Malware Analysis Report

2025-01-18 22:05

Sample ID 240503-kz2qyabc4y
Target https://applio.org/playground
Tags
adware discovery evasion persistence stealer
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file https://applio.org/playground was found to be: Likely malicious.

Malicious Activity Summary

adware discovery evasion persistence stealer

Modifies Windows Firewall

Downloads MZ/PE file

Checks computer location settings

Executes dropped EXE

Loads dropped DLL

Checks installed software on the system

Installs/modifies Browser Helper Object

Adds Run key to start application

Enumerates connected drives

Drops desktop.ini file(s)

Drops file in System32 directory

Drops file in Windows directory

Drops file in Program Files directory

Enumerates physical storage devices

Enumerates system info in registry

Modifies data under HKEY_USERS

Suspicious behavior: EnumeratesProcesses

Suspicious use of SendNotifyMessage

Modifies Internet Explorer settings

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of SetWindowsHookEx

Suspicious behavior: LoadsDriver

Suspicious use of WriteProcessMemory

Modifies registry class

Suspicious use of FindShellTrayWindow

Suspicious use of AdjustPrivilegeToken

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-03 09:03

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-03 09:03

Reported

2024-05-03 09:09

Platform

win10v2004-20240426-en

Max time kernel

376s

Max time network

395s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://applio.org/playground

Signatures

Downloads MZ/PE file

Modifies Windows Firewall

evasion
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\netsh.exe N/A

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-1162180587-977231257-2194346871-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Loads dropped DLL

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Windows\SysWOW64\RegSvr32.exe N/A
N/A N/A C:\Windows\system32\regsvr32.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
N/A N/A C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Adds Run key to start application

persistence
Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\KVMON = "\"C:\\Program Files (x86)\\JiangMin\\Antivirus\\KVMonXP.exe\"" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Checks installed software on the system

discovery

Drops desktop.ini file(s)

Description Indicator Process Target
File opened for modification C:\Program Files (x86)\JiangMin\Desktop.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created F:\KV-Back.vir\Desktop.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification F:\KV-Back.vir\Desktop.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Desktop.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Enumerates connected drives

Description Indicator Process Target
File opened (read-only) \??\E: C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Installs/modifies Browser Helper Object

stealer adware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FF354A24-B490-4D4F-8EEC-B3ACD6E681A4} C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Drops file in System32 directory

Description Indicator Process Target
File opened for modification C:\Windows\SysWOW64\KVInstall.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\SysWOW64\accredit.dat C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\SysWOW64\accredit_1001.dat C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\SysWOW64\accredit.dat C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\SysWOW64\accredit_1001.dat C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\SysWOW64\HiveBase.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\SysWOW64\HiveBase.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\SysWOW64\KVInstall.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\SysWOW64\msawt.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\SysWOW64\msawt.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Drops file in Program Files directory

Description Indicator Process Target
File created C:\Program Files (x86)\JiangMin\Kernel\kv0049.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0072.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Install\Menu\KsProtect.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\UserReg\Html\Images\KvImage09.jpg C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\Wizard.config C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\style\dark.jvs C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0027.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\Kvxpuw.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Antivirus\JmTrojdie.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0014.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0020.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\lang\KvTrustCfg0409.lng C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\data\ScanFinish.wav C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\BIPacksServer.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0054.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Common\SetupLD.exe C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Antivirus\data\RegLib.rdb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\ActiveLog.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Data\kvlog\HiveBase.log C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0042.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0047.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\common\style\shine.jvs C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\UserReg\Html\Images\Affirm2.gif C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\UserReg\Html\Images\Affirm2.gif C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Antivirus\lang\KVOffice0409.lng C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Antivirus\TdSetDev.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\WebEngine\CacheScan.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\AntiVirus\FileGuard.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0019.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0048.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\ScanPS.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\antivirus\NotifyWeb\0409\logo.gif C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0038.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\KVMon.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\UserReg\Html\Images\KvImage25.gif C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\KvTrust.kdb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0042.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0071.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0083.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\KVScanSys.exe C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\common\Options.config C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\WebEngine\WebScan.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\common\KvTrust.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0018.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\common\Upload.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Install\Menu\KvActive.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Install\Setup.exe C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0030.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0052.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Kernel\kv0071.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\UserReg\KVHTML.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\UserReg\Html\Images\KvImage10.jpg C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\data\Images\images_05.gif C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Install\KVOLHelp_en.htm C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\protect.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Antivirus\KVScan.exe C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\WebEngine\CacheScan.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\AntiVirus\lang\PrivateCfg0409.lng C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\data\mylicense.lic C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\NewEng.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\UserReg\Html\KVReg.htm C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Program Files (x86)\JiangMin\Kernel\kv0023.vlb C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\common\ComUIPS.dll C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Program Files (x86)\JiangMin\Install\Menu\SafeNet.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\KVLog\KVScanSys.exe.log C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
File opened for modification C:\Windows\win.ini C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\ C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\KVLog\Setup.log C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File opened for modification C:\Windows\KVLog\KVInst.log C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
File created C:\Windows\KVLog\KVInst.log C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Enumerates physical storage devices

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Toolbar C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Toolbar\{B5A34A93-D538-43A7-8371-864CB6148D12} = "Jiangmin Toolbar" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Toolbar\{B5A34A93-D538-43A7-8371-864CB6148D12} = "Jiangmin Tools" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133592006046434393" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ProxyBypass = "1" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName = "1" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\UNCAsIntranet = "1" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (int) \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect = "0" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d74-e3c0-11da-ae4a-005056c00008}\VersionIndependentProgID\ = "AppFace.BackupAreaReader" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7EC87D66-E3C0-11DA-AE4A-005056C00008}\InProcServer32\ThreadingModel = "Both" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{AC63360A-25C5-4C00-B5D6-5EEE5F4A440E}\InProcServer32 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{32949B43-8F9C-4863-9A78-6F95C7FCED48}\Programmable C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{A0A09B66-EE4C-44A2-B73A-780CBFE7460E}\1.0\HELPDIR C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d61-e3c0-11da-ae4a-005056c00008}\VersionIndependentProgID C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\KvTrustService.DLL\AppID = "{9FD7C349-73EF-466E-8F87-6E859542BB74}" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D7A-E3C0-11DA-AE4A-005056C00008}\NumMethods\ = "6" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{1E78A610-4F42-4A78-A75E-D59F3B3DCBF3}\1.0\0 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3DDBDB2E-7AF0-4039-B0E4-A2DEFFB014A4}\ProxyStubClsid32 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\KvTrustService.TrustService\CurVer\ = "KvTrustService.TrustService.1" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{3DDBDB2E-7AF0-4039-B0E4-A2DEFFB014A4}\TypeLib\ = "{698F300F-415B-4574-AA97-8565B9030D79}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KVNetMon.EmailControl\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9} C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{14332D29-FC81-4C8D-BB97-37A215DBD598}\TypeLib C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D69-E3C0-11DA-AE4A-005056C00008}\NumMethods C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D7E-E3C0-11DA-AE4A-005056C00008}\ProxyStubClsid32\ = "{AC63360A-25C5-4C00-B5D6-5EEE5F4A440E}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\KVNetMon.EmailControl.1\CLSID\ = "{32949B43-8F9C-4863-9A78-6F95C7FCED48}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\UrlGuard.RegisterHelper.1\ = "RegisterHelper Class" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KVShell.AutoPlay.1 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D62-E3C0-11DA-AE4A-005056C00008}\ProxyStubClsid32\ = "{AC63360A-25C5-4C00-B5D6-5EEE5F4A440E}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\UrlWall.HttpsWall.1\ = "HttpsWall Class" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{C5D6C0A9-AA63-4B01-9C77-9FA7E939F123}\TypeLib\ = "{A0A09B66-EE4C-44A2-B73A-780CBFE7460E}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\KvTrustService.TrustService.1\ = "TrustService Class" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{07DC8E89-A541-4282-B1DD-D15EB5535AD3}\AppID = "{8FDE0757-BA24-43D7-AB8B-8D33D943D65E}" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\AppFace.BackupAreaReader.1\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d75-e3c0-11da-ae4a-005056c00008}\ProgID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D6E-E3C0-11DA-AE4A-005056C00008}\NumMethods\ = "7" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D6F-E3C0-11DA-AE4A-005056C00008}\NumMethods C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{A6A62C84-731D-45A1-A8BD-DE958E8CBC8E}\VersionIndependentProgID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{1E78A610-4F42-4A78-A75E-D59F3B3DCBF3}\1.0 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{94081493-0A1E-4C17-B1AF-E717E69564C8}\InprocServer32\ = "C:\\Program Files (x86)\\JiangMin\\Antivirus\\KVShell.dll" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\KVOffice.OfficeGuard\CLSID\ = "{E58CC7D4-6756-434E-838E-228700A01267}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9C329C2E-219E-44EC-82F9-7FD7FD381FC5}\ = "IJiangminFilesProtectEx" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF965983-F8CA-42AF-981B-05E98AE3BDAF}\ProgID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\KVNetMon.EmailControl\CurVer\ = "KVNetMon.EmailControl.1" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KvTrustService.TrustService\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\AppFace.BackupAreaReader.1\ = "BackupAreaReader Class" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d6d-e3c0-11da-ae4a-005056c00008}\ProgID\ = "AppFace.DiskAccess.1" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{7EC87D70-E3C0-11DA-AE4A-005056C00008}\NumMethods C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1A188676-2823-44D2-8BA5-374AB69B42C4}\TypeLib C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\UrlWall.HttpWall\CLSID\ = "{B6036904-73C2-45C5-BC78-D47D7EA0C52D}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF354A24-B490-4D4F-8EEC-B3ACD6E681A4}\ProgID\ = "UrlGuard.RegisterHelper.1" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\ActiveLog.ActiveLogEnum.1\ = "ActiveLogEnum Class" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\ActiveLog.ActiveLogEnum\CLSID\ = "{84049729-2F6D-4655-A0ED-985B0C2D9DDD}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{88AC4B5C-8BEE-40F4-8192-1C0634359293}\TypeLib\ = "{CB89D24C-F5A4-4230-9356-A13E53319E05}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d79-e3c0-11da-ae4a-005056c00008}\ProgID C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KvShell.KvShellBar C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B5A34A93-D538-43A7-8371-864CB6148D12}\InprocServer32 C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{14332D29-FC81-4C8D-BB97-37A215DBD598}\TypeLib\ = "{3DC2936C-83A4-487E-8A2D-2069DEE57A79}" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d6b-e3c0-11da-ae4a-005056c00008}\ = "ScanVirus Class" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d65-e3c0-11da-ae4a-005056c00008}\ProgID\ = "NetGuard.NetGuarder.1" C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{59EA248B-4EDA-422F-9EF2-60A7580B150F}\1.0\0\win32\ = "C:\\Program Files (x86)\\JiangMin\\common\\ComUI.dll" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KvAddrDb.AddrManage.1\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{FF965983-F8CA-42AF-981B-05E98AE3BDAF}\VersionIndependentProgID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9}\InprocServer32\ThreadingModel = "Apartment" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\KvShell.ShellDelMenu\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Scan.ScanVirus\CLSID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d61-e3c0-11da-ae4a-005056c00008} C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7EC87D7D-E3C0-11DA-AE4A-005056C00008} C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe N/A
Key deleted \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{80BF4637-D65B-43F3-BB60-C5DD3D5FB7B9}\TypeLib C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d74-e3c0-11da-ae4a-005056c00008}\AppID C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{7ec87d68-e3c0-11da-ae4a-005056c00008}\ = "ScanExecutor Class" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A
Set value (str) \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{9C329C2E-219E-44EC-82F9-7FD7FD381FC5}\NumMethods\ = "6" C:\Users\Admin\Downloads\KV2010_en.20100208.exe N/A

Suspicious behavior: LoadsDriver

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe N/A
N/A N/A C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe N/A
N/A N/A C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe N/A
N/A N/A C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3716 wrote to memory of 4700 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 4700 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2244 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 2208 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 3716 wrote to memory of 996 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://applio.org/playground

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa4367ab58,0x7ffa4367ab68,0x7ffa4367ab78

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1716 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2124 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2172 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3048 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3056 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4336 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4620 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4688 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4880 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5040 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3592 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5160 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5376 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5152 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=2732 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5252 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=4432 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4716 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3476 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5728 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5708 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5800 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=4592 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5704 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5648 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=5908 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6064 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5844 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=5264 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6224 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=3588 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=2200 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x418 0x2f8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=4308 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=5804 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=5708 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=4644 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=5956 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=4400 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=4516 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=2368 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=6336 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=6324 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=5912 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=5828 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=5708 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=2260 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=1080 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=4828 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=6532 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=4052 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=6272 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=5320 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=6552 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=5892 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=6956 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6656 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=4728 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1544 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=1148 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=6564 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6768 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7148 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5532 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=7356 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=7076 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7540 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6812 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6500 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5496 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Users\Admin\Downloads\KV2010_en.20100208.exe

"C:\Users\Admin\Downloads\KV2010_en.20100208.exe"

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe

"C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVScanSys.exe" /Owner:60206 /scansys

C:\Windows\SysWOW64\RegSvr32.exe

"C:\Windows\system32\RegSvr32.exe" "C:\Program Files (x86)\JiangMin\Antivirus\TdSetDevW.dll" /s

C:\Windows\system32\regsvr32.exe

"C:\Program Files (x86)\JiangMin\Antivirus\TdSetDevW.dll" /s

C:\Windows\SysWOW64\rundll32.exe

"C:\Windows\SYSTEM32\rundll32.exe" "C:\Program Files (x86)\JiangMin\common\KvTrust.dll",Install

C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe

"C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe" -RegServer

C:\Windows\SysWOW64\netsh.exe

"C:\Windows\system32\netsh.exe" firewall add allowedprogram "C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe" "KVSrvXP" ENABLE

C:\Windows\SysWOW64\regsvr32.exe

regsvr32.exe fileguardnt64.dll /s

C:\Windows\system32\regsvr32.exe

fileguardnt64.dll /s

C:\Windows\SysWOW64\regsvr32.exe

C:\Windows\system32\regsvr32.exe "" /s

C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe

"C:\Program Files (x86)\JiangMin\Antivirus\KVMonXP.exe"

C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe

"C:\Program Files (x86)\JiangMin\AntiVirus\KVSrvXP.exe" /Service

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=6780 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=7564 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=7740 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7500 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5640 --field-trial-handle=1860,i,7109848285404079092,2341431195959996360,131072 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 applio.org udp
US 76.76.21.21:443 applio.org tcp
US 8.8.8.8:53 iahispano-applio.hf.space udp
US 52.70.251.114:443 iahispano-applio.hf.space tcp
US 8.8.8.8:53 21.21.76.76.in-addr.arpa udp
US 8.8.8.8:53 234.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 114.251.70.52.in-addr.arpa udp
US 8.8.8.8:53 232.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 cjtfqzjfdimgpvpwhzlv.supabase.co udp
US 172.64.149.149:443 cjtfqzjfdimgpvpwhzlv.supabase.co tcp
US 8.8.8.8:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 172.64.149.149:443 cjtfqzjfdimgpvpwhzlv.supabase.co udp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 104.17.24.14:443 cdnjs.cloudflare.com tcp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 149.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
US 8.8.8.8:53 227.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 14.24.17.104.in-addr.arpa udp
US 8.8.8.8:53 74.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 134.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 79.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 76.76.21.21:443 applio.org tcp
US 8.8.8.8:53 3.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 g.bing.com udp
US 204.79.197.237:443 g.bing.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
NL 23.62.61.75:443 www.bing.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 237.197.79.204.in-addr.arpa udp
US 8.8.8.8:53 14.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 75.61.62.23.in-addr.arpa udp
NL 23.62.61.75:443 www.bing.com tcp
US 8.8.8.8:53 consent.google.com udp
GB 172.217.16.238:443 consent.google.com tcp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 www.ikarussecurity.com udp
AT 91.212.136.200:443 www.ikarussecurity.com tcp
AT 91.212.136.200:443 www.ikarussecurity.com tcp
US 8.8.8.8:53 200.136.212.91.in-addr.arpa udp
US 8.8.8.8:53 matomo.ikarus.at udp
AT 91.212.136.27:443 matomo.ikarus.at tcp
AT 91.212.136.27:443 matomo.ikarus.at tcp
US 8.8.8.8:53 157.123.68.40.in-addr.arpa udp
US 8.8.8.8:53 18.31.95.13.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 community.spiceworks.com udp
US 45.60.13.212:443 community.spiceworks.com tcp
US 45.60.13.212:443 community.spiceworks.com tcp
US 8.8.8.8:53 global.discourse-cdn.com udp
US 8.8.8.8:53 cdn.static.zdbb.net udp
US 8.8.8.8:53 cdn.ziffstatic.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
NL 23.62.61.193:443 cdn.ziffstatic.com tcp
NL 23.62.61.193:443 cdn.ziffstatic.com tcp
NL 23.62.61.193:443 cdn.ziffstatic.com tcp
NL 23.62.61.193:443 cdn.ziffstatic.com tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
US 8.8.8.8:53 sea1.discourse-cdn.com udp
DE 2.16.6.10:443 cdn.static.zdbb.net tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
US 18.239.208.113:443 global.discourse-cdn.com tcp
GB 216.58.204.66:443 securepubads.g.doubleclick.net tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.11:443 sea1.discourse-cdn.com tcp
US 18.239.208.113:443 global.discourse-cdn.com udp
NL 23.62.61.193:443 cdn.ziffstatic.com udp
US 18.239.208.11:443 sea1.discourse-cdn.com udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 18.239.208.113:443 global.discourse-cdn.com udp
US 8.8.8.8:53 212.13.60.45.in-addr.arpa udp
US 8.8.8.8:53 193.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 113.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 10.6.16.2.in-addr.arpa udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 11.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 129.212.239.18.in-addr.arpa udp
US 8.8.8.8:53 content-autofill.googleapis.com udp
US 8.8.8.8:53 avatars.discourse-cdn.com udp
US 8.8.8.8:53 emoji.discourse-cdn.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
NL 185.172.149.104:443 emoji.discourse-cdn.com tcp
NL 185.172.149.104:443 emoji.discourse-cdn.com tcp
US 8.8.8.8:53 pub.doubleverify.com udp
US 104.18.166.224:443 pub.doubleverify.com tcp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 cdn.cookielaw.org udp
US 8.8.8.8:53 zdbb.net udp
US 8.8.8.8:53 gurgle.spiceworks.com udp
US 18.239.208.90:443 config.aps.amazon-adsystem.com tcp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 api.rlcdn.com udp
US 104.19.177.52:443 cdn.cookielaw.org tcp
IE 52.50.97.128:443 zdbb.net tcp
US 52.55.134.130:443 gurgle.spiceworks.com tcp
US 18.239.207.196:443 aax.amazon-adsystem.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 141.95.98.64:443 id5-sync.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 8.8.8.8:53 secure.cdn.fastclick.net udp
NL 23.218.48.210:443 secure.cdn.fastclick.net tcp
US 104.18.166.224:443 pub.doubleverify.com udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 104.149.172.185.in-addr.arpa udp
US 8.8.8.8:53 224.166.18.104.in-addr.arpa udp
US 8.8.8.8:53 90.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 52.177.19.104.in-addr.arpa udp
US 8.8.8.8:53 128.97.50.52.in-addr.arpa udp
US 8.8.8.8:53 196.207.239.18.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 55.133.120.34.in-addr.arpa udp
US 8.8.8.8:53 64.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 hb.minutemedia-prebid.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
DE 3.124.64.248:443 tlx.3lift.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 104.18.36.155:443 htlb.casalemedia.com tcp
IE 63.34.253.175:443 hb.minutemedia-prebid.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 8.8.8.8:53 geolocation.onetrust.com udp
US 8.8.8.8:53 gurgle.zdbb.net udp
US 172.64.155.119:443 geolocation.onetrust.com tcp
US 52.55.134.130:443 gurgle.zdbb.net tcp
US 216.239.32.36:443 region1.google-analytics.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 104.18.166.224:443 pub.doubleverify.com udp
DE 162.19.138.116:443 lb.eu-1-id5-sync.com tcp
DE 141.95.98.64:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 jogger.zdbb.net udp
US 8.8.8.8:53 tags.bkrtx.com udp
US 8.8.8.8:53 idsync.rlcdn.com udp
US 104.19.177.52:443 cdn.cookielaw.org tcp
US 35.168.161.214:443 jogger.zdbb.net tcp
NL 23.218.52.105:443 tags.bkrtx.com tcp
US 35.244.174.68:443 idsync.rlcdn.com tcp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 130.134.55.52.in-addr.arpa udp
US 8.8.8.8:53 210.48.218.23.in-addr.arpa udp
US 8.8.8.8:53 248.64.124.3.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 175.253.34.63.in-addr.arpa udp
US 8.8.8.8:53 119.155.64.172.in-addr.arpa udp
US 8.8.8.8:53 116.138.19.162.in-addr.arpa udp
GB 142.250.187.194:443 cm.g.doubleclick.net tcp
GB 142.250.187.194:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 stags.bluekai.com udp
BE 23.55.96.210:443 stags.bluekai.com tcp
US 8.8.8.8:53 aa.agkn.com udp
DE 18.197.230.115:443 aa.agkn.com tcp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 105.52.218.23.in-addr.arpa udp
US 8.8.8.8:53 214.161.168.35.in-addr.arpa udp
US 8.8.8.8:53 194.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 115.230.197.18.in-addr.arpa udp
US 8.8.8.8:53 210.96.55.23.in-addr.arpa udp
US 8.8.8.8:53 image8.pubmatic.com udp
US 8.8.8.8:53 eb2.3lift.com udp
US 8.8.8.8:53 dsum.casalemedia.com udp
US 13.248.245.213:443 eb2.3lift.com tcp
GB 185.64.190.79:443 image8.pubmatic.com tcp
US 172.64.151.101:443 dsum.casalemedia.com udp
US 8.8.8.8:53 213.245.248.13.in-addr.arpa udp
US 8.8.8.8:53 79.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
US 8.8.8.8:53 match.adsrvr.org udp
US 52.223.40.198:443 match.adsrvr.org tcp
NL 89.149.192.76:443 ssbsync.smartadserver.com tcp
US 8.8.8.8:53 76.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.179.227:443 id.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 172.217.169.54:443 i.ytimg.com tcp
GB 172.217.169.54:443 i.ytimg.com tcp
GB 172.217.169.54:443 i.ytimg.com tcp
US 8.8.8.8:53 54.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn3.gstatic.com udp
US 8.8.8.8:53 encrypted-tbn2.gstatic.com udp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn2.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
GB 142.250.200.46:443 encrypted-tbn3.gstatic.com tcp
US 8.8.8.8:53 www.youtube.com udp
GB 216.58.201.110:443 www.youtube.com udp
GB 172.217.169.54:443 i.ytimg.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 110.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 142.250.200.34:443 googleads.g.doubleclick.net tcp
GB 142.250.180.6:443 static.doubleclick.net tcp
GB 216.58.201.106:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 6.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com tcp
US 8.8.8.8:53 e2c76.gcp.gvt2.com udp
SA 34.1.52.129:443 e2c76.gcp.gvt2.com tcp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 129.52.1.34.in-addr.arpa udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 beacons.gvt2.com udp
US 8.8.8.8:53 e2c1.gcp.gvt2.com udp
US 8.8.8.8:53 beacons2.gvt2.com udp
FR 216.58.213.67:443 beacons.gvt2.com tcp
TW 34.80.89.126:443 e2c1.gcp.gvt2.com tcp
TW 142.251.43.35:443 beacons2.gvt2.com tcp
TW 34.80.89.126:443 e2c1.gcp.gvt2.com tcp
TW 142.251.43.35:443 beacons2.gvt2.com tcp
GB 142.250.179.227:443 id.google.com udp
FR 216.58.213.67:443 beacons.gvt2.com udp
US 8.8.8.8:53 67.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 126.89.80.34.in-addr.arpa udp
US 8.8.8.8:53 35.43.251.142.in-addr.arpa udp
TW 142.251.43.35:443 beacons2.gvt2.com udp
US 8.8.8.8:53 m.majorgeeks.com udp
US 51.81.2.247:443 m.majorgeeks.com tcp
US 51.81.2.247:443 m.majorgeeks.com tcp
US 8.8.8.8:53 www.majorgeeks.com udp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 8.8.8.8:53 cdn-images.mailchimp.com udp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 8.8.8.8:53 platform-api.sharethis.com udp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 51.81.2.245:443 www.majorgeeks.com tcp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 img.buymeacoffee.com udp
US 51.81.2.248:443 ra.majorgeeks.com tcp
US 51.81.2.248:443 ra.majorgeeks.com tcp
US 8.8.8.8:53 247.2.81.51.in-addr.arpa udp
US 8.8.8.8:53 245.2.81.51.in-addr.arpa udp
US 18.239.208.19:443 cdn-images.mailchimp.com tcp
US 18.239.208.119:443 platform-api.sharethis.com tcp
US 172.67.75.15:443 img.buymeacoffee.com tcp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 connect.facebook.net udp
GB 163.70.151.21:443 connect.facebook.net tcp
US 8.8.8.8:53 buttons-config.sharethis.com udp
US 8.8.8.8:53 cse.google.com udp
US 18.239.208.16:443 buttons-config.sharethis.com tcp
US 8.8.8.8:53 l.sharethis.com udp
GB 142.250.187.206:443 cse.google.com tcp
US 8.8.8.8:53 majorgeekscom.disqus.com udp
IE 99.80.235.206:443 l.sharethis.com tcp
GB 163.70.151.21:443 connect.facebook.net udp
US 199.232.192.134:443 majorgeekscom.disqus.com tcp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
GB 163.70.151.35:443 www.facebook.com tcp
US 51.81.2.248:443 ra.majorgeeks.com tcp
US 51.81.2.248:443 ra.majorgeeks.com tcp
US 51.81.2.248:443 ra.majorgeeks.com tcp
US 51.81.2.248:443 ra.majorgeeks.com tcp
BE 64.233.167.156:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 disqus.com udp
US 8.8.8.8:53 c.disquscdn.com udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
US 151.101.64.134:443 disqus.com tcp
US 8.8.8.8:53 15.75.67.172.in-addr.arpa udp
US 8.8.8.8:53 226.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 19.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 119.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 248.2.81.51.in-addr.arpa udp
US 8.8.8.8:53 21.151.70.163.in-addr.arpa udp
US 8.8.8.8:53 16.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 206.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 206.235.80.99.in-addr.arpa udp
US 8.8.8.8:53 134.192.232.199.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
US 18.239.208.19:443 c.disquscdn.com tcp
US 8.8.8.8:53 count-server.sharethis.com udp
US 8.8.8.8:53 platform-cdn.sharethis.com udp
US 18.239.208.25:443 count-server.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
US 18.239.208.51:443 platform-cdn.sharethis.com tcp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 www.adsensecustomsearchads.com udp
GB 142.250.187.206:443 cse.google.com udp
US 8.8.8.8:53 clients1.google.com udp
GB 172.217.16.238:443 clients1.google.com tcp
US 18.239.208.19:443 c.disquscdn.com tcp
US 8.8.8.8:53 lh3.googleusercontent.com udp
GB 172.217.16.238:443 clients1.google.com udp
GB 216.58.201.97:443 lh3.googleusercontent.com udp
US 151.101.64.134:443 disqus.com tcp
US 8.8.8.8:53 referrer.disqus.com udp
US 199.232.192.134:443 referrer.disqus.com tcp
US 8.8.8.8:53 156.167.233.64.in-addr.arpa udp
US 8.8.8.8:53 134.64.101.151.in-addr.arpa udp
US 8.8.8.8:53 25.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 51.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 97.201.58.216.in-addr.arpa udp
US 199.232.192.134:443 referrer.disqus.com tcp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 33.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 11.227.111.52.in-addr.arpa udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 minesweeper-virus-seeker.soft112.com udp
US 45.58.113.196:443 minesweeper-virus-seeker.soft112.com tcp
US 45.58.113.196:443 minesweeper-virus-seeker.soft112.com tcp
TW 142.251.43.35:443 beacons2.gvt2.com udp
US 8.8.8.8:53 www.soft112.com udp
GB 172.217.16.238:443 clients1.google.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 45.58.113.196:443 www.soft112.com tcp
US 8.8.8.8:53 196.113.58.45.in-addr.arpa udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
GB 142.250.187.202:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 www.clarity.ms udp
US 45.58.113.196:443 www.soft112.com tcp
US 45.58.113.196:443 www.soft112.com tcp
US 13.107.246.64:443 www.clarity.ms tcp
GB 216.58.201.97:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 region1.analytics.google.com udp
BE 64.233.167.156:443 stats.g.doubleclick.net udp
GB 172.217.16.238:443 clients1.google.com udp
US 8.8.8.8:53 www.google.co.uk udp
GB 216.58.204.67:443 www.google.co.uk tcp
US 8.8.8.8:53 c.clarity.ms udp
IE 68.219.88.97:443 c.clarity.ms tcp
US 8.8.8.8:53 x.clarity.ms udp
US 20.114.190.119:443 x.clarity.ms tcp
US 8.8.8.8:53 c.bing.com udp
US 204.79.197.237:443 c.bing.com tcp
US 8.8.8.8:53 64.246.107.13.in-addr.arpa udp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 dclk-match.dotomi.com udp
US 8.8.8.8:53 tr.blismedia.com udp
GB 142.250.187.194:443 cm.g.doubleclick.net udp
US 34.96.105.8:443 tr.blismedia.com tcp
NL 89.207.16.201:443 dclk-match.dotomi.com tcp
US 34.96.105.8:443 tr.blismedia.com udp
US 8.8.8.8:53 8.105.96.34.in-addr.arpa udp
US 8.8.8.8:53 201.16.207.89.in-addr.arpa udp
US 8.8.8.8:53 google.com udp
GB 142.250.200.46:443 google.com tcp
US 216.239.34.36:443 region1.analytics.google.com udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 csi.gstatic.com udp
IN 142.250.183.3:443 csi.gstatic.com tcp
GB 74.125.168.103:443 rr2---sn-aigl6nz7.googlevideo.com tcp
IN 142.250.183.3:443 csi.gstatic.com tcp
IN 142.250.183.3:443 csi.gstatic.com tcp
IN 142.250.183.3:443 csi.gstatic.com tcp
IN 142.250.183.3:443 csi.gstatic.com tcp
US 8.8.8.8:53 103.168.125.74.in-addr.arpa udp
US 8.8.8.8:53 3.183.250.142.in-addr.arpa udp
US 8.8.8.8:53 26.178.89.13.in-addr.arpa udp
US 8.8.8.8:53 download.com udp
US 34.149.2.250:443 download.com tcp
US 34.149.2.250:443 download.com tcp
US 8.8.8.8:53 download.cnet.com udp
US 151.101.1.91:443 download.cnet.com tcp
US 151.101.1.91:443 download.cnet.com udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 250.2.149.34.in-addr.arpa udp
US 8.8.8.8:53 www.cnet.com udp
US 8.8.8.8:53 91.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 assets.dwncdn.net udp
US 8.8.8.8:53 images.dwncdn.net udp
US 199.232.194.154:443 www.cnet.com tcp
US 199.232.194.154:443 www.cnet.com tcp
US 199.232.194.154:443 www.cnet.com tcp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 151.101.1.91:443 assets.dwncdn.net tcp
US 151.101.1.91:443 assets.dwncdn.net tcp
GB 172.217.16.238:443 clients1.google.com tcp
US 104.19.167.65:443 images.dwncdn.net tcp
US 8.8.8.8:53 www.datadoghq-browser-agent.com udp
IN 142.250.183.3:443 csi.gstatic.com udp
US 18.239.209.24:443 www.datadoghq-browser-agent.com tcp
US 151.101.1.91:443 assets.dwncdn.net udp
US 151.101.1.91:443 assets.dwncdn.net udp
US 8.8.8.8:53 region1.google-analytics.com udp
US 8.8.8.8:53 154.194.232.199.in-addr.arpa udp
US 8.8.8.8:53 65.167.19.104.in-addr.arpa udp
US 8.8.8.8:53 24.209.239.18.in-addr.arpa udp
US 8.8.8.8:53 privacyportal.onetrust.com udp
US 8.8.8.8:53 sb.scorecardresearch.com udp
US 8.8.8.8:53 cdn-ima.33across.com udp
US 8.8.8.8:53 04ac99e7bb4a414fa376f9703ff9ef47.safeframe.googlesyndication.com udp
US 18.239.208.99:443 sb.scorecardresearch.com tcp
US 104.18.32.137:443 privacyportal.onetrust.com tcp
US 104.18.35.167:443 cdn-ima.33across.com tcp
GB 142.250.187.193:443 04ac99e7bb4a414fa376f9703ff9ef47.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 99.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 137.32.18.104.in-addr.arpa udp
US 8.8.8.8:53 167.35.18.104.in-addr.arpa udp
US 8.8.8.8:53 193.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 cdn.ampproject.org udp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 cdn.doubleverify.com udp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 sync.teads.tv udp
US 8.8.8.8:53 sync.search.spotxchange.com udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
US 34.98.64.218:443 us-u.openx.net tcp
US 34.98.64.218:443 us-u.openx.net tcp
US 8.8.8.8:53 ads.stickyadstv.com udp
DE 37.252.172.123:443 ib.adnxs.com tcp
DE 37.252.172.123:443 ib.adnxs.com tcp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
BE 104.90.25.54:443 sync.teads.tv tcp
BE 104.90.25.54:443 sync.teads.tv tcp
FR 178.32.197.57:443 rtb-csync.smartadserver.com tcp
FR 178.32.197.57:443 rtb-csync.smartadserver.com tcp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
NL 154.57.158.26:443 ads.stickyadstv.com tcp
NL 154.57.158.26:443 ads.stickyadstv.com tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com udp
FR 178.32.197.57:443 rtb-csync.smartadserver.com tcp
US 34.98.64.218:443 us-u.openx.net udp
US 8.8.8.8:53 rtb0.doubleverify.com udp
US 8.8.8.8:53 1f2e7.v.fwmrm.net udp
US 130.211.44.5:443 rtb0.doubleverify.com tcp
US 130.211.44.5:443 rtb0.doubleverify.com tcp
US 130.211.44.5:443 rtb0.doubleverify.com tcp
US 130.211.44.5:443 rtb0.doubleverify.com tcp
US 130.211.44.5:443 rtb0.doubleverify.com tcp
DE 3.69.181.172:443 1f2e7.v.fwmrm.net tcp
US 8.8.8.8:53 133.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
US 8.8.8.8:53 54.25.90.104.in-addr.arpa udp
US 8.8.8.8:53 123.172.252.37.in-addr.arpa udp
US 8.8.8.8:53 57.197.32.178.in-addr.arpa udp
US 8.8.8.8:53 26.158.57.154.in-addr.arpa udp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 5.44.211.130.in-addr.arpa udp
US 8.8.8.8:53 www.googletagservices.com udp
GB 142.250.200.2:443 www.googletagservices.com tcp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
IE 52.18.245.140:443 pr-bh.ybp.yahoo.com tcp
GB 142.250.200.2:443 www.googletagservices.com udp
US 8.8.8.8:53 match.prod.bidr.io udp
IE 52.208.44.182:443 match.prod.bidr.io tcp
US 8.8.8.8:53 tps.doubleverify.com udp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 8.8.8.8:53 172.181.69.3.in-addr.arpa udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 140.245.18.52.in-addr.arpa udp
US 8.8.8.8:53 182.44.208.52.in-addr.arpa udp
US 8.8.8.8:53 102.201.58.216.in-addr.arpa udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 s0.2mdn.net udp
GB 142.250.179.230:443 s0.2mdn.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net tcp
US 8.8.8.8:53 tps-dn-ew1.doubleverify.com udp
BE 35.210.149.152:443 tps-dn-ew1.doubleverify.com tcp
US 8.8.8.8:53 pm.w55c.net udp
IE 54.77.172.14:443 pm.w55c.net tcp
GB 142.250.187.226:443 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 230.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 152.149.210.35.in-addr.arpa udp
US 8.8.8.8:53 14.172.77.54.in-addr.arpa udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 tpsc-ew1.doubleverify.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 fff5276eec9e2d9474b843d17dc747a9.safeframe.googlesyndication.com udp
FR 216.58.213.67:443 beacons.gvt2.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 142.250.200.46:443 google.com udp
US 8.8.8.8:53 apps.cpi.arturito.cloud udp
US 34.120.186.113:443 apps.cpi.arturito.cloud tcp
US 8.8.8.8:53 images.sftcdn.net udp
US 8.8.8.8:53 113.186.120.34.in-addr.arpa udp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
US 8.8.8.8:53 partner.googleadservices.com udp
US 8.8.8.8:53 97b972f91405b0ebd076a0b8e4a12507.safeframe.googlesyndication.com udp
GB 172.217.16.238:443 clients1.google.com udp
US 8.8.8.8:53 93.82.68.104.in-addr.arpa udp
US 8.8.8.8:53 cf7146ab3ab5dd7cadb81deaaf28ac2e.safeframe.googlesyndication.com udp
US 8.8.8.8:53 download.cnet.com udp
US 8.8.8.8:53 assets.dwncdn.net udp
US 8.8.8.8:53 images.dwncdn.net udp
US 151.101.1.91:443 assets.dwncdn.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 151.101.1.91:443 assets.dwncdn.net udp
GB 172.217.16.238:443 clients1.google.com udp
US 8.8.8.8:53 6a30373db47735441ec8cd31c3b1f974.safeframe.googlesyndication.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
FR 216.58.213.67:443 beacons.gvt2.com udp
TW 142.251.43.35:443 beacons2.gvt2.com udp
US 8.8.8.8:53 4a133ab42a23acb7caaa0c68ab483695.safeframe.googlesyndication.com udp
US 8.8.8.8:53 google.com udp
GB 142.250.200.46:443 google.com udp
US 151.101.1.91:443 assets.dwncdn.net udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 34.120.186.113:443 apps.cpi.arturito.cloud udp
US 8.8.8.8:53 32cc44a768cbf991f9d5f4d8a80680ac.safeframe.googlesyndication.com udp
US 8.8.8.8:53 dc6591c6749e2048eee4b5c0dbbc88b8.safeframe.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 download.cnet.com udp
US 8.8.8.8:53 assets.dwncdn.net udp
US 8.8.8.8:53 images.dwncdn.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 8.8.8.8:53 65a814a46469829bf7a9e18b0d92dc11.safeframe.googlesyndication.com udp
GB 172.217.16.227:443 beacons.gcp.gvt2.com udp
TW 142.251.43.35:443 beacons2.gvt2.com udp
US 151.101.1.91:443 assets.dwncdn.net udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 34.120.186.113:443 apps.cpi.arturito.cloud udp
US 8.8.8.8:53 5d60224ddbc424ca15926a282f1f30c5.safeframe.googlesyndication.com udp
US 8.8.8.8:53 events.cpi.arturito.cloud udp
US 8.8.8.8:53 analytics.arturito.cloud udp
US 34.120.139.235:443 events.cpi.arturito.cloud tcp
US 34.117.29.134:443 analytics.arturito.cloud tcp
GB 142.250.200.46:443 google.com udp
US 34.120.139.235:443 events.cpi.arturito.cloud udp
US 8.8.8.8:53 e2c39.gcp.gvt2.com udp
FI 35.217.17.196:443 e2c39.gcp.gvt2.com tcp
US 8.8.8.8:53 196.17.217.35.in-addr.arpa udp
US 8.8.8.8:53 134.29.117.34.in-addr.arpa udp
US 8.8.8.8:53 235.139.120.34.in-addr.arpa udp
US 34.117.29.134:443 analytics.arturito.cloud udp
FR 216.58.213.67:443 beacons.gvt2.com udp
US 8.8.8.8:53 4bbf6bd9b4197d9fb6310d697bb8cc82.safeframe.googlesyndication.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 dl-fl.downloadnow.com udp
US 151.101.1.91:443 dl-fl.downloadnow.com tcp
US 8.8.8.8:53 159.113.53.23.in-addr.arpa udp
US 8.8.8.8:53 convertwithwave.com udp
US 44.220.125.233:443 convertwithwave.com tcp
US 8.8.8.8:53 api.wavebrowser.co udp
US 8.8.8.8:53 use.typekit.net udp
US 8.8.8.8:53 p.typekit.net udp
US 3.90.74.28:443 api.wavebrowser.co tcp
GB 104.91.71.78:443 use.typekit.net tcp
GB 104.91.71.78:443 use.typekit.net tcp
GB 104.91.71.97:443 p.typekit.net tcp
US 8.8.8.8:53 34.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 233.125.220.44.in-addr.arpa udp
US 8.8.8.8:53 78.71.91.104.in-addr.arpa udp
US 8.8.8.8:53 28.74.90.3.in-addr.arpa udp
US 8.8.8.8:53 97.71.91.104.in-addr.arpa udp
US 8.8.8.8:53 app.posthog.com udp
US 8.8.8.8:53 app.termly.io udp
US 3.90.74.28:443 api.wavebrowser.co tcp
US 172.67.40.50:443 app.posthog.com tcp
US 172.67.40.50:443 app.posthog.com tcp
US 8.8.8.8:53 api.wavebrowserbase.com udp
US 104.18.30.234:443 app.termly.io tcp
US 104.18.30.234:443 app.termly.io tcp
US 3.90.74.28:443 api.wavebrowserbase.com tcp
US 3.90.74.28:443 api.wavebrowserbase.com tcp
US 8.8.8.8:53 api.mywavehome.net udp
US 34.198.226.158:443 api.mywavehome.net tcp
US 8.8.8.8:53 50.40.67.172.in-addr.arpa udp
US 8.8.8.8:53 234.30.18.104.in-addr.arpa udp
US 104.18.30.234:443 app.termly.io udp
US 104.18.30.234:443 app.termly.io udp
GB 104.91.71.78:443 use.typekit.net tcp
GB 142.250.200.34:443 partner.googleadservices.com udp
GB 216.58.204.67:443 www.google.co.uk udp
US 8.8.8.8:53 158.226.198.34.in-addr.arpa udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.adsensecustomsearchads.com udp
GB 172.217.16.238:443 www.adsensecustomsearchads.com udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
FR 172.217.18.195:443 beacons.gcp.gvt2.com udp
US 8.8.8.8:53 195.18.217.172.in-addr.arpa udp
GB 142.250.200.34:443 partner.googleadservices.com udp
GB 142.250.187.226:443 googleads4.g.doubleclick.net udp
GB 142.250.179.230:443 s0.2mdn.net udp
US 34.117.29.134:443 analytics.arturito.cloud udp
US 8.8.8.8:53 download.cnet.com udp
US 8.8.8.8:53 assets.dwncdn.net udp
US 8.8.8.8:53 images.dwncdn.net udp
US 151.101.1.91:443 assets.dwncdn.net udp
US 151.101.1.91:443 assets.dwncdn.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
GB 216.58.204.66:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 99be59c9e2f5ce37e9ff657ec7cddaba.safeframe.googlesyndication.com udp
US 216.239.34.36:443 region1.google-analytics.com udp

Files

\??\pipe\crashpad_3716_GYLIBUNRLJSQOQMQ

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 73397e0c6801fcbac3075bf389aa0e91
SHA1 f9fb9d6f1c9e059fae5c6bba2e6014ecb4443926
SHA256 3a4b3143354c9e7165d897166742b8b151dced90020c18e3aa05e48cb77b917d
SHA512 c42a6d77207adcdf86cb813e4ae9e44f7b9a92b173016dc33ea675ede17b1418f73c8ae536fda3e46a622351607900ae680506d95e42bbb51e828b6e4bceea48

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d38fbe7be662ca60736de66706536500
SHA1 2a9b0945b253fc09a189fd524952a3f1966e1848
SHA256 cd920ce891caa429a5f011b9ef43a47e0e371dbd9c620beb7017024fcbadd128
SHA512 b0ab79f9ee2291ace709565f484599842c901779aebdb7f7dc2a92571386d765aeec9eda4b2af2ac07844e4284207638752986ec04f3d18813e73580cde2efbe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 38cb546b245d2b743db5a47ac605fe0e
SHA1 6e5e0f06d539c91c5babc3bedbd78b5fac526c0b
SHA256 5b5e821e7e2a4ada32d254df410f3d99572b8c72db4a2000a248cbd5afab26f9
SHA512 aff2efbe759f9a1710257db113dc9398d8fba4c149dc22b0e1bf6061a5c76231f02d934f054a8af96ab088a8e819ed024f757ae70c2ec757b7c9a34209cb5750

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 372f6b0787e8909bbb0f21b8dd3b75f9
SHA1 dc227a9ecd64e9a63a9e597243de96a3a64ffd5d
SHA256 6c624f5270aa670a990528de894670bb5877419eae4bfc6275a73ebf1cf4e127
SHA512 148353d122da5a47d7e914a6edd3b49cff537187e3add58edf36b876b74cc257c519ff924a354eb1a964b1ac236609cb46c8c004485da003c993d898b877bcf9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 716ba1723cdccaf08b3323f8c4e02d1f
SHA1 06e3dd796a5b378eaf82733e58cec7f2fff47652
SHA256 f03ceb545c09274b3ccc43c89134f11ede329a5b801121126eeafb65da205ec9
SHA512 fc28bad32efabf9de941307594ce3669825146aae318250ec7aba97f129d3c741dda9f2db12313ae80e5627df1b7887d7fa999dab058c1778989c0b208db16c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a0d951b72d77822f5d22abbc08b51cf9
SHA1 980b13b3be4467369e8522cab13926df95f8693d
SHA256 a2f9b280fc45bff200b19d553bc8ed1d46f6dd8529c9d38db860b116d5dc41fa
SHA512 9dccf6d2df4e9e44bf4f3e6010e6bc02b5a51745e68ddfb612291e16b9f95174ec9ffca25ab42f1916c3c43f2f97d31b2816dfd56a710d756610ae8b99a78868

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 dd2f6881a590449acf22aa658560068d
SHA1 5eec26dd60e9f89ad5d5cb530a85bbd3cc90789c
SHA256 34128de91351c33e6efbacad91d12df5eb95d90bfa25fa18e318829ef19568f7
SHA512 cdf10c3c0a14a4d1512e144f186fcb4c13af287c4b6eb9acb21607bf113206603fc8804a9f84c73d1a15d2a5abd609c515a8ebaf2f67660f2cf4eea44d232ba6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e8f2539bc945f24d4ce18e54ae71fb7a
SHA1 16fae117b632c18efe030419eb3362d471f8c36a
SHA256 651cfaa2ab00c10055407f125ed0fdb83d3bbb486606d577723e33693b0862b0
SHA512 b1e62d22a047b7aacec217635fec683e97e7d5920b7e730224dd4d2bd8b4574f79dc593f2fffdc0e2722de769d421c5b96ee60f2e1d2bb32fb631b1a5119accf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e89a4d5233ba4f454c2e82a6f7fe0df1
SHA1 0efb4a13e5f0c7632f5534c5290eac0cb7557173
SHA256 2775b892d41f1bbb9f64a8d7a33b99547ca7e4e53c5c66adcc60bc78fdae2c20
SHA512 dbfd92b26afe036f032b9939420fa3609d4a184abcf5ba99795eb96b8c879592a51cf247e27040400414a98f82d1754285db754f478356bea6302b2a43fd9638

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 ae6b67c8285881d8471bcedb36733454
SHA1 2ce29a141ceee72646d6d6488624b23222ffa834
SHA256 53121d4aabb381687f3b40bce8f5ed81770bea504207f4192dd9740015dad7b7
SHA512 40e286c0ff395947135ecce5112a2fcd6889828f87927299395c4872afd29e8a21be6a994b5eb68176187f7d17c40b3c7bd70b2fbee890f6629e758ca4daee60

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 82e24d00dcbc7fe366cd820871ae1e32
SHA1 38a7ce1ae8c85c9d66fde738dc180d90b556d820
SHA256 f556c7d16af4a896602b629f363fdabd77dce385273b2b1d9dedad621bf04d1c
SHA512 b56f57ca8aed0832e8cae0425ffe81813ebbde070605225e99aca4b6a2cb7bfee9e1f49bc5d47feaa1cd1fd616b984f07a4ccfff56770736870d6391cb0e38e8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 ed5c8b8b12ef5c6e376060a6ff64b30e
SHA1 30e448b5c3f2bd46bd1d1835b4d493f7801d811e
SHA256 0452fbc511943f32f70b1f2a7335186134af70cc181f0d63e00aa9897f0b7068
SHA512 26e966f5f9077fd1e988b9f300cff1454b93c74e166049d1f6d8eeecc74fa61a4b67f1d74e1986d9fa2e90d5f8d9a50e632bbc7e655d0796a321fec8d8f9f452

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe58241d.TMP

MD5 3240dee4c8de3d93ce195436ab8eaee8
SHA1 b3d414dcd56da7b6b062d99a54f60a7974c196c8
SHA256 30f41cf2336f03d178f7cb6544fc6fa21e9386e9a483707dac0549fb5ad49103
SHA512 e56cfaede95b215f84683c60403ac6d2d4b8bc8c039d9aec96e9701269a4ea9b0c563f59fde9ad9481f2a28f880b0c933546b0d652c1275b0fba6217ecc20abd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 b171af04518e5c4edd7fe87ab6314530
SHA1 c570bc25a34e7f94f93e6331e439152a71f82c51
SHA256 9a53c8b02c3e01836646299aeca1738087fc1df350afc58a372abf4a32a21b68
SHA512 76c9e836c4b2af2b5f8e92e6787cfbbfbe25c75fb3e9ade451b91faac8fae1b338af404a608ccca04e95af38fd80967a6d89740dcecd9a4579be19ed50e4ddaf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 08747d4776bbccc4cf0d5d45b12ee9b7
SHA1 4717ebf93ef40ca722a9eba0e90ecbf044e02876
SHA256 2733f09427beea3d8ee7e5739f2c8c61a2ca4c4dfb7b4452222832ad58baf329
SHA512 24998554f9898ad5501c56f22b8739b8b163f2a04a0a02995bfb74882539a3eb0a1f5011f4e968f4a282474607eafac7390b5bca62277413b096bc6bf3b97d7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e36cc70feffcf3421c972fd7dbb45928
SHA1 207d3618057067a8b2ac61c19964a3983a1e9664
SHA256 769c4eb9ce3cc881521d362173697499cbd08799995902449aab16230650106b
SHA512 39e8533637d8c3922300dfb2515fb537972890126d1fdd7dfcbbc3c263912aec677a262852cf0c38f312c29ab61d9610cc730213ab86a8e6848af4853f9bb0b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000022

MD5 f203d75a70ada036423e83070526987a
SHA1 06e072c8d3880fb8cab740f01308fc44cd211029
SHA256 9eba99bb152b450919ff7bddc78c09e5eb0c857659b4fd593c94087d289ab255
SHA512 aba05ffe088c648093719cf2d25fdf46a7055583aa496dc8ef6b15c2ccae8d82c91d102edeec3bca5d6556a90c6d9cb03d688f5ba83f7fa87e1745c06a6d5f04

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023

MD5 51fe563d2ab47bc2f1891fa1140f47a3
SHA1 4bbad2976379401aacdf3d82cea09e772469a527
SHA256 722268ad8d00f8978563839689ae779aa5f3316c932f394e2c55e82338a346c5
SHA512 f694684d6cb180c21fa4112d4122d15a20c7d41e12b49be0dd52a2ec73fd7965f22755a75a788825d70a7e162c78feaa985cb5e39ac1715e4a256bf7291ce8a6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024

MD5 bfa8e19bc54294bae767f2948a6cb690
SHA1 2ee6d4c1006dfcf49ba8d4543515747a1c46a4ff
SHA256 678459e68af7b7dc3586c493badbbbc86c89c3e03317fd732de663fc42a44597
SHA512 dfb48b29ca42f5aef196eee0c4c0d58884f3ab2cbdd3d5b33b85c7c325cfc891f537ded6640a0d2ed01d0261603c1724b25df570e3a307df8497553ea387529b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 c25caa6b7ac967b5e2ac53190333e7fd
SHA1 e661273514f89bfb1491fbbf81baa8620edba807
SHA256 3ec7a8091b67fd1040f0c3a6497cf879eb7181a822869a9595ed79d257c30e33
SHA512 6fd02cbac9baef5c97876979ed5ddb4dbdee8acb2a3800960761f0794b8a92ac380b6f25fc25cb1e8948ec6490cc2a3030353252bf4e0c8a9c7f12ad016de448

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a9a6323d69532d1dd42393afccc062c1
SHA1 bc66d2a64ddbee8af105ba10995dff4fd05c8a1d
SHA256 7cdca9aa53bac8a177e276336a551da7810a64dccea6b9b524d57102c18d3790
SHA512 27f902f807faf48052dff247e8562547431652d1e6a529ede501575544f62207c41e4b192328c330a023ed8ed276fc52d9559972b7d475901edbbf20ab708543

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 18e3ba070052a98c9e093ad7833a00aa
SHA1 c4a6f89acea17a51af22955ba0ba3734d8b5fa0d
SHA256 54d48f1b6508d8fd9ed609837eadd2ce88331375156b7ce4ad518cbaec874cf5
SHA512 aad4af6f7724760995185971d64ee657908014bbacbc2257599e5b3acad45134c83c91c4372338dae65fc81fb2ebefbe899bd00a23083d22547fd4b1f73b4803

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58848d.TMP

MD5 dae771ea980dc1dab488a5c80041f595
SHA1 0ef700c1989b990e5b357ad50f3cf58751e541de
SHA256 a2f11651a7dcde8cfef9b80608275de93c6574a669bbc1724de8f20f63f2fc98
SHA512 46f3195b54520ee931abb3e345bf337f48529b14a9b5cf06e8ddc66a006c08a2da2ca5ce4c8a99e67f4d3f5058704d11a8b7b71d9c35f172053b366ef57acc32

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\a736b5fa-7e04-4c0e-b4df-38db83f423c7.tmp

MD5 3c3752ce6a993a6c423fe75c40c9d2dc
SHA1 e67e6d6e26b1e0086d337ac3f133ba697ecac03f
SHA256 f044e7defa905a8895c5a5d7056526e4c8d6ad6de6b70bf9513abb4878b46d83
SHA512 e96723b33dddf6aafd78ba534ffbf04466937dbafa0a573b76b5f60381309c821ab1c2ef58fb296466c2da2e6d93d5e954e8ce9bb1e1c98ff581a54443c75bd1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 49b71fa6de56fd0e7759ad5fa6e94644
SHA1 40553acd260e274ccfadc61064276c3fa9b6a696
SHA256 1232ea5d697b301838f9ad7f3fee57b39c58ead6053a11a7545b6b6c37648a10
SHA512 3d889c7929de33d97845af803f2d0e08c80749122dd273ed44d2e90445fccde336e7e1bfbe84c736529cbf2ccc15e525c0bb7c0801ca661b5ee24774c56ddeba

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\341f9b71-2134-4a23-a40d-87f0125d8bd6.tmp

MD5 81d26ca40817ab3b07dbea705e841949
SHA1 24b309c6dadd4a026bf1cf4d00c21ba5fa53cbf1
SHA256 1896306d5a965c6dfaf62eb453e29249667f6a62d6df869f96a8318291fe3acb
SHA512 f8cd689f2e82a0a65867a0943a872b1414d0fd76ce6374a0e08378b320a01ed76675f56383f9ce7b2d5312f0a6a0811641a259ee9b0d78a5a0e95210ca28461c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c56f01804fc504023d777d8605982a95
SHA1 176a412ddc512a75852078854585b7a04b901509
SHA256 b29dee7df3eeda84ea556bd9deb39b753c1a207ced4505cc23aad62450fee297
SHA512 9f0425dba30c805fd894ca21dc5c8e4588a3f873a9ea39b9708fe3bb918ce032282d4167c947a045ef49bd2cdc4f43ad0f9f820e08ed4d77e941fbfd5613c9d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7073afc4d0a2539d98cfc01c6533b230
SHA1 b99705f6db2a6988e2493e6c4373c217bb929983
SHA256 bf0680ee19af03f7671101feba73d8ab06a011c7ed85050318ca94b1b8dc5825
SHA512 d41a4d5cf1551aab9a374c336053547d1e151cd8f2f9ecaae6bebad09ae9ff9a7286bbb0181a2e6d30b7c670d537e36c73b7353e6d06e22c896ff2e6d139a12c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00009f

MD5 63dbcaee419c287c164643d4ccebcb1e
SHA1 eeb12b80f3d6cad460051eef77c8b7934d3adbfd
SHA256 98800c993468ea7b8f29a55457e46b20792f99d4f1a8c35d5844366ec41bdb44
SHA512 15094477f4a0912cb8e5090069755b6ead4ff33f02ca10aabd1a1c98102f74b1339d5d4f3de23a6573332b940327c4ac2e6ef90cf9d4ac6d3482a99a87f7d3c6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e625d2258b915750e78c80c3ce7cb806
SHA1 1cf7faee38eeb6320b2687a8d7322aa30a78fe9c
SHA256 bf21cbf1ce9ece7ece60d333f907e7a3cd98205f98efe6c4d5eb6234f8f6f224
SHA512 cce23e8fecaebdeb38fc54d9493017a16c9c3f8d9ee452ebd7c07b34353a7df638ae66d42cba5c09764d7f6806c15d02c7e6a065e4d4b353305b6895f4ba8125

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 9def520750cc264c0d893274396cd527
SHA1 93372c0ce2036aa5f4a851be6e6686f0e741aa77
SHA256 5a257d014a110ddfb4c57c299f19b5ed366a09799d15939a7a2e5b98e30781fe
SHA512 c4ac1fffd41e8940fe6b186111258e44d0183b67350428c1c9c57eb103763e0a59a9c19cd963fe338dfa4e37d306725a2c92454a5f2ee43e3bcd78170123f7b0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b1f3bc41be647e1f00d24c513c2cbea2
SHA1 c3a27fe5c3eb5f841432901fae9d99ce5505c177
SHA256 43e02b0d8da8e9b0c0042d876def6026e81f112b37e2665adedacf01b15d8f4c
SHA512 824cbfbac93adc903ba5e9419caaf2c84b706a9f64069c40e29452ed4177fd7a916b9d2c41cc052a3df940239f14286aebab64c85ebe3eeb08e3396f6a8ab44e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b8

MD5 3bd6e8b735a61d32c66e6c3750e903c3
SHA1 682c567a2bd2530afd794f5999030a03f56305c1
SHA256 809bafd21f2e8f5aee3c5b002d865086ce84e5cf4dc4a18c2e6d9f7ad88bbfc7
SHA512 875969bda2db5d4199f5105f49e50268b5aecc1285d7d86c2e8fa1cab1986de727b1fbd8e673244596d0ffe10a3517f0b8827fda4df6bfbc4f95f0bd192438be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d27862a1b1609e3b_0

MD5 e2f3177ef21087a3dd8eabfcb42af3cd
SHA1 9fc983d93ed8aee408a6871358b891f1a4050859
SHA256 b889c29ed51f5e05b740b5384eeb791252b6b9899d790383c21c4f028533ab16
SHA512 3af8406d3ec298e4ad8df6e0db72f5e023559525e987c3ea59e31c716964bc85441ef45500066ab6da5df4adae65303fe96bf5937fa565a826722361bd04f8ef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ba4bcfe6de8e8792_0

MD5 daeb21eb7b12536adfab319a9f13f105
SHA1 271ef7f9b12a533a5f5904832e125db99b0c9f20
SHA256 6d2b9f4f4b59d764293802c5dd35f2fd916b9371c14f73f83fcf717172eb4bb0
SHA512 6b8bc90b1fee08bb7ee088266d20cffe5564f6863fd7a9619f559d0c2c2c5a80fc2ccbd40b9812d9e31f52f8c790314c2f48977a681a11f50084bf7494ce6fdd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a5c0facd51fc2992_0

MD5 760ef0c27883dec89e7d2bb49aec4ac4
SHA1 3d10aeaa7f0ce1050a8a971d08c370f6841d3514
SHA256 cfd64570b49bafa31a6afae9f4caee1769202ed344badf053d46e98c5c19bd3c
SHA512 e8e5b94b78ae0f1e543cbb50ca8daf3c18b36e3997e0327ea83ab5d7479c0baa2b9efe958f12607f23b3907a0e80018c5c8d201e73d82c3f5b97564e743b1d36

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae1291fb486e13ec_0

MD5 c27e4c3ccb2702f6d4463668f50e6cf4
SHA1 7814c5f17d5a9e0f0b82f046fe8d169e64b133c7
SHA256 3d7b55f17812b0935d3c30b576a1d66a9d1e46942a44b36effadd3cfb3a7424d
SHA512 d1685eb398b6665d8944f23e4af37a16d7ea1018a5e1dc79a281d263a3acddb39ac106ea8c431e01ac9576c28632d03f8db5cc5f12f2d584295cf641a53de3b5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bf

MD5 dffcc5550befe262544605ed6b72f7e0
SHA1 87f9127846e00e7b0f97e018df8fc9b87aac9796
SHA256 505f916ccc604cb3a32367e5aa800e606cecbe8a1083ae37220886fdac1d1c44
SHA512 9a1bfdf163cce3992854ca4fc90ed52ee93b2b5276c8d6ea604fa132d7c27fc535f6c81b45d77869d2faca9d37a65acc6af919ef01324dd02cdc135e9b60e0df

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ae1291fb486e13ec_0

MD5 7197b12d2babfc95f40db00dab7dbc45
SHA1 c2933c0c917345b15008384731a65a8fbf7f3628
SHA256 3ad044c96043def4cec9facecbff0eb9c1c917de554a87ea1f8f0281567566ba
SHA512 2c90be87ccac539fc0095ec92188cc15dfe90b1c2c1c4deef01558650599858a19e69c567ec3e6a9e1beb2cb7f179a78de2e2defef80b22ae867259c9348f726

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2bfde39962961371_0

MD5 6fd0df253898bf023f85e62f3996748e
SHA1 969abe2570fc6bce25e5e5b74f3995419640a229
SHA256 1c9e92fc9f6acc02cc9609c267551801bb1783fe2be78bdbff6bd821867df079
SHA512 6100441c7b9d8c4ba357f2d90eb5aa91fe6b4e232dc9dcdae092024f74fab9a51463acb3a28b7fc5eed52a8ee29a50cacdbfe78479319e8a7d499bc25cf48900

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2f0fd3541f5524d0_0

MD5 a77cb22bc03fae2f61b13e598b56e53d
SHA1 2e93849b0bc97fa137f45b4b3ecfec38363e60e2
SHA256 a198a30e5fdb76d27c9123a550ae9781ad3a907b5c4717827d778386eab79c37
SHA512 5170dc5d444a8e4156e194f548dbaef878c6163af36b58f3a95d52123937b4ad6c90734276e54835bd95552adbc8aefbcd2e7983f4305a8221c251b17dc0471e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e3ee9dbe1b72bcd3e9851615571db919
SHA1 e31b709b2b6ad564319b3de2637c56954ea31120
SHA256 9dbd4678ef3259e54043080e8b3582d6e0bfca9a2c204b7358382fa0235e2cba
SHA512 5c601d61501da712a3c8583f4bcb7e346ab211481ad1bcc65709d7f3be7b9d5fad00ee04d3d01b69e111375d873f7ea5663210d4558b2cd4f218d49a669e3e67

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 92e82f846f9dd019921a606b6453b59d
SHA1 c35caa616f228111b5711c4b3181b18cd29bb161
SHA256 79364839a4304afcf61604badef893d1561f24cf73e47d8ccfe5184cb21901f4
SHA512 79204c939378bea167afa095455a3039c6126b368ffb4e1b2bc07069f6b60bcf8d5427f37621cefc3a8f710cbdfd0dabacefde2dd998eef5a0ef498da776a911

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c8513931bea635753a4f7fb3f8c0821d
SHA1 586b32fc1638f0c7e8c3b046bd7f3e5d802acbf2
SHA256 aa7cdd15e8a94f4b05baa927ad0055a2bcc42048667cff2f160b2a4f72d39f13
SHA512 6233fe20ce85d9e601ff013bc9205e3f222b4cb98eb59eba4956513536b06798185d23eadefbabb6cf238823ba270eab8ed98b4e1b8fb965a7cb4454233863d1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a8

MD5 ddb8a49549d773c618cb4d46f42811cb
SHA1 c7b3cfc74e56af48d428f3dd9fe13134d533a77d
SHA256 51955e0530b80e8b246952233f7ba3164d2046821ae7c2682719c16893a8422d
SHA512 292a57e85620dc191a03278e7c40dc091645e188518171cca39d079fbfe40d88f9321d6444b2244e3c391d08b4f6832fd17b7d3f65b328585a29fb4583c09748

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a7

MD5 5a4c2348e601cda82b16fcfd386e64b4
SHA1 dfea2a9aff52652a7ea6ea688df43ca17bfdce3f
SHA256 5cef406f4315fe8f2788fd5020da6f319ece44d318fccfedf2190029ccb23e10
SHA512 26e0baf12ad699151378b3799b9f52bae97d3c85faaa12730e8aa828b6e1609045b29d4d72f0e70934a82810cbbd67fccce5d148be60c366291036bfe8f15666

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000aa

MD5 5cea211810660da25fe8d2e75248c6b4
SHA1 54e5ce7390389d1b018eca64f8058df1ae56a706
SHA256 ad2051f3e4db41d413f4f96162d495c02bbdc5ea121d5a79f4ab3e06fcd2f0c7
SHA512 dd88bc2fc4dd51af35057e2738e204ff99befd2ce6fb59ca95b1a23f3df3627d355d209b068f927a9527eef3d3bee2888fa98af8c05692a8e52955823cd20a19

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a6

MD5 ac955cca0c0bcf2ee7422bb631b773bc
SHA1 706616958f264f8ebfe875a74bdac0fb057e751f
SHA256 8bff35bb293cc47aa2a4e4efd44f8803d7955e6c0fc6d6193aecfcb0c2962bc1
SHA512 1d36ef77f1476ea5b06c0546924ce25ca018dbddf88d02e8e822fa76e08b392d22e1e04d15ad7a745adce5b1cc49cbc3ec92815fd2e6e43023833ca6b8b7b336

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ab

MD5 f60f9948a284b80a3fdb203be26c7a84
SHA1 ad664077efa937698d320af01a80091dbe89c31f
SHA256 a302bdc70ba0406f9fed008b76c9257f92ca6b72fcb0226819ea8bf99ba04e92
SHA512 6406042325b204137625973bb62a89cda367d0e8ded8eeeb0690ffb293fda7a56efc1292f5c76bd398d3fc15b3aaa65d12943637897afd36eba5b82eb80dd80b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a9

MD5 7bbb84c770dfed7dd583b06794e50af3
SHA1 c59d90445f7fc598663cc02da2277eb9c75aa0d1
SHA256 f3f4f264fef883a754c8c55f77dec3b30803eec43913e8067b816a934e853bed
SHA512 5e182ce3f7e298a447630db2e54ef0edada1d50939e4a4de977d5db52f8b475c7270a21a2caa35d8c5f5b61e0713cdcd884da9cce107bc231798f3e1a537a46e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ad

MD5 69c488c2c5d7ba934858ab1115965ab8
SHA1 9f38061f3bc0896bde6645cce1404cca96af7c0b
SHA256 2284b9fd1ca8849ac9de992a1634e5db26cc0fca27ae52a84a588f983f1504dd
SHA512 38bed47a1d313db14209586c0cfad4353e78c72938409badc38e730d45a2e10e17f603a8bdba797ce110b728a42c2bee0bd78b83cdf6dac4846a0ac0abb2222d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b4

MD5 1abd71363b195330d474c7f92754d776
SHA1 15eac7f7bf3d09fd5d96ae2d1fca704a6a7614f6
SHA256 f949fad575d503e782b660c6b32c51a50ab506f4963178acc8656a10f3f2868c
SHA512 9da5ac351decdf86e127f9acfa07b9198ce255f3a3ec368ade110d8e8e02171b5b9c0153912548bd53504cccb2c05f8671cb4a1479596e1acd68ba82b67338c3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 e6dbf6c94e5a267c5e6c675f7f10ae60
SHA1 2d26bea274296e353ceb661da61b054351539bd0
SHA256 3b10b93d2df2fb42782ee2f0054703bc568a273c3da64f391e1a2b548e75fd13
SHA512 eeadba69b4e24a9669325f6e81251bbcf04e9bd47bcfcfda0538238088aa4c27bfecbbaf43b45b29a237b721e0a4aebc3b289a3cba4f43874360ed5d74b2132b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 65e6236fb8d03ffc3fe7ff40500dcd92
SHA1 52453224eb6b6d7bf3674cbfec43a20ffc5bf9eb
SHA256 19a585f5b79d1320fb505069bc9bd954dffa0d643f1bda9f1bdf4ab075d306b3
SHA512 9420f246bfb68d7d1515655da10a2f1f87b1b1d839b71fca884b73cc2decb65ed6d072693abcdf11a323823d4de7b918bf889b918cc2bf2f6876b49daad48aff

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 2a3fde66f8867c91ba38030ee389d3d2
SHA1 61e9e17050970333ed331a93fb1609562526762c
SHA256 ce8b3c013d8512b00f11d112b92ee4e4179716fa0e6a36a19d4c3f505c5188e4
SHA512 7c665bf089453a11609b5777a87dc15b424672d26f6dcf3c91142845d5213d16f1f1471e4734e3bb8450a45fbe3e50d1af24bc3df4bb2ff41aad4ad86527b7bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000af

MD5 2d636d9395b2da27ce67040250333ca4
SHA1 49e56484f878fdc9b2b5cb2da7aebe9012319436
SHA256 7fa1c7b1686f9f116183456c39f7b3ed9cce063cfb428e575fe4a29ae05c4fa6
SHA512 f62c0974bcc2fb2c966316b360d55887526f7830a7cb1251014e2450d054eaa397f1b44f2db778e2d87683c2f83f35ac678273407efc095d94ca326c0849e2bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b0

MD5 5ed65258519fe2c7c00912300061282d
SHA1 ce6e8d379ff34e806eff2eb0d0538b171201d888
SHA256 190c76b7dfa194f92a1cf47e3cbee1f291554f583d9e21e31b79af0f9a9b34b6
SHA512 55fa6b96e7828231b9132256a9781f05944441505718ac7da9c99d4d3777f870f414b17499b32d21361a4bfc988b1dc751e404cd34553c685252d516c966c0ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ae

MD5 73f1a15cdf82610874fbe89549bdef63
SHA1 7f4c0071eaf48d9346719bb1d08ebc1b87a5ad21
SHA256 7560b1a9ceb42bff8b32b44d7059af9b2be3d264542b35f7c7d6a20f98e4c4ec
SHA512 1b2bc1342bc6e5bb783e5dfd92aff50d2c26f7d843646eed6c35056b6279a3794ce6c1016df6e8ad9d90c496b84108cf4fa67f75b698abfa5bb0db860d8c87eb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b1

MD5 35aa9c1b620b549992ac6fead59a49ef
SHA1 00d7dfff7e8c5f6a63ad2cc88a1eb873d4f06083
SHA256 2100bdec625ab3ca5427316b791d059be43ab089a5b1f318d31df30f40310cdb
SHA512 1b4458ff432b628248bd9ed589610e5a2a43e3c366f9b36aba4c911e4d18eebdff953cec4c6273f10e368b9ce3936f963f94f18692416db4416692c495976370

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3

MD5 e517c733c7190f7d813d443aa9fed3c2
SHA1 bbb1bc0f38ded0fec5a2e1ffe70669361962a237
SHA256 5303a81540e5cb83b7a4bbea1d1237c75afadc5c322d4d2f58e04cd6e071bff2
SHA512 863481750a82464e483e862505d539d7af4545ac7e45cdfc23e6ac46d99c3194b7f24ebc6719a25618f0c90afa533bd678d129e28aa2e62aaf943759ffb00e09

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b5

MD5 2dcd531643f51d50812aeea52d198b41
SHA1 0d8b2567e9c0aa8e2eff6d48344d6161b3e11d2b
SHA256 d3748b12e93f56c40c7437e2be7deeb94ec6b77a557a3289a529fee1ae0b8216
SHA512 b59aeefcb6b78c2327e28bb79651ac9ba302fe4391dd823078eb068d2e738c8c8aad8638c7fb10de24d97df749a36436a22eac7ab0ae3dfbb90958216fc9a670

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b2

MD5 cc9a06c85ea515cca976d37a06ae547e
SHA1 47154b889776d5e2baa5f417dc370992be704960
SHA256 af1b998467d0ae239a1fb16aaca180fc0965a54d32373ec30ef3f6b71685ef0e
SHA512 db8a0e1c9a4495b4c93a469769966c032d0291cffb7cd824b046d4cdb0f3eaead751028b212d3496aeac39ad7b1125d40bd2b199b04bee842ad7b1fce968b7a1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b9

MD5 71f412cc1266ead9eb15e831772e3070
SHA1 389cff792da350458021bb8e25330422ac922a21
SHA256 dfe0719524bb1d2ee7d625d2481d1d240fae2fc8debd0a4de0c66097a9ff3b8b
SHA512 ab72291cbc8678e7911e77efb59cde0808b3bf46d117805a029ea61322e2d736c139ab58639bb95a33fa996fa94c8705b4431cebef0fe03b12077202e5bb8daf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ba

MD5 6b4d5394ace57c788fb63c6637562eeb
SHA1 17fc5731200173ee1e16b53b252e93015058b46f
SHA256 cf220c4fc77aaa5beaa64fdba8f2f23ffd8fa57ef3d1fd0a7a90d0dca7171425
SHA512 3f8c091247bf77d8c63572b90937948a2ed006deb589a1e9ed89b5409affb019134ffe1301b30704269665294280fccc1861d447bb7ebd63bf62c433bfb10a94

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 fb8dda194b4c8c82e932763bb8dbf672
SHA1 4c57cbf6c4d452734769c43f1532518a5a7a7483
SHA256 6c9f47f66a1f66bb80278e8d3c2c776881b904620c1f3b43558783638b6d576f
SHA512 4180027b7caa55d5caf41ce29fec84a6b0f41869120d31533aef380bf4aaf8d88c872bdf7d8728e8661c84d252a73975d0c6c64348ff5508d9b8cc6c565931ac

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 df27bf5a22727ae08a065b03d5edddcc
SHA1 474890cb51e65263238996176694a1c013319e9a
SHA256 c1c56ef9e9c3de37acf1cc2318ab6f278a6be5721de437f608397b2eee75315f
SHA512 2655fd7644aa855b2b1fade39dd40b3251a41adc3f0da84f890cafbf54ec649110c2eeccc3fc709c790d0114374c1745d1b768f1827de7a79fbe3f0424f307b7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\434afedd10044577_0

MD5 fd7045124204bdb9b658dc77523ae8a7
SHA1 adb77d0ca864da939e756e3f651c9148dd601b8f
SHA256 cf3a9bd120bc7478848dd4bfe1645dea9e8fa885fd835aa58bd9143d532b623c
SHA512 69ea47563609a1aba066dd0086480386d184d6b9f3fc55cc079b95da49943ee6d256decaddcd4abd9948b523caa57d52acf14c7b83e2782e7c9fb14b8d73aa13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a2531d90e6cf2560_0

MD5 815a4be3d7c3d69859f40c373ab1d337
SHA1 76cc4a5b90aec10d2a02798a739927d4a419cbd1
SHA256 f424097da5d2710491095a75fedd770744036436090202c7fb129700e802f303
SHA512 84e7cef076dabb6137d4b4aaedc91f7ad7f5318b37341fa816f5407e4af3c505b07febb9f26b7dc8ad6e3f06aca370398c622bda3d12839c8377b2d1b65b7b06

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\78cba8db900dc135_0

MD5 0c280ef05867ae34b6386ec87e07e08f
SHA1 23a23315a5d651d58f7bb7a5061bf3162d2babf8
SHA256 95c3bc35080ef3535b4f869bfba54bcb5f29b4ed95bfc889f1be5052c82bb48f
SHA512 64a6c16e4ec5cf0283ec4cd7275b55165dd19fedc033d9155336c118b78077a40c17d569aab6567c73d7b83eaf09be13d1255a469a18adbfeff21cc030df5c96

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3660d207d568f999_0

MD5 fbde33891162c35d69c3de84475168c6
SHA1 90374a7d94f6669bf8bf42427a443f0089635c5c
SHA256 6bfa0c30ff7739a43c210a9e15d1fa0832609cd69356f2073af3f403b82cdd91
SHA512 66b2911a6537337508c7040ce77b612d30523d80ed07bc5fc3df6bb7b263910b66072f4cb7affa2d20436ad62e5cdd70201a14f5e0181a2f3827b277c5bda430

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d0d66d706b4d6169_0

MD5 ff94988697a69bd51e2668772d4db3e0
SHA1 e2ccc7ef413073445dd7707d343d910ea4481a4b
SHA256 98406c88ea45fadc5db834d7e3e84199e9ce39bf105656cd08aae024dd6a9a68
SHA512 356d8a4d882b99d05b4a7cf3d44b8a66cd25b6eac89a33bbbadabf013746181745a87e451b2e60393a3a1118a43a63b09675a1677381a80862799487d001ddbb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\418710f6f2aa63a5_0

MD5 7adb9633a13bbec16a511cdbce8712fc
SHA1 0478ba2a36fdeea75fe880e75aeea0c4686d02ab
SHA256 42c3e5aa69d2b2b31aef16752a6e120721970b5aeb805a7d39136da3bdafec45
SHA512 0319ce7234802ddf0873e5f0c2cd25a20910ec1e9f9111900d2380452510e0d6a8e596bc59ddd4f7771491ee70e2c7e46ce201200d92302848b5d59828d345e5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aae17e6c8a7d56bd_0

MD5 dd12904dc2a893150f75be3812f689c9
SHA1 3fb8d9b1bfe27d74ddd836509b7222ca8af9e128
SHA256 5be5dbce1a30c14e8664dafd3f511d477b0597fdf615be6f473a1dc0e8faa137
SHA512 39b2a39ea4bb7241f8aa433ac709654b279d21434aa628bf5c5af678c2b4777eb049f724cd941268e55d0f634017d0b7ab9193bbdbb4ed36f6db3453607c6bc5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b7bce82df9727b8e_0

MD5 8a947d424aafb0fb5ca4d1a839a8b136
SHA1 b1eb909521d0ac9154a4f15d3e95772973cc28ad
SHA256 95c57e4fe4fa0d4a7d9b023e22cd8853aca67377fd46c38a69c415a687165592
SHA512 27d6a37b24e2cfec480ca15b2f5fb4ab6f982beea41f1722d31b9dceecb62e28b4ec327a79f41f04e1b2d322d6def8e212c75f6e6d4e45b26b59b0a1b6b67669

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\36979f406d57b8e0_0

MD5 665e87bca7dd36e1566d134c4ee60987
SHA1 4c8d72390e4abaad61c1b480b95a157f7548e85d
SHA256 4a8a5a5d98ca3fe461ff022ed3d2148175b1163b699d05c3a48fba704ad2b85c
SHA512 792526c46bee10cd0bbee860de0ea528538b7e1d3d782753ad817e1af44cf1bdb89250c3ae74772bb0dabec02a911ae2f46dd029bd1a3095301e0018197be709

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1b1e8fea0e4074efcf7b20de93a494ed
SHA1 36392816c527872381f26df5b9657b3192dc1cba
SHA256 9d6b8f9b6ee7d60d9e8e16d25df71cfa0f7243d88343cdabd0d3befa7f1a9583
SHA512 be423edd20cabbf554fc69c6f68d6bb21d1fa0f074853653fdb355abac7751ed6f800d6c5412e22fe3bf4a2bf0574725ecd343ad3709a2e745b6e2f382b47d5e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8ecc2e9795d5deeb8a199f116bf48184
SHA1 ff1b5a3b01310cd884a2d5c9a6cfd0368ce99972
SHA256 84302ea4a2ac881bafccd6d89e391d55995abfcc0e367359811ba858cee58347
SHA512 846253b42be262225b3aeb15ce7561e63b58b1dae1b48ac20a5e12a6fccaaa116ccea5085ca8077177087b466b3482d4b6510c1403d05983315f005d9c135cc8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\aa5861e1004bcdf9_0

MD5 b462c5a1791b6ed3c694101e2e8e2a6f
SHA1 0d81b8e20a6defce5ba9a99cd91655140c8cd033
SHA256 7d265e5bf473ccdf931d2f38295ed4f3f34e5924bd786b69092a7f8c69c06e36
SHA512 02539aec87e00139db92b629d86b495ee513d1d7d58329b0e1971e8d0f5e642a12948562f814a198b6005bb467c0de7c80ca5ab4f95fad9c6da9bbe48b067e34

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c9c0ab0bdaa6c8ba_0

MD5 ca8f63c6dc2d2189589a4cfb99f08fa7
SHA1 0e7dd54d27618303453765aec48704666d5ae319
SHA256 e23a03a315dba8f8b82d5b187bcf2ca7966bb9167b46a5461c44ac177ce14e32
SHA512 91623bcd94dc8d4c45346a23925783a6900de58a5465496fd36e987611bd93875f09b80f1d0e29a1354244f97b0cbd87d3d27b025df358d687267fb4085c8e7c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\da513a783b044c81_0

MD5 538a68800c1972b1b18b3cdad3112c44
SHA1 c5dade2a4b20f190c44a813816436d88ffcd0e05
SHA256 568721ed33c42f3bac425d1dffa4d09dbcd655193e5d89358704f26996054948
SHA512 b8335ae7c753cf54d728a7aef3105a408f45cb799f77d3912bb8e9e6c414ee2af614d0f396a21acfe93f8542c3446f565011c92b633ebd92b912e0a97fad4e3f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5dcd1530d7fb82e5_0

MD5 ae9f0145c19ad566b38aa6a33613d4f5
SHA1 77f7aafbb0a24793ee67b88894cd9364cf4fa890
SHA256 0f2deb03610ecea7cacffd4900187ca79326500ce460865fae8bb5c75021eaf0
SHA512 858dede3211d151f14f9bd197a6b1c90300f02c8d49ee74bb0301b6ef2a456666f4452c536f4d4acda95806982cf466190360c565e4477e0745e76d5388acd56

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5b8ea5cecdb17aa0_0

MD5 d3e8aceb849b634f953aaec7a3813ed8
SHA1 329b8535321be30d18b4a2383bdead418b8a4b51
SHA256 70df495fa3498909608199ee9a3d3fec3cebb7d866351154f17b4fe63a525d1c
SHA512 f0dbe33339ba04f86f64ff839c0040c463a3453ab1cc6f98d202471a2de354a5d63e73caf4137571ce7bf55a6888d4df2190c1891796c8a1867cd771c173420c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\df014772f84939d5_0

MD5 733b9e20db73fd574843878381daea90
SHA1 0a017c1be4e89c076e2735ed3613390eb90514c6
SHA256 cf873694910af9a79f47907b0107a276e3e7927bbcba511f245fe73001bf7f8b
SHA512 16a1a6a10ae4ac2ed17e78ce81ccb4b49ad2b4d3eed2ce411ce9d8395217978d8a3ce149ee6bc05b39f7c8ceedf5c1b6b638910c6bc64a180811bc34f8d4e2d6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\76a03bb59c768643_0

MD5 b174c016645676fbfd66a51e9be8b2df
SHA1 97633e8b4dbfa3a5f176f29de3d48dcc84fa0dd8
SHA256 292e3cc211ea7f17c647625dadc66364070fca3845cf49f56ffac77d1734d19c
SHA512 4a80ec7e4202b52e075cf44dc9d7a84a1b8aea9fed2450b5d5ccf2525c1667c8ae349febd48fd1d9754008255c676d43041b3294e72addd6138d18001d81eea1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ff250d5309310d26_0

MD5 cae91dace78927c23145350127d846b3
SHA1 a56254f1d5a6a811dac4cb8cf3e3fcd6037846cf
SHA256 7e6398f9609008400011c4695a526b31c911e79a270738d15f54eda7ea3487d4
SHA512 3d01927f89a2f2cfe6a8215ba414c614390749bcdedb9896bc4a0f1e4d2bb353d9f423dc041a970bc7cc384b9d68ac7d2dcd6210332fb96cdb2cdbf220db5030

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d891beda1fc0bdb_0

MD5 6d5a8fb37c13acbaeca1e587d4a9f741
SHA1 e1d592e61e54fe1e523a47f15afc7716add1f7bf
SHA256 399dbad35130faf2e547dad62309bb61a1c9eb02dea96dab6a448ace16d65542
SHA512 31b7aca77c9ea3ebb02523d36fe89a47bd384345fef15abcbf0527d660e7428cce003dd1773d8c9ad6c076efee555637c43e2c1f84ad9e6573cae6474c24a16e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\88e5c185329546a6_0

MD5 5d7ce834f6b7aea02ec41e5311088707
SHA1 1faa471dee92eda6284077bedf0fbc41afd5d00c
SHA256 586fe68e326a11c0bd57c7fdd65fe1586b54c1e06d27eba417c78cec2bea8538
SHA512 4fa1594b67a9048693ef538d22d40c829212e3934eb87f29f66b7f3a5400423ba1dbffdea83d7fe37a8528f0c32548ca804754e8b9892cb3b3b045d47cb59984

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6fa9d6aef92357b6_0

MD5 b3013cc0460d2a551c5fd486bc876f99
SHA1 c11185a81c747c5c1bfb79152aefa4dd824823fe
SHA256 e20ecdf987d400135160a19a409a041a190ef16346246acc2192dac21423aa53
SHA512 ad853e072f2fc240ce3e25d6a8972827965a46bfd70e5194fd1be4a72b6e70da52b0368827fb13fe4773e6f709ec0664280400405a73312d7b8cd942330e2176

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\07e241f75c3a310b_0

MD5 f5e00cb4ec49d055d42e1b26412145e9
SHA1 8c18f83f5fc9b396367e3e8c4e0d7a224b6623c8
SHA256 a171b51eab3b96838073eb1d588e7850f9376c62a6ca6f4a93f8fa30f8d6ea0e
SHA512 d3562d30692b1a09d2788a4fdbc38b07aaeca566ad95c4afb485699285371bff1f91a2704837c263081766698cff67882dbd56ac2eefad409b7809af5256ea4c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\95e52692a8853042_0

MD5 2a2da99b25e3ac3f5f75320834e74fcc
SHA1 0d918aa1031362643ed7cf7067fe20a4aa080859
SHA256 6171afac5c9da796bfae0c2b932799f3f76972a859f4c41a52608a3785ee464a
SHA512 34c565d2ab01502ae94f8ae0871f9a1ecd91bea87f420d22ff665d4a2a5c276682b413229911881211ccf2020234f088060793ac4be013c92c7631529ef6783c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5468d5cb79b248e3_0

MD5 0e147d411058341125c1e6a1acf6cb22
SHA1 6592a6aa07dfdfc3aa570565f08e418640418e92
SHA256 20e1b94eb8411fe83225cf4894579d26f7115613eddb280e526e22e39749bfd7
SHA512 4afe424f5e563dd721a5e03a5b05dac6453607d97143e82cf206abc77655ee1141fc224a16f2e46fc9844e4e4d1c2e80cbc11b670387731055e8bed98502902c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\518a35bc5bb4b839_0

MD5 11fa44e366c1d6c19f94d4eebbc1a0ff
SHA1 2bf58085926e1a2f8223f05ce6f9e15b828cb720
SHA256 f3b8159cf4f73985b5290fb61febc14970e448520b6a7663dd43e6dea5b635c6
SHA512 5b4fcce276151775ec323d3cbf2ea8f0518b5be5b8beaddb5a96ecdb233f9899f029b0775294008bde25ed95cccc797742cf513627277c946513a01027974e0f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52393d27635064bf_0

MD5 b19dedea44d2997e09f51ea6ddb57fec
SHA1 40af02a85b5a3c352a4652139ca542491df78a63
SHA256 ed3f49d11388733335c6ab151433e874b28abb130d90b7aebaca7d00aa38e8c8
SHA512 ba9c8825c99db0aafaea4f520e7a637e5610f1c01e5fed3c7913aa6376dd3d978c32f72c8cb25b7552c6e3bdf588ca249a7efdd672d7dcd4fe827fe23081814e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d4ef63cf20ba0697_0

MD5 8951a5cd348533d4559e378f0f7e4695
SHA1 38b2efdb057b93233be989fb37fd0e83b6b91dca
SHA256 ae44edca30bc05bcc61c56a7a61fbdd62b7bde42e67929c0b110fab08e9474f4
SHA512 b5e19c8d4e17fdf192ed2aac256093e46dac480ed05a183551814b8f945d129250b87edf3a1170f1e001ad1abb42f1a82b2c10e0360c33d4d9d1bd255abc9dc7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a48385d22e39aa81_0

MD5 18110ca7824b241827c160b8c864264b
SHA1 4245344c8e8cd2de5e74c23977b16c7cbbf1629a
SHA256 87bfe23e8f1a4599adbfce89660b00467e18fc4bee121b934129d7b53d352293
SHA512 02d8226985ffadf7e03cb86a0f384a3aa2fe058e56d7dbe842fc59ad5ed491ca58b8b13f2e5ef4031f608320d52f615aa2f200ec18b3c6452d534020fa0ef274

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1a4c97a9f6c3f929_0

MD5 693eae1bf23551b4699565c8954d63e1
SHA1 6a2df954898af94501cfa4078b23fbe6ada425ee
SHA256 36157dba833a49f7d23196145f9582c4660d538d72673a77a91eb1c7427ee24f
SHA512 6c6a1f1996d8e2fbd7a01c05ed09850ff6d0352fbe572cbcaceb6cd4a139946304613decb788bb28a72b4c328ee1e88122b2826836d4509000cc13753ba2cbbe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ab0e48d8681b8bde_0

MD5 aa3300ffed042451cde4e29b78d32cd6
SHA1 4398854d515d297fb14aa2c12fbbd8b0d3225588
SHA256 bd59877d38b9071e531a276542a90f5c8db7f61febab4e53b3d3a9c3fc68e786
SHA512 d2c11e0a51212f851656f402f2c5a51e9b66c05fd03d260600cdf6b1dcf7de67d62143a2ee08693fe8108213bac3689e14457b16aa0c7840edc1ad9241601117

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5918d0090f98d233_0

MD5 34ea068b2f8095e1540c3daffcc025d2
SHA1 8efdaafe1b37dc6a674d2ee453affce6c20dd163
SHA256 3b70bcc1080e2110b486f87f0e127fabcd8d655d9ae4bdc95adc1c988f02c326
SHA512 cc87472bd143376c515af995921e402eeba2e40c20c40dd40a2dc6e7db13401462e25bbb5d526ea2cbc1e1ace9c4e2fd5bd82a8bead3958fb6d7bad5f3a4e5c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7e82647b43b93647_0

MD5 a46b1b07086a930b5a3df2c166796a3e
SHA1 77e9e6c2dac65516c688e77a11b7dc94e96ec01b
SHA256 790d70d44a623abbd995e08106f53af8b35fcec00624c6732628b199840fc02a
SHA512 e1459fa998e88b1d3dfa3248af36749a11215c5145323d948dd32bde80e479117633b93ed865f10ab38121c9c481e29d193e3a8423ed9390a5d79a874539faa7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\109de1f2886402f5_0

MD5 c0110ab8685d6cb2c5f056853a68c548
SHA1 3caf1f316e3eaf09be4a979a7d1eb53f9c3504cd
SHA256 f09e17e87efa98cda18af9e6ca14009f345929ec3c7cb580d5c238eb078983f4
SHA512 7fbbfe0a5223a81f36b404bea295166c972367f46152fd84337bb8ef924cf1f43bb3984ffa579940940da97af18d456b8e8420aee67f153273812b147aca4198

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\13f6a93fed1ab036_0

MD5 7af63db3333870ff2d4b331a858d20d0
SHA1 d4ff3b628aac9e7a48c14c9d68e88e5ef1ad8978
SHA256 ed0490dbe477b98648f7a78150af5d957d0403e73a6113381e0435e51588d352
SHA512 fb077765b76336e4e1b27e994732f52ec559f6c89b29c375368394a98a141719fedbee1060ad3821f24f3ecfcea2d5ee4c566adb394ce18a90a9daf0ea427637

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d6935e11ad59c050_0

MD5 7f600e2ffee79d9a5feddbb57fef51dc
SHA1 8754940e6b604bca99c13b304e5e23b9c8b5da71
SHA256 cd8ab4962d1c6d40ea8e36537237c25fbf0b193c3f65c4f9d10972e12d4ca14a
SHA512 7d54dc63052feb5b0d49e80c1cc4493c08514c09b54be51766654c1a3268ea1a8fc734a27038424043c431a0d6ca9067df71d7f56ba28fc9ea95030a8efd6cbf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b6b3ddbadd38b3d9_0

MD5 52a7dc19d2a64ca3b529e81276e98225
SHA1 f9f8cc428f7d159b4c6037b9d160ecfc74a214a6
SHA256 d336fe7f480356b360f6201251911e60022f173abc0756e4aaa045163d6ef98d
SHA512 0742179484bfd1a6d110546e7348d6829db7dda0b1a9fdf49f6d2794fb429e3313040cef9cda78186a7d36a818e5c1406a1d79b0859228033adf996c392578bb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4955b38a34d8e234a1c46f5a0620e1f4
SHA1 71fd3b0b5d77e424597b60e9c9bd3c88a43db59d
SHA256 fcdc005df6253230916dcf9fff38d9c48db5faa5ff453279e2ba8b24f8021e98
SHA512 8e4c3418d934e02aa9380003cfadfe794ea202cb797495046ef41b25df7de655b2cff7c23c5cb3127153559f9a4cfc1e25b59a7cf0bd196e293e1d3147106598

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d7

MD5 1aca735014a6bb648f468ee476680d5b
SHA1 6d28e3ae6e42784769199948211e3aa0806fa62c
SHA256 e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a
SHA512 808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 975fb49c0ef7718c282f160c85345528
SHA1 118540444ba9a17ffbd644de70d64a1f90abf838
SHA256 cc3718ebec087c47b74dc8a1a437b8e2fb331fd6849cd8152de4f569a7c1e640
SHA512 45d85b923649fca053be3672c8ec1bbeabd09a622a68f79a5cb409fff6c1de0d3f6a75663faea65385abc3cfe894b775a3d777e5c4c49886c31d68b20937fb97

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4571e7ce608a0721d536be901ef1db00
SHA1 4c54b0db55b2674d1eb7b9409d5ec61ca3d44989
SHA256 c928edb6ab0eb43c6344bcf5fa7d0094b1e45edb126f755ff6998c091b38dc4c
SHA512 4d61596440879f8c40b17c653e71ca2a5ee5f01ff92548b5a05c920ebd8754549bd3e017adedd6dd860700d966a167f6a3bf044077baa7dac8a3f2d411d856d3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cd8ad19231d2de24d57f295358fa153f
SHA1 2924491e2682302be7a5e0f9498ed56907403501
SHA256 2ae707d5feaf71ef154da7101dbdd054061c99d3d5419c090b16c6e67e64a18e
SHA512 c8976b50a626e9ed451b8e3a1eeeb9ef8e12f028ec82f702d0ed99d740b4ce9eb2742886947f00bf6b67d01062868570b8f90e41a8c9be283ef410b5e27bdef0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\e47dbde9656e32d3_0

MD5 1cc6a9f1fe219bb8e2882de9740d3ff2
SHA1 5fb79c7aec281340c7b295544405c23968246fed
SHA256 425c934149f97b1bf6645e250952ff8b380777b084e907c1f05f1535a4c10a6f
SHA512 97ec945a0b469e91a4442c74e8a97a2afaa8d142ca8ce8da560472e9f5c6e8cda71da3bfdf2a8a8121989e5b62e28b23392ce004152df700ecdd4efc70c021be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\32369f5865824c04_0

MD5 fb0bf064b02cdf2538321b413eeafdd9
SHA1 473f215d5076f73c62346170b1c3b63e61291381
SHA256 0cea553d6c2b4bec492ea66ba49ead8e788ce16c338a42b76121ad7dee63ce80
SHA512 d5fce56e88e9aab34299b547cc7c2e0ce131c3b10fdc34e4199dd66af7d13a81cca7ddfebe0807147b56bd001de223e8f789e5bbb85cd707c2e76b04b3a3a1fe

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a061db512ac38ed0_0

MD5 5e4555beb2de38e21ca04e19659f6ac3
SHA1 a94b6dfc1211ee62f7f583aa3d51898135be222a
SHA256 2889703ab7f8424c00184e18cf7be20b44221743599b4e1fe95ee8cb54f13dc2
SHA512 7ae7f02b731c509a8fd0d8bcfab99b2a7b4c21b8c14e712342a3fcff30c490b9607a50fbe47c05d605aedeaf121610769d63f61d4a447fee0d8eab42961ef36d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\09cdf1d02a3faefa_0

MD5 e6b21c5efdb99dcf5cdd7979c91659e9
SHA1 36ebda37ef7c3eff9590be9f917406a3b1bae0db
SHA256 d70acac1f81b83d601a17d8fb39202091a2019d7facda81517a60be037ab7109
SHA512 f875fd9c5bc4ec828fcbf5939b298444a724a55dd534c4d721ac500acfab262a1af11595b054311ec8fe8b789de0b3d924e90f0bf8abc42817bf94b2a9b3f7b3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 53ce78ff25b70bad896c06641950c583
SHA1 a89e95d054cfd7ef3c5227bd4dc9f1b1d1933e44
SHA256 e8e9d9d5d48f5111c59fd781c9b30b11280f760fddb6839cb428119772d904a3
SHA512 28453073904779f7f4f89e26bec8ee90d9a3a5875701b89d6850c6061ae66aa1dba56f5ee149ddf75cd407471de202a293e78aecd51a3513da2d650794b007ce

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 10346debf09cc22bd20d2b8777930705
SHA1 009fd4a629703e05ff6461b2ee46c09956cf56dc
SHA256 2c5ddc0f3478c529ffa1bd1b3c16dac6172ae7432dcfb1b552a1ade864de235c
SHA512 f0a72342a39d985c03235421afd563c183e06ecd599f42d59f961d3751a5a07e2e737fddb835e2920c469b5daec512e1d1a36b719a5c3e8dd1958ccd74255a65

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7eeb4487bb4720061e0b31ee028c8882
SHA1 7fb307eca158c12e92c79d1306cf162f4d232e15
SHA256 48219ee2e084411b4d9d74d5abb219ee91c243a0e2fe088fdb6efe722e4a79ef
SHA512 9417a02b5a9fc48ad74fcf92a6486c2df73d5af8dd2a8e356cfda529d5d694793dac2041d88f7934a96fc77758fed455b68acd17be076ec6b7b5a363441a09bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 82d94cda77f5506ea62a9d1a520140f9
SHA1 c7f5aae4e452cc2640280731a1fbcc9de5da7c13
SHA256 aa04e9910921e3d650cd3eeedf0b77c947135198cdf52151986295860c577754
SHA512 0a6909414da8c36615c1f9f6e59fa9bf8b9e68d3878ca5987f154a7660cbe1181ecf682717700a6578b6d4c3f606439eb9cf16fad4d3b1dae2400493e7600a83

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 c33c8aba393b31d9f56c751ada4543eb
SHA1 cccd1d2837503d976995064324b856b49c9fcf55
SHA256 091ee265e27150f971b8810373d60f7cfb4db00ff5efbbf5a42c0833028950f7
SHA512 cfc9dd24ce441d1402e0775d9687055e6d5e8c5c450d660e17eaf7276ab6f11ba23f88b202b17ea96e426c48ebb26b32d0afad5ca8a82aeb507732335f972e1b

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 756fc161957faadae28a698f76fd17e1
SHA1 8e384a25ebf2db0ce7deb243eee964f2c7e414a9
SHA256 9d2f4f1edf2c0ca0c70b78fd9e276e4099279918d164e018ef376a1a8080e0ff
SHA512 a9522077ae329d2805e044651d41ad537b4e2090d268dcee4513579a76c1305ed361005b6caa891534eafc62ebe6ec2abbd89aa550dd1ec80d3a304503a74bf1

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

MD5 83a416530bc6733142138204c357441a
SHA1 32813130b44365c170184fd5a7bb66173026acba
SHA256 5aab316d56b6da45b418092bdba9b4fa6ddb367d681c21e238a7f94f87c154c7
SHA512 e558cbfbfce2e2ae33cf0d48b0137519482113226ffef2610aebe45688210752a4119cdf27e1a9f6da51c6a02a34a885ca9335ae92ad6323d8d3353f42e91e44

C:\Users\Admin\Downloads\KV2010_en.20100208.exe

MD5 1e4ddb459f3e013c1740a941eb32ad80
SHA1 761eb7023c959d93f023f753a8a4c43254467f62
SHA256 5c9bfcf7ec55fdabb4c43d685aea6674af4914b6bd46fcd0fd54a48c18db1672
SHA512 e2f5d045c7baef754b1d60cee51b7e5241f6f5063f42395088d80c6c8cc7a8daa4f1b33d6f91d5b8eee57bbe46efda154198830056603d38edb7b25b93f14e19

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 ad5d3c0231fe224801bb8e4997542927
SHA1 e7ffdbc60917e6c2931a656018604b6752ca3bb0
SHA256 fffc14f82d9120289ea3df174576ebabb5546398b928cb7b66452b6e7df02adc
SHA512 103f75b0d7c80fddc8bfdc7a6ee4efcb546be1b7e9d05e4f92a02f190c0610f8af5b3f46bd50105a35a0e6f0ee563905a45da209287f58963df6aaa2666dc43c

memory/1120-2583-0x0000000000600000-0x0000000000601000-memory.dmp

C:\Users\Admin\AppData\Local\Temp\Jiangmin\SetupX.ini

MD5 cf5d22601f348e51e04b4106dfd50b37
SHA1 52973044aeff55e61be52340440f0f3f56186d2c
SHA256 939bef807f928fe2e62f01becb66f5615bd10a225fc2433e36ab2e612061af98
SHA512 f214a79cabd78dde670c5ed34625e7d721898d8cdf156937d09729443a67d327b88699896c3e1d95f09cc4bd087a1ad055d4fd8576e62e0e78fe1437d24201f8

C:\Users\Admin\AppData\Local\Temp\Jiangmin\SetupAntiVirus_en_Lng0409.ini

MD5 5a758a5bc93673c7dddce2a917bad16e
SHA1 aca40b2d4197563c2d71c03ca8b6702023a8333d
SHA256 fb96ad99c27d9b1565cf0c54aa11050132ad84c1e5d8fa4cd919b68e2026c094
SHA512 68ab0e1eb9ca8ad6e75b47e406a8f9afd56869e960b6ca7916b8211e1878d6ab61366f3b1b9d3778c2f1f803760e9b90c6d284552f40feaa647fa5f5bf9b732d

C:\Users\Admin\AppData\Local\Temp\Jiangmin\SetupAntiVirus_en.ini

MD5 20ecfa4ec7c613b27fe5760ebc612a04
SHA1 087977feafa91555c00b555ddf6c794a9c1ff286
SHA256 2a682eb0d84afbd47be2f9eac3298309de4406beb6440a5802e9f65f7d21de23
SHA512 18a87f452aac1c420af08ce412d7953e31d9416e18bd9549c4c0430ae8db1bc39b9e5c24317e8bf6ce0cb5c8a8f60599bb351d4af34ea394eb0087611aec2ff1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 99f1cc0a5afc15f7a74b1231faef6ab4
SHA1 b00fba83f92f17797a06f238bedeede9d4c1db51
SHA256 6da0d423a5ae2683b20db1dfb99d984d91c6abe8b1e23f8ac77d9ada8365fbbc
SHA512 55323f5c719fc87997aa79d155ed83c9be060fe5dc6f22a4c594ebbdd9ecbebcd3972dc10938ee1348234118402acf6160ae191d66c4e8993a40fa4c1211c17a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 9de50be4ad748af2c10831920bdf3363
SHA1 e2afb85f02fcc0c1e939f65b177f294855cd1473
SHA256 e08a06de31703fec411b1c026c8f168fda49064c91eb39c929da937c0ecc3a7e
SHA512 c68b56a709e1347224e9aaa75b937f19678d3231f818743c92500d4dc759cef522bc56a9f0428c9ce372c58c4af4e845e4b483b4a7945bfc67142a9cfb6418e0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 d564363f60643a123c1782780e071f12
SHA1 a68e8d2b71d152d78395fe2c91c94985a6395501
SHA256 b0dba49a1495c759a4ec8977daa535e401b2bfb27de078a61800cfc7dd1f8c84
SHA512 514bd87adb19d844be07bbe77e0e866bd84ac43401a8c01137a291715c55975dd9d16b6d4ca92964d4867d9948aa8cb2aad9177f5104b16f26d6dabfe7dafda2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 97a31552e4d92132ab70a096f163aa35
SHA1 5addf634e34c2694a121fec0aea185818b08e3fb
SHA256 747a8fa9bd8947ef77e170df75d6be50c5b63ec2777336527e6cfedf033708e0
SHA512 55e58d92f8ee817d98676f9bf1ffbd96bf2b58ad0081b21ef9630577eae894b684b84c22eaa7d4a613e880b2b657ad4e27115ec12207d9ce730ba28b5f9aefbc

memory/1240-2973-0x00000000007E0000-0x00000000007EF000-memory.dmp

memory/1240-2990-0x0000000002280000-0x0000000002281000-memory.dmp

C:\Program Files (x86)\JiangMin\common\GuiExt.dll

MD5 56cf4262b51a11280ae6e28d5705fc89
SHA1 c343ddc11f0b705d2360a1ac27c33a6bc755f90f
SHA256 5606f7502f4d7aac8bf4b8288d7293bc94e6672c694adaa2516716088b2af05d
SHA512 7a86a3b126d1a7ac586d918d349b4b27267827342c6c4f972637af4c4c373b4b5768a1cf70cbf24ec230703ba54e160c202a14fd7ec63df9ffe134c61946bf34

C:\Program Files (x86)\JiangMin\common\style\shine.jvs

MD5 cf5901afe20e718fe77c73d291a0b68e
SHA1 8a5b890be66dd17a93853473715a9faa7ee2ec96
SHA256 19a4c87e54b91e0a5e5cc8e8dcb94037a8bec349e0215dfeb84e117e1fa34927
SHA512 fbfe374b7aa854bdfc720bab0b214bdc33610fe0f9ec072bcc8040213b3f1f92fa0faa2be32d97771d750f65b1ccdac82a915e28c196b49f544ab90f85ddd813

C:\Program Files (x86)\JiangMin\common\lang\GuiExt0409.lng

MD5 3fc01163a78d4fe2eceed6743b3e1634
SHA1 39e8feab81dd757c177a8373c96f640c5455116f
SHA256 344c1fffbf6d10ee224160c5921e442ac59ef78172d3cfc73aaf78105affe780
SHA512 0561b30702f23ba55999cd6a112268780a847b95edd574b92e67d3204d30d3b812cad212cfba82071a15cc07b26e04a7406b99c673c3f8f242003f516870b7ca

C:\Program Files (x86)\JiangMin\UserReg\Html\KVAdd.htm

MD5 94535886c91baade2c796cb6db898893
SHA1 ef34d42f150fd793c7a0e6432bc9c9dc00cad2fb
SHA256 ec754116f9c760c5254310033ac0ef37b71069f5096f64345e18bd73701eb794
SHA512 db6691ca37ab936d7aa3db8752d16ebd7d9a990738e7b6b8a5e643bd376a1a54368eeaa73dedd134517e5584f0dc466bb90e1bee363dfa1518bbdbb496999579

C:\Program Files (x86)\JiangMin\Install\ProductAntiVirus_en.dat

MD5 04a2e40e2036220a30a348636e58ffb0
SHA1 dd21389e74c360eb8c88f5ca257a848e501448b9
SHA256 160967e265830e3ab9aca0d6a4775608a534bfa1de2be0b094d2c935e0a1ae1c
SHA512 77e68e627a5fd41d1ff997d97fd5f6d94e2c31447b3af95a8c7b2d6919c57b72e08beebc04168cecb8c519a74ad2cb97d627f83c283e1fd2aaf36de2dc20fc98

C:\Program Files (x86)\JiangMin\Install\InstallX.ini

MD5 d6a313fa2717a874c93c81f58e32eca8
SHA1 0b2a07097fae523524d2ba5c3566350d5b3f0b7f
SHA256 4bcf897441107f1ab7b3f63589bece3be703d19030ef05ae056ec7767580dd04
SHA512 0718e55ca8fec9d260e0859866f78bad3e4489de0637709db13a8d9189d3756d18e6a36e3245a583f26e6f37be99312b95c80904cbf2dcbb89108b7b15604e48

C:\Program Files (x86)\JiangMin\Install\InstallX.ini

MD5 be6af117fa718d7f617c88691c637442
SHA1 fa6c1de599f678a2cdefdece547d0becf3193b50
SHA256 9d491e6f15e1b8396c9d7bab0e3e3418125a6c9a1dc4d905179f1c4a9985266e
SHA512 8de086254005bab4b14ada0c853f5ed58246e7a676aec55d71b6dd4c5df502c38989acfb250052abfe62da54770ff1fcf71fc2dab9cb82b50990ca17a7714d6b

C:\Windows\SysWOW64\KVInstall.dll

MD5 f15709a4e9f54f52f4873bf3c6fab87c
SHA1 37bcf3afa43305b3a602bc1cc3da141aa6d1cfc1
SHA256 c613295f55ae28ba9ebb9ad4e439611638b3173c92f356891e7105df30206796
SHA512 6fc580addbf2381409eab23f634b483343bda0e48dacad0f7b0cba62522a1b0950ce475f12f9f2bfdd3b739ac55c9489277841184b0eb0ef754d4de28a1d7ba6

memory/1120-4053-0x0000000003500000-0x000000000353D000-memory.dmp

C:\Program Files (x86)\JiangMin\Kernel\EngFace.dll

MD5 a007f39eebff92b2af4eb81fcd71c131
SHA1 50b07ffff80b476ceafc9a99e557e4b55c72d3ab
SHA256 91465ce7686eaaa176acb9b4781429607d1a9cecca80201da73a7465cf2fe3a6
SHA512 e647477ac92862a338a8a2981eeeb66c5f67d2bb2cec783d3eeea75f90bf1f43e6751192b378794b985c5b3a02a8fdb387bb6824caa54175874cc90a46c9c4a7

C:\Program Files (x86)\JiangMin\Kernel\ScanPS.dll

MD5 52a406b7dd9541d0e0c969ed109c51fd
SHA1 825bec64a4e62ef8bb8610114e1eb442208e3a14
SHA256 3cecb59abf178f475cdf4c0bfade47cb84f0938030c89a2ecd37ea6d908c88a6
SHA512 86c790187bb123d91f24426edaa35c2670413f989a67913d2a0216c9b9fe8e9e9673fb85ac5b0d7203ab6e5a15ebc89f233c1fafc8ef16793c8fc8e8ad8dbc7d

memory/1120-4745-0x0000000003540000-0x0000000003550000-memory.dmp

memory/1120-4750-0x0000000003700000-0x00000000037D3000-memory.dmp

C:\Program Files (x86)\JiangMin\common\ComUI.dll

MD5 6ea64ab736f3170a45bc68c81d5235b7
SHA1 d37b8b68a0718d704b2339414c8b38c1b1e7e40b
SHA256 ff6c135b47df05997087ced37a28cee045d304c2198d67aa6735ff3d860260ed
SHA512 aea254a2f1ec41efb013e2b3bc45403874971ffc804275b705e3cb382a14552e04671c7d6282b80525b440e59a8e5d0e8ba2ba8d99e3ded502f8b8ec33ac0f66

memory/1120-4757-0x0000000003540000-0x0000000003550000-memory.dmp

C:\Program Files (x86)\JiangMin\common\ComUIPS.dll

MD5 6030e09e66fba9e3599ae6222a899eb2
SHA1 a17fdf9da179c8ccae5cd84a3cffb6c5b8013771
SHA256 9bbbfa016e9fe4914458eca49ee60626392b55fdde1452fe820104b5f2416b78
SHA512 01787ff4b1496a34eb445baeac8f17a12095cd4b66a06cbfa8e5b4a16c965338613fda30c9be547104b99b0554d57202fa0c7bc6e36bb7981ac2a8172e9ffea7

C:\Program Files (x86)\JiangMin\AntiVirus\JMIMProtect.dll

MD5 b3ed8211182c7296492438a3bce637c7
SHA1 938bc81119fad73d0736a9632dbf7bbf8b644d4e
SHA256 0ec6fa3df256a839926f0b3500e825243ab7d0854b800d08ce8932d9a3537fa0
SHA512 e7712b5c53c7229cdc5f2dbd67c26adf33be077f30cdb708352f255ff113d80e3b6e79987f9802033a6461514be5fa1ff1b0a6cdc1c1ecf71e2ada4f16d072ce

memory/1120-4762-0x0000000003540000-0x0000000003564000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\lang\JmIMProtect0409.lng

MD5 6063d272a57572c4600156b2f4536446
SHA1 24bcadec4a47674ac3c7683b937bf26d2bc5ef83
SHA256 d710a86df2ca11a8d5145a3956add90631256b8daeaa4408d08f795dfeae4617
SHA512 58a7078ba240f17868b3fae0cc21d2b8df69979ee59365d754623e83987cebf1e1136d006ad0082e75683d857611adf3e451dcad6e6f99073f59aa87cbb2021e

C:\Program Files (x86)\JiangMin\AntiVirus\KVOffice.dll

MD5 192e079308d4b061ef94557749fe240c
SHA1 36d44700c5fbdbd9b0e70ee33f4a4c3122f6c634
SHA256 acd8e1bf53bc864bdc5ceb9adec7c863c18975f04c34f41393f5116eb5139e1a
SHA512 35e053dc202a4d2b96f22fce1d5daa5c6a3ffae84c6a66cdb5556db3a330b073051d4b3324a40dc9b758b55e0ddaede6dea4d11623686dc555ddc7ed5b9e791e

memory/1120-4774-0x0000000003540000-0x00000000035AC000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\lang\KVOffice0409.lng

MD5 21cb2fa653bd34aeb3f100b333839385
SHA1 77d2dd99210a73eb87830cffa98d09ddce5265a9
SHA256 87d181442e06b5de4bbca72c21b72b390475b20d5afe9695edc1d01429486e89
SHA512 7be228e0526664a351819f080ec32d1caac605b1d5c43155410bedeebbf47bbc10a0ff360baa031d08ea03685a709a46320f02b3ff404476385c84ea1cc4d0c3

C:\Program Files (x86)\JiangMin\AntiVirus\KVAddrDb.dll

MD5 a6404298928163a5a8c02ea69c3b7503
SHA1 30129dcbbbf288c4e321eb2fec2d40c7e3e59dce
SHA256 336b3a4b079c657c63a7f15cf68345e8ea8b613d933eca137df468ae81c7ddd7
SHA512 6ced269fb87c1d7d55ef7f57dea52c712b8424f7347c94ac9b114af16f7396dfe32e2694a640e9f596d325c7c8186647ee741a959c79a5029f4364e2ebb4d54b

memory/1120-4787-0x0000000003540000-0x0000000003561000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\TdSetDev.dll

MD5 5d2ccb54da067da1283a72e659df098d
SHA1 0846abddff9d3610c63f05fdf00dd3377d131661
SHA256 eef555e2aceb8f4f1b4a54e64a4f8bca3e414ea3ab69af7f736376f5a76078da
SHA512 6963846e6193ee27b66679f75b1c93f4c92b8dd820c2b50f061b907939c65daaa38df79774be6e24b36b9a3c8f763daa96795df768e0c55afba206177faaa072

memory/1120-4794-0x0000000003540000-0x0000000003553000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\TrojdieSet.dll

MD5 ddaaccc85620960b08a602db089ea8a6
SHA1 30d9ee82ce21740cdc83dab1e765d3dfda39a31c
SHA256 39e9f5f2a3fc4e177af6f6884a0c784a8d77d3e84d5982232ac8ffe06b6ef209
SHA512 d34c2f81a03d561154e5b6ceb290d06f305beeeceb8df9a9e2fe1631f316a3d9831abba84a5e2286bbb515fc3b99b3ed72ea38ebb970d882cf5c312d958c824a

memory/1120-4817-0x0000000003540000-0x0000000003578000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\lang\JmTrojDie0409.lng

MD5 3117e39da8f23226500504f6bf5072d4
SHA1 ee2c7c59bf70fd1a5b7757dd7251abc817da31d8
SHA256 e51c4519264eb58a7d18afe35073a73513c60f79e5c5c4c04f5ccc3c261fe832
SHA512 f7a1adca84dc0d65a1e02284c75bbd610ffded467681e8c4d0de9e152ee291ded58b6c5f29be607fae02d29150cac26d4b1c57395259e477baefac5fe4d43f3f

memory/1120-4831-0x0000000003700000-0x00000000037EB000-memory.dmp

C:\Windows\SysWOW64\HiveBase.dll

MD5 d49065261008b9c5ec625b2a8c9da2be
SHA1 6f37ea77899586970c32db5b7a7fdc8596e819a0
SHA256 a2dbb2fdbc08f81ac2b8118f0a89595b0bcfd7ba82514e4cbdc2975d772a0038
SHA512 420a41df73b7f68a8cceec4c0ba243d404e96ccd94c591d38306a6cf29faee55759d05c5ae772c11fc113f84c995f32dd0912124d8b9371b9f91e222d0624aa9

C:\Program Files (x86)\JiangMin\AntiVirus\GuardPS.dll

MD5 bc4ec5df743ce4509b4f05b79f6e814c
SHA1 f960c3a15c48b92f0ebff03c0ff26ce60eba2038
SHA256 552c459eeb6296f9478683fd93364b44e66a250b78d8c7a3235f2e966d06f9c5
SHA512 2dff629f23cdcaa7a94eecf8f378b796c0189f21d7204ea7c171460be177c683ea29e91589a7a38fea4a8ee1b560d023b71db93b5bf0326530da6a447df70601

memory/1120-4858-0x0000000003540000-0x0000000003550000-memory.dmp

memory/1120-4863-0x0000000003540000-0x0000000003572000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\KVFileMon.dll

MD5 7f964f68972eb0102cb582c58a458c98
SHA1 416cbbf3045481cb87cfdaa5167cfb1d63cea018
SHA256 2bb80dbdb0e6cb99fb146bc960a4af198450ea23f195537fbb63a8f4a14aabff
SHA512 850b57994837f3513374965c62522884f642c693f00c3ff41ae8726f8067988c0435d564c7f5bdb88d4588b7c532887c1861648e0d81ba6a073d7f2dec6d5acd

C:\Program Files (x86)\JiangMin\AntiVirus\UrlGuard.dll

MD5 34a12dc4d3c5aae0a1a2c946597e36e7
SHA1 b94ac6f0a09c3939ea93c8d3851e0582a8705f7a
SHA256 861d97a523fa4a6118714a6f3d4c5dbd67dceb043e3a1f4f48a466ac69e0c0ae
SHA512 145237a27173f533b88eed1513c64724a7ab716360cf00977293cb965dec416491b26b72dff4916822c19a9348fca2a88340c49792e1806929b4256722987308

memory/1120-4871-0x0000000003540000-0x0000000003571000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\KVNetMon.dll

MD5 c447867fd877988dc789bf42034d0eb8
SHA1 6f8a9ce27e285f6a3f55af03f815846c102da5a6
SHA256 6082cc8d73978b041017c3ca44a941538bc258c08a37e2a184068798802c99d5
SHA512 025d787c8a80c36aaca61544ef2220b6c9a840f1cb3999f21e7930f8bbd3936806cd3087acaab69203881a25e694d7f96979277dd534b472d859fcb963af51df

memory/1120-4877-0x0000000003540000-0x0000000003572000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\KVMon.dll

MD5 9723e39cce8d7a20ebb96240dd8705fc
SHA1 a9475bc8d7aa7e8b2b90baf70eaddc468bfc4750
SHA256 88c7a44c4475b05d93400bd8c63e2dfce49f16adf224f748cfcd50019d9c0e13
SHA512 aeb7f9344b6cbd56f5bc769acc5a5971adaa2a4e5694a5a9031e8b2f0748c188b54366817d93e9ff16e0e6fde04b724c7054c48ab50c6aebf5d71f8d8477ba5e

C:\Program Files (x86)\JiangMin\AntiVirus\lang\KVMon0409.lng

MD5 3dc8ef697fe7a35edf9338a39208f1c8
SHA1 434c8e180539736dc25849772900ea199f5d3648
SHA256 551a92a4bbc606de87b2339bf6ce65bd34d55d930af20c350851bb3ac9296a90
SHA512 ddea28ef5e3847bdd9f61bdff5705b0a159d565b2d05633fe1aba54b494673ce1cc2c042ff478c07e524ef853a8a751b021f65e327685d319e7f13bb580f1339

memory/1120-4884-0x0000000003700000-0x000000000373D000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\PrivateMon.dll

MD5 6bb5413c584f0f61e03f92131450f28f
SHA1 e6e18b7dc143e12b3a1579a462a7654d1acb64d2
SHA256 a910cd042e586d69e0fe8d29eec020df0abb81e6a149b8948d268be430120c64
SHA512 56de393d2197403e9c075afe5d476c70b01ab8f488b589916f497cc6464145fc07ad4ccc4c17555b2a41b70c8bafc5fd8d9c2875f8e7220c2e6fd70782c62e9d

memory/1120-4898-0x0000000003540000-0x000000000356F000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\ActiveLog.dll

MD5 e3f226b07e9f5a3bb5fcec16409f2fce
SHA1 6d7299146cbaa3a310b1d35250df592cfabdcec6
SHA256 bd61b6cfecd6714b0cde44148c35c41cee4d8eae0e1e77df5509ee905ff1b52d
SHA512 91ce328418e8a9e3edc59a98ec46a16ce5c7087b5fd6b9f4129ca0d38c6a6fa11ae54a3e30360a59791dd391779834c10f6e0cc9c7fb25b2fa0b98360d5d026b

C:\Program Files (x86)\JiangMin\common\KvTools.dll

MD5 f5c205021302d273489209b922b5d1a8
SHA1 17a8436504c5efcad19c8cbb831878ce34fd5b57
SHA256 383438d0724c58014fa7606cd73997bfc56c02954ba2c3ca0c8036fcb8ff1940
SHA512 885fc4c46ecb0a4dd95859e0d9caf84ebee029c5f1a90c3cc61a79cbb2370a4734248b250d6318654390adf743eae4fc3d961614242aacdd3f262a066b92c57a

memory/1120-4912-0x0000000003540000-0x0000000003562000-memory.dmp

memory/1120-4926-0x0000000003540000-0x000000000355A000-memory.dmp

C:\Program Files (x86)\JiangMin\common\KvTrustInit.dll

MD5 0fde90718a1a06af823824f489f1454d
SHA1 03babff1c7004b737091e54ebe61e702eed95641
SHA256 c76fd522f93672e0033e842b27704fa43a7831e3d9ca0c641d98b3a8cbf9e49b
SHA512 365d06dbf50223706956822e63f1e0425137901a1c9cdaa59b18d02f824f61138cbd8fbd36c9383c3097a033f8cf3d4bd3910e7738d964f0ad2ff8cc41bff5c7

memory/4376-4950-0x0000000000AF0000-0x0000000000B0A000-memory.dmp

C:\Program Files (x86)\JiangMin\common\KvTrustServicePS.dll

MD5 fe50b1d74020e97f7ab260cbf16915a2
SHA1 43058414840396ded8c7125cc224a56096081755
SHA256 179d1076915339be7f71470200a721ba2c3399f1fbfd96dfa7c361efebecf2f2
SHA512 3b4fe9eff9d53b5621442158ce0b82b9a32e213eb5911759d7dbeb85dab1caf8bf71c1f1ec7ff5f2d048371289500ee5229025f9b8c38c872ccac3e113fc985b

memory/1120-4946-0x0000000003540000-0x0000000003550000-memory.dmp

memory/1120-4940-0x0000000003550000-0x000000000356A000-memory.dmp

C:\Program Files (x86)\JiangMin\common\KvTrustService.dll

MD5 776a3aa0121b81aae08a9e6ac91bd9fe
SHA1 4175ead47e149bccf3585879e23bc1a8ee8751e4
SHA256 a9ada36eed8ba0106b65f62ee85218679a31dfde128524c1b2d869b8dd0c10d6
SHA512 c395080c86a6f4e25f275a92288e738874f22b56f96b67c3e631e186cbbd57d4aef33c7a8b4402d93cc2d743850e95df0a38cf177d51971f3e2659af27f5d831

memory/2876-4953-0x000000006FFF0000-0x0000000070000000-memory.dmp

memory/1120-4954-0x0000000000600000-0x0000000000601000-memory.dmp

memory/2876-4955-0x0000000002C10000-0x0000000002C46000-memory.dmp

memory/2876-4957-0x0000000002C70000-0x0000000002C91000-memory.dmp

memory/2876-4961-0x0000000002C10000-0x0000000002C2A000-memory.dmp

memory/2876-4962-0x000000006FFF0000-0x0000000070000000-memory.dmp

memory/2876-4963-0x0000000075D90000-0x0000000075E0A000-memory.dmp

memory/1120-4967-0x0000000003DF0000-0x0000000003EDB000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\lang\KVXp0409.lng

MD5 fac429d7d5e36b4eb237bf34f60976ee
SHA1 bfac8e6d41bbfff2d099fef94f9ec17898575a05
SHA256 3ac56b7e5df9cee1c5cfc7d94f63b016dcd391092b4699870eb67c5e949e63bf
SHA512 83aa4309c939bd10232b4cabf0cf4c6f9b37bbf7160fb935c5adfc402110012d38c8ff09d5647de3252ac59bec0ee2136c31c44d4f675b50439d90d206e0ac32

C:\Program Files (x86)\JiangMin\common\style\classic.jvs

MD5 bd3c064687f4fe262e68d2dcfad320d5
SHA1 3ea68f6a2fa7212be425e473b972c386d971eb8e
SHA256 792f37f0b8bf9cf79d10d77abb4b19a0dc983c7ea4b21e564ec8761078869e8b
SHA512 5855713e57fd4a2453db2fce289c176cbed6a2ca06616e13a73221a9abb79bd0f35ba193fbcfe499225df43dd0e7332f530f8cfc7eec66f37dbf15226f1bc8d9

C:\Program Files (x86)\JiangMin\AntiVirus\lang\General0409.lng

MD5 542589b2ff58fcf52eeb56911e0426ce
SHA1 b788b66cb0810925608563b7c92fc52f93b7ad0f
SHA256 45160eed639654bdeb0fef5003d20a73ea86e7dc9662faba041f379e15f47eda
SHA512 ef7eef219abb9304ceb696a43b9ad4bc5e74b85c13518f5c605b3f71b4274436fe0b590b4fb6c3803141d346e956fb1c34809ca867f702d03c78a12dd6ee1a70

C:\Program Files (x86)\JiangMin\Install\Tools\Quickstart.ini

MD5 26e7bfeb3e490415a100bb5909e784b7
SHA1 25b4d59d237daae150a390caa3564848c4866b56
SHA256 c83435318e83f1d4d129571df6b831a9fa3fd83ef5afa785b21f1c8eed20432e
SHA512 c608eaa87efa3a3912924842d859e0e2317cc6e5a67019d9711ecb043c5087ed43a322cb8a3b74aa3537bd0a6c3025a9caac9444a51265c0d0052d21b921abdd

memory/1120-4985-0x0000000003B40000-0x0000000003B7D000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\General.dll

MD5 8661c2bff8adccbf96b729a14fd6ca67
SHA1 20e7ed5094b20a5eb13bfe2127713349fb8e2de8
SHA256 f00493e7271f497841881bb70aa15ee4981c6b33b7cae439302d7e3532db0844
SHA512 45e60451ba35157f6282236d7c47b76281a782920efad900de746c775dfae36bf3d10b9f94cddc21199db774f73b499287af19471a4cf70393a03f8aec0d8839

memory/1120-5030-0x0000000003EE0000-0x0000000003F1D000-memory.dmp

C:\Program Files (x86)\JiangMin\common\options.dll

MD5 800aa8b83aaa8c8025bebd0ec2cb821b
SHA1 cf4d54a2e0efb17dc880d816ec09728d95df3a7a
SHA256 c98f79b0edd18f0e1f15ff0229ce14dafe215a98581b5cc5253666ab07666851
SHA512 55ee90cef2ec1ac957e0e20bd00d671b14ee4245895ea28dccfd59734fe709f72bb52cec27d322479f1bcd43511d4aae32eb2404de59d130f4ad04ad8e5e74a0

C:\Program Files (x86)\JiangMin\common\data\Default_2.dat

MD5 784e932b8657e5c9cf7b3f2f3f1db104
SHA1 db71e317b3dd0fd07ae5db050a7646716a9b54fd
SHA256 0ed90989c2cd8ef7277a6f9eb4659048db7d16cb91762b17eea9baf7a00ba2af
SHA512 87eff0108fefce69ad0026d01ca16c6afc46124c8dd51268a2702169584181930f6f00fd6ed8216c8d25e78c91de76c47678f5397818c6c94afed35eb71ae62b

C:\Program Files (x86)\JiangMin\Data\KVLog\HiveBase.log

MD5 e14f290dab944c883ef3d433ef443079
SHA1 9ebee8e68ea0ceebb740977ec7afde56f81fbd79
SHA256 851f350a5a18c6b7e8463481bfdf8187e2f33b67ecbc8eed0f83cf2f826f8a3c
SHA512 b55663c83850a4677ad874ce98ffcf7c12ebf8058914801a773315018520660cd59fbd14718bbb5671dfab836db1d180e13ef0e59d0c5efb96160c917168b986

memory/1120-5025-0x0000000003B40000-0x0000000003B86000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\ScanSet.dll

MD5 5bb5e5a1317bd5e423ec1e0726ee2c97
SHA1 efe19a248b8f478f3307b591fd6ebf148ce0a276
SHA256 cc2aa574d1c70add6968a46c8f10ee72b167df55ce8689371bae2fb7496bed7f
SHA512 b8210d721fc1d204b583f972cc08245a8d4f58ba7fcb16e513514a1c24471ad0ebd1e23a5b96c6fda9066e10ac2b3c240bcaf2977f82fd6d739a306b70fe4545

C:\Program Files (x86)\JiangMin\AntiVirus\lang\ScanSet0409.lng

MD5 659eef98a1c1ea708c2891bdbeced27b
SHA1 c8f711523cac57860fbf0d8add7e1e5a2f2d1607
SHA256 1c2304b300936edfb12efba925eb3166059e48a888508e74f9b475c46ffe9998
SHA512 f5e93dbe536e3c672b1a557fc9cb22524b97a901ba627d1145c4575071ad81956116b740db48c4348b5af2dd132121c4bc09aab07e7db1b19fa11485e6faf9ec

memory/1120-5072-0x0000000003EE0000-0x0000000003F2D000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\ScanTimer.ini

MD5 990808e740fa07cdb8acdc18d78f1ae1
SHA1 a80c173330bd1ea6d7522aaf32ebfdc056f814f0
SHA256 d338bb991ac9c0267b232f2e54bed998b3d6a46ccc121931355582bb37b27938
SHA512 d9f698c59b8042169117acf4d60267e8c4a052d0d789d00cbe4be688d2e0d1137559d151175fd56b5b6a27379648164190b8d31933585996044113fcdcc9b139

memory/1120-5117-0x0000000003EE0000-0x0000000003F1D000-memory.dmp

C:\Program Files (x86)\JiangMin\Data\KVLog\HiveBase.log

MD5 791fc486839b74e5dd4e4b9875c68aee
SHA1 b2eecaa08a9e76d325b278d8cf02d4a4ff41b6ed
SHA256 45e9d67571053f387df06c4471ae20e3baed4579fddde6c5d21687780eacd122
SHA512 1a5ef9975a5c331d614fbe5f672861af597b9432d98c44d3b31eb3d0ad10149acb2d31f05d31439fd357976efb55f9a8484ce9339318960d80792c359df79d94

memory/1120-5147-0x0000000003EE0000-0x0000000003F15000-memory.dmp

C:\Program Files (x86)\JiangMin\AntiVirus\Embed.dll

MD5 f70c7b39bbc17261757ec79c52195f0d
SHA1 e33836ca316de2d3dbca12e57a279b3ace67bf77
SHA256 876341808c8b6aa6a497aebf2608bf538cd387df8c83c24856fb0399dbca1c77
SHA512 90dc237b295af46e3613f3762915705075ff7f2b19959e3d59e92373c721a4b76cba73a657d2458db1fb2cf4e9e5c2888d1a06fcb17a32b7a7853f28e4018365

C:\Program Files (x86)\JiangMin\AntiVirus\lang\Embed0409.lng

MD5 3663e0b71ecc37e6305c69b1a32c68d3
SHA1 75db4b54565179480bbc3bfecb7c3ff81a611705
SHA256 3284b6963e20611339c58d8e90bb419735c1ed0e92bdd27e2e6cb5fb113a9032
SHA512 7a7b864a383dd145aad704f72cf939489875a779b9d2e78d06396c70a9a9409cc87b333a129785727cdf0f0742d5e960a7d1b0d782005e6c82cfc596d9b13368

C:\Program Files (x86)\JiangMin\AntiVirus\KVShell.dll

MD5 5b321c18fcf211ae1d522a55cd5efa18
SHA1 f5d7164ae12f8bb17dbd5d01401da619b4023e18
SHA256 32ed544fda4885cd583b81f57170d3fb7d2522ba668a94f1ced106e2350701ea
SHA512 18ec9e0b50d6814649e51275e24461c83c9bd0f7b77c5f35c05c9b0a536f56faf29b73e2fb37268718899ed652944ca190c57bae46e07cec71eed1e7e4487673

C:\Program Files (x86)\JiangMin\AntiVirus\OptionPlugin\KVAddrMag.dll

MD5 69e77a06886f1f6a3fc9c3221cf85608
SHA1 b49c0dd6dd3d4490718dfc2c5977fa3c679cb646
SHA256 43f4fcbe7e8a121ffb2a67e2d54d0aff0afa968fce33ca444bc3c80c33d6ec8e
SHA512 41516ca0df77068d1c48dcc04e1702965801f32a848423bdb5cbd288598b3e1fefe634ba3a1682bea65a11af572d4be560cea712890a4024ae6f6a927ab046db

C:\Program Files (x86)\JiangMin\common\KvTrustCfg.dll

MD5 7c85c3a7d3845f69787db88f95e67c01
SHA1 9f72b112ef57458c2b7374a12023f31acb9ff7c8
SHA256 9b7efe798466b7b1e1b140884252439d738182be0e73b634bd6db8144621a7b3
SHA512 ece8d46f57143abbc17c125bb598779b59e49eea01be52e85ed20b0e2cdf250b0889333d069df9c7dc4aeb536add6a6a83d90135fd02a6cec6a494948f1645a7

C:\Windows\KVLog\Setup.log

MD5 87bbe673c05d198e544e43d2e1fef09d
SHA1 9013ea5cfebcdb0c585826fcf47a840e9672b1e9
SHA256 91130b9816efe46241629557a11f0e22524a4a67ded21006c6ee566a40502a6b
SHA512 7549b0c9d56a4b384c0992652ae9061e143a905568b56e93d8ffe55661bd416cd7f6f3c98462a91b9ecce390f72aaba243c37e226e7fede55aa69920671a26a0

C:\Program Files (x86)\JiangMin\AntiVirus\lang\PrivateCfg0409.lng

MD5 2a75964606a50d3854ec1ed2cb1d4124
SHA1 318d91fbce63d1a987f49eaf296f77294762dadb
SHA256 c32951893543409dcce00cc098270d601517d9d63cd672b8cb5c1c133d2df169
SHA512 cf9189674e555725a424bf611dc5f61dc485c09ca8e7173b66317dcc9637ebb57fd5a24b9ab89bdaaf6f1ad8987291cf866aa1aa7f810a5a49dec0bfc11ff225

C:\Program Files (x86)\JiangMin\AntiVirus\PrivateCfg.dll

MD5 384a23fc2109841ec428763c60326d9e
SHA1 dc9005ddd709176ec861e2c2b17fd8d8b55766e9
SHA256 e9cc57a52cfeced1884522cf801e3bfd4278b8da015e304a6b6900272171ab05
SHA512 7533b7bf390850c28deff9ea3601721b1b90dbf81f0d072382c44c67f57ecf0bfca85f3125b0188d29b031a569ed85c9ee876c66147a22ef33a2cc298e440675

C:\Users\Admin\AppData\Roaming\Jiangmin\TrojDie\KRegEx.ini

MD5 57069f5887d383c186c4f269f2212515
SHA1 83edcbf9342d746aae08692e000e2831ddf8fd81
SHA256 f926e2bc99ae4f4307089bf093bb041594eb02a7ef926f730296c84de32dfa3d
SHA512 ce25a04bc6ede0009b52abb1fb11dd37666d84d9638b6d5cbae21ac78cb896891b18050308b292a4b6583b39c58faad8f9b94590e7bf6f94ef95c62af25da212

C:\Users\Admin\AppData\Roaming\Jiangmin\TrojDie\KRegUser.rdb

MD5 2b673326e986d83ef944867a6b4e91eb
SHA1 5e5a4a25f50c99c536c60a17fbba86dbfd5a0d59
SHA256 c9c00da061449c589c892a62d3dd962609ff934d0cb0180c7bf603e3fefb63d6
SHA512 a1554bd73e7f9e291a9f6da3fd7280014ef5420f6c16ba11b9686367e0c2fcd8f5aa7d590a741d46ab050694cb8dfce52504156f182ee7dca3390ff36d629880

C:\Program Files (x86)\JiangMin\AntiVirus\data\RegLib.rdb

MD5 ba59b4cdd509c62a9c0a1f7fd2df3ac5
SHA1 d370bd2361e68977a76efd3c99c61dbd8113af6c
SHA256 ef56154b60826cd37ae74458a13c1b721c1c0e8cba15e968ee15e60aa3587daa
SHA512 41155de3dd800622d1bf196f7e3d902c97de49a5a64923408a00c895776553983c053ce9e20612172c5a967212e20132f6ad142080f368738494e09a87592f94

C:\Program Files (x86)\JiangMin\AntiVirus\data\KRegEx0409.rdb

MD5 74db5193e05eb1c8209e9eca4c2ea8f9
SHA1 d941e8bffe77ad2b7449659d8a876445994dde9f
SHA256 3cab3e968dde59a39cebcbfe0cf2c5599e22127960f98000e787eabe526e7063
SHA512 01e2670f6306860fc000920688662457bcb8d9a223ac0b698202deca406120764dd61a78f95040236cfe0a223728990ec8550f72cd66d5b11c10f63742c9cceb

C:\Program Files (x86)\JiangMin\Data\KVLog\Options.log

MD5 78e5b559a9cbbc782e5965e376ac0441
SHA1 2e7ac7cd0c2d4126165158f72284ab810e4197ad
SHA256 1bf5493c3b0b7d058edf615187c907831b19c071e2146218c4b68962429bad53
SHA512 0d459b6f4fcf2b7841e8e650653b255ea8bdf83b0a359dec312626c478e7fcd37dc5cf55dc57ea284de8dd5978d834b78a5d3b786fd21dd623ab073ba20823e3

C:\Program Files (x86)\JiangMin\AntiVirus\lang\KVActive0409.lng

MD5 3b23905815fb7d71a6467a9dc62a952f
SHA1 3fe3f81ca40d50004c9e7c03404029f760047a01
SHA256 07c9480e7a1c63ad6da6b90b2cc02c5e9024f8a7c354b799b98757aa099140cf
SHA512 cd07ae076183bf7108716c5caebbb9411f4c0b9024f7d07247260bbf787826a4c57057812491637f1f621b898ee1a10c66995e526e497474f248086123834547

C:\Program Files (x86)\JiangMin\AntiVirus\KVActive.dll

MD5 3e6dbabc3ff41beec64df5f98c7d8483
SHA1 ba09619738533981e57313e869197a0c1393f085
SHA256 7372febd836a0810f3bda0d8ddd2a6ece18b19089fdaac4e762827914a97115d
SHA512 0cff91ed052cd0e19afcec5aeec210a8b3bfe8ff3f7b5f951bcd234471c15bd470cb83080562140ffde354506be5ef94f9bcd4d7eb17c9b0315b39f1251bf646

C:\Program Files (x86)\JiangMin\Install\KVolX.ini

MD5 4da75b4947ffd9cf8af739def29ecaf7
SHA1 56dbc0b02541de3f34eed114a60587c923932dec
SHA256 3e4cebe09610a857eda69b3a008db0dfab867aabc98f2c4c9f9a3a8ca7bad2ee
SHA512 a8862a34c112066dbf00b0806859ff1b6392031a7210391f616c87f681202bf247473023abf3083a8e6177002362c558997de90807f8d3b0a70d866bb69bfec6

C:\Program Files (x86)\JiangMin\Install\UpdatePlugin.dll

MD5 32d0daac6df7ebbae0923ad89df972e4
SHA1 c5d88796e76b095deaea4a191028a0f224833581
SHA256 fd7cf02cc6766991dc9c9c1a5417d0a58be2276a5bbe3fcb4b82805b46e8e6cc
SHA512 b5983789fa2302257abe2674dc5a71896bb5bfa87a820a5e2c2b746fe22a6a443c5dc0547f2c741d14f8a566e18716db7862ac8e0ed768f7ffbd809445013a3c

C:\Program Files (x86)\JiangMin\AntiVirus\lang\KVAddr0409.lng

MD5 7195bd733fc9a7582bddcdd591fe6331
SHA1 08fa46bbdcc6fcfb8c72ef6f08904f6446dee4a7
SHA256 6a0ed4b626071106b799827cbc0d98f4353f2e1ea55eccd7312acc04bed98105
SHA512 0ae955d495f6b630c3721120656eb23b8787cea293b360dd6741dc9fc380a646aecb55650188a08a80ff64069a00d8a013aaf96ee33f72bbc7673b68d0f3aa07

C:\Program Files (x86)\JiangMin\accredit_1001.dat

MD5 eccdcc64e76efc5b72e4cb713028f6e6
SHA1 bba299f51c94f9a8b6cfce96cbdcc7d573b61911
SHA256 213b03260b13fd88f4fdbbb77a2a4e8beb0210a8456ca83a7423accff7a98a62
SHA512 59a296139d14f0894bf7ed9070f9f466ea25264809b7751f92e1c0299bc0e9677113081795ea53fceda7a379c78bd1db4cbd7fc7797ce2b88053f9179ac907d1

C:\Program Files (x86)\JiangMin\Data\mylicense.lic

MD5 f3913c126854b6d262a26cff2c347bc3
SHA1 2e58f71cda5ca29379e5b1f8c6585a7a3c4b74d1
SHA256 476ed69011ddf0faac487c996163783355d33500559493926ad34a0390a66c9e
SHA512 83c8336089c9904f35a8bdb98de462fe38396ae2081694762d300a9a37ff74876d4287e23372550c8cca67f6c6bec8f81570e1d95eafa8a0b4f532d3dd472bf1

C:\Program Files (x86)\JiangMin\Install\InstallX.ini

MD5 4810f1094626d2b20d8a23eaab6a9fcc
SHA1 e5f3f350e6216a75dd505bc4088c890bea66ce9d
SHA256 ba4de6353ad751314187a75cd6937f6a50f12df1bfb9ba9b2f51911db895f95f
SHA512 ceced716b9e38ee591600092d57d662f69f88f6c08690cc043e445c4a79d4c2d629184190651f1a1285874eb44d386147671f301b7c2f6a4088c6026cb5249dc

C:\Users\Admin\AppData\Local\Temp\Jiangmin\Unace.dll

MD5 de02c4d04088b69e64ecc30a3d9e22e5
SHA1 a5f66d420b6a6ebb04242fb85ca462a99dbf89b6
SHA256 c9d28800e740a1569aec8fe27df10ef186d883f94cec15a5c228826b45a24f9d
SHA512 32b22966ecec433636f927dc7b27cf782271b36169a9fdd50aa99a4d8cf14496ac3948a3747b7b7680d2d472f6af714e640b05c29194e8f2db92b21619b09c11

C:\Users\Admin\AppData\Local\Temp\Jiangmin\PostFix.zip

MD5 b062956fdd48c29f83d535b382e67a1e
SHA1 f56c299a784d9bb2d00412517648f4f95cfc6d6a
SHA256 cc3d9abc849f32551236c76848da01b0f33fd415dc5932cb1000193bb055ed46
SHA512 3bebae54d4e3a3c4dfda09ea173300c3c65cfa60a364bbff9973aa85765599b591aa0f2d311b7e75e9516b9f6de5da1c711d563aece5a0567e2fac70cb6ca72b

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVInstall64.dll

MD5 b6be56218fe17ebd9a81e7f2ac7fa340
SHA1 a2340e10cc199d9847578f7df8ce1b5d73ec0122
SHA256 ce4224184251dfc55c4d9c1186c6da1b0a049b31ecfbdaa8002d61cece108450
SHA512 9d09c89ca5ac6270c381c6a96c0b028a097cb76c32e2ec4fddc98ff3cfc9f0a1349ad3fd6fc301a6b9a9ef9f6f068494039a6b65345c54511501777cfb4359c5

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KProcess.dll

MD5 9b9d6dcf0ee117349608579277d70973
SHA1 b2b9183f18daf07fc421726c0140d7452f95f110
SHA256 00d19ee28c7bb7f1336e42a9a903ed0a45a75bf035d73f40b3fab2f8fac4290f
SHA512 e01cd7405a5b2d0e7fe6965a1913ac14a69740d913ce8f5c7735899bac41997569d348101a441f23e6a0c2e6b3b652d51f289a2279eaefc6c915916814679b8e

C:\Users\Admin\AppData\Local\Temp\Jiangmin\HiveBase64.dll

MD5 554085fa2af4f8c03ab8dd8f4537c722
SHA1 94f030a10d70176e7cf15ad6ea71d85a9d9a3b5a
SHA256 166321a26fbb98be922eeb67244dc277e774e15bfd8d54067e42be149d22976b
SHA512 d83aed77d6e35908e7d7136804c9930c630a8d5ba79fd4cb6a0cbbb92b7ac84b28d7d1bd9ba1e5da064cc7bc6183c704891cb746726f16e7a23d3b0001c25247

C:\Program Files (x86)\JiangMin\AntiVirus\KVMonXP.exe

MD5 b181546bd943665e91a23a2e289058af
SHA1 ed9c3dcdc3ebe34f40a2f69bbd4695b55e7dd455
SHA256 c89541824ecc3ee51db2c65469d3c2c315cf703d961193638496d80863ba0e05
SHA512 dd4b22047d4b41a821aaa7c212c3c8a1d877c2ca814d53cf51fb49cba801964e471377347a403388d78b60a159e73862a805fe61674b388176b428911da0644b

C:\Users\Admin\AppData\Local\Temp\Jiangmin\MailArc0409.lng

MD5 97378840142584bfab07912a8a96a87b
SHA1 b03764237a4fabe242836a0117d352a3b37b6147
SHA256 41bd88cf2f4dc831d29990bd6ca587ece4aa193c103a9d26e90071ca5f6b1dd1
SHA512 c4e05e67ea876711fd15c31fc85c6da3779d3c5a8dfc176a69e6e9cb98c43e430822e612d518dcecfcdd6ae1906b6b4a0fda98cde0a79a918b81ab01643fcef2

C:\Users\Admin\AppData\Local\Temp\Jiangmin\LinuxFile.config

MD5 78a54b9c77bdf88366b1fab8b28b86cb
SHA1 970521da70a4707ccf57c69d09133a48fd1f0378
SHA256 20a4cc62e56e320b702b8433ec14ef58e0a03fce502b9f41732ddc0145c2b04d
SHA512 e20f28c9d0b75ce11f915d6948652690250ecb60e2f3dbb23ca30951c3219eb7fd8f46e0605098eed2e3e664674016d77958a27c42a5848231ba2d285953058b

C:\Users\Admin\AppData\Local\Temp\Jiangmin\Lang\UpdatePlugIn0409.lng

MD5 121cec3f7794b8f828254616c58b9f02
SHA1 b5c1cddfb72cdf99ac78cb1f14ed60c6cee72b9e
SHA256 0d956c39256a622595fd3a234817b5e0fc8114ec50efa91a9a68eac08b4e74e1
SHA512 ebd13d1b93f09253488c2894949aa9b56d6d5d0a5ed82d2b6c099aa8484ee5470dace912e7be2c399bbed3672af178a58fe808b82d9d7118fd1bb86645f56b4b

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVPreScan.exe

MD5 21389ce86253c3d4dcd3f03b87c17573
SHA1 ef2ff0f2e8423ed0b1cfeecc51fc612d2dd817f3
SHA256 a60ae3333d389dd21b3b6e8877296dadec27f7a9a00a8233294a0d603749bd09
SHA512 14d8cd2560cf84903cdc36cb82753c82a99b7cc8229a558e64ffadf54b1338f109561f56ac0fc78a4b82190477308b8f0b8167cfed1fe5bb624fd61ea091c430

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KVFix.exe

MD5 d04a15493e0f5de758c50cbd8841000b
SHA1 c300107a53a9f864a1e1d263eb970362a084bf5b
SHA256 3354f768ffca8771770fa0e3b07c2b2f744dd970e61fe773acd29a9620ddde36
SHA512 a3797c99e51710c98b2f9269a65876e6e9d030c9222bfbedfe685b3646ff6db8afbb49eef383760acd518f3b1919ce890bdeadd901ec96a9bc0aedec6bd4c5f9

C:\Users\Admin\AppData\Local\Temp\Jiangmin\KvDataScan.dll

MD5 93c8240187ce4246c2d31f394399aa0a
SHA1 1faef93d82b86038e30f207b840901bb3b2b19c9
SHA256 e09d181f2c4876b96d3c3cf35841ed6dc91f06b5e130862ce6787af646d0fd3e
SHA512 512515a8a90e796fc7f465e6fa977e83f67beeef0f5497b3cb9713e7c97a6f71e65e1d0b358634f23a2dcd9e6700f92b253ed4adcd00d48c7edb0300f58a65bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8ea79ca27c59ee4433c479d47af56f84
SHA1 c5f34c5abc26d495d8868006f94983c5b15f53da
SHA256 dd5fd6309e4b8d085ba6fe4e81b1683ae792b8915fbd3b0fbb67e8581eba582e
SHA512 206beef2360aa14dccb771cc723445dbc11b21524578c36363d68b585df3f00377ae05d374be670272087dba94eb1adf773fe0f8c70eadcbf45f1c206b04d77c