f5-40ac-8db0-6a9590b97347.tmp
2026-04-14 04:06:47,640 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee0d.TMP size is 9213, Max size: 100000000
2026-04-14 04:06:47,716 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a3a7a75b-1f7e-40ba-8d9c-0be7ab7f6d33.tmp
2026-04-14 04:06:47,727 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old~RF13ee3b.TMP size is 323, Max size: 100000000
2026-04-14 04:06:47,737 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee7a.TMP size is 9054, Max size: 100000000
2026-04-14 04:06:47,916 [root] DEBUG: 560: DLL loaded at 0x000007FEF8CD0000: C:\Windows\system32\keyiso (0xb000 bytes).
2026-04-14 04:06:47,946 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Temp\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp
2026-04-14 04:06:48,002 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Temp\c173785e-3285-4249-871e-e1ebfcef5048.tmp
2026-04-14 04:06:48,134 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Temp\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp
2026-04-14 04:06:48,134 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Temp\9b73eeed-f5b4-42fb-a184-71517e121a51.tmp
2026-04-14 04:06:48,396 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG.old~RF13f10a.TMP size is 405, Max size: 100000000
2026-04-14 04:06:48,405 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164808.4042966.sysmon.evtx.gz to host
2026-04-14 04:06:48,405 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 28131, Max size: 100000000
2026-04-14 04:06:48,460 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old~RF13f158.TMP size is 405, Max size: 100000000
2026-04-14 04:06:48,599 [root] DEBUG: 560: DLL loaded at 0x000007FEDDFE0000: C:\Windows\system32\dssenh (0x32000 bytes).
2026-04-14 04:06:48,635 [root] DEBUG: 560: TLS 1.2 secrets logged to: C:\xIxZfzpRZ\tlsdump\tlsdump.log
2026-04-14 04:06:48,712 [root] DEBUG: 560: DLL loaded at 0x000007FEFA580000: C:\Windows\system32\cryptnet (0x27000 bytes).
2026-04-14 04:06:48,713 [root] DEBUG: 560: DLL loaded at 0x000007FEFF190000: C:\Windows\system32\WLDAP32 (0x52000 bytes).
2026-04-14 04:06:48,787 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCA90000: C:\Windows\system32\CRYPTSP (0x18000 bytes).
2026-04-14 04:06:48,793 [root] DEBUG: 2252: DLL loaded at 0x000007FEFC790000: C:\Windows\system32\rsaenh (0x47000 bytes).
2026-04-14 04:06:48,808 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCC60000: C:\Windows\system32\ncrypt (0x50000 bytes).
2026-04-14 04:06:48,817 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCBA0000: C:\Windows\system32\bcryptprimitives (0x4c000 bytes).
2026-04-14 04:06:48,967 [root] DEBUG: 2252: DLL loaded at 0x000007FEFA580000: C:\Windows\system32\cryptnet (0x27000 bytes).
2026-04-14 04:06:51,145 [root] DEBUG: 2252: DLL loaded at 0x000007FEEF380000: C:\Windows\system32\wlanapi (0x20000 bytes).
2026-04-14 04:06:51,145 [root] DEBUG: 2252: DLL loaded at 0x000007FEFACB0000: C:\Windows\system32\wlanutil (0x7000 bytes).
2026-04-14 04:06:51,161 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma size is 1048576, Max size: 100000000
2026-04-14 04:06:51,239 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-66299726-990.pma size is 4194304, Max size: 100000000
2026-04-14 04:06:51,317 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-69DE1FC5-8CC.pma size is 4194304, Max size: 100000000
2026-04-14 04:06:52,150 [root] DEBUG: 2252: DLL loaded at 0x000007FEDEDA0000: C:\Windows\system32\mf (0x3f1000 bytes).
2026-04-14 04:06:52,150 [root] DEBUG: 2252: DLL loaded at 0x000007FEFB330000: C:\Windows\system32\ATL (0x19000 bytes).
2026-04-14 04:06:52,150 [root] DEBUG: 2252: DLL loaded at 0x000007FEEECD0000: C:\Windows\system32\MFPlat (0x6d000 bytes).
2026-04-14 04:06:52,150 [root] DEBUG: 2252: DLL loaded at 0x000007FEFBA70000: C:\Windows\system32\AVRT (0x9000 bytes).
2026-04-14 04:06:52,166 [root] DEBUG: 2252: DLL loaded at 0x0000000074460000: C:\Windows\system32\ksuser (0x6000 bytes).
2026-04-14 04:06:52,166 [root] DEBUG: 2252: DLL loaded at 0x000007FEDDF90000: C:\Windows\system32\mfreadwrite (0x42000 bytes).
2026-04-14 04:06:53,155 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt size is 4, Max size: 100000000
2026-04-14 04:06:54,173 [lib.common.results] INFO: File c:\olddocs\1776164809158.saz size is 383787, Max size: 100000000
2026-04-14 04:06:54,220 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:06:54,762 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old~RF1409f1.TMP size is 139, Max size: 100000000
2026-04-14 04:06:54,840 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Browser
2026-04-14 04:06:55,153 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3232: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:55,153 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3232
2026-04-14 04:06:55,153 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3232
2026-04-14 04:06:55,262 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000038.dbtmp
2026-04-14 04:06:55,278 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT~RF140be5.TMP size is 16, Max size: 100000000
2026-04-14 04:06:55,387 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000037.log size is 0, Max size: 100000000
2026-04-14 04:06:55,403 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000036 size is 50, Max size: 100000000
2026-04-14 04:06:55,637 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\f5ae6413-9fb0-41dd-9bd0-5366a79fa49c.tmp
2026-04-14 04:06:55,653 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF140d5c.TMP size is 312116, Max size: 100000000
2026-04-14 04:06:55,825 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG.old~RF140e18.TMP size is 0, Max size: 100000000
2026-04-14 04:06:55,833 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOCK
2026-04-14 04:06:55,834 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG
2026-04-14 04:06:55,834 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG.old~RF140e27.TMP size is 0, Max size: 100000000
2026-04-14 04:06:55,834 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOCK
2026-04-14 04:06:55,834 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG
2026-04-14 04:06:55,850 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old~RF140e27.TMP size is 0, Max size: 100000000
2026-04-14 04:06:55,866 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3304: C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SwReporter\92.267.200\software_reporter_tool.exe, ImageBase: 0x000000013FAB0000
2026-04-14 04:06:55,866 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3304
2026-04-14 04:06:55,881 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3304
2026-04-14 04:06:55,881 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOCK
2026-04-14 04:06:55,881 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
2026-04-14 04:06:55,897 [root] DEBUG: 2252: DLL loaded at 0x000007FEEF0D0000: C:\Windows\system32\bthprops.cpl (0xb5000 bytes).
2026-04-14 04:06:56,334 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old~RF14100c.TMP size is 0, Max size: 100000000
2026-04-14 04:06:56,397 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOCK
2026-04-14 04:06:56,397 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
2026-04-14 04:06:56,413 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old~RF14105a.TMP size is 0, Max size: 100000000
2026-04-14 04:06:56,413 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOCK
2026-04-14 04:06:56,413 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
2026-04-14 04:06:56,491 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache size is 6, Max size: 100000000
2026-04-14 04:06:56,553 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
2026-04-14 04:06:56,616 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old~RF141135.TMP size is 333, Max size: 100000000
2026-04-14 04:06:56,979 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old~RF14128c.TMP size is 0, Max size: 100000000
2026-04-14 04:06:56,995 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOCK
2026-04-14 04:06:56,995 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
2026-04-14 04:06:57,057 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3492: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:06:57,057 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3492
2026-04-14 04:06:57,057 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old~RF1412ea.TMP size is 341, Max size: 100000000
2026-04-14 04:06:57,057 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3492
2026-04-14 04:06:57,120 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG.old~RF141329.TMP size is 323, Max size: 100000000
2026-04-14 04:06:57,604 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c36f0e58-4e7f-4500-ac4d-8179501a3c77.tmp
2026-04-14 04:06:57,604 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14150d.TMP size is 9054, Max size: 100000000
2026-04-14 04:06:57,666 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG.old~RF14154b.TMP size is 0, Max size: 100000000
2026-04-14 04:06:57,682 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOCK
2026-04-14 04:06:57,682 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG
2026-04-14 04:06:57,729 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG.old~RF14158a.TMP size is 0, Max size: 100000000
2026-04-14 04:06:57,745 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOCK
2026-04-14 04:06:57,745 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG
2026-04-14 04:07:01,819 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:07:02,116 [lib.common.results] INFO: File 1776164822053710900.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:02,131 [lib.common.results] INFO: File 1776164822053710900.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:02,147 [lib.common.results] INFO: File 1776164822053710900.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:07:02,147 [lib.common.results] INFO: File 1776164822053710900.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:07:02,178 [lib.common.results] INFO: File 1776164822116210900.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:07:02,178 [lib.common.results] INFO: File 1776164822116210900.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:07:02,194 [lib.common.results] INFO: File 1776164822116210900.Security.evtx.gz size is 8036, Max size: 100000000
2026-04-14 04:07:02,194 [lib.common.results] INFO: File 1776164822116210900.System.evtx.gz size is 8526, Max size: 100000000
2026-04-14 04:07:02,241 [lib.common.results] INFO: File 1776164822178710900.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:07:03,417 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:07:04,074 [root] INFO: Process with pid 1960 has terminated
2026-04-14 04:07:07,001 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\a721ecf4-8b18-4d15-b82f-78e89206c31a.tmp
2026-04-14 04:07:07,017 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF1439cb.TMP size is 66968, Max size: 100000000
2026-04-14 04:07:08,665 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164828.665039.sysmon.evtx.gz to host
2026-04-14 04:07:08,665 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 238250, Max size: 100000000
2026-04-14 04:07:12,335 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\fafc2258-f183-46a1-8a84-74163748914e.tmp
2026-04-14 04:07:12,351 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF144e9b.TMP size is 398780, Max size: 100000000
2026-04-14 04:07:14,324 [lib.common.results] INFO: File c:\olddocs\1776164829305.saz size is 51225, Max size: 100000000
2026-04-14 04:07:14,324 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:07:17,272 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:07:17,522 [lib.common.results] INFO: File 1776164837459960900.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:17,522 [lib.common.results] INFO: File 1776164837459960900.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:17,538 [lib.common.results] INFO: File 1776164837459960900.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:07:17,553 [lib.common.results] INFO: File 1776164837475585900.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:07:17,600 [lib.common.results] INFO: File 1776164837522460900.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:07:17,600 [lib.common.results] INFO: File 1776164837522460900.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:07:17,600 [lib.common.results] INFO: File 1776164837522460900.Security.evtx.gz size is 7697, Max size: 100000000
2026-04-14 04:07:17,600 [lib.common.results] INFO: File 1776164837538085900.System.evtx.gz size is 8155, Max size: 100000000
2026-04-14 04:07:17,631 [lib.common.results] INFO: File 1776164837600585900.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:07:21,566 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a29bdb05-eb2a-49a1-9e4f-6f25b7ce8969.tmp
2026-04-14 04:07:21,582 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF1472ae.TMP size is 9274, Max size: 100000000
2026-04-14 04:07:23,683 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:07:25,844 [root] DEBUG: 2252: DLL loaded at 0x000007FEFAD00000: C:\Windows\system32\NETAPI32 (0x16000 bytes).
2026-04-14 04:07:25,844 [root] DEBUG: 2252: DLL loaded at 0x000007FEFCE60000: C:\Windows\system32\srvcli (0x23000 bytes).
2026-04-14 04:07:25,860 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3336: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:07:25,860 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3336
2026-04-14 04:07:25,860 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3336
2026-04-14 04:07:28,779 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164848.7792969.sysmon.evtx.gz to host
2026-04-14 04:07:28,779 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 23659, Max size: 100000000
2026-04-14 04:07:32,663 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:07:32,901 [lib.common.results] INFO: File 1776164852838867100.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:32,901 [lib.common.results] INFO: File 1776164852838867100.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:32,916 [lib.common.results] INFO: File 1776164852854492100.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:07:32,916 [lib.common.results] INFO: File 1776164852838867100.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:07:32,948 [lib.common.results] INFO: File 1776164852901367100.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:07:32,963 [lib.common.results] INFO: File 1776164852901367100.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:07:32,963 [lib.common.results] INFO: File 1776164852901367100.Security.evtx.gz size is 7704, Max size: 100000000
2026-04-14 04:07:32,979 [lib.common.results] INFO: File 1776164852916992100.System.evtx.gz size is 8045, Max size: 100000000
2026-04-14 04:07:32,995 [lib.common.results] INFO: File 1776164852948242100.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:07:34,435 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:07:35,861 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\10ebcb80-06a8-4a70-80bc-786a152d6260.tmp
2026-04-14 04:07:35,866 [root] INFO: Added new file to list with pid None and path C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\528c8507-2f31-4bd4-b65c-2e4dee475fa8.tmp
2026-04-14 04:07:35,866 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF14aa87.TMP size is 67612, Max size: 100000000
2026-04-14 04:07:35,866 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14aa87.TMP size is 398780, Max size: 100000000
2026-04-14 04:07:40,252 [root] DEBUG: 2252: Dropped file limit reached.
2026-04-14 04:07:43,804 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:07:47,536 [root] DEBUG: 2252: CreateProcessHandler: Injection info set for new process 3120: C:\Program Files\Google\Chrome\Application\chrome.exe, ImageBase: 0x000000013F490000
2026-04-14 04:07:47,536 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3120
2026-04-14 04:07:47,536 [root] DEBUG: 2252: ProcessMessage: Skipping monitoring process 3120
2026-04-14 04:07:48,036 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:07:48,317 [lib.common.results] INFO: File 1776164868254882800.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:48,333 [lib.common.results] INFO: File 1776164868254882800.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:07:48,348 [lib.common.results] INFO: File 1776164868254882800.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:07:48,348 [lib.common.results] INFO: File 1776164868254882800.Application.evtx.gz size is 6954, Max size: 100000000
2026-04-14 04:07:48,379 [lib.common.results] INFO: File 1776164868317382800.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:07:48,379 [lib.common.results] INFO: File 1776164868317382800.Security.evtx.gz size is 7753, Max size: 100000000
2026-04-14 04:07:48,395 [lib.common.results] INFO: File 1776164868317382800.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:07:48,395 [lib.common.results] INFO: File 1776164868317382800.System.evtx.gz size is 8033, Max size: 100000000
2026-04-14 04:07:48,426 [lib.common.results] INFO: File 1776164868379882800.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:07:48,958 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164868.9580078.sysmon.evtx.gz to host
2026-04-14 04:07:48,958 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 28155, Max size: 100000000
2026-04-14 04:07:54,520 [lib.common.results] INFO: File c:\olddocs\1776164869494.saz size is 12966, Max size: 100000000
2026-04-14 04:07:54,536 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:08:03,448 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:08:03,698 [lib.common.results] INFO: File 1776164883651367100.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:03,698 [lib.common.results] INFO: File 1776164883651367100.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:03,713 [lib.common.results] INFO: File 1776164883651367100.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:08:03,745 [lib.common.results] INFO: File 1776164883682617100.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:08:03,745 [lib.common.results] INFO: File 1776164883698242100.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:08:03,745 [lib.common.results] INFO: File 1776164883698242100.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:08:03,776 [lib.common.results] INFO: File 1776164883698242100.Security.evtx.gz size is 7838, Max size: 100000000
2026-04-14 04:08:03,791 [lib.common.results] INFO: File 1776164883745117100.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:08:03,791 [lib.common.results] INFO: File 1776164883745117100.System.evtx.gz size is 8029, Max size: 100000000
2026-04-14 04:08:03,979 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:08:09,074 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164889.0742188.sysmon.evtx.gz to host
2026-04-14 04:08:09,074 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 34620, Max size: 100000000
2026-04-14 04:08:14,610 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:08:18,830 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:08:19,064 [lib.common.results] INFO: File 1776164899001953100.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:19,064 [lib.common.results] INFO: File 1776164899017578100.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:19,080 [lib.common.results] INFO: File 1776164899001953100.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:08:19,080 [lib.common.results] INFO: File 1776164899017578100.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:08:19,111 [lib.common.results] INFO: File 1776164899064453100.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:08:19,126 [lib.common.results] INFO: File 1776164899064453100.Security.evtx.gz size is 7835, Max size: 100000000
2026-04-14 04:08:19,126 [lib.common.results] INFO: File 1776164899080078100.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:08:19,158 [lib.common.results] INFO: File 1776164899080078100.System.evtx.gz size is 8042, Max size: 100000000
2026-04-14 04:08:19,158 [lib.common.results] INFO: File 1776164899111328100.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:08:24,074 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:08:29,115 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164909.1152344.sysmon.evtx.gz to host
2026-04-14 04:08:29,115 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 6470, Max size: 100000000
2026-04-14 04:08:34,188 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:08:34,422 [lib.common.results] INFO: File 1776164914360351500.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:34,422 [lib.common.results] INFO: File 1776164914360351500.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:08:34,438 [lib.common.results] INFO: File 1776164914360351500.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:08:34,438 [lib.common.results] INFO: File 1776164914360351500.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:34,485 [lib.common.results] INFO: File 1776164914422851500.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:08:34,485 [lib.common.results] INFO: File 1776164914422851500.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:08:34,485 [lib.common.results] INFO: File 1776164914422851500.Security.evtx.gz size is 7825, Max size: 100000000
2026-04-14 04:08:34,485 [lib.common.results] INFO: File 1776164914422851500.System.evtx.gz size is 8051, Max size: 100000000
2026-04-14 04:08:34,516 [lib.common.results] INFO: File 1776164914485351500.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:08:34,677 [lib.common.results] INFO: File c:\olddocs\1776164909660.saz size is 6984, Max size: 100000000
2026-04-14 04:08:34,693 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:08:44,136 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:08:49,208 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164929.2080076.sysmon.evtx.gz to host
2026-04-14 04:08:49,208 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 6878, Max size: 100000000
2026-04-14 04:08:49,559 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:08:49,825 [lib.common.results] INFO: File 1776164929762695300.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:49,856 [lib.common.results] INFO: File 1776164929762695300.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:08:49,856 [lib.common.results] INFO: File 1776164929731445300.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:08:49,856 [lib.common.results] INFO: File 1776164929793945300.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:08:49,887 [lib.common.results] INFO: File 1776164929825195300.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:08:49,903 [lib.common.results] INFO: File 1776164929840820300.Security.evtx.gz size is 7781, Max size: 100000000
2026-04-14 04:08:49,918 [lib.common.results] INFO: File 1776164929856445300.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:08:49,918 [lib.common.results] INFO: File 1776164929856445300.System.evtx.gz size is 8071, Max size: 100000000
2026-04-14 04:08:49,934 [lib.common.results] INFO: File 1776164929887695300.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:08:54,854 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:09:04,229 [modules.auxiliary.sysmon] INFO: Dumping sysmon logs
2026-04-14 04:09:04,979 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:09:05,202 [lib.common.results] INFO: File 1776164945155273400.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:05,217 [lib.common.results] INFO: File 1776164945155273400.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:05,233 [lib.common.results] INFO: File 1776164945155273400.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:09:05,233 [lib.common.results] INFO: File 1776164945170898400.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:09:05,280 [lib.common.results] INFO: File 1776164945202148400.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:09:05,280 [lib.common.results] INFO: File 1776164945202148400.Security.evtx.gz size is 7762, Max size: 100000000
2026-04-14 04:09:05,280 [lib.common.results] INFO: File 1776164945217773400.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:09:05,280 [lib.common.results] INFO: File 1776164945233398400.System.evtx.gz size is 8063, Max size: 100000000
2026-04-14 04:09:05,311 [lib.common.results] INFO: File 1776164945264648400.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:09:09,284 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164949.2841797.sysmon.evtx.gz to host
2026-04-14 04:09:09,284 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 6237, Max size: 100000000
2026-04-14 04:09:10,226 [root] INFO: Analysis timeout hit, terminating analysis
2026-04-14 04:09:10,226 [lib.api.process] INFO: Terminate event set for process 2252
2026-04-14 04:09:10,226 [root] DEBUG: 2252: Terminate Event: Attempting to dump process 2252
2026-04-14 04:09:10,226 [root] DEBUG: 2252: DoProcessDump: Skipping process dump as code is identical on disk.
2026-04-14 04:09:10,242 [lib.api.process] INFO: Termination confirmed for process 2252
2026-04-14 04:09:10,242 [root] DEBUG: 2252: Terminate Event: monitor shutdown complete for process 2252
2026-04-14 04:09:10,257 [root] INFO: Terminate event set for process 2252
2026-04-14 04:09:10,257 [root] INFO: Created shutdown mutex
2026-04-14 04:09:11,257 [root] INFO: Shutting down package
2026-04-14 04:09:11,257 [root] INFO: Stopping auxiliary modules
2026-04-14 04:09:11,258 [modules.auxiliary.curtain] ERROR: Curtain - Error collecting PowerShell events - [WinError 6] The handle is invalid
2026-04-14 04:09:11,260 [lib.common.results] INFO: File C:\curtain.log size is 0, Max size: 100000000
2026-04-14 04:09:11,278 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:09:11,528 [lib.common.results] INFO: File 1776164951450195300.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:11,543 [lib.common.results] INFO: File 1776164951465820300.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:09:11,543 [lib.common.results] INFO: File 1776164951450195300.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:09:11,543 [lib.common.results] INFO: File 1776164951450195300.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:11,575 [lib.common.results] INFO: File 1776164951528320300.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:09:11,575 [lib.common.results] INFO: File 1776164951528320300.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:09:11,590 [lib.common.results] INFO: File 1776164951528320300.Security.evtx.gz size is 7682, Max size: 100000000
2026-04-14 04:09:11,590 [lib.common.results] INFO: File 1776164951528320300.System.evtx.gz size is 8064, Max size: 100000000
2026-04-14 04:09:11,622 [lib.common.results] INFO: File 1776164951575195300.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:09:14,930 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:09:16,731 [modules.auxiliary.fiddler] ERROR: Saz log file not found in guest machine
2026-04-14 04:09:16,731 [modules.auxiliary.sysmon] INFO: Doing final sysmon log dump
2026-04-14 04:09:20,372 [modules.auxiliary.evtx] INFO: Collecting logs: Application, HardwareEvents, Internet Explorer, Key Management Service, OAlerts, Security, Setup, System, Windows PowerShell
2026-04-14 04:09:20,606 [lib.common.results] INFO: File 1776164960559570300.InternetExplorer.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:20,606 [lib.common.results] INFO: File 1776164960559570300.Application.evtx.gz size is 6890, Max size: 100000000
2026-04-14 04:09:20,622 [lib.common.results] INFO: File 1776164960559570300.KeyManagementService.evtx.gz size is 2105, Max size: 100000000
2026-04-14 04:09:20,637 [lib.common.results] INFO: File 1776164960559570300.HardwareEvents.evtx.gz size is 250, Max size: 100000000
2026-04-14 04:09:20,653 [lib.common.results] INFO: File 1776164960606445300.Security.evtx.gz size is 7642, Max size: 100000000
2026-04-14 04:09:20,668 [lib.common.results] INFO: File 1776164960606445300.Setup.evtx.gz size is 241, Max size: 100000000
2026-04-14 04:09:20,668 [lib.common.results] INFO: File 1776164960606445300.OAlerts.evtx.gz size is 244, Max size: 100000000
2026-04-14 04:09:20,668 [lib.common.results] INFO: File 1776164960606445300.System.evtx.gz size is 8047, Max size: 100000000
2026-04-14 04:09:20,700 [lib.common.results] INFO: File 1776164960653320300.WindowsPowerShell.evtx.gz size is 2058, Max size: 100000000
2026-04-14 04:09:21,793 [modules.auxiliary.sysmon] INFO: Uploading sysmon/1776164961.7939453.sysmon.evtx.gz to host
2026-04-14 04:09:21,793 [lib.common.results] INFO: File C:\Sysmon.evtx.gz size is 5942, Max size: 100000000
2026-04-14 04:09:21,809 [root] INFO: Finishing auxiliary modules
2026-04-14 04:09:21,809 [root] INFO: Shutting down pipe server and dumping dropped files
2026-04-14 04:09:21,809 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat size is 40, Max size: 100000000
2026-04-14 04:09:21,825 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\google\chrome\user data\shadercache\gpucache\index": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\google\\chrome\\user data\\shadercache\\gpucache\\index'
2026-04-14 04:09:21,825 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Version size is 13, Max size: 100000000
2026-04-14 04:09:21,840 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History size is 126976, Max size: 100000000
2026-04-14 04:09:21,856 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001 size is 41, Max size: 100000000
2026-04-14 04:09:21,856 [lib.common.results] INFO: File c:\users\pgabriel\appdata\local\google\chrome\user data\default\site characteristics database\current size is 16, Max size: 100000000
2026-04-14 04:09:21,872 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\google\chrome\user data\grshadercache\gpucache\index": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\google\\chrome\\user data\\grshadercache\\gpucache\\index'
2026-04-14 04:09:21,872 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001 size is 41, Max size: 100000000
2026-04-14 04:09:21,872 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log size is 5424, Max size: 100000000
2026-04-14 04:09:21,872 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\google\chrome\user data\default\gpucache\index": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\google\\chrome\\user data\\default\\gpucache\\index'
2026-04-14 04:09:21,872 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000001 size is 41, Max size: 100000000
2026-04-14 04:09:21,887 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG size is 335, Max size: 100000000
2026-04-14 04:09:21,887 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\default\bd5f3c8b-a2f5-40ac-8db0-6a9590b97347.tmp does not exist, skipping
2026-04-14 04:09:21,887 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\default\a3a7a75b-1f7e-40ba-8d9c-0be7ab7f6d33.tmp does not exist, skipping
2026-04-14 04:09:21,887 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\temp\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\temp\\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp'
2026-04-14 04:09:21,887 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\temp\c173785e-3285-4249-871e-e1ebfcef5048.tmp": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\temp\\c173785e-3285-4249-871e-e1ebfcef5048.tmp'
2026-04-14 04:09:21,887 [root] INFO: Error dumping file from path "c:\users\pgabriel\appdata\local\temp\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp": [Errno 13] Permission denied: 'c:\\users\\pgabriel\\appdata\\local\\temp\\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp'
2026-04-14 04:09:21,887 [root] WARNING: File at path c:\users\pgabriel\appdata\local\temp\9b73eeed-f5b4-42fb-a184-71517e121a51.tmp does not exist, skipping
2026-04-14 04:09:21,887 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Browser size is 106, Max size: 100000000
2026-04-14 04:09:21,918 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\default\data_reduction_proxy_leveldb\000038.dbtmp does not exist, skipping
2026-04-14 04:09:21,918 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\f5ae6413-9fb0-41dd-9bd0-5366a79fa49c.tmp does not exist, skipping
2026-04-14 04:09:21,918 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:21,934 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG size is 0, Max size: 100000000
2026-04-14 04:09:21,950 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:21,965 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG size is 0, Max size: 100000000
2026-04-14 04:09:21,981 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:21,997 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,012 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:22,028 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,043 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:22,059 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,075 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache size is 936, Max size: 100000000
2026-04-14 04:09:22,090 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:22,106 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,122 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\default\c36f0e58-4e7f-4500-ac4d-8179501a3c77.tmp does not exist, skipping
2026-04-14 04:09:22,122 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:22,137 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,153 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOCK size is 0, Max size: 100000000
2026-04-14 04:09:22,168 [lib.common.results] INFO: File C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG size is 0, Max size: 100000000
2026-04-14 04:09:22,184 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\a721ecf4-8b18-4d15-b82f-78e89206c31a.tmp does not exist, skipping
2026-04-14 04:09:22,184 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\fafc2258-f183-46a1-8a84-74163748914e.tmp does not exist, skipping
2026-04-14 04:09:22,184 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\default\a29bdb05-eb2a-49a1-9e4f-6f25b7ce8969.tmp does not exist, skipping
2026-04-14 04:09:22,184 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\10ebcb80-06a8-4a70-80bc-786a152d6260.tmp does not exist, skipping
2026-04-14 04:09:22,184 [root] WARNING: File at path c:\users\pgabriel\appdata\local\google\chrome\user data\528c8507-2f31-4bd4-b65c-2e4dee475fa8.tmp does not exist, skipping
2026-04-14 04:09:22,184 [root] WARNING: Folder at path "C:\xIxZfzpRZ\debugger" does not exist, skipping
2026-04-14 04:09:22,184 [root] INFO: Uploading files at path "C:\xIxZfzpRZ\tlsdump"
2026-04-14 04:09:22,184 [lib.common.results] INFO: File C:\xIxZfzpRZ\tlsdump\tlsdump.log size is 4932, Max size: 100000000
2026-04-14 04:09:22,184 [root] INFO: Analysis completed

Machine

Name	Label	Manager	Started On	Shutdown On	Route
win7office2k3flash2800137TWN3H105	win7office2k3flash2800137TWN3H105	KVM	2026-04-14 10:06:35	2026-04-14 10:09:38	internet

File Details

File Name	Minyrefydd _ 221_m_.html
File Size	29660 bytes
File Type	HTML document, UTF-8 Unicode text, with CRLF line terminators
MD5	5922e7d916836879dfe297d96222b5ec
SHA1	c3619c4c292c845078a5947c494fdb87d4ffc326
SHA256	ee4e5081311c090fde92c8ebb597663c4d319b94eeec4bb827a15f46ce125adf
SHA512	807cc300bd45f35ebc20496492526e42199fc4e9ed892e2be0cd434adc26ba227dc62c17a7ec6272c723f8adc4596f812a867c6197aa79a8540931349a8219e3
SHA3-384	67b6b192f500a2498924d7399bfe4805e6aaace2a7bd28fb085241f76fc9f3f281eed2e958bc9fbe3c805025689282af
CRC32	6879B7E4
TLSH	T16ED29536A9C0143700B3537AAAB19B58FF628207D6024A1535BE57DB2FFAC848D57F5C
Ssdeep	384:vQhLExeymv6Pt7AIAitvz8L9D+cpkqQEvVvjtMB:veLt6PdSBEqQSiB
	File Text
	<!doctype html> <html lang="en" class="h-100"> <head> <!-- Required meta tags --> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <title>Minyrefydd â 221â¯mÂ² sold Â£262k \| SA66 7LF</title> <meta name="description" content="Shows plot boundary on a map, old photos. Value of Â£1,188â¯perâ¯sqm (110/ftÂ²) on 2018-12-20."> <meta name="geo.region" content="GB"> <meta name="geo.placename" content="United Kingdom"> <meta name="language" content="en-GB"> <link rel="shortcut icon" href="https://dfwqq1t8g50i2.cloudfront.net/static/favicon.ico"> <link rel="apple-touch-icon" sizes="180x180" href="https://dfwqq1t8g50i2.cloudfront.net/static/apple-touch-icon.png"> <!-- Nullify requests for other sizes and precomposed versions --> <link rel="apple-touch-icon" sizes="120x120" href="data:,"> <link rel="apple-touch-icon-precomposed" href="data:,"> <link rel="apple-touch-icon" sizes="120x120-precomposed" href="data:,"> <link rel="canonical" href="https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd" /> <link rel="stylesheet" href="https://cdn.jsdelivr.net/npm/bootstrap@5.0.0-beta1/dist/css/bootstrap.min.css"> <script>window.STATIC_CDN_URL = "https://dfwqq1t8g50i2.cloudfront.net";</script> <!-- Global site tag (gtag.js) - Google Analytics --> <script async src="https://www.googletagmanager.com/gtag/js?id=G-LL8JR2NFTT"></script> <script> window.dataLayer = window.dataLayer \|\| []; function gtag() { dataLayer.push(arguments); } gtag('js', new Date()); gtag('config', 'G-LL8JR2NFTT'); </script> <style> /custom description list styling - used by all users/ .custom-dl dt { width: 100%; } @media (min-width: 768px) { .custom-dl dt { width: 25%; } } .custom-dl dd { width: 100%; } @media (min-width: 768px) { .custom-dl dd { width: 75%; } } /* Premium content styles - only load for premium users */ </style> <!-- Structured Data for SEO --> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "House", "name": "Minyrefydd SA66 7LF", "description": "Property sold for Â£262,500 in December 2018. 221 square metres (2,379 square feet). Price per square metre: Â£1,187. Previously listed as sales property. reduced on 24/08/2018. Last appeared January 2019.", "url": "https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd", "address": { "@type": "PostalAddress", "streetAddress": "Minyrefydd", "addressLocality": "Llandissilio", "postalCode": "SA66 7LF", "addressCountry": "GB" }, "floorSize": { "@type": "QuantitativeValue", "value": 221, "unitCode": "MTK" }, "additionalProperty": [ { "@type": "PropertyValue", "name": "Last Sold Price", "value": 262500, "unitCode": "GBP" } ,{ "@type": "PropertyValue", "name": "Sale Date", "value": "2018-12-20" } ,{ "@type": "PropertyValue", "name": "Price per square metre", "value": 1187, "unitCode": "GBP" } ,{ "@type": "PropertyValue", "name": "Council Tax Band", "value": "F" } ,{ "@type": "PropertyValue", "name": "Plot Size", "value": 604, "unitText": "square metres" } , { "@type": "PropertyValue", "name": "Listing Type", "value": "Sales" } ,{ "@type": "PropertyValue", "name": "Last Listed", "value": "2019-01-01" } ,{ "@type": "PropertyValue", "name": "Listed Bedrooms", "value": 4 } ,{ "@type": "PropertyValue", "name": "Listed Bathrooms", "value": 3 } ], "publisher": { "@type": "Organization", "name": "HouseMetric", "url": "https://housemetric.co.uk" } } </script> <script type="application/ld+json"> { "@context": "https://schema.org", "@type": "BreadcrumbList", "itemListElement": [{ "@type": "ListItem", "item": "https://housemetric.co.uk", "name": "Home", "position": 1 },{ "@type": "ListItem", "item": "https://housemetric.co.uk/analysis/sector/SA66-7/Llandissilio", "name": "SA66 7", "position": 2 },{ "@type": "ListItem", "item": "https://housemetric.co.uk/house-prices/na/SA66-7LF/", "name": "SA66 7LF", "position": 3 },{ "@type": "ListItem", "item": "https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd", "name": "Minyrefydd", "position": 4 }] } </script> </head> <body class="d-flex flex-column h-100"> <nav class="navbar navbar-expand-md navbar-dark pt-2 pb-2 mb-2" style="background-color: #234e70;" aria-label="navbar"> <div class="container-fluid"> <a class="navbar-brand pt-0" href="/"> <span class="mb-0 fs-4">HouseMetric</span> </a> <button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarsExample04" aria-controls="navbarsExample04" aria-expanded="false" aria-label="Toggle navigation"> <span class="navbar-toggler-icon"></span> </button> <div class="collapse navbar-collapse" id="navbarsExample04"> <ul class="navbar-nav me-auto mb-2 mb-md-0"> <li class="nav-item"> <a class="nav-link hover-underline" href="/map/SA66-7/"> Map</a> </li> <li class="nav-item dropdown"> <a class="nav-link dropdown-toggle hover-underline" href="#" id="market-analysis-dropdown" data-bs-toggle="dropdown" aria-expanded="false"> Analysis </a> <ul class="dropdown-menu" aria-labelledby="market-analysis-dropdown"> <li><a class="dropdown-item hover-underline" href="/geography-search">Local analysis</a></li> <li><a class="dropdown-item hover-underline" href="/custom-charts">Custom histogram</a></li> </ul> </li> <li class="nav-item dropdown"> <a class="nav-link dropdown-toggle hover-underline" href="#" id="rawDataDropdown" role="button" data-bs-toggle="dropdown" aria-expanded="false"> Search </a> <ul class="dropdown-menu" aria-labelledby="rawDataDropdown"> <li><a class="dropdown-item hover-underline" href="/basic-search">Basic search</a></li> <li><a class="dropdown-item hover-underline" href="/advanced-search">Advanced search</a></li> <li><a class="dropdown-item hover-underline" href="/epc-search">EPC search</a></li> <li><a class="dropdown-item hover-underline" href="/company-search">Company search</a></li> </ul> </li> </ul> <ul class="navbar-nav"> <li class="nav-item"> <a class="nav-link hover-underline" href="/login">Login</a> </li> </ul> </div> </div> </nav> <style> .hover-underline { position: relative; text-decoration: none; } .hover-underline::after { content: ''; position: absolute; width: 100%; height: 2px; bottom: 0; left: 0; background-color: #fff; transform: scaleX(0); transition: transform 0.3s ease-out; } .hover-underline:hover::after { transform: scaleX(1); } .dropdown-menu { background-color: #234e70; } .dropdown-item { color: rgba(255, 255, 255, 0.55); } .dropdown-item:hover, .dropdown-item:focus { background-color: rgba(255, 255, 255, 0.1); color: #fff; } .dropdown-item.hover-underline::after { bottom: 2px; } </style> <!-- BEGIN page content (includes messages and app_content)--> <truncated>

Strings

While most of HouseMetric is free, a modest contribution helps cover the costs of resource intensive features like image archives, advanced searches and fast data updates.

style="display:inline-block; transform:rotate(45deg); border-right: 2px solid; border-top: 2px solid; padding: 2px; margin-left: 5px;"></span>

transform: translate(-50%, -50%); background-color: rgba(240, 240, 240, 0.6);

<a href="#" data-bs-toggle="modal" data-bs-target="#joinModal" data-source="individ-photo"

<dd>Infer the current value by seeing what similar properties have sold for recently. To view

<span class="text-muted">Easy recurring monthly payment - cancel anytime</span>

transform: translate(-50%, -50%); background-color: rgba(240, 240, 240, 0.8);

<img src="https://dfwqq1t8g50i2.cloudfront.net/static/property-photos.png"

padding: 5px; white-space: nowrap; color: #0d6efd;

document.querySelectorAll('.lightbox-thumb[data-lightbox-group="floorplan"]').forEach(function(el) {

<li><a class="dropdown-item hover-underline" href="/geography-search">Local analysis</a></li>

<li><a class="dropdown-item hover-underline" href="/advanced-search">Advanced search</a></li>

<img src="https://dfwqq1t8g50i2.cloudfront.net/static/plot-outline.jpg"

items.push({ src: el.dataset.lightboxSrc, caption: el.dataset.lightboxCaption || '', el: el });

<li><a class="dropdown-item hover-underline" href="/custom-charts">Custom histogram</a></li>

<p class="text-center text-muted mt-3 mb-4 small">Secure payment powered by Stripe</p>

<button type="button" class="btn btn-primary me-2" id="lightboxPrev">Previous</button>

<li><a class="dropdown-item hover-underline" href="/company-search">Company search</a></li>

text-decoration: underline;">View photos</br>

href="https://housemetric.co.uk/analysis/sector/SA66-7/Llandissilio">SA66 7</a></li>

document.querySelectorAll('.lightbox-thumb[data-lightbox-group="photo"]').forEach(function(el) {

<button type="button" class="btn btn-secondary" data-bs-dismiss="modal">Close</button>

<li><a class="dropdown-item hover-underline" href="/basic-search">Basic search</a></li>

href="https://housemetric.co.uk/analysis/sector/SA66-7/Llandissilio">

<button type="submit" class="btn btn-primary">Start Your Premium Access</button>

if (e.target.id === 'lightboxModal') document.removeEventListener('keydown', handleKeydown);

style="width: 130px; height: 80px; overflow: hidden; padding: 0;">

<li><a class="dropdown-item hover-underline" href="/epc-search">EPC search</a></li>

<li class="py-1">Extra map layers (growth rates & planning apps)</li>

if (e.target.id === 'lightboxModal') document.addEventListener('keydown', handleKeydown);

1,187. Previously listed as sales property. reduced on 24/08/2018. Last appeared January 2019.",

<dd><b>30 October 2017</b> - energy performance certificate grade C</dd>

<h5 class="modal-title fw-bold" id="joinModalLabel">Unlock Premium Access</h5>

<p>There are 22 photos from estate agent listings of Minyrefydd

For context, homes in Llandissilio are now selling for between

<a href="#" data-bs-toggle="modal" data-bs-target="#joinModal"

262,500 in December 2018. 221 square metres (2,379 square feet). Price per square metre:

according to latest <a href="#epc-section">EPC inspection</a>

document.getElementById('joinModal').addEventListener('show.bs.modal', function (event) {

<div style="position: absolute; top: 50%; left: 50%;

<li class="py-1">No quibbles refund if you're not happy</li>

integrity="sha384-C6RzsynM9kWDrMNeT87bh95OGNyZPhcTNXj1NW7RuBCsyN/o0jlpcV8Qyq46cDfL"

style="object-fit: contain; max-height: calc(90vh - 40px);" alt="">

The data were last updated 2026-04-11. See <a href="/faq">FAQs</a> for further

alt="freehold plot boundary for Minyrefydd "

padding: 5px; white-space: nowrap; color: #0d6efd;

<br><small class="text-muted">Use arrow keys to navigate</small>

bsModal = new bootstrap.Modal(document.getElementById('lightboxModal'));

analysis of Llandissilio SA66-7</a> housing market.

<li class="py-1">Valuation comparables search tool</li>

<div class="card-header h2" id="epc-section">EPC Inspections</div>

document.getElementById('lightboxPrev').addEventListener('click', function() {

document.getElementById('lightboxNext').addEventListener('click', function() {

if (currentIndex < items.length - 1) { currentIndex++; updateLightbox(); }

Walls: Timber frame, as built, insulated (assumed).

href="https://housemetric.co.uk/house-prices/na/SA66-7LF/">

} else if (e.key === 'ArrowRight' && currentIndex < items.length - 1) {

<strong class="d-block mb-1">1 Month Access:

<span class="text-muted">One time payment of

<strong class="d-block mb-1">Ongoing access:

caption.textContent = text ? text + ' \u2014 ' + counter : counter;

"item": "https://housemetric.co.uk/analysis/sector/SA66-7/Llandissilio",

data-source="valuation-comp">join now</a>.

<a class="nav-link hover-underline" href="/login">Login</a>

using the valuation comparables search tool,

map showing freehold boundary lines<span

text-decoration: underline;">View plot

<li class="py-1">Floor plans & photos</li>

<li class="py-1">Custom chart builder</li>

Crown copyright and database right 2024. This data is licensed under

href="https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd" />

alt="Photos for Minyrefydd "

"item": "https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd",

style="object-fit: cover;">

604 square metres (6,501 square feet) -

<div class="card-header h2">Archived listings</div>

style="object-fit: cover;">

Roof: Roof room(s), ceiling insulated.

if (currentIndex > 0) { currentIndex--; updateLightbox(); }

"url": "https://housemetric.co.uk/23755535/SA66-7LF/Minyrefydd",

<img id="lightboxImg" src="" class="d-block w-100"

square foot) total internal area</dd>

var caption = document.getElementById('lightboxCaption');

var counter = (currentIndex + 1) + ' of ' + items.length;

e.preventDefault(); currentIndex--; updateLightbox();

e.preventDefault(); currentIndex++; updateLightbox();

content="Shows plot boundary on a map, old photos. Value of

"item": "https://housemetric.co.uk/house-prices/na/SA66-7LF/",

</div>

Heating: Boiler and radiators, oil.

document.getElementById('sourceInput').value = source || '';

<li class="breadcrumb-item active">Minyrefydd </li>

<div class="card-header h2">Property data</div>

class="btn border rounded mb-3"

nextBtn.disabled = (currentIndex === items.length - 1);

/* Premium content styles - only load for premium users */

var prevBtn = document.getElementById('lightboxPrev');

var nextBtn = document.getElementById('lightboxNext');

document.addEventListener('hidden.bs.modal', function(e) {

Estimated year built 2003 to 2006

document.addEventListener('shown.bs.modal', function(e) {

box-shadow: 0 0.125rem 0.25rem rgba(0, 0, 0, 0.075);

/*custom description list styling - used by all users*/

href="/map/SA66-7/23755535"

Advertised on multiple portals.

box-shadow: 0 0 0 0.25rem rgba(13, 110, 253, 0.25);

class="btn border rounded"

<a href="/map/SA66-7/23755535"

It was reduced on 24/08/2018.

var img = document.getElementById('lightboxImg');

var thumb = e.target.closest('.lightbox-thumb');

if (e.key === 'ArrowLeft' && currentIndex > 0) {

this list for Minyrefydd,

<dt>Valuation comparables</dt>

</div>

const source = button.getAttribute('data-source');

(est. today's value:

listing for Minyrefydd .

221 square metres (2,379

<dt>Advertiser remarks:</dt>

<li>3 bathrooms</li>

, has 7 habitable rooms.

document.addEventListener('click', function(e) {

<li>4 bedrooms</li>

<span class="mb-0 fs-4">HouseMetric</span>

<!-- <a rel="nofollow"

if (items[i].el === thumbEl) return i;

Contains HM Land Registry & EPC & OS data

<dt>Council tax band</dt>

if (index >= 0 && index < items.length) {

<a class="nav-link hover-underline"

target="_blank">

<dt>Reason for EPC:</dt>

<dd> Owner-occupied</dd>

prevBtn.disabled = (currentIndex === 0);

for (var i = 0; i < items.length; i++) {

background-color: rgba(255, 255, 255, 0.1);

<dt>Property type:</dt>

var text = items[currentIndex].caption;

the Open Government Licence v3.0.<br />

window.dataLayer = window.dataLayer || [];

.dropdown-item:hover, .dropdown-item:focus {

<dt>Internal area</br>

<dd>marketed sale</dd>

<dt>Sale history</dt>

It last appeared

<li class="breadcrumb-item"><a

</div>

Detached House

<dd>221 sqm (2,379

<dt>Comments:</dt>

.join-modal .benefits-list li:before {

14.99 gives full access for a month</span>

img.src = items[currentIndex].src;

.dropdown-item.hover-underline::after {

<dt>Bedrooms</dt>

<dt>History:</dt>

<dt>Summary:</dt>

transition: all 0.2s ease-in-out;

transition: transform 0.3s ease-out;

square feet)

</dl>

<dt>Photos:</dt>

<dt>Tenure:</dt>

currentIndex = findIndex(thumb);

"name": "Price per square metre",

const button = event.relatedTarget;

img.src = items[index].src;

"addressLocality": "Llandissilio",

"url": "https://housemetric.co.uk"

"item": "https://housemetric.co.uk",

</div>

padding: 1.5rem 1.5rem 0.5rem;

color: rgba(255, 255, 255, 0.55);

SA66 7LF</a></li>

</br>

Dec 2018.

. See the

Detached

Jan 2019.

.</p>

.join-modal .form-control:focus {

crossorigin="anonymous"></script>

"description": "Property sold for

2018

</a> -->

<dd>Archived

</label>

gtag('config', 'G-LL8JR2NFTT');

"@context": "https://schema.org",

"@context": "https://schema.org",

.join-modal .form-check:hover {

.join-modal .benefits-list li {

"streetAddress": "Minyrefydd",

<h1> Minyrefydd, SA66 7LF</h1>

</div>

background-color: #f8f9fa;

border: 1px solid #e9ecef;

background-color: #ffffff;

border: 1px solid #dee2e6;

var img = new Image();

if (!items.length) return;

preload(currentIndex - 1);

preload(currentIndex + 1);

preload(currentIndex + 2);

"@type": "QuantitativeValue",

"name": "Council Tax Band",

"unitText": "square metres"

"name": "Listed Bathrooms",

.hover-underline:hover::after {

<div>

</dd>

sales

</ul>

function findIndex(thumbEl) {

dataLayer.push(arguments);

"name": "Minyrefydd SA66 7LF",

"name": "Last Sold Price",

"name": "Listed Bedrooms",

href="/map/SA66-7/">

</a>

</div>

.join-modal .benefits-list {

@media (min-width: 768px) {

"@type": "PropertyValue",

<dd> na

.join-modal .modal-header {

.join-modal .form-control {

function updateLightbox() {

function handleKeydown(e) {

background-color: #234e70;

margin-bottom: 1.2rem;

border-radius: 0.5rem;

border-color: #dee2e6;

border-color: #86b7fe;

.join-modal .btn-primary {

</div>

"@type": "PostalAddress",

"postalCode": "SA66 7LF",

"name": "Listing Type",

</dt>

</dd>

per square meter (foot)</dt>

(

</dd>

.join-modal .modal-body {

.join-modal .form-check {

</ul>

function preload(index) {

"name": "Last Listed",

"@type": "Organization",

"@type": "BreadcrumbList",

<dd>

<dt>

<dd>

border-bottom: none;

gtag('js', new Date());

"value": "2018-12-20"

"value": "2019-01-01"

.hover-underline::after {

background-color: #fff;

padding-left: 2rem;

position: relative;

position: absolute;

function buildItems() {

if (!thumb) return;

e.preventDefault();

"addressCountry": "GB"

"name": "Sale Date",

"name": "Plot Size",

"name": "HouseMetric",

text-decoration: none;

font-size: 1.1rem;

padding: 0.875rem;

font-size: 1.1rem;

padding: 0.5rem 0;

font-weight: bold;

</div>

"additionalProperty": [

transform: scaleX(0);

transform: scaleX(1);

</dl>

padding: 0.75rem;

font-weight: 500;

list-style: none;

<div>

var currentIndex = 0;

updateLightbox();

</div>

padding: 1.5rem;

padding-left: 0;

262k | SA66 7LF</title>

.custom-dl dt {

width: 25%;

.custom-dl dd {

width: 75%;

"unitCode": "GBP"

"itemListElement": [{

"name": "Minyrefydd",

position: relative;

position: absolute;

color: #198754;

</form>

var bsModal = null;

if (!bsModal) {

bsModal.show();

"value": 262500,

"value": "Sales"

"@type": "ListItem",

Analysis

2,820 per square metre

</div>

padding: 1rem;

</div>

function gtag() {

"unitCode": "MTK"

"name": "SA66 7LF",

10 per month</strong>

<div>

buildItems();

<title>Minyrefydd

width: 100%;

"value": 1187,

.hover-underline {

261 per square foot)

width: 100%;

information.

.custom-dl dt {

.custom-dl dd {

"@type": "House",

"value": 604,

"name": "SA66 7",

Map</a>

var items = [];

items = [];

) on 2018-12-20.">

"value": "F"

.dropdown-menu {

.dropdown-item {

</div>

content: "

</div>

"value": 221,

"name": "Home",

</ul>

</li>

return 0;

"floorSize": {

"value": 4

"value": 3

"publisher": {

</a>

content: '';

width: 100%;

height: 2px;

color: #fff;

bottom: 2px;

110 per sqft) in

left: 0;

<!doctype html>

"position": 1

"position": 2

"position": 3

"position": 4

</button>

</li>

"address": {

bottom: 0;

262,500 on Dec

</div>

14.99</strong>

</div>

</small>

</ul>

</ol>

1,187 per sqm

(function() {

</div>

left: 0;

sqm (110/ft

</script>

});

</footer>

</a>

</div>

</style>

</nav>

1,980 and

</div>

}

</script>

<style>

</script>

}

</script>

</main>

</style>

</nav>

<main>

370,210)

183 and

</style>

<style>

</head>

<style>

});

</body>

</html>

<head>

sold

</div>

1,188

}

{

}

{

}

<div>

}

})();

Reports

JSON

EVTX

Statistics (39.24)

Processing ( 38.62 seconds )

15.03 CAPE
14.79 Suricata
3.864 Zircolite
1.75 BehaviorAnalysis
1.389 Dropped
0.887 NetworkAnalysis
0.693 Fiddler
0.084 ZfileRep
0.061 Deduplicate
0.038 TargetInfo
0.021 AnalysisInfo
0.005 Static
0.003 Debug
0.003 Strings
0.001 ProcDump
0.001 TLSMasterSecrets

Signatures ( 0.47 seconds )

0.098 stealth_file
0.089 guloader_apis
0.06 sigma
0.027 ransomware_files
0.022 masquerade_process_name
0.016 accesses_recyclebin
0.015 antiav_detectfile
0.015 ransomware_extensions
0.009 mimics_filetime
0.009 infostealer_bitcoin
0.008 antivm_generic_disk
0.008 reads_self
0.008 virus
0.006 bootkit
0.006 antianalysis_detectfile
0.006 antivm_vbox_files
0.005 hancitor_behavior
0.005 infostealer_ftp
0.004 stealth_timeout
0.003 decoy_document
0.003 infostealer_im
0.003 poullight_files
0.003 qulab_files
0.002 api_spamming
0.002 Vidar Behavior
0.002 NewtWire Behavior
0.002 antidbg_devices
0.002 antivm_vmware_files
0.002 infostealer_cookies
0.002 cryptbot_files
0.002 infostealer_mail
0.001 banned_exe_write
0.001 betabot_behavior
0.001 hawkeye_behavior
0.001 kazybot_behavior
0.001 kibex_behavior
0.001 network_tor
0.001 persistence_autorun
0.001 rat_nanocore
0.001 stack_pivot_file_created
0.001 tinba_behavior
0.001 neshta_files
0.001 antiav_detectreg
0.001 antivm_vbox_devices
0.001 geodo_banking_trojan
0.001 codelux_behavior
0.001 disables_windows_defender_logging
0.001 removes_windows_defender_contextmenu
0.001 apocalypse_stealer_file_behavior
0.001 echelon_files
0.001 rat_pcclient
0.001 territorial_disputes_sigs
0.001 ursnif_behavior

Reporting ( 0.16 seconds )

0.132 TMPFSCLEAN
0.023 JsonDump
0.001 ReSubmitExtractedEXE

Signatures

Network activity detected but not expressed in API logs

Screenshots

Hosts

Direct	IP	Country Name
N	142.250.151.94 [VT]	United States
N	52.222.161.106 [VT]	United States
N	192.178.223.84 [VT]	United States
Y	8.8.8.8 [VT]	United States

DNS

Name	Response	Post-Analysis Lookup
accounts.google.com [VT]	A 192.178.223.84 [VT]	192.178.223.84 [VT]
dfwqq1t8g50i2.cloudfront.net [VT]	A 52.222.161.174 [VT] A 52.222.161.164 [VT] A 52.222.161.171 [VT] A 52.222.161.106 [VT]	52.222.161.106 [VT]
_googlecast._tcp.local [VT]
www.gstatic.com [VT]	A 142.250.151.94 [VT]	142.250.140.94 [VT]

Summary

C:\Windows\Globalization\Sorting\sortdefault.nls
\??\pipe\crashpad_2252_YVVXISHSSONKFHWM
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\reports
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome.dll
C:\Windows\System32\oleaccrc.dll
C:\Program Files\Google\Chrome\Application\92.0.4515.131\icudtl.dat
C:\Program Files\Google\Chrome\Application\92.0.4515.131\v8_context_snapshot.bin
\??\PIPE\wkssvc
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-69DE1FC5-8CC.pma
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome_100_percent.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome_200_percent.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\Locales\en-US.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources.pak
\??\Nsi
\DEVICE\NETBT_TCPIP_{7F6B1AE5-804D-4272-AD8A-B0FE1231F5C7}
\DEVICE\NETBT_TCPIP_{846EE342-7039-11DE-9D20-806E6F6E6963}
C:\Windows\System32\drivers\etc\hosts
\??\pipe\mojo.2252.1304.4167405239703244070
\??\pipe\mojo.2252.1304.18158543172803045815
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index
C:\Windows\System32\spool\drivers\color\sRGB Color Space Profile.icm
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\lockfile
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Version
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3
\??\pipe\mojo.2252.1304.13098003568948261954
\??\PIPE\samr
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
\??\pipe\mojo.2252.1304.5649003556388747166
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Visited Links
\??\pipe\mojo.2252.1304.17191145284736838913
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\wasm\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Web Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Favicons
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old~RF13e727.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Trusted Vault
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data For Account
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources\web_store\_metadata\computed_hashes.json
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources\pdf\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000001.dbtmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
C:\Program Files\Google\Chrome\Application\92.0.4515.131\default_apps\external_extensions.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\30\9.28.0\Ruleset Data
C:\Program Files\Google\Chrome\Application\92.0.4515.131\WidevineCdm\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Floc\1.0.6\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Floc\1.0.6\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\7\manifest.fingerprint
C:\Program Files\Google\Chrome\Application\92.0.4515.131\MEIPreload\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.28.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.28.0\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OriginTrials\1.0.0.8\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\2018.8.8.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\hyphen-data\94.0.4605.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillStates\2020.11.2.164946\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\_platform_specific\x86_64\pnacl_public_pnacl_json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\2018.8.8.0\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13358475348252945
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SwReporter\92.267.200\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crowd Deny\2021.8.2.1142\manifest.fingerprint
\??\MountPointManager
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillStates\2020.11.2.164946\manifest.fingerprint
C:\Windows\Fonts\segoeui.ttf
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old~RF13eaa2.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
\??\pipe\mojo.2252.2208.10975141928469272783
\??\pipe\mojo.2252.2208.6878712916068749365
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old~RF13ec57.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\wasm\index-dir\the-real-index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\dasherSettingSchema.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\icons\app\icon-16.png
\??\pipe\mojo.2252.2208.2608668214558904776
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\manifest.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\solve\script.js
\??\pipe\mojo.2252.1304.14682609710598549556
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crowd Deny\2021.8.2.1142\Preload Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_locales\en\messages.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\solve\reset-button.css
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\content\setup.js
\??\pipe\mojo.2252.2208.3418759475039685501
\??\pipe\mojo.2252.1304.4740512066351515885
C:\Users\pgabriel\AppData\Local\Temp\Minyrefydd _ 221_m_.html
\Device\Afd\Endpoint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\bd5f3c8b-a2f5-40ac-8db0-6a9590b97347.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\background\index.html
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee0d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old~RF13ee3b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a3a7a75b-1f7e-40ba-8d9c-0be7ab7f6d33.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee7a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
C:\Users\pgabriel\AppData\Local\Temp\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp
C:\Windows\System32\tzres.dll
C:\Users\pgabriel\AppData\Local\Temp\c173785e-3285-4249-871e-e1ebfcef5048.tmp
C:\Users\pgabriel\AppData\Local\Temp\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp
C:\Users\pgabriel\AppData\Local\Temp\9b73eeed-f5b4-42fb-a184-71517e121a51.tmp
\??\pipe\mojo.2252.1304.2239823021649003049
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\background\script.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\mirroring_common.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\background_script.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13358475346077945
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13420638408300039
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_locales\en\messages.json
\??\pipe\mojo.2252.1304.16748542575983434219
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG.old~RF13f10a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old~RF13f158.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\000003.log
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\4115B847987746DC19A7DDAEAEE475CB706D1486
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\73B42F65751749073832809A62801A542A21F9EA
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\95AFCA17315AB170C585D7FD7DCC018E8311E228
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\D394539080B1A12E1F64A1F908870C18C0BFAAB8
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\D6630F0E808300B04DF81E05948712DFA263A40F
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\FA6E1845E905D1B13FE851D2B5B83651A9CAECA5
C:\Windows\System32\rsaenh.dll
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\C358DF785A7492610040D39537095AF8930E6839
\??\pipe\mojo.2252.1304.13462602947962021558
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\37F0FA24F211E5E0A033BD5C7153C7F84B23DCAD
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13420638409814039
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\blob_storage\2c55313a-ed5d-4012-81d2-7fc6a9c56e54
C:\Windows\System32\en-US\kernel32.dll.mui
\??\usb#root_hub20#4&2d0b3f6d&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-66299726-990.pma
C:
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\PreferredApps
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\heavy_ad_intervention_opt_out.db
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Translate Ranker Model
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Shortcuts
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old~RF1409f1.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000036
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000037.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Browser
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000039.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FontLookupTableCache\font_unique_name_table.pb
C:\Windows\System32\en-US\DWrite.dll.mui
C:\Program Files\Google\Chrome\Application\92.0.4515.131\MEIPreload\preloaded_data.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\data.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000038.dbtmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\crl-set
\??\pipe\mojo.2252.1304.6944416828074901043
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT~RF140be5.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\safety_tips.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\english_wikipedia.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\female_names.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\male_names.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\passwords.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\surnames.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\us_tv_and_film.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\client_model.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\visual_model.tflite
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\7\ssl_error_assistant.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\download_file_types.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\desktop_sharing_hub.pb
C:\Windows\System32\en-US\KERNELBASE.dll.mui
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\f5ae6413-9fb0-41dd-9bd0-5366a79fa49c.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF140d5c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG.old~RF140e18.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old~RF14100c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old~RF14105a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOCK
C:\Program Files\WinRAR\RarExt.dll
C:\Windows\System32\webcheck.dll
C:\Program Files\Microsoft Office\Office15\OLKFSTUB.DLL
C:\Program Files\Microsoft Office\Office15\NAMEEXT.DLL
C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
C:\Program Files\Microsoft Office\Office15\VISSHE.DLL
C:\Program Files\Microsoft Office\Office15\ONFILTER.DLL
C:\Program Files\Common Files\Microsoft Shared\OFFICE15\msoshext.dll
C:\Program Files\Microsoft Office\Office15\MSOHEVI.DLL
C:\Program Files\7-Zip\7-zip.dll
C:\Windows\System32\mf.dll
C:\Windows\System32\shdocvw.dll
C:\Windows\System32\ntshrui.dll
C:\Windows\System32\shell32.dll
C:\Windows\System32\syncui.dll
C:\Program Files\Notepad++\NppShell_06.dll
C:\Windows\System32\cscui.dll
C:\Program Files\Windows Sidebar\sbdrop.dll
C:\Windows\System32\stobject.dll
C:\Windows\System32\EhStorShell.dll
C:\Windows\System32\cryptext.dll
C:\Windows\System32\colorui.dll
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old~RF141135.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old~RF14128c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache
\??\pipe\mojo.2252.1304.8780059474288467971
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old~RF1412ea.TMP
\??\pipe\mojo.2252.1304.10799313527227627445
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG.old~RF141329.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\optimization-hints.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c36f0e58-4e7f-4500-ac4d-8179501a3c77.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14150d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG.old~RF14154b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG.old~RF14158a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\a721ecf4-8b18-4d15-b82f-78e89206c31a.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF1439cb.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\fafc2258-f183-46a1-8a84-74163748914e.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF144e9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a29bdb05-eb2a-49a1-9e4f-6f25b7ce8969.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF1472ae.TMP
\??\pipe\mojo.2252.1304.13709066572970499331
\??\pipe\mojo.2252.1304.4031832124881545352
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\10ebcb80-06a8-4a70-80bc-786a152d6260.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\528c8507-2f31-4bd4-b65c-2e4dee475fa8.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\68aadee0-492b-4077-8d53-347dd33f255e.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14c0be.TMP
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\AA2DE5586C130BBD9D2BC22A3E7FC9785CD339E7
\??\pipe\mojo.2252.1304.10952092145400050610
\??\pipe\mojo.2252.1304.7069297850876858804
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ecede0ba-bace-4cd0-9328-24333254542b.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14e696.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7e99e06d-6403-411e-b451-3e2bae5de886.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14f897.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\73c071fe-acc2-497c-a760-a86a70195869.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF153b9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c57ec0c3-9b22-4178-bdc0-190564561659.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF155c43.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\cbe09eea-d7e1-43f7-b791-8ee469005e30.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15aab1.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7c1a83e2-69a1-4016-b41f-ea72e3b7f8d9.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15f834.TMP

C:\Windows\Globalization\Sorting\sortdefault.nls
\??\pipe\crashpad_2252_YVVXISHSSONKFHWM
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\reports
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome.dll
C:\Windows\System32\oleaccrc.dll
C:\Program Files\Google\Chrome\Application\92.0.4515.131\icudtl.dat
C:\Program Files\Google\Chrome\Application\92.0.4515.131\v8_context_snapshot.bin
\??\PIPE\wkssvc
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-69DE1FC5-8CC.pma
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome_100_percent.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\chrome_200_percent.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\Locales\en-US.pak
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources.pak
\DEVICE\NETBT_TCPIP_{7F6B1AE5-804D-4272-AD8A-B0FE1231F5C7}
\DEVICE\NETBT_TCPIP_{846EE342-7039-11DE-9D20-806E6F6E6963}
C:\Windows\System32\drivers\etc\hosts
\??\pipe\mojo.2252.1304.4167405239703244070
\??\pipe\mojo.2252.1304.18158543172803045815
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index
C:\Windows\System32\spool\drivers\color\sRGB Color Space Profile.icm
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Version
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3
\??\pipe\mojo.2252.1304.13098003568948261954
\??\PIPE\samr
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
\??\pipe\mojo.2252.1304.5649003556388747166
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Visited Links
\??\pipe\mojo.2252.1304.17191145284736838913
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\wasm\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Web Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Favicons
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Trusted Vault
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data For Account
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources\web_store\_metadata\computed_hashes.json
C:\Program Files\Google\Chrome\Application\92.0.4515.131\resources\pdf\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.10_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.10_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.2_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
C:\Program Files\Google\Chrome\Application\92.0.4515.131\default_apps\external_extensions.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\verified_contents.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_metadata\computed_hashes.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\30\9.28.0\Ruleset Data
C:\Program Files\Google\Chrome\Application\92.0.4515.131\WidevineCdm\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Floc\1.0.6\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Floc\1.0.6\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\7\manifest.fingerprint
C:\Program Files\Google\Chrome\Application\92.0.4515.131\MEIPreload\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.28.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Subresource Filter\Unindexed Rules\9.28.0\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OriginTrials\1.0.0.8\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\2018.8.8.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\hyphen-data\94.0.4605.0\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillStates\2020.11.2.164946\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\manifest.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\_platform_specific\x86_64\pnacl_public_pnacl_json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\pnacl\0.57.44.2492\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ThirdPartyModuleList64\2018.8.8.0\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13358475348252945
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SwReporter\92.267.200\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crowd Deny\2021.8.2.1142\manifest.fingerprint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillStates\2020.11.2.164946\manifest.fingerprint
C:\Windows\Fonts\segoeui.ttf
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
\??\pipe\mojo.2252.2208.10975141928469272783
\??\pipe\mojo.2252.2208.6878712916068749365
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\wasm\index-dir\the-real-index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi\1.31.0_0\dasherSettingSchema.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\icons\app\icon-16.png
\??\pipe\mojo.2252.2208.2608668214558904776
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\manifest.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\solve\script.js
\??\pipe\mojo.2252.1304.14682609710598549556
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crowd Deny\2021.8.2.1142\Preload Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\_locales\en\messages.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\solve\reset-button.css
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\content\setup.js
\??\pipe\mojo.2252.2208.3418759475039685501
\??\pipe\mojo.2252.1304.4740512066351515885
C:\Users\pgabriel\AppData\Local\Temp\Minyrefydd _ 221_m_.html
\Device\Afd\Endpoint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\bd5f3c8b-a2f5-40ac-8db0-6a9590b97347.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\background\index.html
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a3a7a75b-1f7e-40ba-8d9c-0be7ab7f6d33.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
C:\Users\pgabriel\AppData\Local\Temp\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp
C:\Windows\System32\tzres.dll
C:\Users\pgabriel\AppData\Local\Temp\c173785e-3285-4249-871e-e1ebfcef5048.tmp
C:\Users\pgabriel\AppData\Local\Temp\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp
C:\Users\pgabriel\AppData\Local\Temp\9b73eeed-f5b4-42fb-a184-71517e121a51.tmp
\??\pipe\mojo.2252.1304.2239823021649003049
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mpbjkejclgfgadiemmefgebjfooflfhl\1.2.2_0\src\background\script.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\mirroring_common.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\background_script.js
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13358475346077945
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\9221.427.0.1_0\_locales\en\messages.json
\??\pipe\mojo.2252.1304.16748542575983434219
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\000003.log
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\4115B847987746DC19A7DDAEAEE475CB706D1486
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\73B42F65751749073832809A62801A542A21F9EA
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\95AFCA17315AB170C585D7FD7DCC018E8311E228
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\D394539080B1A12E1F64A1F908870C18C0BFAAB8
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\D6630F0E808300B04DF81E05948712DFA263A40F
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\FA6E1845E905D1B13FE851D2B5B83651A9CAECA5
C:\Windows\System32\rsaenh.dll
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\C358DF785A7492610040D39537095AF8930E6839
\??\pipe\mojo.2252.1304.13462602947962021558
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\37F0FA24F211E5E0A033BD5C7153C7F84B23DCAD
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\blob_storage\2c55313a-ed5d-4012-81d2-7fc6a9c56e54
C:\Windows\System32\en-US\kernel32.dll.mui
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\PreferredApps
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\heavy_ad_intervention_opt_out.db
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Translate Ranker Model
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Shortcuts
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000036
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000037.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FontLookupTableCache\font_unique_name_table.pb
C:\Windows\System32\en-US\DWrite.dll.mui
C:\Program Files\Google\Chrome\Application\92.0.4515.131\MEIPreload\preloaded_data.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\AutofillRegex\2021.2.22.1142\data.json
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CertificateRevocation\6787\crl-set
\??\pipe\mojo.2252.1304.6944416828074901043
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SafetyTips\2676\safety_tips.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\english_wikipedia.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\female_names.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\male_names.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\passwords.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\surnames.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ZxcvbnData\1\us_tv_and_film.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\client_model.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ClientSidePhishing\25\visual_model.tflite
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SSLErrorAssistant\7\ssl_error_assistant.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\FileTypePolicies\43\download_file_types.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\DesktopSharingHub\20210609.1\desktop_sharing_hub.pb
C:\Windows\System32\en-US\KERNELBASE.dll.mui
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\f5ae6413-9fb0-41dd-9bd0-5366a79fa49c.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOCK
C:\Program Files\WinRAR\RarExt.dll
C:\Windows\System32\webcheck.dll
C:\Program Files\Microsoft Office\Office15\OLKFSTUB.DLL
C:\Program Files\Microsoft Office\Office15\NAMEEXT.DLL
C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
C:\Program Files\Microsoft Office\Office15\VISSHE.DLL
C:\Program Files\Microsoft Office\Office15\ONFILTER.DLL
C:\Program Files\Common Files\Microsoft Shared\OFFICE15\msoshext.dll
C:\Program Files\Microsoft Office\Office15\MSOHEVI.DLL
C:\Program Files\7-Zip\7-zip.dll
C:\Windows\System32\mf.dll
C:\Windows\System32\shdocvw.dll
C:\Windows\System32\ntshrui.dll
C:\Windows\System32\shell32.dll
C:\Windows\System32\syncui.dll
C:\Program Files\Notepad++\NppShell_06.dll
C:\Windows\System32\cscui.dll
C:\Program Files\Windows Sidebar\sbdrop.dll
C:\Windows\System32\stobject.dll
C:\Windows\System32\EhStorShell.dll
C:\Windows\System32\cryptext.dll
C:\Windows\System32\colorui.dll
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache
\??\pipe\mojo.2252.1304.8780059474288467971
\??\pipe\mojo.2252.1304.10799313527227627445
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\OptimizationHints\292\optimization-hints.pb
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c36f0e58-4e7f-4500-ac4d-8179501a3c77.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\DownloadMetadata
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\a721ecf4-8b18-4d15-b82f-78e89206c31a.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\fafc2258-f183-46a1-8a84-74163748914e.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a29bdb05-eb2a-49a1-9e4f-6f25b7ce8969.tmp
\??\pipe\mojo.2252.1304.13709066572970499331
\??\pipe\mojo.2252.1304.4031832124881545352
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\10ebcb80-06a8-4a70-80bc-786a152d6260.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\528c8507-2f31-4bd4-b65c-2e4dee475fa8.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\68aadee0-492b-4077-8d53-347dd33f255e.tmp
C:\Users\pgabriel\AppData\Roaming\Microsoft\SystemCertificates\My\Certificates\AA2DE5586C130BBD9D2BC22A3E7FC9785CD339E7
\??\pipe\mojo.2252.1304.10952092145400050610
\??\pipe\mojo.2252.1304.7069297850876858804
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ecede0ba-bace-4cd0-9328-24333254542b.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7e99e06d-6403-411e-b451-3e2bae5de886.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\73c071fe-acc2-497c-a760-a86a70195869.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c57ec0c3-9b22-4178-bdc0-190564561659.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\cbe09eea-d7e1-43f7-b791-8ee469005e30.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7c1a83e2-69a1-4016-b41f-ea72e3b7f8d9.tmp

\??\pipe\crashpad_2252_YVVXISHSSONKFHWM
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
\??\PIPE\wkssvc
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-69DE1FC5-8CC.pma
\??\pipe\mojo.2252.1304.4167405239703244070
\??\pipe\mojo.2252.1304.18158543172803045815
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\lockfile
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Version
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_3
\??\pipe\mojo.2252.1304.13098003568948261954
\??\PIPE\samr
\??\pipe\mojo.2252.1304.5649003556388747166
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Visited Links
\??\pipe\mojo.2252.1304.17191145284736838913
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Web Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old~RF13e727.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Login Data For Account
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000001.dbtmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\CURRENT
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old~RF13eaa2.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\index
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\GrShaderCache\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index
\??\pipe\mojo.2252.2208.10975141928469272783
\??\pipe\mojo.2252.2208.6878712916068749365
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_0
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old~RF13ec57.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
\??\pipe\mojo.2252.2208.2608668214558904776
\??\pipe\mojo.2252.1304.14682609710598549556
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal
\??\pipe\mojo.2252.2208.3418759475039685501
\??\pipe\mojo.2252.1304.4740512066351515885
\Device\Afd\Endpoint
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\bd5f3c8b-a2f5-40ac-8db0-6a9590b97347.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee0d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old~RF13ee3b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a3a7a75b-1f7e-40ba-8d9c-0be7ab7f6d33.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee7a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
C:\Users\pgabriel\AppData\Local\Temp\b2be79ea-1479-4bdf-851d-346a6a6a4f8c.tmp
C:\Users\pgabriel\AppData\Local\Temp\c173785e-3285-4249-871e-e1ebfcef5048.tmp
C:\Users\pgabriel\AppData\Local\Temp\6b579f61-4572-4118-a1c6-f74e948dfbb0.tmp
C:\Users\pgabriel\AppData\Local\Temp\9b73eeed-f5b4-42fb-a184-71517e121a51.tmp
\??\pipe\mojo.2252.1304.2239823021649003049
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13420638408300039
\??\pipe\mojo.2252.1304.16748542575983434219
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG.old~RF13f10a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old~RF13f158.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\000003.log
\??\pipe\mojo.2252.1304.13462602947962021558
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sessions\Tabs_13420638409814039
\??\usb#root_hub20#4&2d0b3f6d&0#{f18a0e88-c30c-11d0-8815-00a0c906bed8}
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\heavy_ad_intervention_opt_out.db
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Shortcuts
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Last Browser
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000039.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000038.dbtmp
\??\pipe\mojo.2252.1304.6944416828074901043
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT~RF140be5.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\f5ae6413-9fb0-41dd-9bd0-5366a79fa49c.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF140d5c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG.old~RF140e18.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old~RF14100c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old~RF14105a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old~RF141135.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old~RF14128c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOCK
\??\pipe\mojo.2252.1304.8780059474288467971
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old~RF1412ea.TMP
\??\pipe\mojo.2252.1304.10799313527227627445
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG.old~RF141329.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c36f0e58-4e7f-4500-ac4d-8179501a3c77.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14150d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG.old~RF14154b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG.old~RF14158a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\a721ecf4-8b18-4d15-b82f-78e89206c31a.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF1439cb.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\fafc2258-f183-46a1-8a84-74163748914e.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF144e9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\a29bdb05-eb2a-49a1-9e4f-6f25b7ce8969.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF1472ae.TMP
\??\pipe\mojo.2252.1304.13709066572970499331
\??\pipe\mojo.2252.1304.4031832124881545352
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\10ebcb80-06a8-4a70-80bc-786a152d6260.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\528c8507-2f31-4bd4-b65c-2e4dee475fa8.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\68aadee0-492b-4077-8d53-347dd33f255e.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14c0be.TMP
\??\pipe\mojo.2252.1304.10952092145400050610
\??\pipe\mojo.2252.1304.7069297850876858804
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\ecede0ba-bace-4cd0-9328-24333254542b.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14e696.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7e99e06d-6403-411e-b451-3e2bae5de886.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14f897.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\73c071fe-acc2-497c-a760-a86a70195869.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF153b9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\c57ec0c3-9b22-4178-bdc0-190564561659.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF155c43.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\cbe09eea-d7e1-43f7-b791-8ee469005e30.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15aab1.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\7c1a83e2-69a1-4016-b41f-ea72e3b7f8d9.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15f834.TMP

C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000003.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old~RF13e727.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\MANIFEST-000001
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOCK
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\000001.dbtmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\ccb0ef20-3dd7-48c2-9a5e-93bc2c6e8172.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old~RF13eaa2.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old~RF13ec57.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee0d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old~RF13ee3b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF13ee7a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\mpbjkejclgfgadiemmefgebjfooflfhl\LOG.old~RF13f10a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old~RF13f158.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\CrashpadMetrics.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-66299726-990.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics\BrowserMetrics-69DE1FC5-8CC.pma
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old~RF1409f1.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT~RF140be5.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000037.log
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000036
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF140d5c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_hint_cache_store\LOG.old~RF140e18.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_model_and_features_store\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old~RF140e27.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old~RF14100c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old~RF14105a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old~RF141135.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old~RF14128c.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old~RF1412ea.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG.old~RF141329.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14150d.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\LOG.old~RF14154b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Download Service\EntryDB\LOG.old~RF14158a.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF1439cb.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF144e9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF1472ae.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Module Info Cache~RF14aa87.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14c0be.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF14e696.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF14f897.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Local State~RF153b9b.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\BrowserMetrics-spare.pma.tmp
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF155c43.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15aab1.TMP
C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences~RF15f834.TMP

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=92.0.4515.131 --initial-client-data=0x138,0x13c,0x140,0x10c,0x144,0x7feeb8e5390,0x7feeb8e53a0,0x7feeb8e53b0
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --no-sandbox --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --use-gl=swiftshader-webgl --mojo-platform-channel-handle=1228 /prefetch:2
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=none --no-sandbox --mojo-platform-channel-handle=1436 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=utility --no-sandbox --mojo-platform-channel-handle=1592 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-sandbox --test-type --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2056 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-sandbox --test-type --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2064 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-sandbox --test-type --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --disable-gpu-compositing --lang=en-US --extension-process --disable-client-side-phishing-detection --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2224 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-sandbox --test-type --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --disable-gpu-compositing --lang=en-US --extension-process --disable-client-side-phishing-detection --origin-trial-disabled-features=SecurePaymentConfirmation --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1940 /prefetch:1
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=service --no-sandbox --mojo-platform-channel-handle=3856 /prefetch:8
"C:\Users\pgabriel\AppData\Local\Google\Chrome\User Data\SwReporter\92.267.200\software_reporter_tool.exe" --engine=2 --scan-locations=1,2,3,4,5,6,7,8,10 --disabled-locations=9,11 --session-id=/WO+Lg2ZxJIzWJ06dRRsHMQikzjwPp9kaa0FN5m6 --registry-suffix=ESET --srt-field-trial-group-name=Off
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=none --no-sandbox --mojo-platform-channel-handle=3584 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=none --no-sandbox --mojo-platform-channel-handle=1948 /prefetch:8
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1220,3294718829980201480,10250740640039205805,131072 --lang=en-US --service-sandbox-type=service --no-sandbox --mojo-platform-channel-handle=600 /prefetch:8

Static Analysis

No static analysis available.

Sorry! No behavior.

Hosts

No hosts contacted.

TCP

No TCP connections recorded.

UDP

No UDP connections recorded.

DNS

No domains contacted.

HTTP Requests

No HTTP(s) requests performed.

SMTP traffic

No SMTP traffic performed.

IRC traffic

No IRC requests performed.

ICMP traffic

No ICMP traffic performed.

CIF Results

No CIF Results

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Suricata HTTP

No Suricata HTTP

Sorry! No Suricata Extracted files.

Sorry! No dropped files.

Sorry! No process dumps.