adeii/gist:e4a8f657861a6930dac3f64ed5fe64ac

## gistfile1.txt
Blaukovitch's DLLs files to root and 124.0.6367.202:
----------------------------------------------------
API-MS-WIN-CORE-HANDLE-L1-1-0.dll
API-MS-WIN-CORE-REALTIME-L1-1-1.dll
API-MS-WIN-CORE-WINRT-ERROR-L1-1-0.dll
API-MS-WIN-CORE-WINRT-L1-1-0.dll
API-MS-WIN-CORE-WINRT-STRING-L1-1-0.dll
API-MS-WIN-POWER-BASE-L1-1-0.dll
API-MS-WIN-SHCORE-SCALING-L1-1-1.dll
kernel64.dll
netapi64.dll
user64.dll
userenx.dll
WinXttp.dll
wldp.dll
xcryptprimitives.dll
Xfplat.dll

* HxD-modds *
chrome.exe
----------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00
1227A0:
55 89 E5 53 57 56 83 EC 18 89 D6 89 CF A1 40 70 -> 55 89 E5 53 57 56 83 EC 78 89 D6 89 CF A1 40 70  (18->78)
5B 00 31 E8 89 45 F0 66 0F 76 C0 8D 45 E0 F3 0F -> 5B 00 31 E8 89 45 F0 66 0F 76 C0 8D 45 A0 F3 0F  (E0->A0)
7F 00 8D 5D DC C7 03 FF FF FF FF 53 6A 10 50 FF -> 7F 00 8D 5D DC C7 03 FF FF FF FF 53 6A 20 50 FF  (10->20)
--
83 3B 10 0F 94 C3 20 C3 80 FB 01 75 27 80 7D E0 -> 83 3B 20 0F 94 C3 20 C3 80 FB 01 75 27 80 7D A0  (10->20, E0->A0)
--
89 4D E1 29 D0 83 C0 13 89 47 18 F3 0F 6F 45 E0 -> 89 4D E1 29 D0 83 C0 13 89 47 18 E9 A7 76 06 00  (F3+ -> E9+)
--
83 C4 18 5E 5F 5B 5D C3 CC CC CC CC CC CC CC CC -> 83 C4 78 5E 5F 5B 5D C3 CC CC CC CC CC CC CC CC  (18->78)

148380:
E8 7B 14 01 00 8D 8D 44 FF FF FF 84 C0 75 19 E8 -> E8 7B 14 01 00 8D 8D 44 FF FF FF 90 90 EB 19 E8 (84 C0->NOP,75->EB)++

189EB0:
5A 59 FF E0 CC CC CC CC -CC CC CC CC CC CC CC CC -> 5A 59 FF E0 CC CC CC -F3 0F 6F 45 A0 F3 0F 7F 06
CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC -> F3 0F 6F 45 B0 F3 0F 7F 46 10 E9 45 89 F9 FF CC
CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC

b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r
USERENV.dll -> USERENX.dll
KERNEL32.dll -> KERNEL64.dll


chrome_proxy.exe
----------------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00

b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74)
KERNEL32.dll -> KERNEL64.dll

chrome.dll
----------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00

2A2570: 2A27A0!
04 00 0F 95 C1 30 C1 0F 84 2E 02 00 00 89 64 24 -> 04 00 0F 95 C1 30 C1 90 90 90 90 90 90 89 64 24  (0F 84 2E 02 00 00 89->NOP)

82FC00: 82F310!
8D 51 01 89 10 85 C9 0F 85 9C 00 00 00 89 65 D8 -> 8D 51 01 89 10 85 C9 90 90 90 90 90 90 89 65 D8  (0F 85 9C 00 00 00->NOP)--

1227BF0: 12274E0!
00 31 C0 40 50 57 68 0F 00 00 10 50 FF 75 C8 FF -> 00 31 C0 40 50 57 68 0F 00 00 00 50 FF 75 C8 FF  (10->00)+

176F940: 176EF60!
00 0F 85 FE FE FF FF CC 0F 0B FF 36 E8 1F D8 F2 -> 00 E9 FF FE FF FF 90 CC 0F 0B FF 36 E8 1F D8 F2  (0F,85,FF,FF)

39313B0!
89 4D EC 89 4B 14 85 C0 74 32 89 5D C8 68 5F 03 -> 89 4D EC 89 4B 14 85 C0 74 3D 89 5D C8 68 5F 03  (32->3D)

392F110: 39313E0!
FE 8D 7D 08 8B 5D A8 E9 DD FD FF FF CC 0F 0B CC ->
0F 0B CC 0F 0B CC CC CC CC CC CC CC CC CC CC CC -> 0F 0B CC 0F 0B CC CC E9 1A FE FF FF CC CC CC CC  (CC...)

6A447D0: 6A46680!
E8 FB 05 9A 00 8D 8D 44 FF FF FF 84 C0 75 19 E8 -> E8 FB 05 9A 00 8D 8D 44 FF FF FF 84 C0 EB 19 E8  (75->EB)

72821D0: 7284080!
B8 02 08 00 00 B9 00 09 00 00 0F 45 C8 89 4D E4 -> B8 02 08 00 00 B9 00 00 00 00 0F 45 C8 89 4D E4  (09->00)

94C5820!
50 2A 1B 31 E8 89 44 24 28 E8 92 0B 4D 00 83 F8 -> 50 2A 1B 31 E8 89 44 24 28 E8 92 0B 4D 00 90 90  (83 F8->NOP)
02 0F 85 28 01 00 00 -8D 7C 24 24 C7 07 04 00 00 -> 90 90 90 90 90 90 90 -8D 7C 24 24 C7 07 04 00 00 (02...->NOP)

94C58B0!
83 F8 02 0F 85 AC 00 00 00 -89 F1 BA FF FF 00 80 -> 90 90 90 90 90 90 90 90 90 -89 F1 BA FF FF 00 80 (83...->NOP)
EB D1 E8 F9 0A 4D 00 83 F8 02 74 ED E9 97 00 00  -> EB D1 E8 F9 0A 4D 00 83 F8 02 EB ED E9 97 00 00  (74->EB)

94C5A30!
00 CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ->
55 89 E5 53 57 56 83 E4 F8 -81 EC C8 00 00 00 89 -> B8 01 00 00 00 C2 04 00 90 -81 EC C8 00 00 00 89  (55..->B8..)
..
5C 09 4D 00 83 F8 02 0F 85 3C 01 00 00 8B 7D 08 -> 5C 09 4D 00 90 90 90 90 90 90 90 90 90 8B 7D 08  (83F8020F853C010000->NOP)

94C5BC0:
2A 1B 31 E8 89 45 F0 E8 F4 07 4D 00 83 F8 02 0F -> 2A 1B 31 E8 89 45 F0 E8 F4 07 4D 00 90 90 90 90  (83F8020F->NOP)
85 2B 01 00 00 89 75 C8 8B 77 48 85 F6 74 15 C7 -> 90 90 90 90 90 89 75 C8 8B 77 48 85 F6 74 15 C7  (852B010000->NOP)

83 F8 02 0F 85 76 03 00 00 -> 90 90 90 90 90 90 90 90 90  (00....89)
83 F8 02 0F 85 D3 00 00 00 -> 90 90 90 90 90 90 90 90 90
83 F8 02 75 12 -> 90 90 90 90 90
83 F8 02 75 37 -> 90 90 90 90 90
83 F8 02 75 21 -> 90 90 90 90 90
83 F8 02 75 6B -> 90 90 90 90 90  (00....8D)
83 F8 02 0F 85 16 01 00 00 -> 90 90 90 90 90 90 90 90 90
83 F8 02 0F 85 8A 01 00 00 -> 90 90 90 90 90 90 90 90 90  (00...8B)
83 F8 02 75 44 -> 90 90 90 90 90
83 F8 02 0F 85 09 01 00 00 -> 90 90 90 90 90 90 90 90 90  (00....89)
83 F8 02 0F 85 E4 01 00 00 -> 90 90 90 90 90 90 90 90 90
83 F8 02 0F 85 A5 01 00 00 -> 90 90 90 90 90 90 90 90 90  (00....31)
83 F8 02 0F 85 15 02 00 00 -> 90 90 90 90 90 90 90 90 90


C3 41 1B 9A BB D3 6A 46 87 FC FE 67 55 6A 3B 65 -> 5A EE 59 B8 38 D8 5B 4B A2 E8 1A DC 7D 93 DB 48

b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2

USER32.dll -> USER64.dll
MFPlat.DLL -> XFPlat.DLL
NETAPI32.dll -> NETAPI64.dll
KERNEL32.dll -> KERNEL64.dll
USERENV.dll -> USERENX.dll
WINHTTP.dll -> WINXTTP.dll

chrome_elf.dll
--------------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00
b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2
KERNEL32.dll -> KERNEL64.dll

notification_helper.exe
-----------------------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00
b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2
KERNEL32.dll -> KERNEL64.dll

elevation_service.exe
---------------------
B8: 0A -> 06
C0: 0A -> 06
110: 00 00 00 00 00 00 00 00 00
	Blaukovitch's DLLs files to root and 124.0.6367.202:
	----------------------------------------------------
	API-MS-WIN-CORE-HANDLE-L1-1-0.dll
	API-MS-WIN-CORE-REALTIME-L1-1-1.dll
	API-MS-WIN-CORE-WINRT-ERROR-L1-1-0.dll
	API-MS-WIN-CORE-WINRT-L1-1-0.dll
	API-MS-WIN-CORE-WINRT-STRING-L1-1-0.dll
	API-MS-WIN-POWER-BASE-L1-1-0.dll
	API-MS-WIN-SHCORE-SCALING-L1-1-1.dll
	kernel64.dll
	netapi64.dll
	user64.dll
	userenx.dll
	WinXttp.dll
	wldp.dll
	xcryptprimitives.dll
	Xfplat.dll

	* HxD-modds *
	chrome.exe
	----------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00
	1227A0:
	55 89 E5 53 57 56 83 EC 18 89 D6 89 CF A1 40 70 -> 55 89 E5 53 57 56 83 EC 78 89 D6 89 CF A1 40 70 (18->78)
	5B 00 31 E8 89 45 F0 66 0F 76 C0 8D 45 E0 F3 0F -> 5B 00 31 E8 89 45 F0 66 0F 76 C0 8D 45 A0 F3 0F (E0->A0)
	7F 00 8D 5D DC C7 03 FF FF FF FF 53 6A 10 50 FF -> 7F 00 8D 5D DC C7 03 FF FF FF FF 53 6A 20 50 FF (10->20)
	--
	83 3B 10 0F 94 C3 20 C3 80 FB 01 75 27 80 7D E0 -> 83 3B 20 0F 94 C3 20 C3 80 FB 01 75 27 80 7D A0 (10->20, E0->A0)
	--
	89 4D E1 29 D0 83 C0 13 89 47 18 F3 0F 6F 45 E0 -> 89 4D E1 29 D0 83 C0 13 89 47 18 E9 A7 76 06 00 (F3+ -> E9+)
	--
	83 C4 18 5E 5F 5B 5D C3 CC CC CC CC CC CC CC CC -> 83 C4 78 5E 5F 5B 5D C3 CC CC CC CC CC CC CC CC (18->78)

	148380:
	E8 7B 14 01 00 8D 8D 44 FF FF FF 84 C0 75 19 E8 -> E8 7B 14 01 00 8D 8D 44 FF FF FF 90 90 EB 19 E8 (84 C0->NOP,75->EB)++

	189EB0:
	5A 59 FF E0 CC CC CC CC -CC CC CC CC CC CC CC CC -> 5A 59 FF E0 CC CC CC -F3 0F 6F 45 A0 F3 0F 7F 06
	CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC -> F3 0F 6F 45 B0 F3 0F 7F 46 10 E9 45 89 F9 FF CC
	CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC

	b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r
	USERENV.dll -> USERENX.dll
	KERNEL32.dll -> KERNEL64.dll


	chrome_proxy.exe
	----------------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00

	b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74)
	KERNEL32.dll -> KERNEL64.dll

	chrome.dll
	----------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00

	2A2570: 2A27A0!
	04 00 0F 95 C1 30 C1 0F 84 2E 02 00 00 89 64 24 -> 04 00 0F 95 C1 30 C1 90 90 90 90 90 90 89 64 24 (0F 84 2E 02 00 00 89->NOP)

	82FC00: 82F310!
	8D 51 01 89 10 85 C9 0F 85 9C 00 00 00 89 65 D8 -> 8D 51 01 89 10 85 C9 90 90 90 90 90 90 89 65 D8 (0F 85 9C 00 00 00->NOP)--

	1227BF0: 12274E0!
	00 31 C0 40 50 57 68 0F 00 00 10 50 FF 75 C8 FF -> 00 31 C0 40 50 57 68 0F 00 00 00 50 FF 75 C8 FF (10->00)+

	176F940: 176EF60!
	00 0F 85 FE FE FF FF CC 0F 0B FF 36 E8 1F D8 F2 -> 00 E9 FF FE FF FF 90 CC 0F 0B FF 36 E8 1F D8 F2 (0F,85,FF,FF)

	39313B0!
	89 4D EC 89 4B 14 85 C0 74 32 89 5D C8 68 5F 03 -> 89 4D EC 89 4B 14 85 C0 74 3D 89 5D C8 68 5F 03 (32->3D)

	392F110: 39313E0!
	FE 8D 7D 08 8B 5D A8 E9 DD FD FF FF CC 0F 0B CC ->
	0F 0B CC 0F 0B CC CC CC CC CC CC CC CC CC CC CC -> 0F 0B CC 0F 0B CC CC E9 1A FE FF FF CC CC CC CC (CC...)

	6A447D0: 6A46680!
	E8 FB 05 9A 00 8D 8D 44 FF FF FF 84 C0 75 19 E8 -> E8 FB 05 9A 00 8D 8D 44 FF FF FF 84 C0 EB 19 E8 (75->EB)

	72821D0: 7284080!
	B8 02 08 00 00 B9 00 09 00 00 0F 45 C8 89 4D E4 -> B8 02 08 00 00 B9 00 00 00 00 0F 45 C8 89 4D E4 (09->00)

	94C5820!
	50 2A 1B 31 E8 89 44 24 28 E8 92 0B 4D 00 83 F8 -> 50 2A 1B 31 E8 89 44 24 28 E8 92 0B 4D 00 90 90 (83 F8->NOP)
	02 0F 85 28 01 00 00 -8D 7C 24 24 C7 07 04 00 00 -> 90 90 90 90 90 90 90 -8D 7C 24 24 C7 07 04 00 00 (02...->NOP)

	94C58B0!
	83 F8 02 0F 85 AC 00 00 00 -89 F1 BA FF FF 00 80 -> 90 90 90 90 90 90 90 90 90 -89 F1 BA FF FF 00 80 (83...->NOP)
	EB D1 E8 F9 0A 4D 00 83 F8 02 74 ED E9 97 00 00 -> EB D1 E8 F9 0A 4D 00 83 F8 02 EB ED E9 97 00 00 (74->EB)

	94C5A30!
	00 CC CC CC CC CC CC CC CC CC CC CC CC CC CC CC ->
	55 89 E5 53 57 56 83 E4 F8 -81 EC C8 00 00 00 89 -> B8 01 00 00 00 C2 04 00 90 -81 EC C8 00 00 00 89 (55..->B8..)
	..
	5C 09 4D 00 83 F8 02 0F 85 3C 01 00 00 8B 7D 08 -> 5C 09 4D 00 90 90 90 90 90 90 90 90 90 8B 7D 08 (83F8020F853C010000->NOP)

	94C5BC0:
	2A 1B 31 E8 89 45 F0 E8 F4 07 4D 00 83 F8 02 0F -> 2A 1B 31 E8 89 45 F0 E8 F4 07 4D 00 90 90 90 90 (83F8020F->NOP)
	85 2B 01 00 00 89 75 C8 8B 77 48 85 F6 74 15 C7 -> 90 90 90 90 90 89 75 C8 8B 77 48 85 F6 74 15 C7 (852B010000->NOP)

	83 F8 02 0F 85 76 03 00 00 -> 90 90 90 90 90 90 90 90 90 (00....89)
	83 F8 02 0F 85 D3 00 00 00 -> 90 90 90 90 90 90 90 90 90
	83 F8 02 75 12 -> 90 90 90 90 90
	83 F8 02 75 37 -> 90 90 90 90 90
	83 F8 02 75 21 -> 90 90 90 90 90
	83 F8 02 75 6B -> 90 90 90 90 90 (00....8D)
	83 F8 02 0F 85 16 01 00 00 -> 90 90 90 90 90 90 90 90 90
	83 F8 02 0F 85 8A 01 00 00 -> 90 90 90 90 90 90 90 90 90 (00...8B)
	83 F8 02 75 44 -> 90 90 90 90 90
	83 F8 02 0F 85 09 01 00 00 -> 90 90 90 90 90 90 90 90 90 (00....89)
	83 F8 02 0F 85 E4 01 00 00 -> 90 90 90 90 90 90 90 90 90
	83 F8 02 0F 85 A5 01 00 00 -> 90 90 90 90 90 90 90 90 90 (00....31)
	83 F8 02 0F 85 15 02 00 00 -> 90 90 90 90 90 90 90 90 90


	C3 41 1B 9A BB D3 6A 46 87 FC FE 67 55 6A 3B 65 -> 5A EE 59 B8 38 D8 5B 4B A2 E8 1A DC 7D 93 DB 48

	b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2

	USER32.dll -> USER64.dll
	MFPlat.DLL -> XFPlat.DLL
	NETAPI32.dll -> NETAPI64.dll
	KERNEL32.dll -> KERNEL64.dll
	USERENV.dll -> USERENX.dll
	WINHTTP.dll -> WINXTTP.dll

	chrome_elf.dll
	--------------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00
	b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2
	KERNEL32.dll -> KERNEL64.dll

	notification_helper.exe
	-----------------------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00
	b?c?r?y?p?t?p?r -> x?c?r?y?p?t?p?r (62 00 63 00 72 00 79 00 70 00 74 -> 78 00 63 00 72 00 79 00 70 00 74) X2
	KERNEL32.dll -> KERNEL64.dll

	elevation_service.exe
	---------------------
	B8: 0A -> 06
	C0: 0A -> 06
	110: 00 00 00 00 00 00 00 00 00