Analysis Overview
Threat Level: Known bad
The file http://google.com was found to be: Known bad.
Malicious Activity Summary
Cobaltstrike
Cobalt Strike reflective loader
Contains code to disable Windows Defender
Downloads MZ/PE file
Creates new service(s)
Possible privilege escalation attempt
Event Triggered Execution: Image File Execution Options Injection
Boot or Logon Autostart Execution: Active Setup
Manipulates Digital Signatures
Drops file in Drivers directory
Executes dropped EXE
Reads user/profile data of web browsers
Checks BIOS information in registry
Modifies file permissions
Event Triggered Execution: Component Object Model Hijacking
Checks computer location settings
Loads dropped DLL
Checks installed software on the system
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Checks for any installed AV software in registry
Modifies powershell logging option
Writes to the Master Boot Record (MBR)
Checks whether UAC is enabled
Enumerates connected drives
Adds Run key to start application
Legitimate hosting services abused for malware hosting/C2
Drops file in System32 directory
Checks system information in the registry
AutoIT Executable
Drops file in Windows directory
Drops file in Program Files directory
Launches sc.exe
System Location Discovery: System Language Discovery
Browser Information Discovery
Enumerates physical storage devices
System Network Configuration Discovery: Internet Connection Discovery
Modifies system certificate store
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Script User-Agent
Suspicious use of SendNotifyMessage
Suspicious behavior: EnumeratesProcesses
Modifies Internet Explorer settings
Suspicious use of AdjustPrivilegeToken
Runs net.exe
Uses Task Scheduler COM API
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
Modifies data under HKEY_USERS
Modifies registry class
Suspicious behavior: LoadsDriver
NTFS ADS
Kills process with taskkill
Suspicious use of SetWindowsHookEx
Enumerates system info in registry
Checks processor information in registry
Checks SCSI registry key(s)
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-08-13 00:52
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-13 00:52
Reported
2024-08-13 01:09
Platform
win10v2004-20240802-en
Max time kernel
1008s
Max time network
1008s
Command Line
Signatures
Cobalt Strike reflective loader
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Cobaltstrike
Contains code to disable Windows Defender
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Boot or Logon Autostart Execution: Active Setup
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982}\Localized Name = "AVG Secure Browser" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982}\IsInstalled = "1" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982}\Version = "43,0,0,0" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982} | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982}\ = "AVG Secure Browser" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{48F69C39-1356-4A7B-A899-70E3539D4982}\StubPath = "\"C:\\Program Files\\AVG\\Browser\\Application\\127.0.25891.89\\Installer\\chrmstp.exe\" --configure-user-settings --verbose-logging --system-level" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
Creates new service(s)
Downloads MZ/PE file
Drops file in Drivers directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\system32\drivers\rsElam.sys | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File opened for modification | C:\Windows\system32\drivers\rsElam.sys | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Windows\system32\drivers\rsCamFilter020502.sys | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Windows\system32\drivers\rsKernelEngine.sys | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
Event Triggered Execution: Image File Execution Options Injection
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVGBrowserUpdate.exe | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\AVGBrowserUpdate.exe\DisableExceptionChainValidation = "0" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
Manipulates Digital Signatures
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.4.1.311.10.3.3\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$Function = "SoftpubLoadMessage" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubAuthenticode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllPutSignedDataMsg\{C689AABA-8E78-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPPutSignedDataMsg" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{C689AAB9-8E78-11D0-8C47-00C04FC295EE} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.2\DefaultId = "{573E31F8-AABA-11D0-8CCB-00C04FC295EE}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2010\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2223\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\DefaultId = "{573E31F8-AABA-11D0-8CCB-00C04FC295EE}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{C689AAB9-8E78-11D0-8C47-00C04FC295EE} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{189A3842-3041-11D1-85E1-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.16.4\Dll = "cryptdlg.dll" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2005\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.11\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{DE351A42-8E59-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPCreateIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "SoftpubLoadMessage" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$Function = "SoftpubInitialize" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubLoadMessage" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2000\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2222\FuncName = "WVTAsn1CatMemberInfoEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.12.2.3\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2004\FuncName = "WVTAsn1SpcPeImageDataEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.4.3\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.4.2\FuncName = "WVTAsn1IntentToSealAttributeDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$Function = "SoftpubAuthenticode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.4.1.311.10.3.3\CallbackAllocFunction = "SoftpubLoadDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2002\FuncName = "WVTAsn1SpcFinancialCriteriaInfoDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{DE351A42-8E59-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPVerifyIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}\FuncName = "CryptSIPVerifyIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubCleanup" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{DE351A43-8E59-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPGetSignedDataMsg" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.30\FuncName = "WVTAsn1SpcSigInfoEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.12.2.2\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{189A3842-3041-11D1-85E1-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.12.2.3\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{189A3842-3041-11D1-85E1-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubInitialize" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "HTTPSFinalProv" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.26\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{DE351A43-8E59-11D0-8C47-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.28\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2012\FuncName = "WVTAsn1SealingTimestampAttributeEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.4.1.311.10.3.3\CallbackFreeFunction = "SoftpubFreeDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$Function = "WintrustCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
Possible privilege escalation attempt
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
Checks BIOS information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\Wave Browser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\McAfee\WebAdvisor\UIHost.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\avg_secure_browser_setup.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\Control Panel\International\Geo\Nation | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
Loads dropped DLL
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
Reads user/profile data of web browsers
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Wavesor SWUpdater = "\"C:\\Users\\Admin\\Wavesor Software\\SWUpdater\\1.3.133.0\\SWUpdaterCore.exe\"" | C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AVGBrowserAutoLaunch_2539D9FFF1F40C0A976762D6C815D3E3 = "\"C:\\Program Files\\AVG\\Browser\\Application\\AVGBrowser.exe\" --check-run=src=logon --auto-launch-at-startup --profile-directory=\"Default\"" | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\GrpConv = "grpconv -o" | C:\Windows\system32\rundll32.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\AVGBrowserAutoLaunch_2539D9FFF1F40C0A976762D6C815D3E3 = "\"C:\\Program Files\\AVG\\Browser\\Application\\AVGBrowser.exe\" --check-run=src=logon --auto-launch-at-startup --profile-directory=\"Default\"" | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
Checks for any installed AV software in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\AVAST Software\Avast | C:\Users\Admin\Downloads\avg_secure_browser_setup.exe | N/A |
| Key opened | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\AVAST Software\Avast | C:\Users\Admin\Downloads\avg_secure_browser_setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\AVAST Software\Avast | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\AVG\AV\Dir | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\AVAST Software\Avast | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\AVAST Software\Avast | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Software\Avira\Antivirus | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\AVAST Software\Avast | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\Software\Avira\Antivirus | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\AVAST Software\Avast | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\AVG\AV\Dir | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\AVG\AV\Dir | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\AVAST Software\Avast | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key opened | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\AVAST Software\Avast | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Software\AVAST Software\Avast | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\AVAST Software\Avast | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\Software\AVAST Software\Avast | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
Checks installed software on the system
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\H: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\K: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\U: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\A: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\B: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\I: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
| File opened (read-only) | \??\E: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\O: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\T: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
| File opened (read-only) | \??\V: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\P: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\R: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\Z: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\J: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\G: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\L: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\M: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\N: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\Q: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\S: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\X: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\F: | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened (read-only) | \??\Y: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\F: | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened (read-only) | \??\W: | C:\Windows\system32\msiexec.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Modifies powershell logging option
Writes to the Master Boot Record (MBR)
| Description | Indicator | Process | Target |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| File opened for modification | \??\PhysicalDrive0 | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
AutoIT Executable
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Checks system information in the registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemManufacturer | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\SystemInformation\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_72BCADB7EE100ECA692C6EC1A866B75B | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\07CEF2F654E3ED6050FFC9B6EB844250_0A36A03C09DCEEA388C024E3D20B14B7 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BAEBE581FCB73249406FC21094EA252E_BC0CE803EF41A748738619ED7838EEFC | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8EC9B1D0ABBD7F98B401D425828828CE_4B7EBDACFF7CEC3D08B5D86C9ECA8639 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77003E887FC21E505B9E28CBA30E18ED_8ACE642DC0A43382FABA7AE806561A50 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D84E548583BE1EE7DB5A935821009D26_5B98B6CD6E69202676965CF5B0E2A7A7 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\FC68FB72D4FBC7E0F151BC2282D75E47_367FA2447481C3DB640CE44BE2E5A181 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\9E5AF9A59B2A0198F537F5F6F7EBA776_57ABCF7C80DDF20409A123C0B25EDA1D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8828F39C7C0CE9A14B25C7EB321181BA_3DF94EB797096674F7793A562A778C5F | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DA3B6E45325D5FFF28CF6BAD6065C907_C33468BC5883F8C26A2F912726D45EFA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\117308CCCD9C93758827D7CC85BB135E | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A334956C3F99BD182BF4859935BADE72_FACA7E02B2152427A5B3C5BC1AC9CE92 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\206932163209AD483A44477E28192474 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8828F39C7C0CE9A14B25C7EB321181BA_3DF94EB797096674F7793A562A778C5F | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\18E6B4A57A6BC7EC9B861CDF2D6D0D02_C3B142D2C5374581DC2FDFFDEDBDEDDB | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C8E534EE129F27D55460CE17FD628216_56DB209C155B5A05FCBF555DF7E6D1BB | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_4B7EBDACFF7CEC3D08B5D86C9ECA8639 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\07CEF2F654E3ED6050FFC9B6EB844250_D94F4A82266DCEDAC0F3F1BFD0843F4D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8BD11C4A2318EC8E5A82462092971DEA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C8E534EE129F27D55460CE17FD628216_1130D9B25898B0DB0D4F04DC5B93F141 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_466BAFE78D4077069B6C3828315C7C8D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A3D5BF1283C2E63D8C8A8C72F0051F5A | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3E3E9689537B6B136ECF210088069D55_C4502B2ED7ABD16FF1FA41F55DB2B363 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_686A447EF0220EBC1D36EF897F31F606 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5F26A2159BA21EA573A1C5E3DE2CF211_E3375A509D9058F6A8FFB74D3B4E6F77 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5F26A2159BA21EA573A1C5E3DE2CF211_E3375A509D9058F6A8FFB74D3B4E6F77 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A3D5BF1283C2E63D8C8A8C72F0051F5A | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A334956C3F99BD182BF4859935BADE72_FACA7E02B2152427A5B3C5BC1AC9CE92 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C8E534EE129F27D55460CE17FD628216_56DB209C155B5A05FCBF555DF7E6D1BB | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D84E548583BE1EE7DB5A935821009D26_5B98B6CD6E69202676965CF5B0E2A7A7 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\42B9A473B4DAF01285A36B4D3C7B1662_38924EDF39D8802D6946FB22E5DD0835 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C8E534EE129F27D55460CE17FD628216_1130D9B25898B0DB0D4F04DC5B93F141 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\9E5AF9A59B2A0198F537F5F6F7EBA776_57ABCF7C80DDF20409A123C0B25EDA1D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\0972B7C417F696E06E186AEB26286F01_30B4D916E12169D9CB0BC7A11DE46EA6 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\0972B7C417F696E06E186AEB26286F01_20B3A034565B44ABD07A9F640D47689A | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C3E814D1CB223AFCD58214D14C3B7EAB | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8EC9B1D0ABBD7F98B401D425828828CE_686A447EF0220EBC1D36EF897F31F606 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3E3E9689537B6B136ECF210088069D55_EF6C9357BB54DDB629FD2D79F1594F95 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8EC9B1D0ABBD7F98B401D425828828CE_466BAFE78D4077069B6C3828315C7C8D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77003E887FC21E505B9E28CBA30E18ED_8ACE642DC0A43382FABA7AE806561A50 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3D0AC26322348780E90E022EA217C58C | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\698460A0B6E60F2F602361424D832905_7AA1872B10F7F2428A1288E96F0B99FA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\AEACCDA8653DD8D7B2EA32F21D15D44F_535D998A18339CCAB6E4C4A9E011F10B | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\698460A0B6E60F2F602361424D832905_8BB23D43DE574E82F2BEE0DF0EC47EEB | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3E3E9689537B6B136ECF210088069D55_EF6C9357BB54DDB629FD2D79F1594F95 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FA0E447C3E79584EC91182C66BBD2DB7 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\FA0E447C3E79584EC91182C66BBD2DB7 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3E3E9689537B6B136ECF210088069D55_C4502B2ED7ABD16FF1FA41F55DB2B363 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_93702E680A5530C052C8D2BA33A2225F | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\AEACCDA8653DD8D7B2EA32F21D15D44F_535D998A18339CCAB6E4C4A9E011F10B | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\698460A0B6E60F2F602361424D832905_8BB23D43DE574E82F2BEE0DF0EC47EEB | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\18E6B4A57A6BC7EC9B861CDF2D6D0D02_C3B142D2C5374581DC2FDFFDEDBDEDDB | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8890A77645B73478F5B1DED18ACBF795_C090A8C88B266C6FF99A97210E92B44D | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8BD11C4A2318EC8E5A82462092971DEA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\DA3B6E45325D5FFF28CF6BAD6065C907_C33468BC5883F8C26A2F912726D45EFA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\0972B7C417F696E06E186AEB26286F01_20B3A034565B44ABD07A9F640D47689A | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\206932163209AD483A44477E28192474 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_5584DF834BF66C4C0B1B20A4046EBE92 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\07CEF2F654E3ED6050FFC9B6EB844250_0A36A03C09DCEEA388C024E3D20B14B7 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8890A77645B73478F5B1DED18ACBF795_C090A8C88B266C6FF99A97210E92B44D | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8EC9B1D0ABBD7F98B401D425828828CE_0FD7C8CB35A5508C225BD37696B3744C | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\07CEF2F654E3ED6050FFC9B6EB844250_D94F4A82266DCEDAC0F3F1BFD0843F4D | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\117308CCCD9C93758827D7CC85BB135E | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8EC9B1D0ABBD7F98B401D425828828CE_72BCADB7EE100ECA692C6EC1A866B75B | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\goopdateres_ja.dll | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-sstoast-duckduckgo-pl-PL.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\analyticstelemetry\events\analyticseventhandler.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File opened for modification | C:\Program Files\McAfee\Webadvisor\Analytics\json2.js | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxDTrace.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\AVG\Browser\Temp\source6528_535452221\Safer-bin\127.0.25891.89\dxil.dll | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\logic\miscutils.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File opened for modification | C:\Program Files\McAfee\Webadvisor\Analytics\mappings.js | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| File created | C:\Program Files\ReasonLabs\EPP\netstandard.dll | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\goopdateres_sr.dll | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| File created | C:\Program Files\McAfee\Temp791408565\wataskmanager.cab | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-checklist-cs-CZ.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\Temp791408565\mcafee_pc_install_icon2.png | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\installer.exe | N/A |
| File created | C:\Program Files\ReasonLabs\EPP\rsEngine.Features.dll | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12380_517745088\_metadata\verified_contents.json | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AF | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\VBoxRT-x86.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserCrashHandler.exe | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| File created | C:\Program Files (x86)\GUMF966.tmp\goopdateres_hr.dll | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| File created | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\goopdateres_bn.dll | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| File created | C:\Program Files\McAfee\Temp791408565\logicmodule.cab | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-uninstall-zh-CN.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Qt5OpenGL.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-handle-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1485225488\PL | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| File created | C:\Program Files (x86)\GUMF966.tmp\goopdateres_vi.dll | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\logic\type_tag_utils.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\telemetry\events\handlers\sendimmediately.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\ucrtbase.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-console-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\MR | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File created | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdateCore.exe | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\MFW\packages\webadvisor\wa-ui-dialog-balloon.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-dialog-balloon-sv-SE.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\MFW\packages_web_view\webadvisor\wa-ui-dwtoast.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\telemetry\dimensions\handlers\samrecoverable.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ReasonLabs\Common\Client\v1.4.2\locales\te.pak | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-dialog-balloon-zh-TW.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-webboost-fr-FR.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\analyticstelemetry\events\securesearchhit.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\GLES_CM.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1485225488\VC | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| File created | C:\Program Files (x86)\GUMF966.tmp\psuser_64.dll | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-dialog-balloon-de-DE.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\telemetry\dimensions\handlers\wpssuitestatus.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1485225488\AS | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\TJ | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File created | C:\Program Files\ReasonLabs\EPP\EDR\System.Diagnostics.TraceSource.dll | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\MFW\packages\builtin\white_check.png | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\MFW\packages\builtin\toggle_on.png | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\new-tab-res-toast-sr-Latn-CS.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-checklist-tr-TR.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-res-shared-ru-RU.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\telemetry\dimensions\handlers\featuretrackingfeature.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\analyticstelemetry\context\analyticscontextconfig.luc | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ReasonLabs\EPP\rsEngine.Scan.Detections.dll | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-crt-stdio-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1485225488\BN | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| File created | C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\MZ | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\MFW\packages\builtin\wa_install_close2.png | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\McAfee\WebAdvisor\jslang\wa-score-toast-ko-KR.js | C:\Program Files\McAfee\Temp791408565\installer.exe | N/A |
| File created | C:\Program Files\ReasonLabs\Common\Client\v1.4.2\locales\pt-PT.pak | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\Installer\SourceHash{EDB7AEE7-E932-4836-AE50-D3B0B7766CB5} | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\MSI9054.tmp | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Installer\e628f6d.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Logs\DISM\dism.log | C:\Windows\SysWOW64\dism.exe | N/A |
| File opened for modification | C:\Windows\Installer\ | C:\Windows\system32\msiexec.exe | N/A |
| File created | C:\Windows\Installer\inprogressinstallinfo.ipi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Logs\DISM\dism.log | C:\Users\Admin\AppData\Local\Temp\6C6A7E3B-C130-4902-9B02-F87651C2B328\dismhost.exe | N/A |
| File created | C:\Windows\Installer\e628f69.msi | C:\Windows\system32\msiexec.exe | N/A |
| File opened for modification | C:\Windows\Installer\e628f69.msi | C:\Windows\system32\msiexec.exe | N/A |
Launches sc.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
Browser Information Discovery
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\taskkill.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\Install\{781D0989-7805-4ECE-A2BE-3560CEFEC280}\WaveInstaller-v1.5.18.2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\icacls.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\taskkill.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\takeown.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\takeown.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\dism.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\avg_secure_browser_setup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\takeown.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\ztejan02.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\net.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\net1.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | F:\LDPlayer\LDPlayer9\driverconfig.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\icacls.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\taskkill.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\sc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\memz-trojan_psVT-V1.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
System Network Configuration Discovery: Internet Connection Discovery
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| N/A | N/A | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| N/A | N/A | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\ConfigFlags | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\DeviceDesc | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000\Control | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key enumerated | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\LowerFilters | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000\LogConf | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000\LogConf | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\LowerFilters | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key enumerated | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key enumerated | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\UpperFilters | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Service | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\UpperFilters | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\FriendlyName | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\Service | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key enumerated | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\DeviceDesc | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000\Control | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\~MHz | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\ProcessorNameString | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key enumerated | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp | N/A |
| Key opened | \Registry\Machine\Hardware\Description\System\CentralProcessor | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Windows\system32\runonce.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\FeatureSet | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\FeatureSet | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\VendorIdentifier | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1\Identifier | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Windows\system32\runonce.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Identifier | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
Kills process with taskkill
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513C6D01-E4A3-4F34-9BD9-3D83C35A3498} | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513C6D01-E4A3-4F34-9BD9-3D83C35A3498}\AppName = "AVGBrowserUpdateWebPlugin.exe" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28E08968-59C8-4A77-BEBA-12C9394AE077} | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28E08968-59C8-4A77-BEBA-12C9394AE077}\AppName = "AVGBrowserUpdateBroker.exe" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28E08968-59C8-4A77-BEBA-12C9394AE077}\AppPath = "C:\\Program Files (x86)\\AVG\\Browser\\Update\\1.8.1693.6" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{28E08968-59C8-4A77-BEBA-12C9394AE077}\Policy = "3" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\ldnews.exe = "11001" | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\dnplayer.exe = "11001" | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513C6D01-E4A3-4F34-9BD9-3D83C35A3498}\AppPath = "C:\\Program Files (x86)\\AVG\\Browser\\Update\\1.8.1693.6" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513C6D01-E4A3-4F34-9BD9-3D83C35A3498}\Policy = "3" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\AVG\Browser\Application\AVGBrowser.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\AVG | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software | C:\Windows\system32\msiexec.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\AutoDetect = "0" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\IntranetName = "1" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\AVG\Browser\Update\devmode = "0" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\26 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Classes\Local Settings\MuiCache\27\52C64B7E | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\ | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Program Files\McAfee\WebAdvisor\updater.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Program Files\ReasonLabs\EPP\rsWSC.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Set value (str) | \REGISTRY\USER\.DEFAULT\Software\AVG\Browser\Update\MachineIdDate = "20240813" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key deleted | \REGISTRY\USER\.DEFAULT\Software\Microsoft\RestartManager\Session0000 | C:\Windows\system32\msiexec.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-3346-49D6-8F1C-41B0C4784FF2}\TypeLib\Version = "1.3" | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\Interface\{DDF98EF0-2728-4A8D-8B0F-32627DC56437} | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-647D-45AC-8FE9-F49B3183BA37}\ = "IGuestSessionEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-C71F-4A36-8E5F-A77D01D76090}\ = "IGuestMonitorChangedEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-F4F4-4DD0-9D30-C89B873247EC}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\Interface\{0D311A22-BD24-4C7A-8FC1-117F8D62A781} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-CD54-400C-B858-797BCB82570E} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-1640-41F9-BD74-3EF5FD653250}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-7619-41AA-AECE-B21AC5C1A7E6} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-4BA3-7903-2AA4-43988BA11554}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-80E1-4A8A-93A1-67C5F92A838A}\ = "ICertificate" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{B80EC6B9-55FF-4E4F-B4E8-9BD098DBBAA5}\ProgID\ = "AVGUpdate.CoCreateAsync.1.0" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\Interface\{44367D77-92C0-45E8-840D-0C098E650CE8}\NumMethods\ = "13" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-FD1C-411A-95C5-E9BB1414E632}\TypeLib\Version = "1.3" | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\CLSID\{2B2AD342-8BBC-40AD-AF1B-6887EAB9D3D0}\InprocHandler32\ = "C:\\Users\\Admin\\Wavesor Software\\SWUpdater\\1.3.133.0\\psuser_64.dll" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-08A2-41AF-A05F-D7C661ABAEBE}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{925547A3-663F-4673-A7B7-3FCACCDC4879}\ProxyStubClsid32 | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\Interface\{E053F7BD-D525-49F4-9ADE-5D7E6FCEE775} | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\Interface\{CEF9DF20-AE5B-4A54-B479-9C2AFC1C2683} | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{358EC846-617A-4763-8656-50BF6E0E8AA2}\TypeLib\ = "{358EC846-617A-4763-8656-50BF6E0E8AA2}" | C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\application/x-vnd.update.avgbrowser.com.update3webcontrol.3\CLSID = "{28E08968-59C8-4A77-BEBA-12C9394AE077}" | C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-5FDC-4ABA-AFF5-6A39BBD7C38B}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\VirtualBox.VirtualBoxClient\ = "VirtualBoxClient Class" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-FF5A-4795-B57A-ECD5FFFA18A4}\ProxyStubClsid32\ = "{20191216-1807-4249-5BA5-EA42D66AF0BF}" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-4974-A19C-4DC6-CC98C2269626}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-9B2D-4377-BFE6-9702E881516B}\ = "ISnapshotRestoredEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-5A1D-43F1-6F27-6A0DB298A9A8}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AB785069-B832-4423-B813-47F7422BA6E5}\ProxyStubClsid32\ = "{2E7A212B-A33C-45D6-9EFD-2AB58EFAACF0}" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{BAAD654E-4B50-4C9F-A261-CF29CF884478}\LocalizedString = "@C:\\Program Files (x86)\\AVG\\Browser\\Update\\1.8.1693.6\\goopdate.dll,-3000" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\CLSID\{D7EC6DDA-90E9-44BA-863B-6C3500BB5BDF}\InProcServer32 | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-BCB2-4905-A7AB-CC85448A742B}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-0721-4CDE-867C-1A82ABAF914C}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-1EC6-4883-801D-77F56CFD0103}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WavesorSWUpdater.CredentialDialogUser\CLSID\ = "{D12748C8-5013-45E2-9A24-2FB7C2EEFB7C}" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-0547-448E-BC7C-94E9E173BF57}\NumMethods\ = "43" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A27F7BCA-118B-4330-9B07-9092E8F047E2} | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-E9BB-49B3-BFC7-C5171E93EF38}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Classes\Installer\Products\7EEA7BDE239E6384EA053D0B7B67C65B\Version = "17303197" | C:\Windows\system32\msiexec.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6972DB5C-E9D6-4A81-B352-B415A3A61CA6}\NumMethods\ = "24" | C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-A862-4DC9-8C89-BF4BA74A886A} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-3E78-11E9-B25E-7768F80C0E07}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-42F8-CD96-7570-6A8800E3342C}\NumMethods\ = "15" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\CLSID\{F6994161-37C3-47C9-BE83-C84C33A1CF2A}\InprocServer32\ThreadingModel = "Both" | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-0D96-40ED-AE46-A564D484325E}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-402E-022E-6180-C3944DE3F9C8}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\Interface\{E44B162B-4287-40B0-8E7A-6E251D80B3DF}\NumMethods | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-5637-472A-9736-72019EABD7DE}\NumMethods\ = "13" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\Interface\{D3C865DD-E36B-432E-9E47-554925B86737}\NumMethods\ = "4" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-07DA-41EC-AC4A-3DD99DB35594}\NumMethods\ = "44" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-30E8-447E-99CB-E31BECAE6AE4}\ = "IProgress" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-08A7-4C8F-910D-47AABD67253A}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{20191216-1750-46F0-936E-BD127D5BC264}\1.3\0\win32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-DA7C-44C8-A7AC-9F173490446A} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-eabd-4fa6-960a-f1756c99ea1c} | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-00B1-4E9D-0000-11FA00F9D583}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\WOW6432Node\Interface\{894ADE70-1E5F-4520-A281-CE3BF0309CE6}\ProxyStubClsid32 | C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\Interface\{8129608C-48BD-42A6-9EBC-7B0933A5CFA3}\ = "IAppCommand2" | C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-0FF7-46B7-A138-3C6E5AC946B4}\ = "IGuestDnDTarget" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-5FDC-4ABA-AFF5-6A39BBD7C38B}\TypeLib | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-4A75-437E-B0BB-7E7C90D0DF2A}\ = "IGuestSession" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-5637-472A-9736-72019EABD7DE}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-604D-11E9-92D3-53CB473DB9FB} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\AVGUpdate.OnDemandCOMClassMachine\ = "Google Update Broker Class Factory" | C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-32E7-4F6C-85EE-422304C71B90}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8 | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\F40042E2E5F7E8EF8189FED15519AECE42C3BFA2 | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\F40042E2E5F7E8EF8189FED15519AECE42C3BFA2\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 04000000010000001000000078f2fcaa601f2fb4ebc937ba532e75490f00000001000000300000004ea1b34b10b982a96a38915843507820ad632c6aad8343e337b34d660cd8366fa154544ae80668ae1fdf3931d57e1996530000000100000040000000303e301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c0090000000100000034000000303206082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030106082b060105050703080b00000001000000320000004400690067006900430065007200740020005400720075007300740065006400200052006f006f0074002000470034000000620000000100000020000000552f7bdcf1a7af9e6ce672017f4f12abf77240c78e761ac203d1d9d20ac89988140000000100000014000000ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f1d0000000100000010000000a86dc6a233eb339610f3ed414927c559030000000100000014000000ddfb16cd4931c973a2037d3fc83a4d7d775d05e4190000000100000010000000ffac207997bb2cfe865570179ee037b92000000001000000940500003082059030820378a0030201020210059b1b579e8e2132e23907bda777755c300d06092a864886f70d01010c05003062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f74204734301e170d3133303830313132303030305a170d3338303131353132303030305a3062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f7420473430820222300d06092a864886f70d01010105000382020f003082020a0282020100bfe6907368debbe45d4a3c3022306933ecc2a7252ec9213df28ad859c2e129a73d58ab769acdae7b1b840dc4301ff31ba43816eb56c6976d1dabb279f2ca11d2e45fd6053c520f521fc69e15a57ebe9fa95716595572af689370c2b2ba75996a733294d11044102edf82f30784e6743b6d71e22d0c1bee20d5c9201d63292dceec5e4ec893f821619b34eb05c65eec5b1abcebc9cfcdac34405fb17a66ee77c848a86657579f54588e0c2bb74fa730d956eeca7b5de3adc94f5ee535e731cbda935edc8e8f80dab69198409079c378c7b6b1c4b56a183803108dd8d437a42e057d88f5823e109170ab55824132d7db04732a6e91017c214cd4bcae1b03755d7866d93a31449a3340bf08d75a49a4c2e6a9a067dda427bca14f39b5115817f7245c468f64f7c169887698763d595d4276878997697a48f0e0a2121b669a74cade4b1ee70e63aee6d4ef92923a9e3ddc00e4452589b69a44192b7ec094b4d2616deb33d9c5df4b0400cc7d1c95c38ff721b2b211b7bb7ff2d58c702c4160aab1631844951a76627ef680b0fbe864a633d18907e1bdb7e643a418b8a67701e10f940c211db2542925896ce50e52514774be26acb64175de7aac5f8d3fc9bcd34111125be51050eb31c5ca72162209df7c4c753f63ec215fc420516b6fb1ab868b4fc2d6455f9d20fca11ec5c08fa2b17e0a2699f5e4692f981d2df5d9a9b21de51b0203010001a3423040300f0603551d130101ff040530030101ff300e0603551d0f0101ff040403020186301d0603551d0e04160414ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f300d06092a864886f70d01010c05000382020100bb61d97da96cbe17c4911bc3a1a2008de364680f56cf77ae70f9fd9a4a99b9c9785c0c0c5fe4e61429560b36495d4463e0ad9c9618661b230d3d79e96d6bd654f8d23cc14340ae1d50f552fc903bbb9899696bc7c1a7a868a427dc9df927ae3085b9f6674d3a3e8f5939225344ebc85d03caed507a7d62210a80c87366d1a005605fe8a5b4a7afa8f76d359c7c5a8ad6a23899f3788bf44dd2200bde04ee8c9b4781720dc01432ef30592eaee071f256e46a976f92506d968d687a9ab236147a06f224b9091150d708b1b8897a8423614229e5a3cda22041d7d19c64d9ea26a18b14d74c19b25041713d3f4d7023860c4adc81d2cc3294840d0809971c4fc0ee6b207430d2e03934108521150108e85532de7149d92817504de6be4dd175acd0cafb41b843a5aad3c305444f2c369be2fae245b823536c066f67557f46b54c3f6e285a7926d2a4a86297d21ee2ed4a8bbc1bfd474a0ddf67667eb25b41d03be4f43bf40463e9efc2540051a08a2ac9ce78ccd5ea870418b3ceaf4988aff39299b6b3e6610fd28500e7501ae41b959d19a1b99cb19bb1001eefd00f4f426cc90abcee43fa3a71a5c84d26a535fd895dbc85621d32d2a02b54ed9a57c1dbfa10cf19b78b4a1b8f01b6279553e8b6896d5bbc68d423e88b51a256f9f0a680a0d61eb3bc0f0f537529aaea1377e4de8c8121ad07104711ad873d07d175bccff3667e | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5\Blob = 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 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\742C3192E607E424EB4549542BE1BBC53E6174E2\Blob = 5c0000000100000004000000000400007e0000000100000008000000000010c51e92d201620000000100000020000000e7685634efacf69ace939a6b255b7b4fabef42935b50a265acb5cb6027e44e7009000000010000002a000000302806082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030119000000010000001000000091161b894b117ecdc257628db460cc04030000000100000014000000742c3192e607e424eb4549542be1bbc53e6174e21d000000010000001000000027b3517667331ce2c1e74002b5ff2298140000000100000014000000e27f7bd877d5df9e0a3f9eb4cb0e2ea9efdb69770b000000010000004600000056006500720069005300690067006e00200043006c006100730073002000330020005000750062006c006900630020005000720069006d00610072007900200043004100000004000000010000001000000010fc635df6263e0df325be5f79cd67670f0000000100000010000000d7c63be0837dbabf881d4fbf5f986ad853000000010000002400000030223020060a2b0601040182375e010130123010060a2b0601040182373c0101030200c07a000000010000000e000000300c060a2b0601040182375e010268000000010000000800000000003db65bd9d5012000000001000000400200003082023c308201a5021070bae41d10d92934b638ca7b03ccbabf300d06092a864886f70d0101020500305f310b300906035504061302555331173015060355040a130e566572695369676e2c20496e632e31373035060355040b132e436c6173732033205075626c6963205072696d6172792043657274696669636174696f6e20417574686f72697479301e170d3936303132393030303030305a170d3238303830313233353935395a305f310b300906035504061302555331173015060355040a130e566572695369676e2c20496e632e31373035060355040b132e436c6173732033205075626c6963205072696d6172792043657274696669636174696f6e20417574686f7269747930819f300d06092a864886f70d010101050003818d0030818902818100c95c599ef21b8a0114b410df0440dbe357af6a45408f840c0bd133d9d911cfee02581f25f72aa84405aaec031f787f9e93b99a00aa237dd6ac85a26345c77227ccf44cc67571d239ef4f42f075df0a90c68e206f980ff8ac235f702936a4c986e7b19a20cb53a585e73dbe7d9afe244533dc7615ed0fa271644c652e816845a70203010001300d06092a864886f70d010102050003818100bb4c122bcf2c26004f1413dda6fbfc0a11848cf3281c67922f7cb6c5fadff0e895bc1d8f6c2ca851cc73d8a4c053f04ed626c076015781925e21f1d1b1ffe7d02158cd6917e3441c9c194439895cdc9c000f568d0299eda290454ce4bb10a43df032030ef1cef8e8c9518ce6629fe69fc07db7729cc9363a6b9f4ea8ff640d64 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 040000000100000010000000e94fb54871208c00df70f708ac47085b0f0000000100000030000000c130bba37b8b350e89fd5ed76b4f78777feee220d3b9e729042bef6af46e8e4c1b252e32b3080c681bc9a8a1afdd0a3c0b000000010000004200000047006c006f00620061006c005300690067006e00200043006f006400650020005300690067006e0069006e006700200052006f006f007400200052003400350000006200000001000000200000007b9d553e1c92cb6e8803e137f4f287d4363757f5d44b37d52f9fca22fb97df8653000000010000001f000000301d301b060567810c010330123010060a2b0601040182373c0101030200c01400000001000000140000001f00bf46800afc7839b7a5b443d95650bbce963b1d00000001000000100000005467b0adde8d858e30ee517b1a19ecd909000000010000000c000000300a06082b060105050703030300000001000000140000004efc31460c619ecae59c1bce2c008036d94c84b81900000001000000100000005d1b8ff2c30f63f5b536edd400f7f9b4200000000100000076050000308205723082035aa00302010202107653feac75464893f5e5d74a483a4ef8300d06092a864886f70d01010c05003053310b300906035504061302424531193017060355040a1310476c6f62616c5369676e206e762d73613129302706035504031320476c6f62616c5369676e20436f6465205369676e696e6720526f6f7420523435301e170d3230303331383030303030305a170d3435303331383030303030305a3053310b300906035504061302424531193017060355040a1310476c6f62616c5369676e206e762d73613129302706035504031320476c6f62616c5369676e20436f6465205369676e696e6720526f6f742052343530820222300d06092a864886f70d01010105000382020f003082020a0282020100b62dc530dd7ae8ab903d0372b03a4b991661b2e5ffa5671d371ce57eec9383aa84f5a3439b98458ab863575d9b00880425e9f868924b82d84bc94a03f3a87f6a8f8a6127bda144d0fdf53f22c2a34f918db305b22882915dfb5988050b9706c298f82ca73324ee503a41ccf0a0b07b1d4dd2a8583896e9dff91b91bb8b102cd2c7431da20974a180af7be6330a0c596b8ebcf4ab5a977b7fae55fb84f080fe844cd7e2babdc475a16fbd61107444b29807e274abff68dc6c263ee91fe5e00487ad30d30c8d037c55b816705c24782025eb676788abba4e34986b7011de38cad4bea1c09ce1df1e0201d83be1674384b6cffc74b72f84a3bfba09373d676cb1455c1961ab4183f5ac1deb770d464773cebfbd9595ed9d2b8810fefa58e8a757e1b3cfa85ae907259b12c49e80723d93dc8c94df3b44e62680fcd2c303f08c0cd245d62ee78f989ee604ee426e677e42167162e704f960c664a1b69c81214e2bc66d689486c699747367317a91f2d48c796e7ca6bb7e466f4dc585122bcf9a224408a88537ce07615706171224c0c43173a1983557477e103a45d92da4519098a9a00737c4651aaa1c6b1677f7a797ec3f1930996f31fbea40b2e7d2c4fac9d0f050767459fa8d6d1732bef8e97e03f4e787759ad44a912c850313022b4280f2896a36cfc84ca0ce9ef8cb8dad16a7d3ded59b18a7c6923af18263f12e0e2464df0203010001a3423040300e0603551d0f0101ff040403020186300f0603551d130101ff040530030101ff301d0603551d0e041604141f00bf46800afc7839b7a5b443d95650bbce963b300d06092a864886f70d01010c050003820201005e2bba749734445f764828408493ee016ee9a1b3d68025e67be4bc09913d0ffc76add7d43020bb8f60d091d61cf29cef781a2b943202c12496525202d0f3d1fcf29b396e99e11f8e43417d9a1e5bc95d9a84fc26e687f3747226ada41bd93d3b6a52a03c091e2f1e7bb333b445c7f7acb1af9360ad76aeb8b21578eb836aebffdb46ab24e5ee02fa901f59c02f5dd6b75da45c10b77253f8414eccfa781a254acafe85624361c3b437aa81d2f4d63a0fbd8d597e3047de2b6be72150335fd4679bd4b8679f3c279903ff85438e7312ca20cde861d5b166dc17d6396d0fdbcf2337a182894e1c6b3fd6a0cdaa079d3e4226aad70ceefa47bf1a527ed17581d3c98a62176d4f88a021a0263eaf6dd962301fe99828ae6e8dd58e4c726693808d2ae355c760679042565c22510fb3dc4e39ee4dddd91d7810543b6ed0976f03b51eb22373c612b29a64d0fc958524a8ffdfa1b0dc9140aedf0933abb9dd92b7f1cc91743b69eb67971b90bfe7c7a06f71bb57bfb78f5aed7a406a16cd80842d2fe102d4249443b315fc0c2b1bfd716ffccbbc75173a5e83d2c9b32f1bd59c8d7f54fe7e7ee456a387a79de1595294418f6d5bbe86959aff1a76dd40d2514a70b41f336323773fec271e59e40887ed34824a0f3ffea01dc1f56773458678f4aa29e92787c619dbc61314c33949874da097e06513f59d7756e9dab358c73af2c0cd82 | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\F40042E2E5F7E8EF8189FED15519AECE42C3BFA2\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EFC31460C619ECAE59C1BCE2C008036D94C84B8\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\4EB6D578499B1CCF5F581EAD56BE3D9B6744A5E5\Blob = 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 | C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 332079.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 737217.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 422201.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Runs net.exe
Script User-Agent
| Description | Indicator | Process | Target |
| HTTP User-Agent header | Mozilla/4.0 (compatible; Win32; WinHttp.WinHttpRequest.5) | N/A | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: LoadsDriver
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SYSTEM32\fltmc.exe | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\avg_secure_browser_setup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\LDPlayer9_ens_com.ninjamuffin99.funkin_25567197_ld.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\ajD93F.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\driverconfig.exe | N/A |
| N/A | N/A | C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe | N/A |
| N/A | N/A | C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe | N/A |
| N/A | N/A | C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe | N/A |
| N/A | N/A | C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.com
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff97c7046f8,0x7ff97c704708,0x7ff97c704718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2092 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2144 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2844 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3272 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5332 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5332 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3044 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2760 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5380 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2184 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5388 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4996 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4968 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3564 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6388 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5904 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6576 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6684 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7220 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7352 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7468 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7608 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8212 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8204 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8508 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8232 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8980 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8412 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7332 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9372 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5820 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7308 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6236 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7924 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7356 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7832 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7192 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6364 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7592 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9188 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6360 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6772 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9048 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8532 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8880 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5496 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5468 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8948 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8840 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6632 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5920 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3272 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7244 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9700 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7480 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7712 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9508 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9472 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8140 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10216 /prefetch:1
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x394 0x2f8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9112 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7520 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6212 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10356 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10088 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10608 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10564 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10296 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10644 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10732 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9084 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5116 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8380 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11176 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2064,246640304356150767,2937554316558969968,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11156 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\Downloads\avg_secure_browser_setup.exe
"C:\Users\Admin\Downloads\avg_secure_browser_setup.exe"
C:\Users\Admin\AppData\Local\Temp\ajD93F.exe
"C:\Users\Admin\AppData\Local\Temp\ajD93F.exe" /relaunch=8 /was_elevated=1 /tagdata
C:\Users\Admin\Downloads\LDPlayer9_ens_com.ninjamuffin99.funkin_25567197_ld.exe
"C:\Users\Admin\Downloads\LDPlayer9_ens_com.ninjamuffin99.funkin_25567197_ld.exe"
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe
AVGBrowserUpdateSetup.exe /silent /install "bundlename=AVG Secure Browser&appguid={48F69C39-1356-4A7B-A899-70E3539D4982}&appname=AVG Secure Browser&needsadmin=true&lang=en-US&brand=9228&installargs=--no-create-user-shortcuts --make-chrome-default --force-default-win10 --import-cookies --auto-launch-chrome"
C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe
"C:\Program Files (x86)\GUMF966.tmp\AVGBrowserUpdate.exe" /silent /install "bundlename=AVG Secure Browser&appguid={48F69C39-1356-4A7B-A899-70E3539D4982}&appname=AVG Secure Browser&needsadmin=true&lang=en-US&brand=9228&installargs=--no-create-user-shortcuts --make-chrome-default --force-default-win10 --import-cookies --auto-launch-chrome"
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /regsvc
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /regserver
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe"
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe"
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserUpdateComRegisterShell64.exe"
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /ping PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz48cmVxdWVzdCBwcm90b2NvbD0iMy4wIiB1cGRhdGVyPSJPbWFoYSIgb21haGFpZD0iezFDODlFRjJGLUE4OEUtNERFMC05N0ZFLUNCNDBDOEU0RkVFQX0iIHVwZGF0ZXJ2ZXJzaW9uPSIxLjguMTY5My42IiBzaGVsbF92ZXJzaW9uPSIxLjguMTY5My42IiBpc21hY2hpbmU9IjEiIGlzX29tYWhhNjRiaXQ9IjAiIGlzX29zNjRiaXQ9IjEiIHNlc3Npb25pZD0iezQ3RTg0NkRELTA5OTItNEI1NC1BMDc4LTdCMzMwMDY2NkRDNX0iIGNlcnRfZXhwX2RhdGU9IjIwMjUwOTE3IiB1c2VyaWQ9Ins2MzU3QkJEOS05RUQzLTQ5MTUtQjE0QS03QkU5QkRFNjAwMTV9IiB1c2VyaWRfZGF0ZT0iMjAyNDA4MTMiIG1hY2hpbmVpZD0iezAwMDBDQkM0LUFBNTMtOTMyRC1GNjQ2LTgzNTZEQzZDRUMyNH0iIG1hY2hpbmVpZF9kYXRlPSIyMDI0MDgxMyIgaW5zdGFsbHNvdXJjZT0ib3RoZXJpbnN0YWxsY21kIiB0ZXN0c291cmNlPSJhdXRvIiByZXF1ZXN0aWQ9IntEQjI2RDA0Ni00QjU2LTRERkItOEZEQy1DQkNEREFFMTUwQjZ9IiBkZWR1cD0iY3IiIGRvbWFpbmpvaW5lZD0iMCI-PGh3IHBoeXNtZW1vcnk9IjgiIHNzZT0iMSIgc3NlMj0iMSIgc3NlMz0iMSIgc3NzZTM9IjEiIHNzZTQxPSIxIiBzc2U0Mj0iMSIgYXZ4PSIxIi8-PG9zIHBsYXRmb3JtPSJ3aW4iIHZlcnNpb249IjEwLjAuMTkwNDEuMTI4OCIgc3A9IiIgYXJjaD0ieDY0Ii8-PGFwcCBhcHBpZD0iezFDODlFRjJGLUE4OEUtNERFMC05N0ZFLUNCNDBDOEU0RkVFQX0iIHZlcnNpb249IiIgbmV4dHZlcnNpb249IjEuOC4xNjkzLjYiIGxhbmc9ImVuLVVTIiBicmFuZD0iOTIyOCIgY2xpZW50PSIiPjxldmVudCBldmVudHR5cGU9IjIiIGV2ZW50cmVzdWx0PSIxIiBlcnJvcmNvZGU9IjAiIGV4dHJhY29kZTE9IjAiIGluc3RhbGxfdGltZV9tcz0iMTE4OSIvPjwvYXBwPjwvcmVxdWVzdD4
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /handoff "bundlename=AVG Secure Browser&appguid={48F69C39-1356-4A7B-A899-70E3539D4982}&appname=AVG Secure Browser&needsadmin=true&lang=en-US&brand=9228&installargs=--no-create-user-shortcuts --make-chrome-default --force-default-win10 --import-cookies --auto-launch-chrome" /installsource otherinstallcmd /sessionid "{47E846DD-0992-4B54-A078-7B3300666DC5}" /silent
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc
C:\Users\Admin\Downloads\Wave Browser.exe
"C:\Users\Admin\Downloads\Wave Browser.exe"
C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe
"C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe" /install "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1"
C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe
"C:\Program Files (x86)\Wavesor\Temp\GUM60AC.tmp\SWUpdater.exe" /install "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1"
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /regserver
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\1.3.133.0\SWUpdaterComRegisterShell64.exe" /user
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ping 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
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /handoff "bundlename=WaveBrowser&appguid={EB149AD2-CE4E-4F51-B7FC-A149FAA4CCAF}&appname=WaveBrowser&needsadmin=False&lang=en&usagestats=1&installdataindex=1" /installsource otherinstallcmd /sessionid "{2649C4F3-350A-4048-BBC1-495CC608712A}"
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" -Embedding
C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\AVGBrowserInstaller.exe
"C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\AVGBrowserInstaller.exe" --chrome --do-not-launch-chrome --hide-browser-override --show-developer-mode --suppress-first-run-bubbles --default-search-id=3 --default-search=bing.com --adblock-mode-default=0 --no-create-user-shortcuts --make-chrome-default --force-default-win10 --import-cookies --auto-launch-chrome --system-level
C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe
"C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe" --install-archive="C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\SECURE.PACKED.7Z" --chrome --do-not-launch-chrome --hide-browser-override --show-developer-mode --suppress-first-run-bubbles --default-search-id=3 --default-search=bing.com --adblock-mode-default=0 --no-create-user-shortcuts --make-chrome-default --force-default-win10 --import-cookies --auto-launch-chrome --system-level
C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe
"C:\Program Files (x86)\AVG\Browser\Update\Install\{F917EB29-7575-476C-937E-117749802059}\CR_5D977.tmp\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\Crashpad" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x260,0x264,0x268,0x1e4,0x26c,0x7ff6d617bfc0,0x7ff6d617bfcc,0x7ff6d617bfd8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff96d66cc40,0x7ff96d66cc4c,0x7ff96d66cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1980,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1976 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1872,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2096 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2288,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2500 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3080,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3168 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3092,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3192 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4532,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4904,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4916 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=3648,i,3876956908670699383,11439924994309944335,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4420 /prefetch:8
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnplayer.exe /T
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnmultiplayer.exe /T
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnmultiplayerex.exe /T
C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\rsStubActivator.exe
"C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\rsStubActivator.exe" -ip:"dui=5078cc0dbdc1c7191df5b38faec16fc9b56a96fd&dit=20240813005922068&is_silent=true&oc=DOT_RAV_Cross_Solo_LDP&p=bf64&a=103&b=&se=true" -i
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM bugreport.exe /T
C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe
"C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\saBSI.exe" /affid 91082 PaidDistribution=true CountryCode=GB
F:\LDPlayer\LDPlayer9\LDPlayer.exe
"F:\LDPlayer\LDPlayer9\\LDPlayer.exe" -silence -downloader -openid=25567197 -language=en -path="F:\LDPlayer\LDPlayer9\"
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler.exe"
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler64.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler64.exe"
C:\Users\Admin\AppData\Local\Temp\ztejan02.exe
"C:\Users\Admin\AppData\Local\Temp\ztejan02.exe" /silent
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\UnifiedStub-installer.exe
.\UnifiedStub-installer.exe /silent
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
AVGBrowser.exe --heartbeat --install --create-profile
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0xf4,0xf8,0xfc,0xdc,0x100,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
"C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe" -i -bn:ReasonLabs -pn:EPP -lpn:rav_antivirus -url:https://update.reasonsecurity.com/v2/live -dt:10
C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
"C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe" -pn:EPP -lpn:rav_antivirus -url:https://update.reasonsecurity.com/v2/live -bn:ReasonLabs -dt:10
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2300,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=2292 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=1836,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=2364 /prefetch:3
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2084,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=2464 /prefetch:8
C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3556,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=3576 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3564,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=3656 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=3892,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=3908 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3912,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=3940 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4496,i,5533536292453522907,7413891433809876572,262144 --variations-seed-version --mojo-platform-channel-handle=4708 /prefetch:8
C:\Users\Admin\Wavesor Software\SWUpdater\Install\{781D0989-7805-4ECE-A2BE-3560CEFEC280}\WaveInstaller-v1.5.18.2.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\Install\{781D0989-7805-4ECE-A2BE-3560CEFEC280}\WaveInstaller-v1.5.18.2.exe" /installerdata="C:\Users\Admin\AppData\Local\Temp\gui461A.tmp"
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe" --install-archive="C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\wavebrowser.packed.7z" --wid=ieoq27ag --installerdata="C:\Users\Admin\AppData\Local\Temp\gui461A.tmp"
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.18.2 --initial-client-data=0x274,0x278,0x27c,0x250,0x280,0x7ff6372f12d0,0x7ff6372f12dc,0x7ff6372f12e8
C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\installer.exe
"C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\\installer.exe" /setOem:Affid=91082 /s /thirdparty /upgrade
C:\Program Files\McAfee\Temp791408565\installer.exe
"C:\Program Files\McAfee\Temp791408565\installer.exe" /setOem:Affid=91082 /s /thirdparty /upgrade
C:\Windows\SYSTEM32\regsvr32.exe
regsvr32.exe /s "C:\Program Files\McAfee\WebAdvisor\win32\WSSDep.dll"
C:\Windows\SysWOW64\regsvr32.exe
/s "C:\Program Files\McAfee\WebAdvisor\win32\WSSDep.dll"
C:\Windows\SYSTEM32\regsvr32.exe
regsvr32.exe /s "C:\Program Files\McAfee\WebAdvisor\x64\WSSDep.dll"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0x11c,0x12c,0x7ff97c7046f8,0x7ff97c704708,0x7ff97c704718
C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe
"C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2704 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1
F:\LDPlayer\LDPlayer9\dnrepairer.exe
"F:\LDPlayer\LDPlayer9\dnrepairer.exe" listener=394100
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\SysWOW64\net.exe
"net" start cryptsvc
C:\Program Files\McAfee\WebAdvisor\UIHost.exe
"C:\Program Files\McAfee\WebAdvisor\UIHost.exe"
C:\Windows\SysWOW64\net1.exe
C:\Windows\system32\net1 start cryptsvc
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4872 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4928 /prefetch:1
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Softpub.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Wintrust.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"C:\Windows\system32\regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" dssenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" rsaenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" cryptdlg.dll /s
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\vms" /r /d y
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\vms" /grant everyone:F /t
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\\system.vmdk"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
AVGBrowser.exe --silent-launch
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\\system.vmdk" /grant everyone:F /t
C:\Windows\SysWOW64\dism.exe
C:\Windows\system32\dism.exe /Online /English /Get-Features
C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe"
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe" --verbose-logging --installerdata="C:\Users\Admin\AppData\Local\Temp\gui461A.tmp" --create-shortcuts=0 --install-level=0
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2452,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=2304 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=1776,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=2552 /prefetch:3
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2052,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=2660 /prefetch:8
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c dir "C:\Program Files (x86)\McAfee Security Scan" 2>nul
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe
C:\Users\Admin\AppData\Local\Temp\nst4BD8.tmp\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.18.2 --initial-client-data=0x250,0x278,0x27c,0x254,0x280,0x7ff6372f12d0,0x7ff6372f12dc,0x7ff6372f12e8
C:\Users\Admin\AppData\Local\Temp\6C6A7E3B-C130-4902-9B02-F87651C2B328\dismhost.exe
C:\Users\Admin\AppData\Local\Temp\6C6A7E3B-C130-4902-9B02-F87651C2B328\dismhost.exe {20EF115E-9C91-413E-B671-3AD3BAFD0241}
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=2124,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3560 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3712,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3720 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3856,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3864 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4016,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4032 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4020,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3852 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4312,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4324 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4476,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4472 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3480,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4632 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4776,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4796 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4172,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4952 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5092,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5100 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4484,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4468 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3844,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5392 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4308,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5552 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4772,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5700 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5840,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5860 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6012,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6020 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6168,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6176 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3564 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5144 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5080,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6200 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5848,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6448 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6600,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6596 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5384,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6740 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5540,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=4488 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5544,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7020 /prefetch:8
C:\Program Files\McAfee\WebAdvisor\updater.exe
"C:\Program Files\McAfee\WebAdvisor\updater.exe"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5532,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7176 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5536,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7324 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4784,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7344 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6004,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7616 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=7488,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7612 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6164,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7900 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=8168,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=8212 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=8176,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=8336 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=8528,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=7888 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=8820,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=8824 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5852,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=9096 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=4024,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=9252 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=9244,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=9428 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3584,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3568 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=9632,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=9664 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=9764,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=9804 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --install-type=1 --from-installer
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\WaveBrowser\User Data" --annotation=channel= --annotation=plat=Win64 --annotation=prod=WaveBrowser --annotation=ver=1.5.18.2 --initial-client-data=0x120,0x124,0x128,0x104,0x12c,0x7ff96caaccf0,0x7ff96caaccfc,0x7ff96caacd08
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=gpu-process --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2064,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2056 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --start-stack-profiler --field-trial-handle=1800,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2136 /prefetch:3
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2272,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=2444 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=2928,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3012 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=2936,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3144 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3784,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=3800 /prefetch:8
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c dir "C:\Program Files (x86)\McAfee Security Scan" 2>nul
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ping 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-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-PGV2ZW50IGV2ZW50dHlwZT0iMiIgZXZlbnRyZXN1bHQ9IjEiIGVycm9yY29kZT0iMCIgZXh0cmFjb2RlMT0iMCIgc291cmNlX3VybF9pbmRleD0iMCIgdXBkYXRlX2NoZWNrX3RpbWVfbXM9IjE0MDM3IiBkb3dubG9hZF90aW1lX21zPSIzNjQwOSIgZG93bmxvYWRlZD0iMTA2ODExMDgwIiB0b3RhbD0iMTA2ODExMDgwIiBpbnN0YWxsX3RpbWVfbXM9IjMxNzk1Ii8-PC9hcHA-PC9yZXF1ZXN0Pg
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4492,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4480 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4632,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4664 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4640,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4672 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4712,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4676 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4744,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4784 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4756,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5084 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=4796,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5200 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4808,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5316 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4816,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5432 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=4824,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5548 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=4832,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5664 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --instant-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4840,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5780 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6444,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6448 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6440,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6588 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5496 /prefetch:1
C:\Windows\SysWOW64\sc.exe
sc query HvHost
C:\Windows\SysWOW64\sc.exe
sc query vmms
C:\Windows\system32\rundll32.exe
"C:\Windows\system32\rundll32.exe" setupapi.dll,InstallHinfSection DefaultInstall 128 C:\Program Files\ReasonLabs\EPP\x64\rsKernelEngine.inf
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c dir "C:\Program Files (x86)\McAfee Security Scan" 2>nul
C:\Windows\system32\runonce.exe
"C:\Windows\system32\runonce.exe" -r
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5816 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5828 /prefetch:8
C:\Windows\SysWOW64\sc.exe
sc query vmcompute
C:\Windows\System32\grpconv.exe
"C:\Windows\System32\grpconv.exe" -o
C:\Windows\system32\wevtutil.exe
"C:\Windows\system32\wevtutil.exe" im C:\Program Files\ReasonLabs\EPP\x64\rsKernelEngineEvents.xml
C:\Windows\SYSTEM32\fltmc.exe
"fltmc.exe" load rsKernelEngine
C:\Windows\system32\wevtutil.exe
"C:\Windows\system32\wevtutil.exe" im C:\Program Files\ReasonLabs\EPP\x64\elam\evntdrv.xml
C:\Program Files\ReasonLabs\EPP\rsWSC.exe
"C:\Program Files\ReasonLabs\EPP\rsWSC.exe" -i
C:\Program Files\ReasonLabs\EPP\rsWSC.exe
"C:\Program Files\ReasonLabs\EPP\rsWSC.exe"
C:\Program Files\ldplayer9box\Ld9BoxSVC.exe
"C:\Program Files\ldplayer9box\Ld9BoxSVC.exe" /RegServer
C:\Windows\SYSTEM32\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\VBoxC.dll" /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\x86\VBoxClient-x86.dll" /s
C:\Windows\SYSTEM32\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\VBoxProxyStub.dll" /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\x86\VBoxProxyStub-x86.dll" /s
C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe
"C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe" -i
C:\Windows\SysWOW64\sc.exe
"C:\Windows\system32\sc" create Ld9BoxSup binPath= "C:\Program Files\ldplayer9box\Ld9BoxSup.sys" type= kernel start= auto
C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe
"C:\Program Files\ReasonLabs\EPP\rsClientSvc.exe"
C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe
"C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe" -i
C:\Windows\SysWOW64\sc.exe
"C:\Windows\system32\sc" start Ld9BoxSup
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "Ld9BoxSup" -Direction Inbound -Program 'C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe' -RemoteAddress LocalSubnet -Action Allow
C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe
"C:\Program Files\ReasonLabs\EPP\rsEngineSvc.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5916 /prefetch:8
C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe
"C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe" -i
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5916 /prefetch:8
C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe
"C:\Program Files\ReasonLabs\EDR\rsEDRSvc.exe"
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "Ld9BoxNat" -Direction Inbound -Program 'C:\Program Files\ldplayer9box\VBoxNetNAT.exe' -RemoteAddress LocalSubnet -Action Allow
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "dnplayer" -Direction Inbound -Program 'F:\LDPlayer\LDPlayer9\dnplayer.exe' -RemoteAddress LocalSubnet -Action Allow
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3732 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5228 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5964 /prefetch:1
F:\LDPlayer\LDPlayer9\driverconfig.exe
"F:\LDPlayer\LDPlayer9\driverconfig.exe"
C:\Windows\SysWOW64\takeown.exe
"takeown" /f F:\LDPlayer\ldmutiplayer\ /r /d y
C:\Windows\SysWOW64\icacls.exe
"icacls" F:\LDPlayer\ldmutiplayer\ /grant everyone:F /t
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2092,13102240124755552970,16855914731331110214,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5180 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --enable-protect
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowserProtect.exe" --registration reg-task --taskintr PT10M --runonce
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=6836,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=6744 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6516,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6716 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=6584,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=5108 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProfileImport --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=6476,i,15150754684160311098,15554040919195862043,262144 --variations-seed-version --mojo-platform-channel-handle=3492 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6536,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=784 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6816,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6844 /prefetch:1
\??\c:\program files\reasonlabs\epp\rsHelper.exe
"c:\program files\reasonlabs\epp\rsHelper.exe"
\??\c:\program files\reasonlabs\EPP\ui\EPP.exe
"c:\program files\reasonlabs\EPP\ui\EPP.exe" --minimized --first-run
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" "c:\program files\reasonlabs\EPP\ui\app.asar" --engine-path="c:\program files\reasonlabs\EPP" --minimized --first-run
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP" --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=1924 --field-trial-handle=1928,i,17431909936680385655,14627248900370602566,262144 --disable-features=SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP" --standard-schemes=mc --secure-schemes=mc --bypasscsp-schemes --cors-schemes --fetch-schemes --service-worker-schemes --streaming-schemes --mojo-platform-channel-handle=2096 --field-trial-handle=1928,i,17431909936680385655,14627248900370602566,262144 --disable-features=SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP" --standard-schemes=mc --secure-schemes=mc --bypasscsp-schemes --cors-schemes --fetch-schemes --service-worker-schemes --streaming-schemes --app-user-model-id=com.reasonlabs.epp --app-path="C:\Program Files\ReasonLabs\Common\Client\v1.4.2\resources\app.asar" --enable-sandbox --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=1496 --field-trial-handle=1928,i,17431909936680385655,14627248900370602566,262144 --disable-features=SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1
C:\Windows\system32\wbem\WmiApSrv.exe
C:\Windows\system32\wbem\WmiApSrv.exe
C:\program files\reasonlabs\epp\rsLitmus.A.exe
"C:\program files\reasonlabs\epp\rsLitmus.A.exe"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --single-argument https://discord.gg/4bUcwDd53d
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
F:\LDPlayer\LDPlayer9\dnplayer.exe
"F:\LDPlayer\LDPlayer9\\dnplayer.exe" downloadpackage=com.ninjamuffin99.funkin|package=com.ninjamuffin99.funkin
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=gpu-process --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2112,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=2108 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --field-trial-handle=1912,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=2232 /prefetch:3
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --field-trial-handle=2360,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=2492 /prefetch:8
C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\elevation_service.exe"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=3264,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3276 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=3280,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3316 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=4236,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4300 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=4420,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4452 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4580,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4640 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4856,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4876 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4924,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4916 /prefetch:2
C:\Windows\SysWOW64\sc.exe
sc query HvHost
C:\Program Files\ldplayer9box\Ld9BoxSVC.exe
"C:\Program Files\ldplayer9box\Ld9BoxSVC.exe" -Embedding
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4804,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4780 /prefetch:1
C:\Windows\SysWOW64\sc.exe
sc query vmms
C:\Windows\SysWOW64\sc.exe
sc query vmcompute
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\..\system.vmdk" --uuid 20160302-bbbb-bbbb-54d7-bbbb00000000
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=5640,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3448 /prefetch:8
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\leidian0\data.vmdk" --uuid 20160302-cccc-cccc-54d7-000000000000
C:\Windows\System32\Conhost.exe
\??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\leidian0\sdcard.vmdk" --uuid 20160302-dddd-dddd-54d7-000000000000
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Windows\System32\Conhost.exe
\??\C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6948,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6912 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=4980,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6128 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5076,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7604 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6044,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7852 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4804,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8000 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5100,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8136 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7336,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8284 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7376,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8428 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7388,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8568 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7312,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8712 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7396,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8868 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7432,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8740 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7452,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9144 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7472,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9296 /prefetch:8
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\setup.exe
setup.exe /silent --create-shortcuts=0 --install-level=1 --system-level
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\setup.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\setup.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\Crashpad" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x27c,0x280,0x284,0x258,0x288,0x7ff68a43bfc0,0x7ff68a43bfcc,0x7ff68a43bfd8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=shortcut-pin-helper /prefetch:8 startpin "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
AVGBrowser.exe --check-run=src=installer
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=3428,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4832 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --field-trial-handle=4424,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=5748 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=5672,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6224 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=shortcut-pin-helper /prefetch:8 has-startpin "C:\Users\Public\Desktop\AVG Secure Browser.lnk"
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=7312,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7328 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=shortcut-pin-helper /prefetch:8 startpin "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Secure Browser.lnk"
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --force-configure-user-settings
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\Crashpad" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x27c,0x280,0x284,0x258,0x288,0x7ff66cfbbfc0,0x7ff66cfbbfcc,0x7ff66cfbbfd8
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe" --system-level --verbose-logging --installerdata="C:\Program Files\AVG\Browser\Application\initial_preferences" --create-shortcuts=1 --install-level=0 --no-pin-startmenu
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe
"C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\chrmstp.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Program Files\Crashpad" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x27c,0x280,0x284,0x258,0x288,0x7ff66cfbbfc0,0x7ff66cfbbfcc,0x7ff66cfbbfd8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=shortcut-pin-helper /prefetch:8 has-startpin "C:\Users\Public\Desktop\AVG Secure Browser.lnk"
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6204,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9372 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7700,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9408 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8144,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8900 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6892,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9412 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9380,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7056 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8040,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9088 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9392,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7844 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9376,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8024 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9300,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9424 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8044,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9160 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8000,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4580 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9416,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8800 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8116,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7208 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7800,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7788 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7808,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7784 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6932,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9328 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7156,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9312 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6152,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9004 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7580,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6776 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7392,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9464 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8508,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9572 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9720,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9728 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7476,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7384 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10012,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10024 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10048,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9708 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10316,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10324 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10468,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10484 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10004,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10016 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7504,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10308 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9712,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10476 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=11176,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11140 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=11220,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11236 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=11484,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11516 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11452,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11428 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11716,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11732 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11888,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11724 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12076,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12028 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12080,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12212 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12352,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12368 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12344,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12356 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12648,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12656 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11100,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12640 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12928,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12808 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13048,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13056 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13052,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13200 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13208,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13348 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13204,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13504 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13656,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13660 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13668,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13688 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13952,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13832 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=14096,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=696 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=14104,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14124 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13672,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14396 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13956,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14400 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4868,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14808 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6180,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14884 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --enable-protect
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --field-trial-handle=8020,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7992 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\AVG\Browser\User Data" --url=fake_url --annotation=plat=Win64 --annotation=prod=AVG --annotation=ver=127.0.25891.89 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff96da9f7a0,0x7ff96da9f7ac,0x7ff96da9f7b8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=11684,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11660 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=11700,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10768 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=10736,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10692 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=12272,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12292 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=12008,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10628 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=11472,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9164 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=9992,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8744 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=10588,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10572 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=6224,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10600 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=14660,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14608 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=11736,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12724 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=8840,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11840 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12656,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11804 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=11872,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5392 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=7144,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7108 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=12516,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14572 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=8796,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7228 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8824,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4568 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=7280,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5144 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=5132,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8660 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=6964,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5404 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=7440,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5380 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10920,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9664 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=8828,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9676 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12060,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10924 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=14620,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=6296 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=13648,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10208 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9836,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5160 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12200,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7212 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11396,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9340 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=12568,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8232 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=8532,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5936 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=14200,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8492 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=8496,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13332 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --start-stack-profiler --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=14936,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7508 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --field-trial-handle=14908,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7244 /prefetch:1
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP" --standard-schemes=mc --secure-schemes=mc --bypasscsp-schemes --cors-schemes --fetch-schemes --service-worker-schemes --streaming-schemes --app-user-model-id=com.reasonlabs.epp --app-path="C:\Program Files\ReasonLabs\Common\Client\v1.4.2\resources\app.asar" --enable-sandbox --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3016 --field-trial-handle=1928,i,17431909936680385655,14627248900370602566,262144 --disable-features=SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --field-trial-handle=14592,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10568 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=12840,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5760 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=13852,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=7444 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5788,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11560 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=10476,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8352 /prefetch:8
C:\Users\Admin\Downloads\memz-trojan_psVT-V1.exe
"C:\Users\Admin\Downloads\memz-trojan_psVT-V1.exe"
C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp
"C:\Users\Admin\AppData\Local\Temp\is-P6MG3.tmp\memz-trojan_psVT-V1.tmp" /SL5="$8038C,1573616,832512,C:\Users\Admin\Downloads\memz-trojan_psVT-V1.exe"
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --field-trial-handle=12672,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14932 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5104,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6584 /prefetch:2
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /ua /installsource scheduler
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /c
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /cr
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler.exe"
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler64.exe
"C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler64.exe"
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /registermsihelper
C:\Windows\system32\msiexec.exe
C:\Windows\system32\msiexec.exe /V
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe
"C:\Program Files\ReasonLabs\Common\Client\v1.4.2\rsAppUI.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --user-data-dir="C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP" --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAAAAAA4AAAAAAAAAAAAAABEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --mojo-platform-channel-handle=3816 --field-trial-handle=1928,i,17431909936680385655,14627248900370602566,262144 --disable-features=SpareRendererForSitePerProcess,WinDelaySpellcheckServiceInit,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6608,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6312 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5744,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=5108 /prefetch:8
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /c
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ua /installsource scheduler
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /cr
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /ua /installsource core
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" /registermsihelper
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
"C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe" /svc
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --field-trial-handle=12768,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13732 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --field-trial-handle=9172,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12692 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=140 --field-trial-handle=13140,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=1532 /prefetch:1
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
"C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe" -Embedding
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=142 --field-trial-handle=8280,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13744 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=141 --field-trial-handle=4760,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13924 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=13528,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13068 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=144 --field-trial-handle=13068,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11288 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5404,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=4464 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=146 --field-trial-handle=10772,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13196 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=8092,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=5064 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=8424,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=5952 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=148 --field-trial-handle=9324,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11260 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=149 --field-trial-handle=12676,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=9224 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=150 --field-trial-handle=10312,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10008 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=151 --field-trial-handle=12792,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10224 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6596,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6500 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=152 --field-trial-handle=13888,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14604 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=13864,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13192 /prefetch:8
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c dir "C:\Program Files (x86)\McAfee Security Scan" 2>nul
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=154 --field-trial-handle=6304,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13820 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=155 --field-trial-handle=12780,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11224 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=156 --field-trial-handle=13924,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8168 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=157 --field-trial-handle=11104,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=11312 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --start-stack-profiler --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=158 --field-trial-handle=7500,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8504 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=159 --field-trial-handle=7444,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=13752 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=160 --field-trial-handle=9984,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12692 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=161 --field-trial-handle=14524,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10576 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=9652,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=14552 /prefetch:8
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6532,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=5108 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6396,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3252 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7348,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6408 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6520,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3816 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7892,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=8036 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=7508,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=3472 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=7252,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=4832 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=3524,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7260 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=163 --field-trial-handle=9632,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=10204 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6580,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7248 /prefetch:1
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --extension-process --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6544,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=6540 /prefetch:2
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=164 --field-trial-handle=10228,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12756 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=renderer --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7696,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7724 /prefetch:1
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=11224,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=8456 /prefetch:8
C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe
"C:\Users\Admin\Wavesor Software\WaveBrowser\wavebrowser.exe" --type=renderer --extension-process --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=166 --field-trial-handle=10532,i,10012201759712422602,6813470736138050601,262144 --variations-seed-version=15 --mojo-platform-channel-handle=12120 /prefetch:2
C:\Program Files\AVG\Browser\Application\AVGBrowser.exe
"C:\Program Files\AVG\Browser\Application\AVGBrowser.exe" --type=utility --utility-sub-type=unzip.mojom.Unzipper --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --field-trial-handle=6860,i,1337434293514537455,6465222307533139091,262144 --variations-seed-version --mojo-platform-channel-handle=7292 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | google.com | udp |
| NL | 172.217.23.206:80 | google.com | tcp |
| NL | 172.217.23.206:80 | google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| NL | 142.250.179.196:80 | www.google.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | support.google.com | udp |
| US | 8.8.8.8:53 | 206.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.221.184.93.in-addr.arpa | udp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 196.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.36.251.142.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.236.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| NL | 142.250.179.196:80 | www.google.com | tcp |
| GB | 2.18.27.76:443 | www.bing.com | tcp |
| GB | 2.18.27.76:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| GB | 2.18.27.82:443 | th.bing.com | tcp |
| GB | 2.18.27.82:443 | th.bing.com | tcp |
| GB | 2.18.27.76:443 | th.bing.com | tcp |
| GB | 2.18.27.76:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | bing.com | udp |
| US | 8.8.8.8:53 | 76.27.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.27.18.2.in-addr.arpa | udp |
| US | 13.107.21.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| IE | 40.126.31.67:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 200.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.bingapis.com | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.159.190.20.in-addr.arpa | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | 167.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | friday-night-funkin.en.softonic.com | udp |
| US | 151.101.193.91:443 | friday-night-funkin.en.softonic.com | tcp |
| US | 151.101.193.91:443 | friday-night-funkin.en.softonic.com | tcp |
| US | 151.101.193.91:443 | friday-night-funkin.en.softonic.com | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | softonic.com | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 151.101.1.91:443 | images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | images.sftcdn.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.193.91:443 | images.sftcdn.net | tcp |
| US | 151.101.193.91:443 | images.sftcdn.net | tcp |
| US | 199.232.213.91:443 | softonic.com | tcp |
| US | 199.232.213.91:443 | softonic.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| GB | 13.224.222.87:443 | sdk.privacy-center.org | tcp |
| NL | 142.250.179.162:443 | securepubads.g.doubleclick.net | tcp |
| US | 151.101.193.91:443 | images.sftcdn.net | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 91.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.213.232.199.in-addr.arpa | udp |
| US | 151.101.1.91:443 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | syndicatedsearch.goog | udp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | tcp |
| NL | 142.250.179.162:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| GB | 18.172.148.233:443 | www.datadoghq-browser-agent.com | tcp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| GB | 18.172.148.233:443 | www.datadoghq-browser-agent.com | tcp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| NL | 142.251.39.123:443 | storage.googleapis.com | tcp |
| US | 151.101.65.91:443 | di-images.sftcdn.net | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.223.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.148.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| GB | 52.84.90.40:443 | config.aps.amazon-adsystem.com | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | 142.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 104.26.7.141:443 | cdn.btmessage.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| US | 8.8.8.8:53 | 40.90.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.64.8.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| GB | 108.138.233.123:443 | api.privacy-center.org | tcp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | 8ea05eab8f2acc8e5f5b7f1a9a9e1830.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | wct.softonic.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| NL | 142.250.179.193:443 | 8ea05eab8f2acc8e5f5b7f1a9a9e1830.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | brightcombid.marphezis.com | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | 123.233.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 172.67.74.173:443 | wct.softonic.com | tcp |
| GB | 18.172.154.232:443 | aax.amazon-adsystem.com | tcp |
| IE | 52.48.95.220:443 | ap.lijit.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| IE | 54.194.128.31:443 | ad.360yield.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| IE | 54.73.15.147:443 | id.crwdcntrl.net | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | tcp |
| NL | 172.217.168.194:443 | partner.googleadservices.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| GB | 18.245.143.58:443 | tags.crwdcntrl.net | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 172.64.152.89:443 | cdn-ima.33across.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| NL | 142.251.39.97:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| GB | 2.22.144.155:80 | apps.identrust.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| NL | 172.217.168.194:443 | partner.googleadservices.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| GB | 18.245.143.58:443 | tags.crwdcntrl.net | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| NL | 142.250.102.154:443 | stats.g.doubleclick.net | tcp |
| NL | 172.217.168.195:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 142.251.39.97:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| NL | 142.250.179.174:443 | ampcid.google.com | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 8.8.8.8:53 | gem.gbc.criteo.com | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | ag.gbc.criteo.com | udp |
| US | 172.67.74.173:443 | wct.softonic.com | tcp |
| NL | 185.235.87.182:443 | gem.gbc.criteo.com | tcp |
| FR | 178.250.7.13:443 | dnacdn.net | tcp |
| FR | 185.235.86.80:443 | ag.gbc.criteo.com | tcp |
| NL | 142.250.102.154:443 | stats.g.doubleclick.net | udp |
| FR | 185.235.86.80:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.182:443 | gem.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | 193.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.74.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.154.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 220.95.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.152.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.203.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.128.194.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.15.73.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.139.4.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.143.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.102.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.7.250.178.in-addr.arpa | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 52.95.118.179:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | 179.118.95.52.in-addr.arpa | udp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | udp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | tcp |
| NL | 142.251.39.102:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| NL | 142.250.179.162:443 | securepubads.g.doubleclick.net | udp |
| NL | 142.251.39.102:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | 42.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| GB | 184.26.56.245:443 | ads.pubmatic.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| GB | 184.25.192.27:443 | contextual.media.net | tcp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| GB | 184.26.56.228:443 | acdn.adnxs.com | tcp |
| DE | 138.201.8.249:443 | sync.richaudience.com | tcp |
| DE | 138.201.8.249:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | 245.56.26.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.192.25.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| GB | 92.123.143.216:443 | player.aniview.com | tcp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 54.224.138.6:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | bc-sync.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 54.224.220.238:443 | api-2-0.spot.im | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| IE | 52.208.27.186:443 | match.prod.bidr.io | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | 228.56.26.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.120.38.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.143.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.138.224.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 52.71.1.43:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.27.208.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.220.224.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.108.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 151.101.130.49:443 | sync-tm.everesttech.net | tcp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| DK | 37.157.4.28:443 | c1.adform.net | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| IE | 34.249.222.253:443 | jadserve.postrelease.com | tcp |
| US | 172.67.40.173:443 | spl.zeotap.com | tcp |
| NL | 154.57.158.116:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 192.132.33.69:443 | bttrack.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| GB | 23.214.129.249:443 | secure-assets.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| GB | 184.25.193.73:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | 78.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.4.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.222.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.8.201.138.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.1.71.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.140.121.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.129.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.193.25.184.in-addr.arpa | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cdn-download.avgbrowser.com | udp |
| GB | 92.123.142.147:443 | cdn-download.avgbrowser.com | tcp |
| GB | 92.123.142.147:443 | cdn-download.avgbrowser.com | tcp |
| US | 8.8.8.8:53 | 147.142.123.92.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 199.232.213.91:443 | softonic.com | udp |
| US | 104.26.7.141:443 | api.btmessage.com | tcp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| US | 8.8.8.8:53 | 14.210.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7fd1ef4cc7dd924cefb97175106410d1.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| NL | 172.217.168.195:443 | www.google.co.uk | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 35.214.240.157.in-addr.arpa | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 89.149.193.85:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| IE | 52.208.27.186:443 | match.prod.bidr.io | tcp |
| US | 52.71.1.43:443 | sync.srv.stackadapt.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | leap.ldplayer.gg | udp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| GB | 163.181.57.235:443 | leap.ldplayer.gg | tcp |
| US | 8.8.8.8:53 | www.ldplayer.net | udp |
| FR | 185.235.86.60:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.184:443 | gem.gbc.criteo.com | tcp |
| NL | 185.235.87.184:443 | gem.gbc.criteo.com | tcp |
| GB | 163.181.57.237:443 | www.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 235.57.181.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.57.181.163.in-addr.arpa | udp |
| FR | 185.235.86.60:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | 664711a75995d66f5c4779e6e65d7226.safeframe.googlesyndication.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| FR | 178.250.7.13:443 | dnacdn.net | tcp |
| FR | 185.235.86.80:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.182:443 | gem.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | js.adscale.de | udp |
| GB | 18.245.143.68:443 | js.adscale.de | tcp |
| US | 8.8.8.8:53 | ih.adscale.de | udp |
| DE | 18.198.31.236:443 | ih.adscale.de | tcp |
| US | 8.8.8.8:53 | 236.31.198.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.143.245.18.in-addr.arpa | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 8.8.8.8:53 | encdn.ldmnq.com | udp |
| US | 8.8.8.8:53 | cmp.setupcmp.com | udp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| GB | 18.172.153.128:443 | encdn.ldmnq.com | tcp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | stpd.cloud | udp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| US | 104.18.31.49:443 | stpd.cloud | tcp |
| US | 8.8.8.8:53 | 6.4.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.153.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.153.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| NL | 142.250.179.174:443 | fundingchoicesmessages.google.com | udp |
| NL | 142.251.36.14:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | invite.ldplayer.net | udp |
| US | 8.8.8.8:53 | apien.ldplayer.net | udp |
| US | 8.8.8.8:53 | usersdk.ldmnq.com | udp |
| US | 8.8.8.8:53 | play-lh.googleusercontent.com | udp |
| US | 8.8.8.8:53 | api.ldshop.gg | udp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | tcp |
| SG | 8.219.66.74:443 | invite.ldplayer.net | tcp |
| GB | 99.86.114.111:443 | apien.ldplayer.net | tcp |
| SG | 8.222.160.10:443 | api.ldshop.gg | tcp |
| NL | 142.251.36.14:443 | apis.google.com | udp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | udp |
| SG | 8.219.66.74:443 | invite.ldplayer.net | tcp |
| SG | 8.222.160.10:443 | api.ldshop.gg | tcp |
| SG | 47.236.4.49:443 | usersdk.ldmnq.com | tcp |
| NL | 142.250.179.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| NL | 142.251.39.98:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | 49.31.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.114.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.66.219.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.160.222.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.4.236.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | tagan.adlightning.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | prs.sftcdn.net | udp |
| GB | 216.137.44.108:443 | tagan.adlightning.com | tcp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| GB | 23.53.174.156:443 | secure.cdn.fastclick.net | tcp |
| GB | 23.53.174.156:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.53.173:443 | cdn.hadronid.net | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | articles-img.sftcdn.net | udp |
| US | 8.8.8.8:53 | 84.102.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.44.137.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.174.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 104.22.5.69:443 | a.ad.gt | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| NL | 64.158.223.146:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | ldcdn.ldmnq.com | udp |
| GB | 163.181.57.231:443 | ldcdn.ldmnq.com | tcp |
| US | 8.8.8.8:53 | 104.209.135.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.57.181.163.in-addr.arpa | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 52.59.252.86:443 | match.sharethrough.com | tcp |
| DE | 157.90.33.122:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| GB | 108.156.39.126:443 | s.ad.smaato.net | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| IE | 52.208.27.186:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| DE | 157.90.33.68:443 | uidsync.net | tcp |
| US | 52.71.1.43:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | 86.252.59.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.33.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.90.157.in-addr.arpa | udp |
| US | 52.71.1.43:443 | sync.srv.stackadapt.com | tcp |
| DE | 157.90.33.68:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | c58d3809642c589b0ab9b2c2f7a74ba9.safeframe.googlesyndication.com | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | prebid-stag.setupad.net | udp |
| US | 8.8.8.8:53 | adx.adform.net | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | rtb.adxpremium.services | udp |
| US | 8.8.8.8:53 | prebid-eu.creativecdn.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| NL | 185.106.140.18:443 | rtb.adxpremium.services | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| NL | 81.17.55.113:443 | prg.smartadserver.com | tcp |
| NL | 147.75.80.51:443 | prebid.a-mo.net | tcp |
| DK | 37.157.6.243:443 | adx.adform.net | tcp |
| US | 104.26.9.178:443 | prebid-stag.setupad.net | tcp |
| US | 104.26.9.178:443 | prebid-stag.setupad.net | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 34.98.64.218:443 | u.openx.net | tcp |
| US | 8.8.8.8:53 | 1x1.a-mo.net | udp |
| US | 8.8.8.8:53 | p4-eec5s44j66nq4-hln4ocs53vpm3eg3-if-v6exp3-v4.metric.gstatic.com | udp |
| DE | 3.65.112.149:443 | 1x1.a-mo.net | tcp |
| US | 34.98.64.218:443 | u.openx.net | udp |
| NL | 172.217.168.227:443 | p4-eec5s44j66nq4-hln4ocs53vpm3eg3-if-v6exp3-v4.metric.gstatic.com | tcp |
| US | 8.8.8.8:53 | 4aa063c3f6f425f483423029fe2357da.safeframe.googlesyndication.com | udp |
| NL | 172.217.168.227:443 | p4-eec5s44j66nq4-hln4ocs53vpm3eg3-if-v6exp3-v4.metric.gstatic.com | udp |
| US | 8.8.8.8:53 | 18.140.106.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.9.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.80.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.112.65.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | setupad-tagan.adlightning.com | udp |
| GB | 108.138.217.126:443 | setupad-tagan.adlightning.com | tcp |
| US | 8.8.8.8:53 | 226.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | node.setupad.com | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| DE | 159.89.25.223:443 | node.setupad.com | tcp |
| NL | 142.250.179.162:443 | ep1.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| DK | 37.157.6.233:443 | cm.adform.net | tcp |
| NL | 172.217.168.246:443 | play-lh.googleusercontent.com | udp |
| US | 8.8.8.8:53 | 126.217.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.25.89.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.6.157.37.in-addr.arpa | udp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcde96269a2c03f85c04c431209795f8.safeframe.googlesyndication.com | udp |
| NL | 142.250.179.129:443 | cdn.ampproject.org | udp |
| NL | 142.250.179.162:443 | ep1.adtrafficquality.google | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | install.convertwithwave.com | udp |
| US | 52.201.37.134:443 | install.convertwithwave.com | tcp |
| US | 52.201.37.134:443 | install.convertwithwave.com | tcp |
| US | 8.8.8.8:53 | setupad-d.openx.net | udp |
| US | 8.8.8.8:53 | adxbid.info | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| US | 172.67.138.13:443 | adxbid.info | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 147.75.85.97:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.co | udp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 35.153.22.246:443 | api.wavebrowser.co | tcp |
| GB | 2.19.252.197:443 | use.typekit.net | tcp |
| GB | 2.19.252.197:443 | use.typekit.net | tcp |
| GB | 2.19.252.203:443 | p.typekit.net | tcp |
| US | 8.8.8.8:53 | 134.37.201.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.85.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.57.245.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.138.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | app.posthog.com | udp |
| US | 8.8.8.8:53 | app.termly.io | udp |
| US | 35.153.22.246:443 | api.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 104.22.58.181:443 | app.posthog.com | tcp |
| US | 104.22.58.181:443 | app.posthog.com | tcp |
| US | 104.18.30.234:443 | app.termly.io | tcp |
| US | 44.217.11.158:443 | api.wavebrowserbase.com | tcp |
| US | 35.153.22.246:443 | api.wavebrowserbase.com | tcp |
| US | 104.18.30.234:443 | app.termly.io | tcp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 35.153.22.246:443 | api.mywavehome.net | tcp |
| GB | 2.19.252.197:443 | use.typekit.net | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 181.58.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.30.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.11.217.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.36.251.142.in-addr.arpa | udp |
| NL | 142.250.102.154:443 | stats.g.doubleclick.net | udp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 44.217.11.158:443 | dct.convertwithwave.com | tcp |
| US | 8.8.8.8:53 | wav-installers.s3.amazonaws.com | udp |
| US | 3.5.2.131:443 | wav-installers.s3.amazonaws.com | tcp |
| NL | 185.235.87.171:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.73:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.171:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.73:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 131.2.5.3.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| NL | 185.235.87.184:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.60:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| GB | 2.18.27.76:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| NL | 185.235.87.189:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.64:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.189:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.64:443 | ag.gbc.criteo.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| NL | 185.235.87.171:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.73:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | 89.65.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | synapse-x.en.softonic.com | udp |
| US | 151.101.1.91:443 | synapse-x.en.softonic.com | udp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 151.101.129.91:443 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.129.91:443 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| NL | 142.250.179.162:443 | ep1.adtrafficquality.google | udp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 13.107.21.237:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | 91.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90587a9cdf1abfe6280340f0c1c71858.safeframe.googlesyndication.com | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 3.222.29.248:443 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | tcp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| NL | 142.250.102.156:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| NL | 172.217.168.195:443 | www.google.co.uk | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 178.250.7.13:443 | dnacdn.net | tcp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | 248.29.222.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.102.250.142.in-addr.arpa | udp |
| NL | 142.251.39.97:443 | tpc.googlesyndication.com | udp |
| DE | 157.90.0.38:443 | s.richaudience.com | tcp |
| US | 8.8.8.8:53 | notix.io | udp |
| NL | 142.250.179.162:443 | ep1.adtrafficquality.google | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 38.0.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| NL | 89.149.193.85:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 192.132.33.69:443 | bttrack.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 35.214.237.73:443 | csync.loopme.me | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 236.72.119.168.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.237.214.35.in-addr.arpa | udp |
| US | 54.211.52.44:443 | sync.srv.stackadapt.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| US | 54.211.52.44:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | 44.52.211.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.90.30.52.in-addr.arpa | udp |
| NL | 185.235.87.186:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.82:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.186:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.82:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.189:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.64:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | peppagame.com | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 172.67.154.143:443 | peppagame.com | tcp |
| US | 172.67.154.143:443 | peppagame.com | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| NL | 142.250.179.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | image.peppagame.com | udp |
| US | 8.8.8.8:53 | 143.154.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| NL | 142.250.179.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| NL | 142.251.39.97:443 | lh3.googleusercontent.com | udp |
| US | 172.67.154.143:443 | image.peppagame.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 104.26.7.141:443 | api.btmessage.com | tcp |
| US | 199.232.213.91:443 | softonic.com | udp |
| GB | 18.172.154.232:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 5b206abe11d639943618fbfddd09e859.safeframe.googlesyndication.com | udp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| NL | 89.149.193.85:443 | ssbsync-global.smartadserver.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| US | 54.211.52.44:443 | sync.srv.stackadapt.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| US | 54.211.52.44:443 | sync.srv.stackadapt.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | equativ-match.dotomi.com | udp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| NL | 63.215.202.172:443 | equativ-match.dotomi.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 172.202.215.63.in-addr.arpa | udp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | tcp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | 41.211.222.173.in-addr.arpa | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| NL | 185.235.87.192:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.77:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.192:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.77:443 | ag.gbc.criteo.com | tcp |
| FR | 185.235.86.82:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.186:443 | gem.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | x.synapse.to | udp |
| US | 172.67.200.89:443 | x.synapse.to | tcp |
| US | 151.101.129.91:443 | en.softonic.com | udp |
| US | 8.8.8.8:53 | api.iconify.design | udp |
| US | 104.26.12.204:443 | api.iconify.design | tcp |
| US | 8.8.8.8:53 | 89.200.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.12.26.104.in-addr.arpa | udp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | a19afb5402fdad68f4714dd49563cc26.safeframe.googlesyndication.com | udp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | ih.adscale.de | udp |
| DE | 18.198.31.236:443 | ih.adscale.de | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | articles-img.sftcdn.net | udp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 157.90.33.72:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| DE | 157.90.33.72:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | 72.33.90.157.in-addr.arpa | udp |
| DE | 157.90.33.72:443 | uidsync.net | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| NL | 89.149.193.85:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| FR | 178.32.197.57:443 | rtb-csync.smartadserver.com | tcp |
| IE | 52.30.90.44:443 | match.prod.bidr.io | tcp |
| US | 54.211.52.44:443 | sync.srv.stackadapt.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| NL | 185.235.87.194:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.68:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.194:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.68:443 | ag.gbc.criteo.com | tcp |
| FR | 185.235.86.77:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.192:443 | gem.gbc.criteo.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 8.8.8.8:53 | stats.securebrowser.com | udp |
| GB | 18.172.153.76:443 | cdn.ldplayer.net | tcp |
| US | 104.20.87.8:443 | stats.securebrowser.com | tcp |
| US | 8.8.8.8:53 | d19mtdoi3rn3ox.cloudfront.net | udp |
| GB | 18.245.158.75:443 | d19mtdoi3rn3ox.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 8.87.20.104.in-addr.arpa | udp |
| NL | 185.235.87.176:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.56:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.176:443 | gem.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | 76.153.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.158.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.178.204.143.in-addr.arpa | udp |
| FR | 185.235.86.56:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | d1arl2thrafelv.cloudfront.net | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| GB | 216.137.34.91:443 | d1arl2thrafelv.cloudfront.net | tcp |
| NL | 185.235.87.194:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.68:443 | ag.gbc.criteo.com | tcp |
| GB | 216.137.34.91:443 | d1arl2thrafelv.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 113.216.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.34.137.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encdn.ldmnq.com | udp |
| GB | 18.172.153.10:443 | encdn.ldmnq.com | tcp |
| US | 8.8.8.8:53 | 10.153.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 8.8.8.8:53 | 125.63.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | browser-update.avg.com | udp |
| GB | 92.123.142.200:80 | browser-update.avg.com | tcp |
| US | 8.8.8.8:53 | 200.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.wavebrowserbase.com | udp |
| US | 44.217.90.252:443 | api.wavebrowserbase.com | tcp |
| US | 8.8.8.8:53 | 252.90.217.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.4.49:443 | middledata.ldplayer.net | tcp |
| NL | 142.250.179.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 49.4.219.8.in-addr.arpa | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| NL | 185.235.87.191:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.67:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.191:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.67:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.176:443 | gem.gbc.criteo.com | tcp |
| FR | 185.235.86.56:443 | ag.gbc.criteo.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| NL | 172.217.168.195:443 | www.google.co.uk | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 18.210.79.184:443 | swupdater.com | tcp |
| US | 18.210.79.184:443 | swupdater.com | tcp |
| US | 8.8.8.8:53 | 184.79.210.18.in-addr.arpa | udp |
| SG | 8.219.4.49:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | cdn.swupdater.com | udp |
| GB | 143.204.68.74:443 | cdn.swupdater.com | tcp |
| US | 8.8.8.8:53 | 74.68.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 234.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| NL | 172.217.23.206:443 | clients2.google.com | tcp |
| SG | 8.219.4.49:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 10.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | shield.reasonsecurity.com | udp |
| US | 8.8.8.8:53 | d1arl2thrafelv.cloudfront.net | udp |
| GB | 18.244.140.6:443 | shield.reasonsecurity.com | tcp |
| GB | 216.137.34.91:443 | d1arl2thrafelv.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 6.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | analytics.apis.mcafee.com | udp |
| US | 52.27.234.177:443 | analytics.apis.mcafee.com | tcp |
| GB | 18.244.140.6:443 | shield.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 177.234.27.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sadownload.mcafee.com | udp |
| GB | 92.123.142.66:443 | sadownload.mcafee.com | tcp |
| US | 8.8.8.8:53 | 66.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | track.analytics-data.io | udp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | update.reasonsecurity.com | udp |
| GB | 18.154.84.81:443 | update.reasonsecurity.com | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | 18.144.4.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.84.154.18.in-addr.arpa | udp |
| US | 172.67.41.145:443 | update.avgbrowser.com | udp |
| US | 172.67.41.145:443 | update.avgbrowser.com | tcp |
| US | 172.67.41.145:443 | update.avgbrowser.com | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | electron-shell.reasonsecurity.com | udp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | stats.securebrowser.com | udp |
| US | 8.8.8.8:53 | stats.securebrowser.com | udp |
| GB | 108.156.46.101:443 | electron-shell.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 104.20.86.8:443 | stats.securebrowser.com | tcp |
| US | 8.8.8.8:53 | browser-update.avg.com | udp |
| US | 8.8.8.8:53 | browser-update.avg.com | udp |
| GB | 92.123.143.235:443 | browser-update.avg.com | tcp |
| US | 8.8.8.8:53 | 145.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.86.20.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 8.8.8.8:53 | 235.143.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 146.48.219.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.21.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:53 | 4.4.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:53 | apien.ldmnq.com | udp |
| GB | 13.224.132.104:443 | apien.ldmnq.com | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | 104.132.224.13.in-addr.arpa | udp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | home.mcafee.com | udp |
| GB | 2.22.132.123:443 | home.mcafee.com | tcp |
| GB | 92.123.142.66:443 | sadownload.mcafee.com | tcp |
| US | 52.27.234.177:443 | analytics.apis.mcafee.com | tcp |
| US | 8.8.8.8:53 | dct.wavebrowser.co | udp |
| US | 44.217.6.51:443 | dct.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | ocsp.r2m02.amazontrust.com | udp |
| GB | 143.204.67.183:80 | ocsp.r2m02.amazontrust.com | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | cdn.reasonsecurity.com | udp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| GB | 52.84.90.21:443 | cdn.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 51.6.217.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.67.204.143.in-addr.arpa | udp |
| US | 52.27.234.177:443 | analytics.apis.mcafee.com | tcp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | s-install.avcdn.net | udp |
| US | 8.8.8.8:53 | s-install.avcdn.net | udp |
| US | 104.22.63.125:443 | update.avgbrowser.com | udp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| GB | 184.26.189.84:443 | s-install.avcdn.net | tcp |
| GB | 184.26.189.84:443 | s-install.avcdn.net | tcp |
| US | 52.7.189.111:443 | dct.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | browser-update.avg.com | udp |
| US | 8.8.8.8:53 | browser-update.avg.com | udp |
| GB | 92.123.142.200:443 | browser-update.avg.com | tcp |
| US | 8.8.8.8:53 | 84.189.26.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.189.7.52.in-addr.arpa | udp |
| GB | 143.204.67.183:80 | ocsp.r2m02.amazontrust.com | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| GB | 2.18.27.76:443 | www.bing.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 34.110.186.80:443 | tcp | |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 34.160.176.28:443 | tcp | |
| US | 8.8.8.8:53 | 80.186.110.34.in-addr.arpa | udp |
| GB | 2.18.27.76:443 | www.bing.com | udp |
| US | 52.7.189.111:443 | dct.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | 28.176.160.34.in-addr.arpa | udp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 52.4.144.18:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | s2.googleusercontent.com | udp |
| US | 8.8.8.8:53 | s2.googleusercontent.com | udp |
| NL | 142.251.39.97:443 | s2.googleusercontent.com | tcp |
| US | 44.217.90.252:443 | dct.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| US | 8.8.8.8:53 | api.wavebrowser.net | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| US | 8.8.8.8:53 | api.mywavehome.net | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| US | 44.217.6.51:443 | api.mywavehome.net | tcp |
| US | 44.217.6.51:443 | api.mywavehome.net | tcp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| NL | 142.250.179.132:443 | t0.gstatic.com | tcp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 75.101.208.195:443 | swupdater.com | tcp |
| US | 8.8.8.8:53 | dct.convertwithwave.com | udp |
| US | 8.8.8.8:53 | dct.convertwithwave.com | udp |
| US | 8.8.8.8:53 | seed.wavebrowser.co | udp |
| US | 8.8.8.8:53 | seed.wavebrowser.co | udp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| GB | 18.239.236.93:443 | seed.wavebrowser.co | tcp |
| US | 8.8.8.8:53 | ntp2.mywavehome.net | udp |
| US | 8.8.8.8:53 | ntp2.mywavehome.net | udp |
| GB | 18.244.114.8:443 | ntp2.mywavehome.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 195.208.101.75.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.236.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| US | 8.8.8.8:53 | t0.gstatic.com | udp |
| US | 8.8.8.8:53 | t1.gstatic.com | udp |
| US | 8.8.8.8:53 | t1.gstatic.com | udp |
| NL | 142.250.179.132:443 | t0.gstatic.com | tcp |
| NL | 142.250.179.164:443 | t1.gstatic.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| GB | 184.25.193.234:80 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | 8.114.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.193.25.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sadownload.mcafee.com | udp |
| GB | 92.123.142.66:443 | sadownload.mcafee.com | tcp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 2.18.27.76:443 | r.bing.com | tcp |
| GB | 2.18.27.82:443 | r.bing.com | tcp |
| GB | 2.18.27.82:443 | r.bing.com | tcp |
| GB | 2.18.27.76:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| GB | 2.18.27.82:443 | r.bing.com | udp |
| GB | 2.18.27.76:443 | r.bing.com | udp |
| US | 8.8.8.8:53 | track.analytics-data.io | udp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | fpt.microsoft.com | udp |
| US | 52.167.30.171:443 | fpt.microsoft.com | tcp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:53 | 205.119.202.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.30.167.52.in-addr.arpa | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| NL | 142.250.179.131:80 | www.gstatic.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | fixthephoto.com | udp |
| GB | 108.138.233.80:443 | fixthephoto.com | tcp |
| GB | 108.138.233.80:443 | fixthephoto.com | tcp |
| US | 8.8.8.8:53 | 80.233.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | geo.cookie-script.com | udp |
| NL | 185.14.184.154:443 | geo.cookie-script.com | tcp |
| GB | 108.138.233.80:443 | fixthephoto.com | udp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 154.184.14.185.in-addr.arpa | udp |
| NL | 142.250.179.196:443 | www.google.com | tcp |
| GB | 18.239.236.117:443 | img.fixthephoto.com | tcp |
| GB | 18.239.236.117:443 | img.fixthephoto.com | tcp |
| GB | 18.239.236.117:443 | img.fixthephoto.com | tcp |
| US | 8.8.8.8:53 | a.opmnstr.com | udp |
| US | 8.8.8.8:53 | z-na.amazon-adsystem.com | udp |
| GB | 79.127.237.132:443 | a.opmnstr.com | tcp |
| US | 8.8.8.8:53 | 117.236.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | a.omappapi.com | udp |
| GB | 79.127.237.132:443 | a.omappapi.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | api.omappapi.com | udp |
| US | 8.8.8.8:53 | 132.237.127.79.in-addr.arpa | udp |
| US | 172.66.42.248:443 | api.omappapi.com | tcp |
| US | 8.8.8.8:53 | i.imgflip.com | udp |
| US | 104.16.40.101:443 | i.imgflip.com | tcp |
| US | 8.8.8.8:53 | 101.40.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | embed.tawk.to | udp |
| US | 172.67.15.14:443 | embed.tawk.to | tcp |
| US | 8.8.8.8:53 | 14.15.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | config.reasonsecurity.com | udp |
| GB | 99.86.114.69:443 | config.reasonsecurity.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | 69.114.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | prf.hn | udp |
| GB | 5.150.170.5:443 | prf.hn | tcp |
| GB | 5.150.170.5:443 | prf.hn | tcp |
| US | 8.8.8.8:53 | 5.170.150.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | creativecloud.adobe.com | udp |
| GB | 18.239.236.105:443 | creativecloud.adobe.com | tcp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | wwwimages.adobe.com | udp |
| GB | 2.19.252.156:443 | wwwimages.adobe.com | tcp |
| US | 8.8.8.8:53 | 105.236.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| US | 8.8.8.8:53 | 156.252.19.2.in-addr.arpa | udp |
| GB | 184.25.193.234:80 | www.microsoft.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | tse3.mm.bing.net | udp |
| US | 8.8.8.8:53 | 10.27.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.reasonsecurity.com | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 235.1.22.104.in-addr.arpa | udp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 8.8.8.8:443 | dns.google | udp |
| GB | 18.244.114.69:443 | ntp2.mywavehome.net | udp |
| US | 34.98.107.242:443 | tcp | |
| US | 34.98.107.242:443 | tcp | |
| US | 8.8.8.8:53 | 69.114.244.18.in-addr.arpa | udp |
| US | 151.101.193.44:443 | tcp | |
| GB | 54.192.137.37:443 | tcp | |
| US | 34.98.107.242:443 | tcp | |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | 242.107.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.137.192.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.179.250.142.in-addr.arpa | udp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| NL | 172.217.168.194:443 | partner.googleadservices.com | udp |
| US | 34.201.156.218:443 | dct.convertwithwave.com | tcp |
| NL | 172.217.168.194:443 | partner.googleadservices.com | tcp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 172.217.168.195:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 218.156.201.34.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 13.224.222.96:443 | tcp | |
| US | 151.101.65.44:443 | tcp | |
| GB | 13.224.222.96:443 | udp | |
| GB | 13.224.132.58:443 | tcp | |
| US | 8.8.8.8:53 | 96.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.132.224.13.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | track.analytics-data.io | udp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 212.82.100.137:443 | tcp | |
| US | 8.8.8.8:53 | 137.100.82.212.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 212.82.100.137:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 182.22.50.52.in-addr.arpa | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | ip-info.ff.avast.com | udp |
| US | 8.8.8.8:53 | ip-info.ff.avast.com | udp |
| US | 8.8.8.8:53 | stats.securebrowser.com | udp |
| US | 8.8.8.8:53 | stats.securebrowser.com | udp |
| US | 8.8.8.8:53 | urlite.ff.avast.com | udp |
| US | 8.8.8.8:53 | urlite.ff.avast.com | udp |
| US | 8.8.8.8:53 | s-install.avcdn.net | udp |
| US | 8.8.8.8:53 | discord.gg | udp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | easylist-downloads.adblockplus.org | udp |
| US | 8.8.8.8:53 | easylist-downloads.adblockplus.org | udp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 8.8.8.8:53 | config.avg.securebrowser.com | udp |
| US | 104.22.63.125:443 | update.avgbrowser.com | udp |
| US | 162.159.136.234:443 | discord.gg | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| GB | 2.19.117.75:443 | easylist-downloads.adblockplus.org | tcp |
| GB | 2.19.117.75:443 | easylist-downloads.adblockplus.org | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| GB | 184.26.189.84:443 | s-install.avcdn.net | tcp |
| US | 34.149.149.62:443 | ip-info.ff.avast.com | tcp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| US | 8.8.8.8:53 | 234.136.159.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.149.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | shepherd.ff.avast.com | udp |
| US | 8.8.8.8:53 | shepherd.ff.avast.com | udp |
| US | 8.8.8.8:53 | discord.com | udp |
| US | 8.8.8.8:53 | discord.com | udp |
| US | 34.160.176.28:443 | shepherd.ff.avast.com | tcp |
| US | 162.159.138.232:443 | discord.com | udp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 8.8.8.8:53 | en.ldplayer.net | udp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| US | 8.8.8.8:53 | ad.ldplayer.net | udp |
| GB | 18.245.218.124:443 | ad.ldplayer.net | tcp |
| GB | 163.181.57.237:443 | en.ldplayer.net | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | 232.138.159.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 124.218.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| GB | 18.172.153.86:443 | cdn.ldplayer.net | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | sw.symcd.com | udp |
| DE | 152.199.19.74:80 | sw.symcd.com | tcp |
| US | 8.8.8.8:53 | sw.symcb.com | udp |
| SE | 192.229.221.95:80 | sw.symcb.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | udp |
| US | 8.8.8.8:53 | 74.19.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | advertise.ldplayer.net | udp |
| US | 8.8.8.8:53 | ocsp.thawte.com | udp |
| DE | 152.199.19.74:80 | ocsp.thawte.com | tcp |
| GB | 79.133.176.235:443 | advertise.ldplayer.net | tcp |
| US | 8.8.8.8:53 | crl.thawte.com | udp |
| SE | 192.229.221.95:80 | crl.thawte.com | tcp |
| US | 8.8.8.8:53 | res.ldplayer.net | udp |
| GB | 79.133.176.235:443 | res.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 235.176.133.79.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | crl.thawte.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 79.133.176.235:443 | res.ldplayer.net | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | encdn.ldmnq.com | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 18.172.153.23:443 | encdn.ldmnq.com | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.4.4:443 | dns.google | tcp |
| GB | 79.133.176.235:443 | res.ldplayer.net | tcp |
| US | 52.44.64.20:443 | tcp | |
| GB | 79.133.176.235:443 | res.ldplayer.net | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 23.153.172.18.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 79.133.176.235:443 | res.ldplayer.net | tcp |
| GB | 18.245.218.124:443 | ad.ldplayer.net | tcp |
| GB | 18.245.218.124:443 | ad.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 20.64.44.52.in-addr.arpa | udp |
| IE | 52.50.22.182:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 12.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | alliance.ldplayer.net | udp |
| GB | 18.244.114.101:443 | alliance.ldplayer.net | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | apien.ldmnq.com | udp |
| US | 8.8.8.8:53 | 101.114.244.18.in-addr.arpa | udp |
| GB | 13.224.132.126:80 | apien.ldmnq.com | tcp |
| GB | 13.224.132.126:443 | apien.ldmnq.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | 126.132.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 34.149.149.62:443 | ip-info.ff.avast.com | tcp |
| US | 104.20.87.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 13.224.132.126:443 | apien.ldmnq.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 18.245.218.124:443 | ad.ldplayer.net | tcp |
| GB | 18.245.218.124:443 | ad.ldplayer.net | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| US | 34.149.149.62:443 | ip-info.ff.avast.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.20.87.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| GB | 2.19.252.227:443 | tcp | |
| GB | 2.19.252.227:443 | tcp | |
| GB | 23.206.74.104:443 | tcp | |
| GB | 23.206.74.104:443 | tcp | |
| US | 8.8.8.8:53 | 227.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.74.206.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.35.104.34.in-addr.arpa | udp |
| GB | 92.123.143.226:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 226.143.123.92.in-addr.arpa | udp |
| GB | 92.123.142.210:443 | tcp | |
| GB | 92.123.143.226:443 | tcp | |
| GB | 18.245.218.112:443 | tcp | |
| US | 8.8.8.8:53 | 210.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.218.245.18.in-addr.arpa | udp |
| GB | 143.204.176.113:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 113.176.204.143.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 162.159.129.233:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 233.129.159.162.in-addr.arpa | udp |
| US | 44.217.11.158:443 | dct.convertwithwave.com | tcp |
| NL | 142.250.179.206:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| NL | 142.250.179.206:443 | udp | |
| US | 54.243.29.150:443 | tcp | |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | tcp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 34.232.43.253:443 | tcp | |
| US | 34.232.43.253:443 | tcp | |
| US | 34.232.43.253:443 | tcp | |
| US | 34.232.43.253:443 | tcp | |
| US | 44.197.134.133:443 | tcp | |
| DE | 157.240.210.16:443 | udp | |
| US | 8.8.8.8:53 | 206.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.29.243.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.43.232.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.210.240.157.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | 133.134.197.44.in-addr.arpa | udp |
| DE | 157.240.210.14:443 | connect.facebook.net | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| DE | 157.240.210.14:443 | connect.facebook.net | udp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 18.245.218.112:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 143.204.176.113:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 87.248.114.12:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 44.217.11.158:443 | dct.convertwithwave.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 52.50.22.182:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 13.107.21.237:443 | bat.bing.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 87.248.114.12:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| GB | 87.248.114.11:443 | tcp | |
| RO | 188.125.90.201:443 | tcp | |
| US | 69.147.89.142:443 | tcp | |
| US | 69.147.87.122:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| US | 68.180.134.73:443 | tcp | |
| GB | 87.248.114.81:443 | tcp | |
| FR | 188.125.88.201:443 | tcp | |
| US | 69.147.93.126:443 | tcp | |
| US | 8.8.8.8:53 | 11.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.90.125.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.87.147.69.in-addr.arpa | udp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 81.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.88.125.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.93.147.69.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 87.248.114.12:443 | tcp | |
| IE | 52.50.22.182:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 13.107.21.237:443 | bat.bing.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.27.203.89:443 | udp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.27.204.89:443 | udp | |
| IE | 212.82.100.137:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 89.203.27.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.204.27.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.72.125.188.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.27.203.89:443 | udp | |
| GB | 143.204.68.116:443 | tcp | |
| US | 104.20.94.138:443 | tcp | |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| US | 34.202.119.205:443 | track.analytics-data.io | tcp |
| GB | 18.244.114.118:443 | tcp | |
| US | 199.232.196.134:443 | tcp | |
| US | 8.8.8.8:53 | 116.68.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.94.20.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.114.244.18.in-addr.arpa | udp |
| GB | 18.244.114.118:443 | tcp | |
| US | 151.101.0.134:443 | tcp | |
| GB | 13.224.132.61:443 | tcp | |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 151.101.128.134:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 8.8.8.8:53 | 134.196.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.0.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.132.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.128.101.151.in-addr.arpa | udp |
| GB | 13.224.132.61:443 | tcp | |
| GB | 13.224.132.61:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| DE | 3.123.67.172:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 172.67.123.3.in-addr.arpa | udp |
| US | 199.232.196.134:443 | tcp | |
| US | 199.232.196.134:443 | tcp | |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 199.232.196.134:443 | tcp | |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:443 | dns.google | tcp |
| US | 8.8.8.8:53 | mc6.reasonsecurity.com | udp |
| US | 52.43.110.0:443 | mc6.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 0.110.43.52.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 104.20.94.138:443 | tcp | |
| US | 104.20.95.138:443 | tcp | |
| GB | 18.244.114.118:443 | tcp | |
| US | 104.20.95.138:443 | tcp | |
| GB | 18.244.114.118:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 8.8.8.8:53 | 138.95.20.104.in-addr.arpa | udp |
| GB | 18.245.150.163:443 | tcp | |
| GB | 18.245.150.163:443 | tcp | |
| US | 8.8.8.8:53 | 163.150.245.18.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 104.20.95.138:443 | tcp | |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | d1e9165hyidvf5.cloudfront.net | udp |
| GB | 18.165.196.184:443 | d1e9165hyidvf5.cloudfront.net | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | cdn.fileplanet.com | udp |
| US | 104.27.203.89:443 | cdn.fileplanet.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 8.8.8.8:53 | 184.196.165.18.in-addr.arpa | udp |
| GB | 18.165.196.184:443 | d1e9165hyidvf5.cloudfront.net | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 162.159.135.232:443 | discord.com | udp |
| US | 8.8.8.8:53 | 232.135.159.162.in-addr.arpa | udp |
| US | 44.217.11.158:443 | dct.convertwithwave.com | tcp |
| US | 44.217.6.51:443 | dct.convertwithwave.com | tcp |
| NL | 142.251.39.101:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 8.8.8.8:53 | 101.39.251.142.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:443 | dns.google | udp |
| NL | 172.217.23.206:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | dl.jalecdn.com | udp |
| NL | 95.168.168.24:80 | dl.jalecdn.com | tcp |
| US | 8.8.8.8:53 | 24.168.168.95.in-addr.arpa | udp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.63.125:443 | update.avgbrowser.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 104.20.86.8:443 | config.avg.securebrowser.com | tcp |
| US | 162.159.135.232:443 | discord.com | udp |
| US | 8.8.8.8:53 | clients2.swupdater.com | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| N/A | 127.0.0.1:6463 | tcp | |
| N/A | 127.0.0.1:6464 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | update.avgbrowser.com | udp |
| US | 172.67.41.145:443 | update.avgbrowser.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| N/A | 127.0.0.1:6465 | tcp | |
| N/A | 127.0.0.1:6466 | tcp | |
| US | 207.241.224.2:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 207.241.224.2:443 | tcp | |
| US | 207.241.224.2:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| US | 8.8.8.8:53 | 2.224.241.207.in-addr.arpa | udp |
| N/A | 127.0.0.1:6467 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 207.241.239.241:443 | tcp | |
| US | 207.241.225.195:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 241.239.241.207.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.225.241.207.in-addr.arpa | udp |
| N/A | 127.0.0.1:6468 | tcp | |
| N/A | 127.0.0.1:6469 | tcp | |
| N/A | 127.0.0.1:6470 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | swupdater.com | udp |
| US | 75.101.208.195:443 | swupdater.com | tcp |
| N/A | 127.0.0.1:6471 | tcp | |
| NL | 142.251.39.101:443 | tcp | |
| NL | 142.250.179.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 202.23.217.172.in-addr.arpa | udp |
| US | 142.250.69.3:443 | tcp | |
| US | 8.8.8.8:53 | 3.69.250.142.in-addr.arpa | udp |
| N/A | 127.0.0.1:6472 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 207.241.224.2:443 | tcp | |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 8.8.8.8:53 | archive.org | udp |
| US | 207.241.239.241:443 | tcp | |
| US | 207.241.224.2:445 | archive.org | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | archive.org | udp |
| DE | 157.240.210.16:443 | udp | |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| NL | 142.251.39.101:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | athena.archive.org | udp |
| US | 207.241.225.195:445 | athena.archive.org | tcp |
| US | 8.8.8.8:53 | athena.archive.org | udp |
| US | 207.241.225.195:139 | athena.archive.org | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 207.241.224.2:443 | archive.org | tcp |
| GB | 172.217.169.3:443 | udp | |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| IE | 212.82.100.137:443 | tcp | |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| GB | 87.248.114.12:443 | tcp | |
| NL | 142.251.39.101:443 | tcp | |
| NL | 142.251.39.101:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| NL | 142.250.179.196:443 | www.google.com | udp |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | udp | |
| NL | 142.251.36.22:443 | tcp | |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse3.mm.bing.net | tcp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.251.39.98:443 | www.googletagservices.com | tcp |
| NL | 142.251.36.1:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| US | 8.8.8.8:53 | 14.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.36.251.142.in-addr.arpa | udp |
| NL | 216.58.214.14:443 | tcp | |
| NL | 142.251.36.22:443 | udp | |
| US | 8.8.8.8:53 | 1.36.251.142.in-addr.arpa | udp |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | udp | |
| IE | 188.125.72.139:443 | tcp | |
| NL | 142.251.39.98:443 | www.googletagservices.com | udp |
| NL | 142.251.36.1:443 | udp | |
| IE | 212.82.100.137:443 | tcp | |
| GB | 87.248.114.12:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 8.8.8.8:53 | 10.36.251.142.in-addr.arpa | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 44.217.90.252:443 | dct.convertwithwave.com | tcp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| IE | 212.82.100.137:443 | tcp | |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 212.82.100.137:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 52.50.22.182:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| IE | 52.19.215.151:443 | tcp | |
| IE | 52.19.215.151:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | 151.215.19.52.in-addr.arpa | udp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| IE | 188.125.72.139:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| IE | 188.125.72.139:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| US | 150.171.27.10:443 | tse3.mm.bing.net | tcp |
| NL | 216.58.214.14:443 | udp | |
| NL | 142.251.36.54:443 | tcp | |
| US | 8.8.8.8:53 | 54.36.251.142.in-addr.arpa | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| GB | 184.26.189.84:443 | s-install.avcdn.net | tcp |
| NL | 142.250.179.162:443 | ep1.adtrafficquality.google | udp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.251.36.1:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| GB | 20.26.156.210:443 | tcp | |
| NL | 172.217.23.206:443 | clients2.google.com | tcp |
| NL | 142.251.36.54:443 | udp | |
| US | 8.8.8.8:53 | 106.39.251.142.in-addr.arpa | udp |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:53 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 8.8.8.8:443 | dns.google | tcp |
| GB | 18.165.242.88:443 | tcp | |
| GB | 18.165.242.88:443 | tcp | |
| US | 8.8.8.8:53 | 88.242.165.18.in-addr.arpa | udp |
| NL | 142.251.39.110:443 | support.google.com | tcp |
| NL | 142.251.39.110:443 | support.google.com | tcp |
| NL | 142.251.39.110:443 | support.google.com | udp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| NL | 142.250.179.150:443 | tcp | |
| NL | 142.250.179.150:443 | tcp | |
| DE | 74.125.163.200:443 | udp | |
| US | 8.8.8.8:53 | 110.39.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.163.125.74.in-addr.arpa | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| US | 173.194.24.136:443 | udp | |
| NL | 216.58.214.14:443 | udp | |
| NL | 142.251.36.1:443 | tcp | |
| NL | 142.251.39.97:443 | s2.googleusercontent.com | tcp |
| NL | 142.250.179.150:443 | udp | |
| NL | 142.250.179.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 136.24.194.173.in-addr.arpa | udp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | tcp |
| NL | 142.251.36.1:443 | udp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| NL | 142.250.179.142:443 | syndicatedsearch.goog | tcp |
| NL | 142.251.36.17:443 | tcp | |
| NL | 142.251.36.17:443 | udp | |
| US | 8.8.8.8:53 | 17.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| US | 34.196.204.59:443 | tcp | |
| GB | 172.217.169.3:443 | udp | |
| NL | 142.251.39.101:443 | tcp | |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| US | 142.250.69.3:443 | tcp | |
| US | 142.250.69.3:443 | tcp | |
| US | 142.250.69.3:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| US | 8.8.8.8:53 | 59.204.196.34.in-addr.arpa | udp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| US | 172.67.181.4:443 | tcp | |
| US | 104.20.3.235:443 | tcp | |
| US | 8.8.8.8:53 | 4.181.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 235.3.20.104.in-addr.arpa | udp |
| NL | 216.58.208.110:443 | tcp | |
| US | 8.8.8.8:53 | 110.208.58.216.in-addr.arpa | udp |
| NL | 216.58.208.110:443 | udp | |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 104.22.1.235:443 | api.reasonsecurity.com | tcp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.251.36.14:443 | apis.google.com | udp |
| US | 142.250.69.3:443 | tcp | |
| US | 142.250.69.3:443 | tcp | |
| DE | 74.125.154.134:443 | udp | |
| US | 8.8.8.8:53 | 134.154.125.74.in-addr.arpa | udp |
| NL | 142.251.39.110:443 | support.google.com | udp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| GB | 20.26.156.215:443 | tcp | |
| GB | 20.26.156.215:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.109.154:443 | tcp | |
| US | 185.199.111.133:443 | tcp | |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.111.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.reasonsecurity.com | udp |
| US | 104.22.0.235:443 | api.reasonsecurity.com | tcp |
| US | 185.199.109.154:443 | tcp | |
| US | 140.82.114.21:443 | tcp | |
| US | 140.82.114.21:443 | tcp | |
| GB | 20.26.156.210:443 | tcp | |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | 235.0.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.114.82.140.in-addr.arpa | udp |
| NL | 216.58.214.14:443 | udp | |
| US | 142.250.69.3:443 | tcp | |
| US | 142.250.69.3:443 | udp | |
| US | 8.8.4.4:443 | dns.google | udp |
| DE | 74.125.110.104:443 | udp | |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 104.110.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:443 | dns.google | udp |
| NL | 142.251.39.101:443 | tcp | |
| NL | 142.251.39.101:443 | tcp | |
| NL | 172.217.23.206:443 | clients2.google.com | udp |
| NL | 142.251.39.101:443 | tcp | |
| NL | 142.251.39.101:443 | tcp | |
| GB | 87.248.114.11:443 | tcp | |
| NL | 142.250.179.196:443 | www.google.com | udp |
| GB | 172.217.169.3:443 | udp | |
| GB | 172.217.169.3:443 | udp | |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 8.8.4.4:443 | dns.google | udp |
| US | 34.110.186.80:443 | urlite.ff.avast.com | tcp |
| NL | 142.250.179.174:443 | fundingchoicesmessages.google.com | tcp |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | tcp | |
| NL | 216.58.214.14:443 | udp | |
| NL | 142.250.179.196:443 | www.google.com | udp |
| NL | 142.251.36.14:443 | apis.google.com | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 38f59a47b777f2fc52088e96ffb2baaf |
| SHA1 | 267224482588b41a96d813f6d9e9d924867062db |
| SHA256 | 13569c5681c71dc42ab57d34879f5a567d7b94afe0e8f6d7c6f6c1314fb0087b |
| SHA512 | 4657d13e1bb7cdd7e83f5f2562f5598cca12edf839626ae96da43e943b5550fab46a14b9018f1bec90de88cc714f637605531ccda99deb9e537908ddb826113b |
\??\pipe\LOCAL\crashpad_4016_TKOUSTUIZWEDUKIW
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | ab8ce148cb7d44f709fb1c460d03e1b0 |
| SHA1 | 44d15744015155f3e74580c93317e12d2cc0f859 |
| SHA256 | 014006a90e43ea9a1903b08b843a5aab8ad3823d22e26e5b113fad5f9fa620ff |
| SHA512 | f685423b1eaee18a2a06030b4b2977335f62499c0041c142a92f6e6f846c2b9ce54324b6ae94efbbb303282dcda70e2b1597c748fddc251c0b3122a412c2d7c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 409d4e30faed1c720440df56d4dcc534 |
| SHA1 | 0790bd69b30aa760848a1e26dd926b98f1bcde23 |
| SHA256 | 47b1f66eeb281c4ff823189d3db43d2f34dea20dd92fb833b23aa14588ffc755 |
| SHA512 | 5029e70135b7628783df2e7aebe681616d8237ed873cc5fb71a191387fc24d53bb0ba187ea3b4c3a4933c4318f4365b9dc2308e4c01a6bc6219c017f78c9c149 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | 48d2860dd3168b6f06a4f27c6791bcaa |
| SHA1 | f5f803efed91cd45a36c3d6acdffaaf0e863bf8c |
| SHA256 | 04d7bf7a6586ef00516bdb3f7b96c65e0b9c6b940f4b145121ed00f6116bbb77 |
| SHA512 | 172da615b5b97a0c17f80ddd8d7406e278cd26afd1eb45a052cde0cb55b92febe49773b1e02cf9e9adca2f34abbaa6d7b83eaad4e08c828ef4bf26f23b95584e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | d9f18fe9e956c23f2ac97158a3d0b371 |
| SHA1 | 1642cab06e3afc668f8506c22455874a7f64dd91 |
| SHA256 | 4dd1fa6f0c2c07a70de84601b317890716885f783496e82630d07fc2328e784e |
| SHA512 | ecfeaca7e816b078bdbc7344d0f94859182da07703811ae9b90e714147ddadbdad6f5742d802d85a472506f719d220b12bae9547b9bde38a484c2ae717c2149d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1dedbc07a85a546ecbc5fcde22e3dfd4 |
| SHA1 | b0d614eeb36920b0bc0f3d60f1600b1091ed87ff |
| SHA256 | 4d2625abe284e5d4d5a24763728f258014069e00295d3c5d7a7e30516a353197 |
| SHA512 | d3a8aa9c9b95b1df1c8812fcf11b1ce5caa0a432f90f8ebca7e05bf1d8e78ce0253f6282152573d272687a5cda155a18ea23488432923c03f4867cc33f14d262 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 63ae3375668eb75fdb0719ebdac6c3c7 |
| SHA1 | d3abafcbd5582c6b08a62f55166b70cae8d59f47 |
| SHA256 | 9b26414e01f44d126536426ab6cffc4db52af2d6c16cd8f725d0a86b58e56b37 |
| SHA512 | 88c3a8aabcd89f814b3cd4f307f904276b6dbc1f835bb81b3e195c540b76c8acb78d5da98c914fd73f1d49998c8465c539488e46f3f2e27c7d4f3b7d526c811e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 290ba5cf5eb9d888985e5889b2a93941 |
| SHA1 | be0059b1edc79da4bc409e26129e78e8d37e8bb4 |
| SHA256 | 3f5447d65bf16d8d0fbf5d9aeb6711bd2b5a4c6193d3fbea2c339a2061670042 |
| SHA512 | 874cd3df7dfa9258bfc7187a4a665ad915b2229869e18a30360cf38f6088cd05b5dbbdc17fb494c618725cd24012a05ee33f23bf6c8bd9f401dfc0b61b7716f9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 861ef2f3f6c9c8baf44a3d1cc84bcce1 |
| SHA1 | de68edff182a440d61d883f5a42be11138a2d258 |
| SHA256 | fee46371a37f9df9e191d3f818913f49b1f3ce26566bd2aeff70dca0525bd43b |
| SHA512 | 032d686fe70bd303d93e5008f16ec10b6880a5894563e37293caaa7a74eaa46a04893287b7bdf9cbdd5f32744c72aab9620173ab02c2587ecd32ea816fae7424 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5a2c9f76f3589e6c7604b4b0cc3733ff |
| SHA1 | 4c848d8ec67b09aebf415012a80e5df0ca7fd0aa |
| SHA256 | c20e09d61dce977d702c14bd4975466c34770078f6d4fc0bc7ccbb7e9a02a211 |
| SHA512 | e552098b6af35599bd62f3ae8e58ffa5196d85ce58a0171a30ab7ba54beecf4d19cb7315b174a40eced58f8debdd5c41be44a64066477002f47c9766e1ef8816 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 80d5fc083e022cadca6d07c18520fea5 |
| SHA1 | 2ef6b4643eb406dc386201a79fc49d4f51dc709b |
| SHA256 | 1cda8b2be8175b85984fd82419d3fc0d0b0b6df06077521fb6282751ff87d6a2 |
| SHA512 | 1d739614ed2bf27480495ffb857f0d6e659ccc3210674d443879eda6c0eb1f96e71567b0a2dae11db9001a8694b9b0ce03b1f4febb6385af26018387115c1b58 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000020
| MD5 | 2e86a72f4e82614cd4842950d2e0a716 |
| SHA1 | d7b4ee0c9af735d098bff474632fc2c0113e0b9c |
| SHA256 | c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f |
| SHA512 | 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001e
| MD5 | a7ee007fb008c17e73216d0d69e254e8 |
| SHA1 | 160d970e6a8271b0907c50268146a28b5918c05e |
| SHA256 | 414024b478738b35312a098bc7f911300b14396d34718f78886b5942d9afe346 |
| SHA512 | 669bec67d3fc1932a921dd683e6acfdf462b9063e1726770bae8740d83503a799c2e30030f2aca7ec96df0bfd6d8b7f999f8296ee156533302161eb7c9747602 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001d
| MD5 | a074f116c725add93a8a828fbdbbd56c |
| SHA1 | 88ca00a085140baeae0fd3072635afe3f841d88f |
| SHA256 | 4cdcda7d8363be5bc824064259780779e7c046d56399c8a191106f55ce2ed8a6 |
| SHA512 | 43ed55cda35bde93fc93c408908ab126e512c45611a994d7f4e5c85d4f2d90d573066082cb7b8dffce6a24a1f96cd534586646719b214ac7874132163faa5f28 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001c
| MD5 | c3c0eb5e044497577bec91b5970f6d30 |
| SHA1 | d833f81cf21f68d43ba64a6c28892945adc317a6 |
| SHA256 | eb48be34490ec9c4f9402b882166cd82cd317b51b2a49aae75cdf9ee035035eb |
| SHA512 | 83d3545a4ed9eed2d25f98c4c9f100ae0ac5e4bc8828dccadee38553b7633bb63222132df8ec09d32eb37d960accb76e7aab5719fc08cc0a4ef07b053f30cf38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f
| MD5 | 56d57bc655526551f217536f19195495 |
| SHA1 | 28b430886d1220855a805d78dc5d6414aeee6995 |
| SHA256 | f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4 |
| SHA512 | 7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000021
| MD5 | b38fbbd0b5c8e8b4452b33d6f85df7dc |
| SHA1 | 386ba241790252df01a6a028b3238de2f995a559 |
| SHA256 | b18b9eb934a5b3b81b16c66ec3ec8e8fecdb3d43550ce050eb2523aabc08b9cd |
| SHA512 | 546ca9fb302bf28e3a178e798dd6b80c91cba71d0467257b8ed42e4f845aa6ecb858f718aac1e0865b791d4ecf41f1239081847c75c6fb3e9afd242d3704ad16 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000023
| MD5 | 9f8f80ca4d9435d66dd761fbb0753642 |
| SHA1 | 5f187d02303fd9044b9e7c74e0c02fe8e6a646b7 |
| SHA256 | ab481b8b19b3336deda1b9ad4680cce4958152c9f9daa60c7bd8eb6786887359 |
| SHA512 | 9c0de8e5bf16f096bf781189d813eeb52c3c8ec73fc791de10a8781e9942de06ed30ff5021ab7385c98686330049e3e610adc3e484e12ef807eec58607cfae63 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000049
| MD5 | c594a826934b9505d591d0f7a7df80b7 |
| SHA1 | c04b8637e686f71f3fc46a29a86346ba9b04ae18 |
| SHA256 | e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610 |
| SHA512 | 04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\68cc7e115de63fe4_0
| MD5 | d5fb3ff5ba7e8d4cb71be6f4d506100a |
| SHA1 | ed0fbdfdfd62b1b6800a44b45d157119aacac41c |
| SHA256 | 36e66ffee7bad3fefeb1c95aa0819109c3b7c568ee92c4ebd2986135b638d8d4 |
| SHA512 | 511ee727b74880f7063115bc384f0aba2446bf6d19010ace06179cbc11eb4d4a44270d2d68d3c12db44403cbf6b5d7ad4ac45b53690f11a5fa40b5291425790b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005b
| MD5 | 67e59a06ec50dcd4aebe11bb4a7e99a5 |
| SHA1 | 5d073dbe75e1a8b4ff9c3120df0084f373768dae |
| SHA256 | 14be8f816315d26d4bc7f78088d502eff79dee045f9e6b239493a707758107fe |
| SHA512 | 6364515e92ed455f837dcc021cc5d7bbab8eac2a61140de17ff6a67dfdbbd8fbdded5ce739d001a0ba555b6693dafdb6af83424d6643ff6efddc46d391b21d95 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5e144b205c3aefb08913fa570ebaed57 |
| SHA1 | 404f04c237aed73491ca4afbf8a7adfe17a3520e |
| SHA256 | fb9789d8c40379e4918a7d7d8c45cd9a0b1bb6a6139d4e9a4b0934dd1832814a |
| SHA512 | 7edea47e265ac3e5d251559dad21b3041b4660eb7cd83823e7bc624fb68db66c18adfe2beeb33d8e900ab5e13f9038dd0ded4c044f82633e68f934254742d8bc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5bb727.TMP
| MD5 | c39c5ae4cdfe0f06ab877aaffc2c89a2 |
| SHA1 | 2bf68d303b6e3c20187efe1fa5e663d33be9d9d9 |
| SHA256 | cad0e24e8a62e17e2f6fee0669f26b179332fa9bc55e4727cb110ad73253304e |
| SHA512 | d0c25db329bf661ed8f1def34b22bd58386bc9dd1f9abcdcb1b55b4e5d7ad5b45f269ed5499eaec1bcf62d6d92261e11b8f08a1816cc70bc49f6cf5b301ab9b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9b5907ba19cc55df7d758e4911599e95 |
| SHA1 | 3e1aafc74ec63de79a04d62a16537b372099444b |
| SHA256 | a35135c6de9f1329e653c701279075cb4e1caf0f52a1a944e7b6d46cdec7b9b8 |
| SHA512 | cb0fe4c2798b8d2dfea948726f3e88602780590b832bd637013ab61cd28a29558ed5756e92dc1716e991c5e593d9672f7fc998155473f2dda08b6e1d22e68844 |
C:\Users\Admin\Downloads\Unconfirmed 332079.crdownload
| MD5 | 0dc93e1f58cbb736598ce7fa7ecefa33 |
| SHA1 | 6e539aab5faf7d4ce044c2905a9c27d4393bae30 |
| SHA256 | 4ec941f22985fee21d2f9d2ae590d5dafebed9a4cf55272b688afe472d454d36 |
| SHA512 | 73617da787e51609ee779a12fb75fb9eac6ed6e99fd1f4c5c02ff18109747de91a791b1a389434edfe8b96e5b40340f986b8f7b88eac3a330b683dec565a7eff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | eb47532bf8f5e186fe3161ed0d387a67 |
| SHA1 | a386589f575ab2b01c619dc582544ddeef877636 |
| SHA256 | 6368667ab5c593943ac1b35348cc733d42093d889aeea02170c837036dff35f7 |
| SHA512 | a7cd56a1e832b7e2a43def66c927ccf1d6ac7a670dc65807a6c9839702500b43c9cf4473760a71f21a6ebdd9fb0bcd28d4968c6c3be656b4f5e16b1c73c2403f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9c7c6019568f24eebf533bfaaf24f89f |
| SHA1 | 89a03c339af83b04b88140a3b01f325230422d15 |
| SHA256 | a68407daa73d0facf2954db8303f53f5e6014e4799472d13046c37c32be10132 |
| SHA512 | 8ac1ccea25063db89708946ad205cbe8b248336778cd1a92c4a45da8e22a14debe3370e6d040d72b19c83b4d382dfdc7406fc76b237972501b92f3f92b16dc70 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002e
| MD5 | 67e30bbc30fa4e58ef6c33781b4e835c |
| SHA1 | 18125beb2b3f1a747f39ed999ff0edd5a52980ee |
| SHA256 | 1572e2beb45d2de9d63a7e7fe03c307d175b2b232bad2e763623dceb747729ba |
| SHA512 | 271d4a65d25b0a5d2ff2fe8f3925fc165d9b4345893abfd919061d78ffc5ffe8890ded35e41274ad8b860f06264b027cfea6030ec9411a4e03bc6d7cb4d4d228 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000034
| MD5 | 5c21b9a6a2bd0e25b79308c554b6cd0c |
| SHA1 | 3507011f2e9f52bf42da2a761521a67fbf9728d4 |
| SHA256 | 446647618074651cdf930a696bf7f8ea9ed8b5d02db641369c4462147fed6907 |
| SHA512 | c9038cbf517e6f6b659033fbf4a3b75c3bcb3d2de1d2247724ee0e0bb1a6b6f380d139a20fc88a3a699c6ff0839d9adaadcc7dd3ca18e79cb54128a6642bea68 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000030
| MD5 | 5be81d7ad6cc31905fc542da6f7c572e |
| SHA1 | 7e8aa144a7be977232b0fa8433cfdd422a1cdeb3 |
| SHA256 | 7bce00c6824d69355bbbc48b3418183b4ebe106b6fab6d6c6884679a83e86054 |
| SHA512 | f5d3418399d2b20d1a7baef59b30810583d836ac82cc54d3181e5d21852fee36391e9d485b0832728070d0df4602df7d303aa76d55e0738a452184873a5a1831 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036
| MD5 | 4467420a126ad81a39fc86fa2b0afb9b |
| SHA1 | 74f9474e0e9a9261debbeac3ce826ad7da51e65b |
| SHA256 | 987a0c5e267c732820f0569ec629c3314fa260160be8d87a6d82f7bcd48755ac |
| SHA512 | e963696a39ed867673eb9123619a661e5eedcf10808fc87c31c8c8dbf793c8c0e8ff1aade54084575a756c42a6c8c3c38a0735760d6a28a304ede955163bb3a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000035
| MD5 | f63c810089c78d696cf495d33043832b |
| SHA1 | 05caaf6b86b970fc73cc2a2f5e714681ae706bbd |
| SHA256 | 961394b11382018a6b2258f35fce45dbc3c4184378b806fa3cb83cccfce471f6 |
| SHA512 | 2fca71cf8265beedcc96b670a5ea1dc12c1201eda4e865a527cded333e56f6ba15193b0960a62d3060ce57052eae211046a2896c0481ab5fdd8eab048e7f6fa8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000032
| MD5 | 7651b1187bb58ac4c7be625337b35e5b |
| SHA1 | 307d969ef4137a66fe2793737dc1c546587c7f43 |
| SHA256 | 0632850d01a46bc2f8c223155a4bf6c398b33596bb711e098440623f118c3968 |
| SHA512 | a81d2f768af155bdc642941404e7ddf95a2cea33c9374acb5fe32f6f5266e337fbef32f904551f61fcc9f9ab5a1c6a5ad130ab85b38bc2258e2f82c0ca1e9c7a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031
| MD5 | bdb6303e787efa7c9f054f5bf8a51d69 |
| SHA1 | 59f4f39ad1c5dd2a89c4becc1464485429b2415a |
| SHA256 | 5668bf7968a6de7cdc7aadffa3b8c553b66b15accea398e1380468a5f7df5550 |
| SHA512 | 71c339e6aaa5dbe1acaf31ad2cd93ec1290358e0e763746a0c85cb4fe6cfae8d5cd53346268d317dcfe6188a1f26760d245bc7f76a9d1146a90dd59d4b6b3b78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003a
| MD5 | aa6441b1fc9bfb88515771cb64849f88 |
| SHA1 | b5013044228c91a7fdde53fd46c91150467a2d79 |
| SHA256 | a87afbf2444912b3019d450bc5bb5da2e2a9b43ca376ed29d260945327353ce5 |
| SHA512 | ec0e4f36158b5d1d47c5b52d2bda56f47158bc844ff18699b4c094795aa7916e8b0e2ef037f3fe3f2cc944ef1534cd796d94c3d54db516f28f6232f74469e393 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003f
| MD5 | c1ebb88bffaac11e476ec9ac8b854fa2 |
| SHA1 | c1854109072d67dfd9d8d09ffccf79feacbe8e63 |
| SHA256 | 8bccc940328d0d7d2806d7f99b6ec149d288fbe6ee94e435562823794529654e |
| SHA512 | dcd610a584a534888d3bd9786fe432b9186969bd3d2fb1980128ced540c5a7706e13df8799ea72cb6b14dc438b172d766d3162ca8c84f28e718a169a78a813d7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003e
| MD5 | 7df4edd0102d4fbd5130dcef926d47f4 |
| SHA1 | 71e86a037f22559d16bc9ddd1459239d28b2adc9 |
| SHA256 | 388e1aec2b1cb7a9bdde1a76aac127844295c2ffdbfe20552c82ff580f27bc2d |
| SHA512 | 7074ca0837f786390f8ac8e1ead74045572eb9bc9ea1ae1893bad4cc63f5077530c18e0ba4a57e4cf2912b89f8ac8c178109d7ad362d629da49b25f6133f78f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000038
| MD5 | 1a723acf4ee8d85a386746ad1bd05a19 |
| SHA1 | ba95f5ec7caf1902dacb33b83a1c9cb9fc7c4762 |
| SHA256 | e5777491709e779ae2d7437f59db3da8827f23a59832b52e6fe25fe2fbc00e87 |
| SHA512 | 55115c939eb5a54b1d1c570a30a9de43369e5887d4fb634db3beca64efe6c2d2342176afde2161b30d4a8dca4cc4084c0b21a838eee5d6d355619575538bcdfb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000037
| MD5 | 60debe8bdc4883f8e1e2db545b49bb35 |
| SHA1 | d38d5a3beb2b3aff1099e674f1bf37e69318eac4 |
| SHA256 | b90384b101dfa688d82d84e1134df3c1b31e3dedbe677750c97ae1dcfadd4e6b |
| SHA512 | 978dfaf0e9637f2c509ad5d978ad94a16fb0e4c289a03af842a20761b0d3c2168069c32bc66cf435559021a472cec9e35e54a3831ee51fe6e94ecc239f9d89c8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000039
| MD5 | f05f6f507622a8e09c3d0093fe0be0e1 |
| SHA1 | 732f7536fe9a9cfbf30346466eb6af13fde4f706 |
| SHA256 | 798f4cbbc46265df76522a1b1660bc0a8a2dfc7f8b9dd59d330a28edc5287f73 |
| SHA512 | 63147d96a684f35a30f90504b8d0ae695c59a6518a18c7eab28108e51a564229143b76ff64b180a7261d6bc028dcf31610e445811a91ac90ad19d521c60b3fac |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000040
| MD5 | 46e6043b3a70e5986f0b72a748d9e3e2 |
| SHA1 | 5d3ac460401a49fb84286e0f8b9edf6167530fa6 |
| SHA256 | 171b12a8c0900d5f0d9e700eb668c02f167ad6f7adce4b9c36201ee10aeae005 |
| SHA512 | c0f875ed0d9e05a7439ac9d160edf59ed3b1b384b87dca5b75de3ba11a47a94d543f108ee60aaf421c965c0635408003535795e0f6601afdef4010d982724385 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003b
| MD5 | 7cc01bd1a73a2fefa3f0c6631e26085d |
| SHA1 | 5b47f2e9a24aa58faab0285acffcedbc5d0b6c6b |
| SHA256 | 3fb95ce12eee3dd46a4eb3a09dbab6c10f90c57ca96e1aeecffa4b33f3b8b652 |
| SHA512 | 5333dfd59a4d693f0cf757a6867a6abdf8493c4eb560e5d09caa0afcf752529afb534abb4146422800aa4361ec678e67bc736891593c1481f422925ded7f76e1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041
| MD5 | e45f95635508c9b063c4e562836dfb4c |
| SHA1 | 6ed7c9b0ce19ddd5322255faf090d285a7da2fad |
| SHA256 | 9d8660164c1677ef3bfabfe0bbe12d6abb1b7c285ec2a390c16a8d50abcc6bca |
| SHA512 | 532db66cdacfc95b0f8afb6bec048bed2fc2decd79d5b819edb17c99dbf38eda7af0ecd5108bf7f332432b6289bd24fb032fa3badf6072dab7193df647f2c783 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000043
| MD5 | b71652a83e5ebb86ed0b8fe3a443df4e |
| SHA1 | b0843e87ddebf7aef6c80a4cf5a653d769206376 |
| SHA256 | b9b8d8ba76b4035251724478562e08efb220eea7c6aeb75f4c515040be4d3704 |
| SHA512 | 667e94ce3f7b0e48e3eba019d4de5a9374b855a648405aff951af854f53e160751f0976341e54765307012bf59b0dd1ccdf484b15f2ce2600bd68554c475712a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000048
| MD5 | af076fce47d859d009c16f2192bc94b3 |
| SHA1 | 2f56c334cd6338b69a0f39c3edd6ea0a5b21bbd8 |
| SHA256 | d36457358687310d026665a3aca628637697a703adde698287a3ea25ed49497e |
| SHA512 | d89b829f8292c2ce770b54c86eeeacb0f59e251134c17fba214649b132a10b99adf120b45b6c3c939b1846ada1626b683cabcd6313748c6fe62e1e72086f1a2b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 540ef832d307065305b1e5daa08c4478 |
| SHA1 | b6be210b6a4b08815de11e8ec8843ecfc41f476a |
| SHA256 | 90d2ab28abdfc117c9144794e11461885515bd882d9df106031ebac9b1c71fa5 |
| SHA512 | 7dcd1b7d09a650d9f10078038890a6120b6c6ec1473ffd6bd1bdff5fd7210145b062750668fa47a4357e15dcb32b1c2cafffc1c64d61c1f246bf299180982d9c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 95c6bc641fcc140bcb499ed526bdf774 |
| SHA1 | a0b10f51d53fcd17a6cbcb8e34c07ef777135504 |
| SHA256 | 4ce6f19e137eddeb9d14304ad6bf9ea1b83bb02b180e6e9d2fb58829e8df06b3 |
| SHA512 | 63c32ae55aba72821c8912ae07fd2fd06b99d503a7caba43b5c0afd2b8c3328716c6946ea0ba1b4cced4e29b537082ad74e8acd2c4e5af802c36c2a92ea60d7d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005d
| MD5 | 9c6b5ce6b3452e98573e6409c34dd73c |
| SHA1 | de607fadef62e36945a409a838eb8fc36d819b42 |
| SHA256 | cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc |
| SHA512 | 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 79bf540f212401877ef35c39e5876a71 |
| SHA1 | 343873e5a101f00411b10785c1f31a162cabb5a6 |
| SHA256 | cef74b22b30fa6aecbd669e5a0f66def2ea544ad09f26036e3d1aac9c9eb2506 |
| SHA512 | 4b57dd703144bc6c1bd2116fcd717295480ccf8f1b10d85c64d9f2fe2d7f3b10f679cb88ba457c2aafea7004c45ede30070b511d4e398a1a70ad5a1a35623b8d |
C:\Users\Admin\Downloads\Unconfirmed 737217.crdownload
| MD5 | 9f9bbd12ae5894046810e6736ec4d892 |
| SHA1 | 9e81b764a40ec39f6667c54b8d40da0b97cb5a7f |
| SHA256 | 8d48d0a05d581922a4d30ba98cbf51ea981a37c95fad689e0b84b979e312f6a4 |
| SHA512 | 57d5b59de422394856e15b2d65c1f2a9e85a1b012c954ecad98682a84c7f90ff00be91819c8ae9cd123270e2cf446d69bfb248bde471a29846d57bf401417eaa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3521aa23949eef4c7f189d7315596c16 |
| SHA1 | 9a7bb452bdf561a4019c82be981098b4a5f12c13 |
| SHA256 | 9e2440162e05992eaf33a627280ebaf7051c28f1af354e2d6305d2dd90c76265 |
| SHA512 | 6cb6e9a48303db8a8e9094db6b885614bf9e9b5a81fc0cca48500f4b37e25351693ca9c221b0ddab7d1b55dd57a22ea1012932205c80299cc5b097adb45e4052 |
C:\Users\Admin\Downloads\Unconfirmed 422201.crdownload
| MD5 | 1684aab6fae1ed888cf6d3c45e3f5fa7 |
| SHA1 | 6acc87b81836575bf7b497f0e8a9a23a221f06b7 |
| SHA256 | 4114122c0dca23f637d83eed33f9abcdc92709e2ac6f63ffd55f5aae519b58ab |
| SHA512 | 6d4bafe21686ce62cc129082e8dcd4da87fa7dcaea5eee9862a99adbb0142e89fe0e9d097ee2b9a9a6b6eab3ee23b6a26c4fa587d7ce1782a1d2e2c1454c2e71 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f5a34da79fe760d7be3e68d2974941c8 |
| SHA1 | 9a34150a31901f17981e5c0e4bf8444906194858 |
| SHA256 | 1b6b0a8afd0096976c084f42e63e98564382e9602b5f2f043a9d5076f882cd31 |
| SHA512 | 4e927741d3809bddb14b811e7e1fe5bc4ff62130e445b91c7737df1d7f92d08144d39321e16755b07980331d386d42e9d80f207cd030c0672d5a2aa081315bfa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a130148ad7a8f8f69cc08feca26a3793 |
| SHA1 | e92ec39d2611b3ef0cb7f5fd695ba9de993b879c |
| SHA256 | 6e16c3627327cd80e73c09d12b4b387c831ba140c3adf1e84ab2f3e24af1435e |
| SHA512 | 4258e5babf0bf32917a4461f0c618d072f48b25917d47223568a1fc91d1f49b1e4d5b2fb2c0ea05c1c5332938710c67339ddc7d53da46b6ff5bfc1340f5de483 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | d92c1fbc927f96976d1f54d80b0f16bb |
| SHA1 | 2a2872bacc48edf83fde7b7cad9d7eb1416490c2 |
| SHA256 | ad3e0070fd520d512078de2cb8bf76e5f2eb0922b4837b647e8333f9f24f695d |
| SHA512 | 8fce6031ef128eca6770af35bb3ca0a872d4f77f730d161ffcf46539f74a4ccc82df191c9b93dd9db23377a69628873c4f0a04c5c23be00f52d0ecc20117d124 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 58f9211cd13eecc69b11ce1b942272cd |
| SHA1 | 542b2bbb848083d43c7fa0247038fedd1dd9686c |
| SHA256 | 72fdf05524c19d497b5e0eb98a2413f9fb382a24d4f4a975c2ca67205b479b0f |
| SHA512 | 99602fa0bbac71338ac8d1934c187b6aaf0fa98e2de5770bb86aa05a71e33446d77c0eb0fc1634856c70bf082bd68efeeffd253a798818b41003d15efc0af262 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b64e14611cb9ac8c19e016d56277ca5d |
| SHA1 | acd8e41bbec7152cde0da92f3aecf5780c414765 |
| SHA256 | 595c3608d04e605e62f9e67654a62fa069b798c6087a7b882ad5897a04edbcbb |
| SHA512 | c7fa06acb0b2d0ae6a832a731bc47ba35f454ded2872cc6c7a7813f3793a266b760df90a43b753b5283de599317c0f8768d67633e0ac52c48727238d92b40fbe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000028
| MD5 | c3bd38af3c74a1efb0a240bf69a7c700 |
| SHA1 | 7e4b80264179518c362bef5aa3d3a0eab00edccd |
| SHA256 | 1151160e75f88cbc8fe3ada9125cc2822abc1386c0eab7a1d5465cfd004522c8 |
| SHA512 | 41a2852c8a38700cf4b38697f3a6cde3216c50b7ed23d80e16dea7f5700e074f08a52a10ba48d17111bb164c0a613732548fe65648658b52db882cacb87b9e8e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | accbd6e53ee26cd77c1eef82346b9bea |
| SHA1 | 0a756ae5e55b0ad15dca362896faafb926c60b3d |
| SHA256 | 296455d88a5b2343602ea3930331aa2a5d3e1c09585e0564c8c94f3606bb8cd3 |
| SHA512 | 64da72ae4990cc668f165df98086c9fa520d7064138201a35766d346a2c70e5553bbc592a4acd828de9d0aeb4f0fd8b157aedb1ff5d14762e9772632137b35a5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | a8d0346057033f06180bf7676bb0eb62 |
| SHA1 | 8ef8bf04981f75309753326b4638f2adb454f5fe |
| SHA256 | ed9e9acd75682d0f9c6fc4f6ffa6338a2e9f4ab8ba8a056296b66e97328f0fa5 |
| SHA512 | 5c35e81b4c03fd66d1b82238eaf357ec3b07161b68849dd8877e7f4ffc0e047d8a48238be62ee63b26081cef9be6bb11b610cdf6709ceb60770b5abefca335de |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f
| MD5 | bd17d16b6e95e4eb8911300c70d546f7 |
| SHA1 | 847036a00e4e390b67f5c22bf7b531179be344d7 |
| SHA256 | 9f9613a0569536593e3e2f944d220ce9c0f3b5cab393b2785a12d2354227c352 |
| SHA512 | f9647d2d7452ce30cf100aeb753e32203a18a1aaef7b45a4bc558397b2a38f63bfcfe174e26300317b7df176155ae4ebaee6bdf0d4289061860eff68236fe1bb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000061
| MD5 | be1f6aaefa820251c64a81cc8062b64d |
| SHA1 | 0dde12114c5b4f29e1ca8372453f97ae2e9c3125 |
| SHA256 | eb1619e6a949ef0e8eb0dce4ddcac0d5342ccb5903ea77ad8cef0166149e6643 |
| SHA512 | b778bc24ef091d9011e3b7969a2c9eac3a257476d39276347c8eb5b72e40ce4f4e5df20a2f7e82398df710db22930018b43b26f0407dc4d6174a118710be2341 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d
| MD5 | d06eceed6df9b7982c926b92a052d4fe |
| SHA1 | c32830aafb62a2a5071143c624e26438816c9a94 |
| SHA256 | 2095ecee290babccd0311d0e8454a92dafe1c34c4075c50cbb42a6370dbd4a73 |
| SHA512 | fd187746f00df244236d2f0fa2171db25a05b1264b3988980433dd5681c33244397b5eb15351bb768a85c191bd96d0191f4ff5974700dbdfd0f2b8976183a519 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000033
| MD5 | 23d5f558755a9d58eef69b2bfc9a5d99 |
| SHA1 | fa43092cb330dff8dc6c572cb8703b92286219f6 |
| SHA256 | 6e5bec69b1c6424972a7f5481ac57049811f0f196535b707613126c11292c5cf |
| SHA512 | 9c56c94d059a27dab9f69c9dfd718382a8eb192b8c0ce91cd6db6ec0769b8756acf9c0956a35561474b87d6278b13fbe88a6e4df6260c278b1ae06e9be55dd6d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000063
| MD5 | f59bca73ff3bd7603daaeb2435c54db3 |
| SHA1 | fa793ae1186a458b61e66cc7c626ac23d70db555 |
| SHA256 | 135100b1f09c8cca2c7f6ba4c5392303304b4fd96c7cc7168314c5abdb221741 |
| SHA512 | b2da952cc865d39d9d92511773d3942637b0bdd10723a76d2ada9becf8b729ef873afb2acda0823a2f274ea72314ad923d2ecb24420417d5c4a6c3fc694db933 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000042
| MD5 | 90ead4aec68504cdd9667242ad5aa448 |
| SHA1 | d8db374550f2e77e6d46fc8d6fd46c7394aee0a0 |
| SHA256 | c4b3ad5f64f58fa685bad360a69f520d9262c0e28ab34fe079e16683a4bb9528 |
| SHA512 | 96f5119ac56af31bcf57f21e70adaad3e9cbce2ac8c0871a1ff1afec722571a8598959b5a2047c60c7c9164b6064a8fc33003083862da0125343d4cf2afd3d58 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0879479d0f4ba6ce_0
| MD5 | 63698f6411476898733196b7b709c8be |
| SHA1 | 8212498d2aff1adf55fa91a3944b03dbe7696fd9 |
| SHA256 | 9a1e0ec46804cce1dffa7706b36e179854869f4c9165107e89fcc499561c31ad |
| SHA512 | c1393c31b4b30ae5d088fd1f4cadf67b7aba7978ed5d286281332478fc3fecb735dc83d8f0af483cdf7a78ef684c0cd116aaff7aec961e55448b09a25a3b61c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2d1a60d94cb115fb_0
| MD5 | 2e796dcfcfbfb432ba5b48f491cb3a01 |
| SHA1 | 916b1d1f474d067b5dafbd3c8dc5ba27e6b091de |
| SHA256 | 4a1370b4fd3b3f1a614d030dddf0e744639f47ec76fe7b3121043a5e9c8497ee |
| SHA512 | 98e3dd0c31a7a9cd5edb0883b1c5b0fb479d477f4e6c3154754d86508eb6b8477d4563677e21b92727ea8ce44f37df8fcd5b54d80b14ff15647808b41e881fef |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4c307b02b4dcc58c_0
| MD5 | bb656bb9256f0bda5c2094b8a8720ce8 |
| SHA1 | c0f914c7a8e32ee7107ef7fe05f911feeb18fe49 |
| SHA256 | c32ba0cfd11a4fc0ce49a0f74c228d435bd96846094df711388050ede395867f |
| SHA512 | 92a05b6c78b56c1e8ad29f04ae21e0a285b2381987d79c09e222cc6f4ecd05f46e128775ba8e74ec57bb8612f838ae6e85845578bb35114e1e97cca7055f83e6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000057
| MD5 | 6b04ab52540bdc8a646d6e42255a6c4b |
| SHA1 | 4cdfc59b5b62dafa3b20d23a165716b5218aa646 |
| SHA256 | 33353d2328ea91f6abf5fb5c5f3899853dcc724a993b9086cab92d880da99f4d |
| SHA512 | 4f3b417c77c65936486388b618a7c047c84fb2e2dd8a470f7fe4ffec1ad6699d02fa9c1bbd551414eef0f2e6747a9ee59ca87198b20f9f4a9a01394ae69fa730 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000058
| MD5 | c03ff64e7985603de96e7f84ec7dd438 |
| SHA1 | dfc067c6cb07b81281561fdfe995aca09c18d0e9 |
| SHA256 | 0db8e9f0a185bd5dd2ec4259db0a0e89363afa953069f5238a0537671de6f526 |
| SHA512 | bb0fd94c5a8944a99f792f336bb8a840f23f6f0f1cb9661b156511a9984f0bb6c96baf05b7c1cf0efb83f43a224ecea52740432e3cfc85e0799428765eefb692 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000059
| MD5 | 8eff0b8045fd1959e117f85654ae7770 |
| SHA1 | 227fee13ceb7c410b5c0bb8000258b6643cb6255 |
| SHA256 | 89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571 |
| SHA512 | 2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 0832223be6d8143a51bd8c61a4ce8e7a |
| SHA1 | 66bf6f1953fc195600464ae78515d6d00cf6dcce |
| SHA256 | d1876e1b464bfd4e3c425012d8c08d95c7b44092a05b6a2f6200fc8637f1f061 |
| SHA512 | f04d4a44660b9f6a547074324454144fd88f448d6c6ed2432da13213e2d53315675d8ca87a2c21ede09c832069714b5d4c4db13b2029efc2ea2a2a9c75b8f24a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b5b575d3505f8b85d35c206d91dea8df |
| SHA1 | 8a51bb3b21397ff9e2f7a92180122fd9c43ba70e |
| SHA256 | 3c118c89a0ea33e62d295a1861c418c143f5d6bc337366d559c54e5381cacace |
| SHA512 | be4587367409ffc6a2a3c3f45a11059cfddee73e6c11c6c3ab234a57bfab55831c2e544866a6736d2e9b6cad0a0b17d78ddf358b19034d8cc95c5513d8f96c5a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\83613adfd03bf24c_0
| MD5 | 6ec390706f60fd4f95f145dccbe3efe9 |
| SHA1 | 51aea2b8b9e7f52d0b8922e6e522d0b3c0c2e2ea |
| SHA256 | 6f710bb7452bd16341669c89d3204ecc64d6c0ffe7dd44acd09c50d9b38e3913 |
| SHA512 | 02f33827776b7d681eefc5007f3780645b10f6aec5ce57c3d2cb0eb1695f222742cabb613534759d3e15b80ae6d32d78e1b67fb9eca12f2f0674dc008cab1302 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9e04f19de8f5d184_0
| MD5 | bce5ec83389b00a61a9b71c20ba1d35f |
| SHA1 | 831e3f5a7bd43851e703f719a12443ce32073c60 |
| SHA256 | f573c68618e8687e1a4bd7d57cf93e76c0e43919c00f7eccc1c3d80fe4d9ff2b |
| SHA512 | 770a26eb637a17859f57546f0af531547d1df1356ca83e27f5b467bef4294bd47626e011891e8905003d66f3e762d5a64e2f233397b1de7ebf2a1d21aee63c0d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cadfbb4769bfe709_0
| MD5 | f8b1a432487ed85beebabc4f138c1d26 |
| SHA1 | 17b8697050c8488ddaf8bf004c5f44fdef85f1a6 |
| SHA256 | e3de7deb99ee0f1d15853204cb333df028c344bead59a7dff6a46e2e8688fd4d |
| SHA512 | 88b10244e4883ab18fc91a69e93cec264a5888d8d8e1917478fc8b154ab36bc66754449ef48021f901c562452a22c5d19facdddb14fa335e93c65a672bb80cfd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e201db4afc7e2e56_0
| MD5 | 4de82bfcaf7143dcfcfba347ba8210a6 |
| SHA1 | 950eea6b60972c677ec5bab286f243dc1d37798b |
| SHA256 | a50ce7f3de36726f0ca280a84d40a8e76f09713df51c013057ce727bfc1bd980 |
| SHA512 | c2c4fd85878a24fbd062a58251e3617d78fc565d6730a48ca46b5ddb9475bc61e496e83dfc39c68ce84bea8ed66ac81492629f2446cd891ae8883f010788f26f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3a82d4d908363876_0
| MD5 | cb8fc0dd9b6aa42e90ba2f9e6fb7e4b8 |
| SHA1 | 7d76c44972805059277b0e35c04e764e2a343ca5 |
| SHA256 | b12a540256146a5bbfa3f51553797431b27d236a455ce6eb3e8dc6d9dc7d8074 |
| SHA512 | a4d2bfb6be8bb28b40d3b425bdf0f2a0e251605ec275c08ffe29661fbcee43a47d1677941e15f55fcd58c8050178b0eef1987e50d288898e12ac4a93d10f1abf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2818fc646e2b572_0
| MD5 | 253f0afde0abd4a6ffea1b669584af12 |
| SHA1 | c19bef185ad76713d6f338418c38363af3bb6d8b |
| SHA256 | 15367220f7adc157f4e130fbaf3df4343cd3b84166fbb3851be7a7ecba89f067 |
| SHA512 | a40ddd3ccc91fd201bc0041add91a2904c39e5bc81c5b740f174dc045c318e4e9f85ac3794807bc22c29d6bb21bccc9ad218ad231f59f864cf28357ca32643e6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bae4c1b146c714b7_0
| MD5 | 09d8298db84d1d0485c463d12beed25f |
| SHA1 | 9134088c41dc2b3b75d30a7bc842135a81271b7b |
| SHA256 | 16eb5ca5c89cd8d43d15bf30e13a99800756438aaebf6b0a6d4809a717b70fab |
| SHA512 | 6252261249ee9f4d913fe7af4e6592daccb46a051a2cb8c3259520d04160b4311f6f9156d5eef498bee1353fab579ce886ec80e42195f4a5d16e1abb3c6fc481 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4006a28d73136ad5_0
| MD5 | 77e06eafaa516088c3534be7a3e18c72 |
| SHA1 | fc5ac4c16d9a0f6bf8dfa1d71135fbd14d4d9bb0 |
| SHA256 | 50eb12e9fbd36738da513756b548fa1453d4f45f6c0ba077b89456f92cb894b0 |
| SHA512 | 6493cdaa829f3db662c47f91a58b0ac40b0b4e2788a1dcd5b6c2d5efbe94709ef656d056312fc89d6b7c049bb24aa266f141f1c9b15496f95c9f53c00cd717ba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7792ead34e608ff8_0
| MD5 | 0cdc9355bf4c4498bb0ba51e9d05c7bf |
| SHA1 | a8437d40c7f3b2e38430e1f1a9d0ba162a87ed5a |
| SHA256 | cc7657e83eb67c281462fa5ca88d20096d6e06e7d115b2d0c16c5b3b85682e5e |
| SHA512 | 70b09f20800c67d545198e50621d4eb06d928a95523fa86f7357b97d6fc0b9a0bc211f7aa4b8b0876dd772567fb7a89948b2e1921575ca7eb9f6782d9e2af7c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\44468435f4f37580_0
| MD5 | 0f8603cb39df8633eae18ba38c9db462 |
| SHA1 | 7f83f5c8ba649b436c0abec1bcffd3343f39f6ce |
| SHA256 | 8ea0876ae495b5ea5d61442e6f80c6b1a4fa8e897af6d20208e39931c91c5823 |
| SHA512 | 3a970af895c447f69f88ddeb0907566e74a2ec82832e28d3fddbc6993eb82de4ec72279606c90f8fd4ef81034a74cc9d6b4cf26579cc64aca262de886945f7d7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2bd1dea4bf8fa83b_0
| MD5 | d7bb5e04fc186409b1ae2058407a4e1c |
| SHA1 | d127cb85834bf95efc24851301404a4f901a1d03 |
| SHA256 | 99f281fb185b0818bb15ff5c4173d08da338a58f502eeebd617258f5a8ea8362 |
| SHA512 | d79b720a1f47e910cc81b69d051ddcd1bd1ad081bee0e7a0f259c38fa2f8a131c978452b72979383e1c811cabc5cfeccc1e9ec647f0d66a30ac975c136747e39 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bc0276656709e65b_0
| MD5 | 081b36a3a5bc6f6704e9c64ed63e366a |
| SHA1 | f3e621dc9df2400f4e817822e2913d11448b9992 |
| SHA256 | 77cab0d099d4897e21449ddb7bc0661d3fa377321324846f1e27a32415828c58 |
| SHA512 | 4daa052f1b162fab0aa40c75d94905975eb8218530cb022798917c95d990c9244462bd603a01bce7d85a1f6eba5494084330871010a9c66f3a0a0198b6daf12b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000062
| MD5 | 42e84ebcf5470237abd1f9e322b751fe |
| SHA1 | a828a45804554507d9e8521c36109e8bc3d5eca2 |
| SHA256 | a9fc7baee3689f0331e46617f60d6e7c3ed631209b7211e7dd09cf20d22a64c1 |
| SHA512 | 36606d42aee5689819dedf221af3c6c0da06aeb9997b9ce84b42db42ab80a0926352219f1e47f2287dcc850fcc96e4eefd5e487e09e1f1228102eced11271e25 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\30ae723e74f2de50_0
| MD5 | 6077b85d7af40664259e1e3540d519b1 |
| SHA1 | c767aaad936f45f31720e87262e1ad7863edf11f |
| SHA256 | 6c77406c1720d919c45a3b6ce65863b226ff94ff3e0e39d3ed2bd7e9b0ee8126 |
| SHA512 | c4e0cf6dd1472a09ccbd78588a5cc4f918313fd764d053c8e7aeb22372d76cfb9f63ec398d85dddcae59c0cc599d8997ce504fde8f3555ce5b032a983d66c5e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000c5
| MD5 | 73c902955ca3b471da95fc832d229686 |
| SHA1 | 9b5c5ab5f958fc963db270c40b5908e5128448c0 |
| SHA256 | 03a0fe2e76c2e440352b8ba3bb80e750a4df1f5571a4645dc1481aec2fb15975 |
| SHA512 | 5bd71fbac24389f7e7d30d1c4c6cd0816a619f63aca3cfdc09bac6741eb27984e82edd61fb5c085361c27aa5756e962012c11907480eddd4fabb856879115b1c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 57f071d96802d5e4cc6071a83db6951a |
| SHA1 | 99df71f01288a75a4f4883b9623e47f65811c739 |
| SHA256 | 01b1467c770d9971ed832e03fb6a5adb01e9e3de771ebd24a97141fa5803c427 |
| SHA512 | 00ac87ce1e42aa2e7ad2878a6c1dd30962ac934cdffa87a07aacbd0e196a5fe440a26cbc314e8095191e405a367dd09cbf81f019831dcf704d83551f81d8beac |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 110ba5635638ec0bc888774e732caae5 |
| SHA1 | 7b29cf1d96cba478a7b28c68e800935f40c5a45b |
| SHA256 | 18a68bceae491c0733c747f3f6591de15e2976d5751f7912b197e49107a46329 |
| SHA512 | e448976a2292d71c657d7d5b29bce4479b07c4fc8933ad02e48392af62d394b9621e34a07390ba1b8353f58bdf73cb4a79c5351cbbad3f2f451298b7fc9fef79 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | bb8fc62f54c036e266da1eaeafd92d51 |
| SHA1 | 241b439e115a8ce27ef7a87a5639dc4304a9044a |
| SHA256 | be966af9c8316d95711595f87169cb6ddcd91f83ad0c88dabb4ffafd01dcc7ae |
| SHA512 | fe0e512a7cab5104b57324890acf008cdf22a6dba133b2b7b33640bdf2e8038a61ec4359bb98de093f52319d99c19328568d1a56e055fe835bf42f14423fc5a0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5d4b15.TMP
| MD5 | dd30c2c67e7c3626c613a4e2bb3884a1 |
| SHA1 | c1324cc30d1dc6ea27a16c1758d61f6d7514c438 |
| SHA256 | 963845f1bab850007cc73e39a7e922c4d00203a4255a5b668ebe6e6701dd50d1 |
| SHA512 | 955869f690de59947416f034c26a7a3459549aa36dbe1972b438ef7800d85ac1a824685f8c20f2116099c1735a76684644df5e6593019c107ad30bc671cfc74d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\80c6b91f1a22ed90_0
| MD5 | 3f56aacf06b1c1ca0a77270299086cec |
| SHA1 | 40f544c7c43acbe2f3a8961707c3db6c7349748a |
| SHA256 | 9116cb94ae19fdbeb63aed91f746a7cbc8dfbb8f4b732219c370d0851faf570c |
| SHA512 | faf7b87559de37f6eb37e9f11d2c32685c62433cbca94e35b1ce31e24c8ccfc61ec4a90e6b656de8438dbbce3f49e9fbd5df137b3cbada93c388ddbdf59f8cf9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c7318cbadadf4a30_0
| MD5 | 974a44cd1d790ec1993a8998f66a4552 |
| SHA1 | ef879f440ec06dfb58f25ab6f93778e8b6add4af |
| SHA256 | 8c8cd354eae32bc6cee48e526bacec8555a82cb02d2ccd2f194f9aed8c5780c0 |
| SHA512 | bdd709d6e9a64b0e254999681cfe6e95343fd7cd67adb4c86a1e3d3d6bd2bb733f4d76a630f8e6f6a11f8e2bd97fe3fcaae32e01dc6a1e42bca077d91d2ed528 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b366c7255e5e3c7b_0
| MD5 | c8a4358a1ec1fe8d44ec9e1bec790fe1 |
| SHA1 | 650d0901f5494dfddbf6db4fa5b7e69771afb14e |
| SHA256 | de65df59207077a468a0f12ef8c79715d9a58f00a6fc52569a92460da530c701 |
| SHA512 | 6bd850e54af25869c261a6c7217622cdfd391499ef4a33876b0d12e1264e0c8a323614998f088fa967f4fbff28d1f64242d28296438d81e67ea1d6e275f0036d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b6d7318525efb2a2_0
| MD5 | 8f7cf6233be9eca96b3efeeb2f209884 |
| SHA1 | b617fea3c9fdbc2766caf57c1e54b8f82ed6f8bf |
| SHA256 | efda635353f04444a457d9c15e2cc494db23afbf4d55f483ed6e7e98f1affe66 |
| SHA512 | 0a63edc78734117a3a34aa57a7670f20f71fd8c28ad5fa978783111f91728473019a6f0607d24114e4224567ea8343e2745821ee07ee9eebed023a78d8a815c8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ce024299e4fd4785_0
| MD5 | 8c7de4a6c46b8e8c126096bb0ad9b355 |
| SHA1 | cfb0d927fe97803cb6f49a4d413189883cf87a57 |
| SHA256 | ee485dfe7fa238bf02a03c7603af4a7136ed44b58be95a3ec4e7f889226175e0 |
| SHA512 | 7cdd9e07f3db40c2e35661feb171076570b10ba12509ae2cd22a40bfb6da226c903f7c1afb12cda28958a83caef61b110581dc7aadcffca4af7b632a3869c845 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b8fb7f17faf71513_0
| MD5 | 30046153292e6381563be5ef1f5403ee |
| SHA1 | 68418e2497b6c1919722d2ba3170b92b01c114ec |
| SHA256 | 14511023f66e4208f899a9208056e4054254fcf4523ab35cb73e251cf59c5559 |
| SHA512 | 6d09623dbb13597e3612e539e47d016296bebbf00b5c1842f18689cb2ad759e6c2d06cf1b39cf8396f3d1574b130048f271c4cf3211dca622df24da316edd5d6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\56a170239a027a0d_0
| MD5 | 216f73ee360147a047f68f5fec8882b7 |
| SHA1 | 66f6441e8e40a634ed88d9181f41724a79103577 |
| SHA256 | fb360c52a3b5687184e382711ca2cfcd6b28b6e1c1bf0014a3d6cd6fd04b9b0b |
| SHA512 | e43b0d63722934a7ffc6fa0f3668193824fbb09dc92ff95894100610a5ada53312c9f75b2beb12664540e4c56ea47af28b4f3a2e1b1953cda8fffdfe1b9506ca |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ab90916f22407912_0
| MD5 | a28f84558c1e228ec88aaa8a81ac0447 |
| SHA1 | a745dc5eabb34e573e4fc091d26ce5536162c254 |
| SHA256 | fc9ffd3204c129edd25e2911e8c6dc52941b3f743f64442bdaa965ff010a1f4e |
| SHA512 | f3b38cbd3e1d976264150c18234856e1f7aae9fb3f75923c6ef63f3f54455e24a8e1a1ddf041dd379367069aaddc40d9a5ed40cfa0b7d87e5904817ed7618814 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af8d06a6185c1e64_0
| MD5 | 15eb43c5ce23d0bc62bdd59b97addb81 |
| SHA1 | 909c6ca362f066f11ea80551e335de1bf1d98715 |
| SHA256 | 3fad00e92d951689c7d00037f23243e5bd6849806ade69f0098d7ff4198036a8 |
| SHA512 | dd313cbd5b68d83cba87330ae8b1820141c60b600367d608f4e953937f77774da561ca68ddf7cfb7177038282ce05d6668be395c40a2affada01eb98e6b36649 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\00d6e5e182e93c5b_0
| MD5 | 60c702c8d84a395c3a46b55029f50a76 |
| SHA1 | 04e4204802923dcc6113a70d3a4f1808f3fef801 |
| SHA256 | 2efb6b17645198f65dea97ce7b87d88213e5ffb6aca78e213ed44e550cb41917 |
| SHA512 | 7e575f74be6dc895cb2e317280533edd758024ead3d2469d19a7533a6fa952961854be97d81412a864b47b0dcddfdcffab79f188e8ac0fdb88041d00f2f92233 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7b786ea00bc52ff2_0
| MD5 | e75b04015896be5303ae9572f43c0c9b |
| SHA1 | a9dc9178860745909af624602912405742313214 |
| SHA256 | de16738f2e066e1ecfada147b6f77b31eea7994a7069dab596832f9162b289a3 |
| SHA512 | 32cd79c1f626bb91f8de6aa8b90f9091702e2d27b08a50841b36fe14d304eec80fb2bc70db29604923c214ea9d7725c83506323387dccd10d5567ed59f014c25 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\302490f3404d68d5_0
| MD5 | 4b46493d7f844ddd7287bdb16ec0574a |
| SHA1 | ab8b3b728727bdfd407e9561437e914d11ae2c92 |
| SHA256 | e8b662a4547b39206986148adb9257e8f473f7de850bdb2068c8116ed68490e9 |
| SHA512 | 1a9800bcdff0be0f5c5c3f4fc0fadc74eb0932261221bc8cbd8b78a1ec740b43916b8c11f544b695d9b6f070d4b3be9a280da8dbb54bc93d66bbb4db600a67d3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bd6b414df7ecb6ef_0
| MD5 | d70f4f5a1edbfd3438133a06ab787019 |
| SHA1 | 82e33bde2322751d7a30a592cecf826c3930c459 |
| SHA256 | 534541ac46aaba7e2b29f98ed84a1e9db0e2a93f40df0f2ad1b2c2e53591d338 |
| SHA512 | fd6acb70da19b91e5b5d8c31bcfa9cedcfeb6a7e2cabb3d2972c6cc55ff7269ad5b5655da4bc6d11eac20a3148d940f934f3147405bb90dbb39e9044d414b141 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d
| MD5 | b7acbc2406a7f663f4fbe535b112d734 |
| SHA1 | 602ffdcae76ca3911638870f244d16ee4522a11c |
| SHA256 | 5d3df9af4acbf8773676af0ea887e966bb0f8dcccc6f4f9040d9b6884d3ba51f |
| SHA512 | 6b20ee9771a2b9234bcb4ced194b1fe58fae7ae75a3815b740b0b72a9b2a58be77b1ed20b919ea8a9675eb8f708a1b4df37ed8c013549bb85e44118f1362350e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\8c63d67ae1d6f3da2a741e2bf7d411ce642962d1\9bb26b99-207f-4d49-a48f-4d59beadf7f2\index-dir\the-real-index~RFe5d56ed.TMP
| MD5 | fb63311642c547e379b903f6ad7bdb7b |
| SHA1 | 5e86a160f399e593e4b379be21c5f35116173315 |
| SHA256 | d7969f8491eadb5cc37a7441aa840eaf8f7cd979f6c295be7bc771e71575797a |
| SHA512 | 24815418bff6ef391864ac122c759fc641445ae5ad15ca8df70c37b1cdd8cb887d6e8a27a116913b95001eaea6ef4be618ea8aff97e04f1318368c9e60206ab9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\8c63d67ae1d6f3da2a741e2bf7d411ce642962d1\9bb26b99-207f-4d49-a48f-4d59beadf7f2\index-dir\the-real-index
| MD5 | d52157ab31a1f8f4dd6cc8a10929e54a |
| SHA1 | 69ae0c057cc30de755e4c59f50866570534bced4 |
| SHA256 | b32b049620d28f4e6b4478e2ee3f14152c120494bf193f840b151746fc9df409 |
| SHA512 | ee70afe532ead985d5229f02e753a5e18267acb9a01a008077d07405003ec441afd4d5642af14252d73b22f1627b334f0bc0ae8cf7fd37b53bdc6db8800e3863 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9ba8ecb6291379ed_0
| MD5 | e52e7f6a082f25bee96cba90dfcc2c9f |
| SHA1 | ae70c0e470691b8725af40375fd9a720298d10f0 |
| SHA256 | e26683b27493d796c87be644bcaa2c28bab576c688e39cd6103aa6607e448c24 |
| SHA512 | b68b3f74595e27bdaa3b63e3c13cad79a1feb1461f63c49e3593bfdbc5ee9ac95e088c3a11dfb6e7c099550b1fd21741b697f802156a154a0d2979b71cae97fb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\24029b20a1b39be0_0
| MD5 | 61f159f6543aa980e98b39f746ef792a |
| SHA1 | 861d45be05fccd3cae5dfa6576da1687ab61b160 |
| SHA256 | 0bede5331d506c990872de517f3bc1f241ff75f00c266273d04db06da4ad3044 |
| SHA512 | 2931414d355291bc575933f5072228c34ce95385feaece209b5deef9fe460d025a3d8994d0306e66786963d2fb32a0855a6290ba75033b8b6bb83a5422969544 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\8c63d67ae1d6f3da2a741e2bf7d411ce642962d1\index.txt
| MD5 | 8c84a01c5d3f23b58d73cd8d9a348efd |
| SHA1 | 583f4ae7f221130df7a9b0449c3140063e1ae0c2 |
| SHA256 | b523696a1db2c76ce01752fadf3a8062ca7d809d8c1fb88ef2ef0e9523086ce4 |
| SHA512 | 03c734bc1766c882c67575902765e57e843740fbc8a002e861509fbd0e19bacb4462b40e32a9588aa0f1bafb03f3b7b472cbb8a860887e1f8414f421bf0183eb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\8c63d67ae1d6f3da2a741e2bf7d411ce642962d1\index.txt
| MD5 | cddd76dd9ffee78c92e842d95e1016da |
| SHA1 | d6a10b71bc92e40d6fb123898893dcff65381b04 |
| SHA256 | 6d45e598df4498bec6d6ab9e42d583d58297e5ed9d25b934fbcc4591b88958a1 |
| SHA512 | f46e72dd5eb5cf28d3773ffe73062c0871c1bd79841aca35c09bfe551d0b8055e07dda9a65e5c74a3b0ca8d427fd3bddea200330557f693fe0ea0fa8f1c52000 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9e9c2761ae1687cd_0
| MD5 | 4f145a87970fea7ecf8f83b69213e763 |
| SHA1 | decb912a0b8de8c042da794892fa8ac78fec00e2 |
| SHA256 | 178ed1c2c16ad7e8f68176192c5e818cb0411f99d1a2fbcf5581c0f3b746cf4c |
| SHA512 | 2e476e5680ddcd3ad5403e107000b1363a616456bc7d5bf4ecb328b671b1b1c96aee819a40c517114a1ca9d10880f769c115079223563bc855745dbce474f15c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\10e7f09a1dadfa79_0
| MD5 | cf6547485f7dd3f2f4a971c2cbe54d45 |
| SHA1 | f18a742aebef65cd5e5d759121c220cfeb960fee |
| SHA256 | 3f040a926a08273745bf239f390622dbbe6ba76bac028cb68fb909f903408536 |
| SHA512 | fc970ea01c92c96cb51000419e219f5d8751f1246f0c08150965b10d0f251011a04aab1f556712e0c3a648ad138978c3f43ac0608517815bf94c5ebe157e3f85 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f3fc4a91ede41ae1_0
| MD5 | 40aba0321e923f407c1c5b893e47b99b |
| SHA1 | e90c151697712cd816c364ea966950f8830e7dda |
| SHA256 | 0a3ecd986b426e870947226dcbe533edcac5a408106e0ce337130bfa5982e12e |
| SHA512 | 41c53be9105e2e6572ec6f6dfad969ef4aef77c9591cc6cb8b28ca1f33236981b8e1c6b9652595ed3b7de61fa785e0a13ffb692df3566aba7b08a535a5a30648 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7f0e07c14c2aff01_0
| MD5 | 883db903cab614cb931970e37d599386 |
| SHA1 | 5f22661c1f7b67ececdb30c9a8cd8c4b7c6f4536 |
| SHA256 | ffcccad99736f00c460faaeb3f0945c513f580429d7487f73e2dc1e0af7836e3 |
| SHA512 | 65ed5e2db24986e0f3d4faa0c87819e8bc0e240f42ee46a793cf64e15b0425c24cfbb6d26935485525db2e52f6ae4d5050ec8ac3807e45f62644f91e6f51c410 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f88c40015dbdadda_0
| MD5 | 3dc24a5306740c07a309216cf1438dc4 |
| SHA1 | b06dae7e41bb3faa1830ef127be40fbe2e8e26b1 |
| SHA256 | d08d1c5e768540066aeeaa1bee8b1875938ea6842f785c5428cca02a7ef59c82 |
| SHA512 | 7f4ecc792fbb8318d8b8a303007da378583efb398fc670c3c5bbd24c7d5ccae843c3b87bd0b804fb5b09623189fdd94f03ce4af737917c1315c81ef9d7d7a41c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\563794ae89368f77_0
| MD5 | 51a1460b27d0577a385a2feca6c94376 |
| SHA1 | 58baf199b057065705ee94ec337d74d2db2f51f6 |
| SHA256 | 19a3557e9db17b1562b65e1b716518b4f518b2089a5395eace515a5a08123d41 |
| SHA512 | 55edc90d95b7c8705b33eb32e825d809df4d29989cff229bb01c9b545a27b0588ef7fb9f26ea558c4d9a288c6872fdb58001c0c0cb7ed753e4838d27a061561e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\336a68eaaf209f48_0
| MD5 | d07a9c895915ff30055bff04048c520a |
| SHA1 | 5ed0f3e67ca1ced41776afb61b2da391f567ca19 |
| SHA256 | 695c02154bbb91d35657c9b7118b9ef5b42513c03b1e91fa159650b684f755d4 |
| SHA512 | cbbe8169ec432b0a5bea3faed267d1e3973a3c53e8f345223eac610d504d17a1e2bdf31d1084660677e9795a2d243b63833fa27d84dbd361ed7a372856df550e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\051f206ea28b475e_0
| MD5 | f9a5fc925ed50890fc5c54c33fe17311 |
| SHA1 | 59f62fac51f94b2977797c3870f791eb04eba546 |
| SHA256 | d15f00706610b833d34d90ae61ae686a611f6e321ba9bfbd0289db8eac242790 |
| SHA512 | cc714a242be80cfd5e5fd4dd2dbaad284e92699dec53c919936e379a7e8884e4ed908f4483983b94dd84ac4b572192789865b4fd51bfc437877dffd5244b234d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\65c31d2dd65098ed_0
| MD5 | af0bdb5f9c1dec756e33225ef4b4a80c |
| SHA1 | a24f0c35d3c4e0a5c8f9ee97d5c78b954572bf85 |
| SHA256 | 69e7be0519b13cff15d3fdc94c674400371b4cbc6e40846b8de3906f1a37c987 |
| SHA512 | e8d681fb78934bb2d385f3e81d5f1e3a77714b90d496f366dc0bc6ceeabb39aac561097c4ecfb3966632607920c5f1c1a38d52cdde6f62a607ec2f2078b1bb09 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 584fcc3e6350128ec351fecc8f242305 |
| SHA1 | eda873106eb2422f8e70751a256dca6ccb4376ca |
| SHA256 | ce38b3fbd88a995383614d4890e07d486576050b738d7763a9250226b9621a10 |
| SHA512 | fa10d4aa487d147779919e0dac1ac34968e4df1dbb43145e013c362fca4b371314725a0cc56ae89e54141076e292f015d03bdabe1c4590ef43fdb2a0c5cc39e9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1453e2c97f621961_0
| MD5 | 4404853dfaf62a212a30b7e2a39a8a81 |
| SHA1 | 31a2adedcfc54808556b1914e3b7f19bead6fc32 |
| SHA256 | dfbaba29a609d19a491e9cecee45ed958b8447afef6acfd1fdffefbae4069d20 |
| SHA512 | 77e5ac19fa6e9794237e8a948cfd92579ebb4c9352b69a5c389c6d6c5587cba91b5ad8e3d0ac22f47a28f4159cce4a38b8df1574c4edbdbc34cb7736655def88 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d3
| MD5 | 7b95e2cea99e06cf1659963da68f0974 |
| SHA1 | 031328ac29df9e0f85ce610897549edb6f3d4af8 |
| SHA256 | 8395cea244e8dbb3c413fd7e406c8808ce608ca7fd529dd431b9c11ce25e97a6 |
| SHA512 | d2bdf3254331a7348a57efbba0402045a1fb997f2286121c4688b035354dffb45aa61c48a2eaedd53879e2ea8e26636d97876ce628b42fc2a0323dab22c124b5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ec698b6c787fa348_0
| MD5 | 631e2b8f7e2a7ef609fe750b73d30e0b |
| SHA1 | acef5555cc08e40dfa4fd7d6a182ae313484eef6 |
| SHA256 | d0877448f58a709c34ceef023a64dde7927daeed6e2377698ffc0aaccb729601 |
| SHA512 | 812ed09d7a17ba964e92239a571c154284178add3923cd2358d5098d21e47a8400a4f0dbf7a87ee636093ffd228bb2ac8baec5f7fea36862e432accea4f9151b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e60c8ce092414c00_0
| MD5 | 9bf79d5782e0464e0725fb471913a08e |
| SHA1 | dfd7cd3ad3a9592bda02875b4fac3e18bed82c23 |
| SHA256 | f15d787890966e04b8c422b0c5b807634e8eadedbe4e68fe5e9694462e23b228 |
| SHA512 | f8471d7adca15c7da282e874897da5e196bcdc5c0e865728742ad23e0baebd48ace4139e3b67ef36680d1b3a7c31375baccedcc3aa969888d47924fc69eead8d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45f26ee2a6b0bf6d_0
| MD5 | 2ed146ca806f88ee44f10bd33f854f80 |
| SHA1 | 89091a17df094319576b39d97d30c8b9c9c14bf2 |
| SHA256 | e0c0f2619cf8c16778d3c306827f795fb7929fda8b63e851431d314c613cb02c |
| SHA512 | 805f2cde0df16e6d0a11798bec0b2c0a039a398f1c79126f3c19268bc0297e16d97b3f6baaded76637282cd798cd84b2b589fa529b09dab7478a239ff6f66ebf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8db6a5ee934d08e33c72f69a75a14455 |
| SHA1 | 9bdc43efb64c5b55e4545a0dc13c1205245da6b9 |
| SHA256 | 28ec6e6ed4c696a3a0f41ac7422a436c78b995dccbde78c0e406372259cdf033 |
| SHA512 | deb2cc54849d412cea3e312fb7b7eca17ff951803e0743568464577be2a8d3f4ac87215abb8577a143f916a93874370edcef08b41d6236d39dcb39bd4455d4fb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | c8f9599b3e9ac64c1768457e953066dd |
| SHA1 | d856f5c6584ade4f8f352c4c7e05be631bad6a80 |
| SHA256 | 548eb3f805bba59450ae133c9954baeb0abd5a1ff4a3ac923dc65d646e777abf |
| SHA512 | ec0d6a44c990871b247d6518b2dfb99052a480e2007c8776c2b7b00c96af747d8aee7d956a178ee8e67d3ae69069f1811be2ab0a387cafb3eea1daa30c53fcf0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3a501c7b3642e246a53f343a5913fbec |
| SHA1 | 1a12a830f17ce0f78386c6e1817a72f9bab989f7 |
| SHA256 | e9a0b3c3f4786a8797899a39ad753ea2bd222d45df56fa1a346ed6414d9fd571 |
| SHA512 | 069ad2aaf8cac66a879a2de7a1e3ac04b0edde0a6e47dd96cc6828c031b2b0138dac18de5e707b8a92f5672f892f2bdaf29e5f0d91e7f7e6f74fb7332cfc30a9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | bdb6174a9e9d915fdc63bc61886c4319 |
| SHA1 | 51c21c4e6579b28f3ffd3c112fb6ad752a08d70c |
| SHA256 | 8cfc63ebb7ce69e1e7f5c909b69ac6e94db841d64290c91fe8913d4725d6f8f9 |
| SHA512 | 615ad6a322ea6969a2930ddcf56f667164708ca284a744b3bda1fc55a1d93f5af2b7e05646f06769cf226472fd88f124da0b0f235c68c3d290d8afd83095a17e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 0181cfdded3a17c17d4ecb540d886d3d |
| SHA1 | 9c0653918999cd20e7532510f4a1c8e012e8bcd9 |
| SHA256 | 4d580c258803e620c842512e811dfeb9bd38fdcc6aaf785fd0f56a47ffa7894a |
| SHA512 | e34c04056c62a37668e3d06fa3aeb5dbd58e0359cdbcc6b17fbe786391d84742f278f20deb26c41d9ab74a2309ef95a089fec61f8a67e154f119494bcdddd709 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 88dffb681b3366591a17898745a6da93 |
| SHA1 | c0c301f7d46530539a13b5cabace0dfc5e0c309a |
| SHA256 | 529521fb837c42841078902448cf358c3f8ff35824cafbc47bc9fb0331659b64 |
| SHA512 | 9a57a7d670d892cc67e493db982469e35880f26608ff40aafb33a8527a7a460235d493f61a2fc6c4414037ccf63ef45ccfeb8cf09f7e6cc7835fa01315be9aab |
C:\Users\Admin\AppData\Local\Temp\nsuD1BC.tmp\JsisPlugins.dll
| MD5 | d21ae3f86fc69c1580175b7177484fa7 |
| SHA1 | 2ed2c1f5c92ff6daa5ea785a44a6085a105ae822 |
| SHA256 | a6241f168cacb431bfcd4345dd77f87b378dd861b5d440ae8d3ffd17b9ceb450 |
| SHA512 | eda08b6ebdb3f0a3b6b43ef755fc275396a8459b8fc8a41eff55473562c394d015e5fe573b3b134eeed72edff2b0f21a3b9ee69a4541fd9738e880b71730303f |
C:\Users\Admin\AppData\Local\Temp\nsuD1BC.tmp\StdUtils.dll
| MD5 | 34939c7b38bffedbf9b9ed444d689bc9 |
| SHA1 | 81d844048f7b11cafd7561b7242af56e92825697 |
| SHA256 | b127f3e04429d9f841a03bfd9344a0450594004c770d397fb32a76f6b0eabed0 |
| SHA512 | bc1b347986a5d2107ad03b65e4b9438530033975fb8cc0a63d8ef7d88c1a96f70191c727c902eb7c3e64aa5de9ce6bb04f829ceb627eda278f44ca3dd343a953 |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\jsis.dll
| MD5 | 2027121c3cdeb1a1f8a5f539d1fe2e28 |
| SHA1 | bcf79f49f8fc4c6049f33748ded21ec3471002c2 |
| SHA256 | 1dae8b6de29f2cfc0745d9f2a245b9ecb77f2b272a5b43de1ba5971c43bf73a1 |
| SHA512 | 5b0d9966ecc08bcc2c127b2bd916617b8de2dcbdc28aff7b4b8449a244983bfbe33c56f5c4a53b7cf21faf1dbab4bb845a5894492e7e10f3f517071f7a59727c |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\nsJSON.dll
| MD5 | f840a9ddd319ee8c3da5190257abde5b |
| SHA1 | 3e868939239a5c6ef9acae10e1af721e4f99f24b |
| SHA256 | ddb6c9f8de72ddd589f009e732040250b2124bca6195aa147aa7aac43fc2c73a |
| SHA512 | 8e12391027af928e4f7dad1ec4ab83e8359b19a7eb0be0372d051dfd2dd643dc0dfa086bd345760a496e5630c17f53db22f6008ae665033b766cbfcdd930881a |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\thirdparty.dll
| MD5 | 7b4bd3b8ad6e913952f8ed1ceef40cd4 |
| SHA1 | b15c0b90247a5066bd06d094fa41a73f0f931cb8 |
| SHA256 | a49d3e455d7aeca2032c30fc099bfad1b1424a2f55ec7bb0f6acbbf636214754 |
| SHA512 | d7168f9504dd6bbac7ee566c3591bfd7ad4e55bcac463cecb70540197dfe0cd969af96d113c6709d6c8ce6e91f2f5f6542a95c1a149caa78ba4bcb971e0c12a2 |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\Midex.dll
| MD5 | 2597a829e06eb9616af49fcd8052b8bd |
| SHA1 | 871801aba3a75f95b10701f31303de705cb0bc5a |
| SHA256 | 7359ca1befdb83d480fc1149ac0e8e90354b5224db7420b14b2d96d87cd20a87 |
| SHA512 | 8e5552b2f6e1c531aaa9fd507aa53c6e3d2f1dd63fe19e6350c5b6fbb009c99d353bb064a9eba4c31af6a020b31c0cd519326d32db4c8b651b83952e265ffb35 |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\CR.History.tmp
| MD5 | f310cf1ff562ae14449e0167a3e1fe46 |
| SHA1 | 85c58afa9049467031c6c2b17f5c12ca73bb2788 |
| SHA256 | e187946249cd390a3c1cf5d4e3b0d8f554f9acdc416bf4e7111fff217bb08855 |
| SHA512 | 1196371de08c964268c44103ccaed530bda6a145df98e0f480d8ee5ad58cb6fb33ca4c9195a52181fe864726dcf52e6a7a466d693af0cda43400a3a7ef125fad |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\FF.places.tmp
| MD5 | 81412f7f844b75a6c65ed71eac0b9e61 |
| SHA1 | 39b14eb48e13daaf94023482666fc9e13118ba72 |
| SHA256 | e37ca7753860c60248b70828432c8e018a3788479808fdfdbc4d3b369b381019 |
| SHA512 | 63f2f6af6974091fb8de9dae945b392bb5f68abe66f7d9e3906089bb31f8e7ae2be03fcce44288514678b2b79eb309667b4607e9132183d1bb9a631ad65a983a |
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\CR.History.tmp
| MD5 | 8ba6227e5bfcfda8583452ed7298ab8d |
| SHA1 | 93ccc3c5b3e70422e8948dedf109973915f4e186 |
| SHA256 | 28d93c58e85c53259c67e91efa834f2cd6b0cb1b02ff97efd1862fd5158fbfe8 |
| SHA512 | 8c153b2fa25b85a4a8eff58dd60d16002b1075ff979fbee3848d59d43ea26ae252e9ac9645bc5ccbc8c568659fe33548c68704d8b03714c5c56f8b7b1f14efc5 |
C:\Users\Admin\AppData\Local\Temp\Setup\ds.dll
| MD5 | d9cb0b4a66458d85470ccf9b3575c0e7 |
| SHA1 | 1572092be5489725cffbabe2f59eba094ee1d8a1 |
| SHA256 | 6ab3fdc4038a86124e6d698620acba3abf9e854702490e245c840c096ee41d05 |
| SHA512 | 94937e77da89181903a260eac5120e8db165f2a3493086523bc5abbe87c4a9da39af3ba1874e3407c52df6ffda29e4947062ba6abe9f05b85c42379c4be2e5e6 |
memory/4256-3140-0x0000000070280000-0x0000000070296000-memory.dmp
memory/4256-3139-0x0000000006BD0000-0x0000000006BE6000-memory.dmp
memory/4256-3142-0x00000000092D0000-0x0000000009874000-memory.dmp
memory/4256-3143-0x0000000008EC0000-0x0000000008F52000-memory.dmp
memory/4256-3147-0x0000000006380000-0x00000000063C4000-memory.dmp
memory/4256-3151-0x000000000A080000-0x000000000A11C000-memory.dmp
memory/4256-3152-0x000000000A290000-0x000000000A2F6000-memory.dmp
memory/4256-3153-0x000000000A830000-0x000000000AD5C000-memory.dmp
memory/4256-3164-0x0000000000840000-0x000000000084A000-memory.dmp
memory/4256-3165-0x0000000002F70000-0x0000000002FC0000-memory.dmp
memory/4256-3166-0x000000000A6C0000-0x000000000A772000-memory.dmp
memory/4256-3167-0x000000000A660000-0x000000000A67A000-memory.dmp
memory/4256-3168-0x000000000A7C0000-0x000000000A7D2000-memory.dmp
memory/4256-3169-0x000000000AD90000-0x000000000ADB0000-memory.dmp
memory/4256-3170-0x000000000ADF0000-0x000000000AE22000-memory.dmp
memory/4256-3171-0x000000000B800000-0x000000000B866000-memory.dmp
memory/4256-3172-0x000000000AE30000-0x000000000AE4E000-memory.dmp
memory/4256-3173-0x000000000AE80000-0x000000000AE9A000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AVGBrowserUpdateSetup.exe
| MD5 | 9750ea6c750629d2ca971ab1c074dc9d |
| SHA1 | 7df3d1615bec8f5da86a548f45f139739bde286b |
| SHA256 | cd1c5c7635d7e4e56287f87588dea791cf52b8d49ae599b60efb1b4c3567bc9c |
| SHA512 | 2ecbe819085bb9903a1a1fb6c796ad3b51617dd1fd03234c86e7d830b32a11fbcbff6cdc0191180d368497de2102319b0f56bfd5d8ac06d4f96585164801a04b |
C:\Program Files (x86)\GUMF966.tmp\@PaxHeader
| MD5 | fc8ee03b2a65f381e4245432d5fef60e |
| SHA1 | d2b7d9be66c75ccf24fcb45a6d0dacedd8b6dd6f |
| SHA256 | 751a04263c2ebb889fdcd11045d6f3602690318ebaaa54f66e1332d76dde9ef4 |
| SHA512 | 0837f2b22c9629990165c5e070e710a69ad4951b7fcfe28bd52354c4b8a7246672497b8aaf521a8773c7ec2a4249fc4318330948ab0d8db8c6c74da57b32f1c4 |
C:\Program Files (x86)\AVG\Browser\Update\AVGBrowserUpdate.exe
| MD5 | cbcdf56c8a2788ed761ad3178e2d6e9c |
| SHA1 | bdee21667760bc0df3046d6073a05d779fdc82cb |
| SHA256 | e9265a40e5ee5302e8e225ea39a67d452eaac20370f8b2828340ba079abbbfd3 |
| SHA512 | 5f68e7dffdd3424e0eb2e5cd3d05f8b6ba497aab9408702505341b2c89f265ebb4f9177611d51b9a56629a564431421f3ecb8b25eb08fb2c54dfeddecb9e9f2e |
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\npAvgBrowserUpdate3.dll
| MD5 | c6a2bff8e96b5622bf6841a671f4e564 |
| SHA1 | fb638e9c72604cc1b160385fa803b0ea028e5d5e |
| SHA256 | 7a7a12e9c0dee713700081b9354647972a0f3505596df34e4c68aaba99046992 |
| SHA512 | 22a99f860055388e34a056af5d5e35f2e33a9294784795aca52fd42685d75aebb523add836c5e4b9b2f68fe00348d11ee56cc10208fcc662b86a6169664f934f |
memory/3340-3487-0x0000000000770000-0x00000000008AA000-memory.dmp
memory/3340-3488-0x000000001EA70000-0x000000001EA78000-memory.dmp
memory/3340-3489-0x000000001EAF0000-0x000000001EB28000-memory.dmp
memory/3340-3490-0x000000001EAC0000-0x000000001EACE000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 7dcafe80afa3c0233d5e7829f317bafd |
| SHA1 | 39aef9634a2107771b20d343508082f1b21ec623 |
| SHA256 | eb61f0ea4314a3963cdcfa95536f696229191cf42b853dfc5810aebca4132b6a |
| SHA512 | 323cab9944ad0d5bab38d54da1ca123c3ebd9421ce81ff67c97972d3b5e39b0ed94b4f03520b66be2987562d43c6dfc45c1827d55074236886feaa6c6d3c50b7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d5fc2db31dbe6a2a9a7e67ff1b7ffdfe |
| SHA1 | 41ccc8a9a61e90a3e42bf2667130e5eded2b6430 |
| SHA256 | b4dc390da358f1ca185f28fb40444d7a7cc3dc317a7f176a08d298a343a2d8ca |
| SHA512 | d9f31651fe93651a97628439aa4972c76fd9b6383bd5d1f6a3a21ab46c9224d30c6df5dca719ab317879c33b561dbf2a50c6150adbba33e0a8e22c740277cc90 |
C:\Users\Admin\AppData\Local\Temp\Wave\SWUpdaterSetup.exe
| MD5 | 18693249f3a283e83b8179e692ffbba9 |
| SHA1 | 546c0d89f8c8096d22c6f6be7e843cf5ce08e220 |
| SHA256 | 3d828bcccc628e7096856337b178da5608a6c3db99383374e6c49d50a1895e64 |
| SHA512 | 1ab246fea99daf75831f26930d458a05ff0efd5f9c71c9c4396681a065fcf9f5c04af774df34ad55e140b71d41e42254ee2d9dabbb18009800bdfc62170a8c39 |
C:\Users\Admin\Wavesor Software\SWUpdater\SWUpdater.exe
| MD5 | 57428456c6e6c2ea328c864681db5df3 |
| SHA1 | 2dc7329e0b346c435b6ea5cf44a3d0a076f8d398 |
| SHA256 | ee87747102eba8844939352740d0bb6c4a67f10c2656961cb2722cd42ba99f40 |
| SHA512 | 40fb34fce07f094fdaf78c499a21c3f534f0c8ae1246b6cf382ea7e63fa08b4de56e6c81eb8fadce8a2e508ae5d03831590a06ffda3d46026fb894e4997f31b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | a631bc4bede48a2990869fec98a1d0fa |
| SHA1 | b2ba73567ebdd6506f859e9714f1a8cb9dbffceb |
| SHA256 | 67dacbd5b1e28901e1abe88151ee2c77fb198e644039673e2898eb053cb51bc3 |
| SHA512 | 96897150116b6d9ed5b5e7bfc8f217625aad3588bb5b30f40b4046645e3179eb56c432f693d5e9eddf54c317d0745dae40bb22b1c0f9ecc9e0fc406fba1a1104 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e6a39a28c732c97c655d7ca29675b427 |
| SHA1 | 68284fe7a3047ae31617fe3ad6bf082bb62e08e0 |
| SHA256 | c7bdee97e4724bf2b11c42e5bc9151e10d37ec5b934bc431af80fa4dd117feee |
| SHA512 | fcecd10b19f01e7c465bb5e9245ce930445eebaf83c525abb0e27357079a40ce117c671628cfc3dfe47f7816274417168a415dce285dacb04c1bd11c5f05de21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2f69146162fae191df5d458d3d11487f |
| SHA1 | 6303e42dbb808062c708fad47c8c4674d79f1179 |
| SHA256 | 42d9fada30f4a5c0144afb7670dbb0da350b4640268e740e9dc0b02ba1947397 |
| SHA512 | b39e44cc519056112e7d028f4fb9617d16c0ea87b0d521969a14c262bf7d356206b32da58042c3a989c3913492aad51fea289a8e5f131bc394cdce81b7a0c698 |
C:\Program Files\AVG\Browser\Application\127.0.25891.89\Installer\setup.exe
| MD5 | e6366523f73253908728beaafaed3411 |
| SHA1 | 14b126352091ada349f5a2e50f383aa34449654f |
| SHA256 | 3691bc89d718a236f6f425ab18cb6e3667b6efbc488100c95af4ca35f9c0692a |
| SHA512 | fb4345f06e286cc081e326aaed98e4b25e7a7a2b72a34bdb1ef6ccc3b87d1ed030ce73756ac2e5f727974c41f1da75f317deb4908fc18e75177038f6d1fabd69 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | a2107625c9bf4c84ab8231dd43774535 |
| SHA1 | b6d1066c5a50870cae830d234b18acfe84a32be4 |
| SHA256 | 79c0fd2e182396a01e63280bede427d9e03253fa3eb9fd687ed30206e891b72d |
| SHA512 | 10f6c48be632a3db27734cc5063969f3269772e90933c32ba2a0889fbc62a953ccd914560725adbeacb8bd83f70fb6c8baac3b731af097211be306c872071c63 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 673a7788b8cc9646394fe46dfce03cde |
| SHA1 | c6362493f9ed0e0feee4722f9f06cf125e6abd72 |
| SHA256 | 7ffd8348f0a3edfb20e44ebc20e9bf60500c01759be3f2212f48f2c9e5da3045 |
| SHA512 | db7c52492e6aedee2a97fc84e6337a034c105cafb1779558a63835d3d99793ae0c9f24e36e766659de48bf80bb8d2970c76ed9d8a5eeedee0c1e1392e61e4dcc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e9e74487a66c782aee11f4817f3ae035 |
| SHA1 | 3172fc2b5516020cbde2aed86803638e1dffa4d7 |
| SHA256 | c70fff31c3fd423e537dba82c94f8945b350b0ae568a5b76a942718c19214959 |
| SHA512 | 36351bd2b50756c55ec5f2d42e81b58167a9c960f0f95a6deb644798e4aa406348d12242a488e6a5d2121b0b40920e44a8006abb445dec5773fe59df1b23a3c7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 438ad1b4d5c2151cbd4e6bdbecdc21c5 |
| SHA1 | 59631d20684c31604303708c2e6d136c149ae868 |
| SHA256 | a9c688f75dd41ea5b1a4e317aeb6872386845e853a17a3a9b58d19d96438d73d |
| SHA512 | 5dd26c8aba74f3e65403b81e04be13c64a7e4a52bea2661c30540c67d51c4e5d24c8d8975248b73ad5c77c58d87f32e1220637a94799f5ba71a79945319103d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0ac5dc9e59240fe3072b3b1cf761c64c |
| SHA1 | 577e80f937a8bb222b9963b332d1d427e1d30816 |
| SHA256 | 404695ae3d6b4ff16ffddb786ccfa86a65dd1a9e22e3251c2cdeb4fc6b2e990e |
| SHA512 | 79e614ba0908dce92c03be18b21404f79fc74339cce2cee228cf8df0fce461308c706151add1d097b8dafacfb0ef5dd6faca1193888230165e1209d699050bff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | fb0eb4c9dcb48187bd961d9f9cb88b74 |
| SHA1 | e538bddfb0b66db7416ecdd198ba09160bd6bd48 |
| SHA256 | b255d09f53e004c89cd244f6b4fe1a87c35d68454925d1d4aaf70ac10421e050 |
| SHA512 | 2fd2289462ced58c99aba4089a3d64440e3371937f49e20f6e74e19214597bce3a4848b07d243d9b397f96385923c6e3a46349335599a90120415e1b87d36627 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 04d2a94088a191408b2a169163ec720d |
| SHA1 | a1dd9c681fb0e071fd9e4c330cbd73d0e129ff49 |
| SHA256 | 0d55ee6ca2953265dde2a07335df08d55e481b000605a7e429ca9a97f9e4b145 |
| SHA512 | 90e2119f4432b4ab9a2292d14524a8b6dccbdacaf093e40d8bcb5f31ed7bb41a2b061a756114c9c6c2c59b8cfef9a755ea9d0d7e22cc90c03e3216d5fda96555 |
memory/5136-3864-0x000001ED67A00000-0x000001ED67A08000-memory.dmp
memory/5136-3865-0x000001ED6A2D0000-0x000001ED6A7F8000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\ztejan02.exe
| MD5 | 523d4b99d44278b54a15269cd71372ef |
| SHA1 | dc23aa567774215859d1b1bdd976b38ded68970d |
| SHA256 | 99e8230b0c5a715d3342eab7a53e673c5cb91c67ec2334090f07e7ffc4b99a7a |
| SHA512 | 46b4f04d2b4c928a9708269ba07ecaaa6efcb9e35b16da16c61d87d4f37e73bca24870c3746dc4684f94a34698509fa64f69ca770fa5bf27a1a5c61d6a45aca2 |
memory/776-3999-0x00000258F7200000-0x00000258F730C000-memory.dmp
memory/776-4000-0x00000258F8FF0000-0x00000258F9036000-memory.dmp
memory/776-4001-0x00000258F76D0000-0x00000258F7700000-memory.dmp
memory/776-4002-0x00000258F99A0000-0x00000258F9A52000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\nssDA28.tmp\AccessControl.dll
| MD5 | d4fa24f021f155ce9214dccf812c3b7f |
| SHA1 | 864001ab7d2c87af00b7153cd096e0454b3f4e9f |
| SHA256 | 3b0889281ff6367bb736690229f461bb4ff34b7437f54a5c71b877a104c0f876 |
| SHA512 | de1720af369890df89c8550d49b4e3e2e353e4a21ef30be5ebee9216e312a57ede9f7919e71de592d0bad6e482d48fb759dd1d1323caafa506634e9f877f6213 |
memory/776-4003-0x00000258F9760000-0x00000258F9782000-memory.dmp
C:\Program Files\AVG\Browser\AVGBrowserUninstall.exe
| MD5 | c79bb78a0bad2559a7037913dd1f1f34 |
| SHA1 | a5b36348ad93fdf971201f31136d8c9b056984a7 |
| SHA256 | f63b47288af395ac9c02c980592691e2d446fe8b4d3813007433ae262af693c3 |
| SHA512 | 1bd81cbe784427e54903159225e0fd94c0fab1d9498c11db177d86268f34129e6835759a9a3e3822c717349043930e13168390fcc2f9a74f9699f14497cfc888 |
memory/776-4009-0x00000258F9950000-0x00000258F997E000-memory.dmp
memory/776-4015-0x00000258F9CC0000-0x00000258F9D18000-memory.dmp
C:\Program Files\ReasonLabs\EPP\Uninstall.exe
| MD5 | 79638251b5204aa3929b8d379fa296bb |
| SHA1 | 9348e842ba18570d919f62fe0ed595ee7df3a975 |
| SHA256 | 5bedfd5630ddcd6ab6cc6b2a4904224a3cb4f4d4ff0a59985e34eea5cd8cf79d |
| SHA512 | ab234d5815b48555ddebc772fae5fa78a64a50053bdf08cc3db21c5f7d0e3154e0726dacfc3ea793a28765aea50c7a73011f880363cbc8d39a1c62e5ed20c5a9 |
C:\Program Files\ReasonLabs\Common\rsSyncSvc.exe
| MD5 | f2738d0a3df39a5590c243025d9ecbda |
| SHA1 | 2c466f5307909fcb3e62106d99824898c33c7089 |
| SHA256 | 6d61ac8384128e2cf3dcd451a33abafab4a77ed1dd3b5a313a8a3aaec2b86d21 |
| SHA512 | 4b5ed5d80d224f9af1599e78b30c943827c947c3dc7ee18d07fe29b22c4e4ecdc87066392a03023a684c4f03adc8951bb5b6fb47de02fb7db380f13e48a7d872 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\ShaderCache\data_1
| MD5 | d0d388f3865d0523e451d6ba0be34cc4 |
| SHA1 | 8571c6a52aacc2747c048e3419e5657b74612995 |
| SHA256 | 902f30c1fb0597d0734bc34b979ec5d131f8f39a4b71b338083821216ec8d61b |
| SHA512 | 376011d00de659eb6082a74e862cfac97a9bb508e0b740761505142e2d24ec1c30aa61efbc1c0dd08ff0f34734444de7f77dd90a6ca42b48a4c7fad5f0bddd17 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | ac6802580c81cd4f3d69b9ac69d75c7b |
| SHA1 | 3520d14700e4517e8a38977e08f2c6186e476d0a |
| SHA256 | 04af49a60e47275c383eb6313834023e4e5ba7f326a1f5084bd8436b1e61ff07 |
| SHA512 | 0211d45df4a6079666c76b0cc3924f449cee1fa3740e3ad08c5ea6e9d2e8a0c14d79aeac008fc329fca32e4ca5a74402ecfb1d565ef737f93b497d4fcc0b1bfb |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Sync Data\LevelDB\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State~RFe5f3f63.TMP
| MD5 | de82aef9c522eb115d59e8b1a429f9e7 |
| SHA1 | 1832e78e8451e53fcd160e4d8c08791190183f89 |
| SHA256 | f73be1a470493142d7e6c43834dbc7872cd0679f57a4e73e68bbb809ff74222e |
| SHA512 | 1ff918538d1fe06bb771ff8b257c2ac0bb669940b974d933bcc175e1e57bc66eba481d0d49d61565c85d8359eb65089897dde76eaa8f3d35443e9c421e63ddc3 |
memory/5960-4063-0x00007FF98A870000-0x00007FF98A871000-memory.dmp
memory/5960-4062-0x00007FF98A110000-0x00007FF98A111000-memory.dmp
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\f7bca953-921f-464d-8d0b-3fb91df3aa66.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Shared Dictionary\cache\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\0ca2d2c4-d55c-41e2-a019-b23da4e00121.tmp
| MD5 | 27e0a973f1449e90508c04e5a6a5b86e |
| SHA1 | a73aeda6a24c88cd513edb51fe82057888b33e31 |
| SHA256 | 1a1d3f226e1b5d6b13a15080b67865bbd624d8bfd9c4f8a2f7e35b029c6b39d0 |
| SHA512 | 8724eced195065a2bbb38f3fa940ae8b66202690e12fdc598a669574ffaee36d86a32e7fc608b23c83715f7859e6cfb556cc659181f7c90178b7241240449679 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\GPUCache\data_3
| MD5 | 41876349cb12d6db992f1309f22df3f0 |
| SHA1 | 5cf26b3420fc0302cd0a71e8d029739b8765be27 |
| SHA256 | e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c |
| SHA512 | e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\GPUCache\data_2
| MD5 | 0962291d6d367570bee5454721c17e11 |
| SHA1 | 59d10a893ef321a706a9255176761366115bedcb |
| SHA256 | ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7 |
| SHA512 | f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\GPUCache\data_0
| MD5 | cf89d16bb9107c631daabf0c0ee58efb |
| SHA1 | 3ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b |
| SHA256 | d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e |
| SHA512 | 8cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0 |
C:\Users\Admin\AppData\Local\Temp\LDPlayer_files\installer.exe
| MD5 | 6c847932d63660b0e0ad0b0a4b9780d2 |
| SHA1 | 17139565a23b4a6cf1891296c8d1607ec7653a94 |
| SHA256 | ed60db47b383ab1f4f50b8542d22ce992c31f450ce9d33b946a84e0ebfd3cde4 |
| SHA512 | f8bb7521fb8f24dd12ef7e59731bb5e68cac0d75ad547216d97b6069e0ad48dc9a25c7917f760841df1604fbe43335ba039c299c3e2199eb6b1f8b53c4fd6b75 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6c0fad08e2e90b7f339be8be053686cd |
| SHA1 | 192532713dfb7753c43be658ed524416c3bfb578 |
| SHA256 | e510f3c987cce36a9572a787712dd25c5f65988aeec623e2686dc123b0cd31ce |
| SHA512 | 94036cc62728ed01db6b9a4b2806e3bd6629403f6e4f84edfc769cc431dccc500c7a4d749ce48836b1fa71d5923270ca1e78e182c2635b4f2d3864d026315a89 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c2db9b70761404c81ef4734aa1a8b4fd |
| SHA1 | 9013c3f1ec3f6df658353572ba1ce274fa0aafb2 |
| SHA256 | b9df29bfa5a5c9e70d9e28bad57354a287776572f172abb385a57723c6abbc41 |
| SHA512 | 027ac19248bf6c7f141ad3acef07bccb2e4cc96d3bfb879ee40d5ca690b0f2bcd3e37531f42dd4afb1cc4e719810ce80eb091a4acff5640c7c25c240cd2d6e8e |
memory/7044-4401-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4400-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4406-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4410-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4409-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4408-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4407-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4405-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4404-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4403-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4402-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4399-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4411-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4398-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4418-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4431-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4437-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4438-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4441-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4440-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4439-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4566-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4565-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4564-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4563-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4562-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e5e56a0a4f552ab9f9edc84475e39171 |
| SHA1 | f69f859741e2fdc73bbe47785a8a6df7503e3117 |
| SHA256 | aa8ad780d8f82147f99de5ffa0e6de1f4567ad440ad42455b45b7b40578af040 |
| SHA512 | 07bbbffe732fd8ab82f099e2087226fa37ab32cb9c10432d410c66ca8ad065cd0437a7f94bfdc73077dcd8610fe157dc414933abe17d29805ec0b3336a899e59 |
memory/7044-4739-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
memory/7044-4725-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4567-0x00007FF7D7FC0000-0x00007FF7D7FD0000-memory.dmp
memory/7044-4594-0x00007FF7D5530000-0x00007FF7D5540000-memory.dmp
memory/7044-4588-0x00007FF783500000-0x00007FF783510000-memory.dmp
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences
| MD5 | 99e8e0b1ea6fb77be3aae37dced8baf0 |
| SHA1 | 8db63b70dc420ddf328e0b2ec6fca881f14acc50 |
| SHA256 | 5026aa6a4467bba0746239315663d7938a6ef0e7f6cad94c003d1ac48c69f172 |
| SHA512 | 04f5859a354973d04da871141892fd9e90658992b349039cc6b3b52aafaa22f814e08a8e0c148a8a0825de9f9d5393ed4cf1a07f9844029c3f2b9a0d5398fae6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences~RFe5f5d1d.TMP
| MD5 | 8de834a2e809171e762694c760c71642 |
| SHA1 | 7d5192ad797164bec1080053b759f09c1ec68839 |
| SHA256 | 9a7b2a1808f1788663112b021f65a6011efdc9632a829708b8e12120eba603a6 |
| SHA512 | 2e00a874be76e93a96b8f46af153ba4ffc0fadd7560f2ae25322b2180186e1116d5a119b60b8fd84cea84834e15ba9e0706fe4aa56618b0a0adce1a49637ddd2 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 719b4165978e890ec9984f3efcdc23c2 |
| SHA1 | 9b5373ace4bc00263df10b156dcca16e49e2f5ff |
| SHA256 | b13e9f27e2c9ee4c5dcf79ad5fa2f54dec3b45e233780acd11ccf1ee34740f9a |
| SHA512 | dd0c55641b5e0b2408e9e93250e6f148675dbc437656b5098fd54e6cb1b8d1cea335bac82e62ddb4b14da875d69702f65a096e1ffab13504c313ed6543937eb5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | 0d26ac1adbdcd62fbad072a5e2f1dbf9 |
| SHA1 | f397c1a80c8995dab2e665cd098f44a3cfd227ab |
| SHA256 | 5280a576b059695ae97cc18cf27d2d5c52f5fb7e5a62c0747a244af72ff7f4e8 |
| SHA512 | d2d0b852f4cb25cf30c60128794e9739a70e3a72b7ea98badc35b2ec32ee463144f717d17279928c7b1c70f0b2c5afde64ce20e03e9924c0ef4a077f4a804653 |
memory/7044-4777-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4736-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4729-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4727-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4723-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4721-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4719-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4688-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4689-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4679-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4677-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4676-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4674-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4672-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4666-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4659-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4634-0x00007FF77AF00000-0x00007FF77AF10000-memory.dmp
memory/7044-4629-0x00007FF79BA50000-0x00007FF79BA60000-memory.dmp
memory/7044-4625-0x00007FF7B9400000-0x00007FF7B9410000-memory.dmp
memory/7044-4622-0x00007FF7D5530000-0x00007FF7D5540000-memory.dmp
memory/7044-4618-0x00007FF7D5530000-0x00007FF7D5540000-memory.dmp
memory/7044-4903-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4897-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4892-0x00007FF7801F0000-0x00007FF780200000-memory.dmp
memory/7044-4858-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
memory/7044-4857-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
memory/7044-4856-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
memory/7044-4855-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
memory/7044-4854-0x00007FF7AF200000-0x00007FF7AF210000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 92f22dd1d89f9aa76b33b1f4507efb03 |
| SHA1 | 8d3eef4ee4a422e9263f6bacb7c773facd9b8521 |
| SHA256 | 96dfd9923b41a498fcc06281d17714e3ed2a926bac45ff1fa2a925fa1a1168b4 |
| SHA512 | 7aed845c402c036d5d78bda2338ea5faf5253881c0ccbce6a14e65624a81a4d879bbc122cce261e362ab9ab810c5f2c6929f29bfa649ac0550e6e5ee22799638 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ccc3b8c139301f4172080f69d8c245a8 |
| SHA1 | 725abcb9acff22f2ce15b26a91be4ca736ababd2 |
| SHA256 | 80f70483bd1ab3e858968317a164a450759b97e6d2b7b5753705705c163deb71 |
| SHA512 | 55bd45bb8e623838fadef25039e209647032bfe6cb91f2e7a38c442836b73d7b193da3819b45e24e4b6caf4d16f179f50e463afbd4c7d825a287356017674d37 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 7bcae9498ab3165c1a31358bb14ea267 |
| SHA1 | 4fb295bf109b1f72a2f9df8aa83e274f9ff82518 |
| SHA256 | 05b49bda72a05e487d2cb96053d3ae6265a435284fb68638cd7ac45b0407e20a |
| SHA512 | 4e5f07700e67ddd4a77d961b18c3da2480064b54573067acf4d7f1b1073e42d034b650029617ad3926865ef9a18aeeed6418a202ef166bd8268b091e91e514ff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b2f9f21f9778e6cf37e6d18ef32c1c62 |
| SHA1 | bcd250d27bcd9253975f7c70e91e993d8a311a08 |
| SHA256 | b6a1eb1aa154b25a2f798ca53c4d9f55bfd6652c99165c55577058d205fed761 |
| SHA512 | 9a66f68994329e9a6db054f0e15612fcb27a05cd2eb63f51b10e9a6c66f9c97f8bc7cb11912f29613677f43afb64d0bb434d04409f71394f0215d413ab7c6a32 |
C:\ProgramData\McAfee\WebAdvisor\TaskManager.dll\log_00200057003F001D0006.txt
| MD5 | 46071cd6ab59c1c916f3905d60ddf175 |
| SHA1 | 31ce4f4b478da9c451ef73a81ccf76e27b182e1c |
| SHA256 | f4c769d8eaae4836c2115bc1e1d805aefecde8707df5a442f6f36892ebd81c45 |
| SHA512 | 01db240c6f0c8f191eb3f66fa910771535479e806e0cd677b30b0de539a75b4b4b5d9e7bc07c1a175e6150a3146e9c1b7098ba305cc151f83ce35a7104ac52f8 |
C:\Program Files\McAfee\WebAdvisor\Analytics\dataConfig.cab
| MD5 | bd4e67c9b81a9b805890c6e8537b9118 |
| SHA1 | f471d69f9f5fbfb23ff7d3c38b5c5d5e5c5acf27 |
| SHA256 | 916f5e284237a9604115709a6274d54cb924b912b365c84322171872502d4bf8 |
| SHA512 | 92e1d4a8a93f0bf68fc17288cd1547b2bb9131b8378fbd1ed67a54963a8974717f772e722477417f4eb6c6bb0b3dfba4e7847b20655c3d451cba04f6134c3ab5 |
C:\ProgramData\McAfee\WebAdvisor\LogicModule.dll\log_00200057003F001D0006.txt
| MD5 | ba237043779b46872a999269e17dc44b |
| SHA1 | b7e81c4f824958fab68350de0842662bd50cfcb6 |
| SHA256 | 6bce3e41cc04aabf2f9b07e2c717941f2f52343b561100825ec6a2fc580bbe0a |
| SHA512 | 8a7e1025bbb1f5635679eb95650355520583268c3c2ede93867e944031b667a16b5b8f86d931a7d6731be78764637cac952ff126770f0eac174fc45db49b22bb |
C:\ProgramData\McAfee\WebAdvisor\TaskManager.dll\log_00200057003F001D0006.txt
| MD5 | c9f91c923149d95f6e32d44beb9cc897 |
| SHA1 | 2200358ca3a90d86321e72b2d0d99e3de2a91e52 |
| SHA256 | 2ff1b0f394212252879492c150132af015a4990b0a134d569fa55f547d590cef |
| SHA512 | 6783b0b46260b3470f0a430aaa2f049cacbabbda4ebb45aa5bbcc1fdd17b806f335c8d8806433d0b5e09a2b0e7efbad39fc125ea4413b959c62f0635feee09ea |
C:\ProgramData\McAfee\WebAdvisor\UIManager.dll\log_00200057003F001D0006.txt
| MD5 | a42eb56e52a4d5aa45927807b65cf38d |
| SHA1 | 04b0e4bfd8815629f5c92c77b09c3acd0790a4fb |
| SHA256 | 5c22e1e9d7b29a347ffc9f26b7835aca2d80223dc0d405536b3d761287d219cc |
| SHA512 | e83a972577bacd22bc167d17125ac796a57cc36b219261684abf09987e7c2ee4913c15d02b759fd86ba694c89491d308bad06c5fc81fe6fe975e705f423d39e9 |
C:\ProgramData\McAfee\WebAdvisor\WATaskManager.dll\log_00200057003F001D0006.txt
| MD5 | 72f3d968defc2378b5580adb794f454d |
| SHA1 | 784df5a2a95a4c653b49580a01f2c95e40e24f45 |
| SHA256 | 6b3bb4804b9c12fac8a4a1d44e1ecd304cf2089e9101dd37edb574704f90af8c |
| SHA512 | 285c5b67606e5883d5589831a6b17b64b16e2d7ee3f4c8f9abd9d5184c744f32c842bd9f380af45b65f5c93534593a82afd628c7b8e0c96115fe5a3236647c56 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WaveBrowser.lnk
| MD5 | 68de62fe3b00058eafeae9f127ec8da1 |
| SHA1 | 4d6b6a640bc0b6148a472928242df335eee8903a |
| SHA256 | 5aeb5d0f187d96769733cb5a6ad5a607d12671a350b4260e79fef30d18a2c18a |
| SHA512 | b9a57e671eaf77308a8dfb69717d1173143ef9fe002cd4f7840d6f7bd1b5e5e175b87ca0a590e6fd7e5fe514e2b45227e061a691ffc207402642884418e401db |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a9eb0c03f0cf4f7ec2d0a01e61f0450b |
| SHA1 | b9da9a23b3359226e47b84c210862053640f0689 |
| SHA256 | a6b1b5ce9f829e2af4360df1876d95bac71f3b189d1b6b14493c7795000b4288 |
| SHA512 | a8150c0d636c00d2fa2f67e1637e5eaaa6e9464f71a14e89d14ef6a4641583ed0af413a62a45739d719ad9ee2d257af597458a422bee54b9df737de0b4926398 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_878136323\bead24b8-c050-4e10-9f99-248895766fca.tmp
| MD5 | e2044eaa2fa3e05c09aa2d6f49650b50 |
| SHA1 | 6cde6eaef9358dfb2de74fe729ae8c519fd574f9 |
| SHA256 | 253914b6a6d3def7501d200a0e938305b47eba84a7c0b6a5a7f2cdada0488d14 |
| SHA512 | 5f6e9ed38736abdcdba9fd1627673f1efefc35f952392e9806402d28b45bdc2c93d7d8cc35efba2076c8d5a8736eddb4e24363af046d4b16ad4e4409ce020ea1 |
C:\Users\Admin\AppData\Local\Temp\82db4754-7c36-4620-9cd7-2608dd70827d.tmp
| MD5 | f50e00df362d5a597b9e7f549df2587c |
| SHA1 | cf6aafdc3f25bcffdcabd3a5db2e40d1cf42dbc9 |
| SHA256 | 1518106d36a5770684ce0cd86279e19ee601225d9222f7f555421990a130eebf |
| SHA512 | 4691ef983c58d2f027bb0a283ed0a3b11da972588c4c4ab3462fd2e4546f0df85ed1c1f56a481cd86470e3ed02ee8859f22bd04c75a47ce1fe5cb5c983e64577 |
C:\Users\Admin\AppData\Local\Temp\4c705e43-1ad9-497e-bb5e-b9b4b06d68ae.tmp
| MD5 | 37ca6101dbe6d2324a651fe678e9c97f |
| SHA1 | 0b478e9b5e83b6a45cf5fe47e0fc0a97e527ce74 |
| SHA256 | 1d0dbdbb94609afbbd7a7b123c0334996c0ea928c41119f7a3063ed0b61c1f54 |
| SHA512 | a53e90fa5fe10eec65112bc4db96cfcc15f3a7216cf3a3f93763373faf589acbd8a1cbab93a5818f826afacecf165a6d63f87b1c4f4aceca1446917218600041 |
C:\Users\Admin\AppData\Local\Temp\83615a33-f66d-4856-9501-dd5cecaf2ef8.tmp
| MD5 | 21b06e448a0bee23eb6b80dfb39f1e82 |
| SHA1 | d60b3a9021a704247af4ba58bd539d42f780661f |
| SHA256 | 3cad9f24f2ec2bee7bef2410ef713924640bda964e865096db6dde37103481ba |
| SHA512 | 9678b1302eb289f04c0fad0a60455da7d24da4bb72177561f8668f0995d695485eba915bb222d7231a8188ac6ff3b4b0ffbbfe3b725b9c0112ca6af9465f5709 |
C:\Users\Admin\AppData\Local\Temp\a577597d-07b9-4ebf-bb49-91a82982ffff.tmp
| MD5 | d343a7167bf2962f27b54de17ec166a9 |
| SHA1 | cec2497d5ea819f05be656b8e15f79a6eaf27acf |
| SHA256 | a00f73fe6dedd17fd34252c40d89c6be5524027ddb2c0effdbb298d7d7065de3 |
| SHA512 | 64ada12e0bbd202c2f4817bb804d7583baaac469eaac0fd8db0df6bbc9d8d33603feb0cbeae6830b205fa056765da835b0e35b0733e3ce8964b8890aba382a4d |
C:\Users\Admin\AppData\Local\Temp\fbb9f534-7851-422f-af1b-f25c271a5ee6.tmp
| MD5 | f75cbfbb5eaa5f46574955ed6651da78 |
| SHA1 | 4ce276c03898e57667b401761fe1df5f11304a68 |
| SHA256 | 643962e7cc16bb8e9edbea5f05473764199c7179d06a65bd88a0d101d1d5a9bd |
| SHA512 | 287847c5caae39fc80e90ae105a5fb0c9349f402872721c599eb9c9ccaf171437879f0ef8bdeae923bf4520befa316b60acd3e975caf8496f05dad24e1b34e40 |
C:\Users\Admin\AppData\Local\Temp\e0489c36-46e7-4d47-8b3d-4ef7e35011a6.tmp
| MD5 | 06d466a1cde4306356506b35153c5ebd |
| SHA1 | c43850528e8150e1f0e253653d2f0155d00585fd |
| SHA256 | 6b1205e9b435c6241ab9c244b1dc3c309c1d82211268501e71e43c4425fbf590 |
| SHA512 | 5d79ae61fea7097ddf4b5f2c639ddd1ebdffb7d0e69b74aac47e166afbe94e88e3a4dbd1cf34d55c6c8b0fcba3c30b676c8460b120470c17278caf22896b0b33 |
C:\ProgramData\McAfee\WebAdvisor\UIManager.dll\log_00200057003F001D0006.txt
| MD5 | 8e82b2cfdb26327bf0ca58f0f67c4b0d |
| SHA1 | 528a3bcbbd62bf0221f4d35eaeccf1ea839256ab |
| SHA256 | 411d65f0229b21e18e39fdd81f32cdc0f608a3dab23767ea26594d8023a546ff |
| SHA512 | 846320ca33c9aac16177ffc3b2715f6557fc70faf0f052d146c64bd65e4fcd9c0dfb7adea9338bd2772b82c8e109b39ec86539ef730a8e624c297e8d4f980b89 |
C:\Users\Admin\AppData\Local\Temp\3735738f-4771-4fd8-a2a8-fc25320e3c29.tmp
| MD5 | 7fabb7813703295a20612e6c811f982a |
| SHA1 | be28a80def657caf474829dec119858325115d9f |
| SHA256 | 493bcea5b2aded060e245e3285276813795831006abf24abb2463479148fb570 |
| SHA512 | 724f2091a84eefb064e39061b8787511f08b935e552c706796cb1ffd2a4b2451c30f3e47c272b327a2c3164fecab018344908f76612aad9ed39016215d3999dc |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_189643371\CRX_INSTALL\js\options.bundle.js
| MD5 | fcf662e70f2981ea9fce846985a3db9c |
| SHA1 | fb458741fd44ef6394418f2c83fab11955dd14f6 |
| SHA256 | e0b4c21430222c675ca600d1aeab56d0546549c760e44052cd7277dc3700e9e4 |
| SHA512 | 28f564d0c6f3fb3dd08dada6b93cd20872e77f87ceffa3ba3c41ae8ffec89330b4397557408cca03737b7426255a23293bd20f6e2a6a72bb84eaaf8ea3830496 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\hr\messages.json
| MD5 | b0aaaef3224face221502b9be35433af |
| SHA1 | 352016e75d370e371ed85806e0e524b1189b0901 |
| SHA256 | 3fb11705f9aaba63084e8159172b07af10c30ef08fcf1c26cb9a7af6c501ddab |
| SHA512 | 2282da110bf4937e848e03c22832a6a68e5022cca5b98b176d6f1b9abc924299d58c5eb6a3b6c441c30d36d0346934f763c1f16183e3bd0e931d332e5519d04f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-regular.svg
| MD5 | 7aab4c13671282c90669eb6a10357e41 |
| SHA1 | 4ca4e88a77a4d81138206a10793507cde43e31a8 |
| SHA256 | f8396d832e2b270319c4e17df620c06f77293f5c4e7ffdce337c9b90fa75d133 |
| SHA512 | 08a74874f74c1b75f7a93e94faa632d1bf21c2d42c85fb66c9b11138e60aeafea8874b7bf33facf7503d19dc7965142d78e5015a0dbc340da2b4550d232d7116 |
C:\ProgramData\McAfee\WebAdvisor\UIManager.dll\log_00200057003F001D0006.txt
| MD5 | 2c119b74ccc3fc88446b3559a0f069f8 |
| SHA1 | 1d8aa997227b6b8f5863e43e7a429b622fe8a158 |
| SHA256 | 33e62d12475a0df4fa6b962f7829f3be78eec04a7e4c65d41bd63aecd5c08730 |
| SHA512 | f8e59b1bb09bf97cfa716b88dc3f9c1ca80764e3d5c125546c6a4d4ad69fed4813eec8400a8ca8740df3be44307e17a555627767500fc5396a8dfa3eaf9c053b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\icons\icon16-active.png
| MD5 | 7305121e28476f6b440fc21199bcc987 |
| SHA1 | d23ac11334ffe6ed2a4c068c88f48ed3056fba1d |
| SHA256 | 5887411ffe405d0036d5ae35f733dce33c58552933fa298cc78fb3466864464b |
| SHA512 | ed7dbd8f1617b7d4c1b8b09939ce8e5b4be2271892dbe5ddf68b43b326a28d48ca6ca46c53dd81fd9f98065f2a61cff7fe22cd98ad4dc7b8c1cf0acfe4b4dee6 |
C:\ProgramData\McAfee\WebAdvisor\WATaskManager.dll\log_00200057003F001D0006.txt
| MD5 | 628e8dd3cdd1bf6bb71e235bb1ce93ba |
| SHA1 | 8848e68f18e30aee91b4ee45940a548f72455f5c |
| SHA256 | 9420c4a36eab57f90a5552726731e15e94a2a44e232e1573f7a4c250b9cfeb11 |
| SHA512 | 967d5d0703f4c56c63416e97abbc42a9ee78d3348ce6133b06ef40fafcdd1124409935bb109c2325bd10e55ccb3e245aa88b69be69c0ff88f4c4791a72cea7cc |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu7WxKOzY.woff2
| MD5 | a8be5b46d06bb541b0968196ee5e6bb8 |
| SHA1 | 8bf73bc09e50908cdba9b5f808d26eeb083269ae |
| SHA256 | 67afba35bed24f3ccf531a6bfd2c71ee2c6e5de74a3f28fe2b6188a8699f4e04 |
| SHA512 | a29d0f79b7ff1b259e705bb118f21dea6f8422e140bd943e311019e6d09ce10422d5ac8d0a375740bd12e456d83485bbfaefbaf152efc837cc8e6fd353871b7e |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu7mxKOzY.woff2
| MD5 | 182ee6a4872ca8fa78048951b1561a5c |
| SHA1 | f8c3c7692ff285bac213ac0bb28d2b59ec10ad16 |
| SHA256 | f2b770189d05bc3da6d684147175a1f2ab4f8f030c520f011252df8f7d6201f3 |
| SHA512 | aefbd6f0b82d1cf81632b0fad08f2c20ad0bc3984cf30beb62ea25df115ab5c5f4df15a3964dd433e64dc6524a124af5c30dd67fa8f56b90ebb1fd03d879ce2a |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu7GxKOzY.woff2
| MD5 | 455200cb007fe1212c668721d827c691 |
| SHA1 | cfac52972c0f5bf3ea1152fe02ed3093c2217350 |
| SHA256 | 4c84629456a70df1137ab4bdcddba32050a2524568912630c2538746cbbcdc51 |
| SHA512 | a1d5f9b2f52355648cb35fdb8aa58133a61a7a57769ae084ca109a0017a52b323e7300ed500f8ecf2ebf137994de067c6d47f4d1382197b84430704899622096 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\common\toolbar\icon_48.png
| MD5 | c8776530aca58cea0e0a9bd89705125a |
| SHA1 | 7a2d904c8e6660f852e3335015eec7ace324ee26 |
| SHA256 | 0641a5d15d4af8c9dc133b5ed9d556e57ac3c95aa13035dcce923634a908ac9b |
| SHA512 | af457d4ac421c877798a3ab109cd64b80c119aca3e97d2d5cd8c4d8df18c1c10e2eb32282ace622273873c225b6e8bc65a7a6a3684c2707b0a02c9d5ba2fb886 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\common\toolbar\icon_32.png
| MD5 | f94cfb3164c4d0b4c061aa474b982bf7 |
| SHA1 | b30ca8f1dd51eb2966b7d95844abfa94e5d88933 |
| SHA256 | 6a0dce0d6df4e1625778aef1457220fc28e78c95fd789d9b88c94c56def05958 |
| SHA512 | c01c2d9645e0000fb1e3cbdbbb4a86c663a98129f40b1c088823e49f8d5e06cbc9d85d3bbf5de362e54fa227c4a46c9bb7541dc851862fe4041385d29470c84f |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\common\toolbar\icon_16.png
| MD5 | 1b63b8126b1ae1de5e1dc006ccd8836b |
| SHA1 | f879b3bf77296870c06c65c0cae5ad15a418e67d |
| SHA256 | 4286eeaedd25c1872310ca1762bf613ea71312aaf39384095c9068f98ac0a3f4 |
| SHA512 | 25c1def3be7c6b6436493ba81efde1d789ccd3a9c921cd140c19fe72172270e1995469a170e679834d7715f0256665ab475323f9738fb677d066b23be4be811f |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\common\toolbar\icon_128.png
| MD5 | aa2b890cb5e01587076e740536d83311 |
| SHA1 | dba841da5976c6db5eba026cea5fb081186ce867 |
| SHA256 | b18d15fcfc00b15aa098b66664bffb4bb61efe22711a19f37012bfa370cfa8e8 |
| SHA512 | fb887d881f71c92b26f6a4d1c441bb27847781ab206691a72f096d7b34c23b9f6c316085ac87e93c12b62d4cd90b35bec94638cf549e5e844e4a9e204f995415 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\messages.png
| MD5 | 973a3752820436fae4dc4adf635a62b9 |
| SHA1 | 506c9cdb7be2f839d260898fd0b60bd896396d58 |
| SHA256 | 310735c3263dcd061946e2271416731d0a64142595b3630c297dc350eefc7ae4 |
| SHA512 | c82acb2a123d7b86aa6aa87b601c826aa869a4d5449ce0a98766d6c1cfb6397e0c7289333a45bcc76bd003255adabe5afdf3e97701f785ced08dcf258676dc86 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\genie.png
| MD5 | 16e5f7724c201a66def56447c58186ba |
| SHA1 | 52fae2e93c908204eedd3018194f268f4db4cae6 |
| SHA256 | 989f12ae53369158d290c15730a29054d15514769d8bd58b208d63d6e0c6d94e |
| SHA512 | c8ad87667182b981de485a10b50750ba8db8eb91a82cc7f6d16316f48cffd52d2a9eac0428ecfc75770728adcfed79da81cc2e47bea092fd4cda17c5c12afc5f |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\conversation_logo.png
| MD5 | 10d776ff8b108cd41feb700559add658 |
| SHA1 | afe167043fd5d7a2f3ff9b79bb7963e5468f3b41 |
| SHA256 | acf6c98bf0ca2e609ddd98be04baf3de6e7f67a070c9f8318ca0d4403a156e5b |
| SHA512 | f346f48680c60c3e89249663ba16ad2a937480ece284a849005a680e1af0dd26c7f1a9d013fbee7a7efa2d7e5ce018cdeaad098e04323658d2cc405b55dfdbdf |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\conversation_logo.gif
| MD5 | f60650fe7b3877775ae8afd4b10a0eca |
| SHA1 | f52e039b04feae15427a4c63e62d7a696d76e135 |
| SHA256 | d0ac91261837e30849d9f5acc504b96a3098221707368e53568afa96f665fc30 |
| SHA512 | 555166a6c05d3114a9ffab094f5bbe574f71af08c41497293de8a38dc9b4b09c7484717f3054ee5d92a8aa9a87ebeb7319d43a112d09cabd494f824b02f2eab3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\nl\messages.json
| MD5 | 174e87e701b657b5272ecde199be9c0a |
| SHA1 | 00e5ddf52ccf3d568cfd0e8f65ed742ae5d6739c |
| SHA256 | b9bb2eddefb0964d6ca5a917699277e4a810485f9fdd96a7fc16fe1d4e571626 |
| SHA512 | 9dd4ee3e12d876e2a329677c4b22f2ebd71c9b328e845080521e06563750e982da9af604bf1b0bc9abeeaf6d8628123c5f5247dfc2edd23a0544b0b95d4df4cb |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\css\app.css
| MD5 | f35372141be422a227f0ccbd3ae2717e |
| SHA1 | 1b62cc270607b2490e4a8cde2b5bc77e49359af9 |
| SHA256 | a6d89089fcfc23f47a803dfe3c21e40dcc59e028c7cabfbf9ba98c2b47b20d2f |
| SHA512 | 8cdb1b9ce53ab1cdca70720651f594be6dc7f01d116020de6f4c715fffc31b250b69f6bff5d8420cdf2beb400df0a9fc867c9aa94e6a78dc854eaec1a10a7a77 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\common\toolbar\icon_64.png
| MD5 | a4e6965bd1a4d1a5ca7e973a6fbbaf9a |
| SHA1 | 9cee9a987982d9bb55cf72b7fc6ae1e752296949 |
| SHA256 | 62e895b9a83a7fd45efcecd7c36bdc0de4136b5c22ed4b032d4b50507fa221d2 |
| SHA512 | 1147574deeb64d034f3f61bca731b18c3003c11739b4d9fa5bfecd739c0aa86959012c9afee95676e407f2d4d5f4fa88fb870e3937a7893c16371e7d6011752e |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\_locales\en\messages.json
| MD5 | 9764406c182b5e377dc9e8023968e82e |
| SHA1 | 53999b0d5620d8e80f357edf7230560feec1d40b |
| SHA256 | d8254fc7b70c9f3f5e16176f6bfba0fabf44e10de59b4a32ad53a5fcabf15b2c |
| SHA512 | 5b6595aec0cf73c52bb74f5b97ed92cb21fa68649911027328dfd89a0445d03bf26322fc98e410f9eaa748c01128058dfa55ae912ea5b6db6a73a433327efc8b |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\_locales\en_GB\messages.json
| MD5 | b8645df606dd756306208ec441e9c0dd |
| SHA1 | 8ebd4f5103dc792b6a563768d1c3d6e3b4729c54 |
| SHA256 | 6dde990f4e64d1ecbde90db9d3939f33b3b5c3d1b89704dbb8ec84df8f046de2 |
| SHA512 | 25b256e3ae975c4928d1ab696e821a4be3d5534090902573136f9cb9e3c8005e77e159918d418eb6d6a2c6c7156564d7e7846fb4ab923494ff0d2b0df1304011 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\js\background.bundle.js.LICENSE.txt
| MD5 | 9945d9516ea6d73afd16fd7dc2691701 |
| SHA1 | 24d86c681055bec68457f4353553ebe5a13860e3 |
| SHA256 | 7bedb81de9bb9d9382b0fa036c6ba2d09d3583ba15b9744d58a5b3199d41f32a |
| SHA512 | 6e3896324068130f2927e40dc1caf930bfebb2a274a86fdcf1e09ebbaf0d911b1bda1df34bca52c07a0c3ef1b72fd37f7ff43b5b47db5a9df17ea29e576c839a |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_508748892\CRX_INSTALL\img\common\extensions_page\icon_16.png
| MD5 | 67816b9f9f56727c41d64793d0eb4902 |
| SHA1 | 99dee423dc2ec6ddb923208240b2fd13409c8ca5 |
| SHA256 | 7b9847ea5d27c37df0430ff4056ecf18b2248d18a10d7ee1cd7f8908f0a82d5d |
| SHA512 | 6fab420866894593620e95ce3cd988e6a9525b6bdb0b4577f8ee5fe513f3ba187996ccbda9d0b54b493122136e52c7bd179da22cd8106725f24401816429a3c7 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\warning.png
| MD5 | 2c5397bd7a1dfd8dabfb46bdc53a9203 |
| SHA1 | 2b80882640e83038a377ad9936e842375fa65961 |
| SHA256 | 6f22c135d9518b7e2f5b19c2d12454620594cb6925e1869dfa206aa31abc7d53 |
| SHA512 | 431b3ca97bc398e341491ea389757f2c2694474be043ed1a639504776a99452d6e6f557c2dfecbe7f2e241533dc9cc3d0af0d99cda0387e1aadbc9d92728e75d |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\table_regex_icon.png
| MD5 | 25881ceeccbc9c4811fcb3fd27f7293e |
| SHA1 | 11e7931e1b0a8a685cdae2b3322eece073b17195 |
| SHA256 | 438036b862d153a25a63e4681b87b3fc03201d1dac9278be0401ff6d27c69c06 |
| SHA512 | a2c7505fe6b936af88b4787c0456cfab304832aae73017a69141685a2209a7288d3837c6bc950c49e504f327fe6509b21b718f00a60b055f99e940c8266e59be |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\table_list_icon.png
| MD5 | c5375879372df0cc99a68f5df816a231 |
| SHA1 | 15bdaf45007394c57bd04f5608d4a029a045ca15 |
| SHA256 | 9342bc0b79fcbb310c8b87bcbd7c7b8fe2926de73d517e44a107c62be8d3e8fc |
| SHA512 | 0417898f95b623e125ff76ba506a94aecfcb4f1c1dce0d9ef217741e550a706848a256efc0f251cf263d0da8313006dd6a27ecfbf0020bd743b0d96ef4ba1176 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\afdflockjgafgkiffnchalnnfadffleh\2.8.226_0\_locales\en\messages.json
| MD5 | 424ecb83cc77038058f02e5765414142 |
| SHA1 | 89857a385d6fd5566c6a3990b62fa7df7088cd4c |
| SHA256 | 1cba9c929be7f5ad6a1c59323f75ed8ccf39f8b6fc94c7034cc1b4f1160fd1dd |
| SHA512 | 6eae8c308ad4345323c366740c4cb8bcd6076a0a45fe40c399dfeea4a87c855072d25f0cd6cc024810943d366eff0deea761e3cc094537829d21455edf80d066 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\manifest.json
| MD5 | 6cc920abf60346e198664c936036a1df |
| SHA1 | cbba173ea81c93df2e6d3dd0aa21a6717da6c2c6 |
| SHA256 | 4a3ac96c6072cbf12d825c0f43192f4c2815d9c8dc9a9c0ccb43173d41a8eb71 |
| SHA512 | 2aaf7123c6862083ec69a99570991cd883f8c75ad8befb8acf7d050a34b6fe8378e3b586bf8b1455ebe03034e24fee0b2c0f176ea3fab9ffe62f9f6a111f0c15 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\js\logger.bundle.js
| MD5 | 871381404981ef06dde087ec116eadad |
| SHA1 | b096a6cee1991ef5143cc9cf0dd9342c6ca1bad2 |
| SHA256 | a4e5fb53d11931e13bc386b416b448ae396eaf294d775059a093b74ceac75cce |
| SHA512 | 6854dad8f88a911e77792187b777a678476611388346b6ca4e10433eaa48e9489286b243337c88768a9853201d7c08a43eec66ccfacb870591fdec4a1bea4a98 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\whitelist_action.png
| MD5 | 4da3c2559efe5d0823bb13f084ac4e87 |
| SHA1 | 41678d1f6351e06a07471b6672dd0de70cf1f6e9 |
| SHA256 | 9d285efc6353c83b797cc385ec6e7949d7353abe61c82e436a3040b58ce675b5 |
| SHA512 | f8a5d6a60efc89e7901a67730d4d9bcb4f8174e687faafe773ff4352fc6c998a2057bb78c002864c3c92531876b4bcabea92c5cf320099d9d5baf46533c91b31 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\support.png
| MD5 | cdc643a02f2c22f369f0392c43eaa449 |
| SHA1 | 8d06553644f32a965fd0ad2aa1cfb8f28023bdb5 |
| SHA256 | 7525e2594a549419a2fa1b10f218391daf6297a150fe10c80650743ca73c07be |
| SHA512 | a29921aad97ad950f3f02a35fd64b11056f5892820e21107122ec78880651a5343fe2be5690f0b1e35e63574497f53201e7e11173c3eb9600e33283176d401c8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\strict_mode_active.png
| MD5 | 8d585f10fea1e633dfb0825afce28df9 |
| SHA1 | b80caa85e5728061fe20c8987f787218c66a6b71 |
| SHA256 | 0f7b390c06f5cbfd20766ac39c008025eb1023d506e242f6670091ef3792b20b |
| SHA512 | 196e700821049de4c34590aff9e782fd8294637f5d8867ca99ae7203d095cfb693676dffe9dc3a2e9ad07a47c9b521ec33541f7b6dea6d035fcef1f68bae20a8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\strict_mode.png
| MD5 | d62a0d8adbae8a957593bb8a05366176 |
| SHA1 | e847612c6bb4845444ef3c332b82b5ae8261bbd6 |
| SHA256 | bbb4aa74d989afda0cde8d3c5cfa0dbad75102134a88ce3a96b7d1328d9145c2 |
| SHA512 | 39cd949751b344d1d81484ae6fb7b5e9f514db403769f813fc0176942e7b0f8d757d4627387010a9d157db462bf220ff79c280e577ba8f371bbc3846643676fd |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\strict_close.png
| MD5 | 14d53ee25d0edcd1fa3e2092188ba313 |
| SHA1 | 71bffb3fa6e340e59959bc685e9cf9f0b360b6b5 |
| SHA256 | a6847fb795955f299057ccfc3e57416dba7beb94f85b833ef722b9e7e23f929a |
| SHA512 | 2d24540deae230eb78c58a56a666cb0ed05c099afa81990d528160cf49599a4c046820ab7dd589e9ae69e8e93f40f3fd94bb65e4ddb60687e78f7207faf76550 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\settings_icon.png
| MD5 | a42ec1a98ce45694dd96acfedaae7453 |
| SHA1 | f9bedd4f4bf3a07f428b7c2ceec6d8d948e87fb2 |
| SHA256 | 983115adb80e943f25399b4fe105cfc8e0eae5dc7b3711156dc68a8b3cde8c78 |
| SHA512 | de527e5de73c1de50aad9c7b5f809cfdf5844a2c0aa59052cdb7ac3508dd6039f4a2f52f2935786d6779858eea8a87ad47a10c5ee0348b1e864ffd1b3c1dec21 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\pro_strict.png
| MD5 | cbbcb10198c09a795005ae3ff2ec6dd8 |
| SHA1 | 7fbb967bad8ecc591973b1ab8b78131eb84e6efe |
| SHA256 | 49d962a876232dc9816a19c3f3fb572c4b53cd40e15cce1225d9779aebe3f729 |
| SHA512 | ca4b14d081b3471fb41cbdea03c767232d29272a2fed252470eb03c0dedccf4ac94bd3528364cb93c21cf08170a99fc304a3322be4e922e98c47a614b61f35d6 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\pro.png
| MD5 | 16edb603cf8b20ac9fd88cef8d1c902f |
| SHA1 | 680774dd3f5554b5f3801116532acf2a2e79ba04 |
| SHA256 | c8a059b78c2e4bf67afd1be5bf217236136b37388b5b236168ff51aa77a9fa2c |
| SHA512 | 7c66c9b0a6a3ef962ce12dd757a4fae4401219ca2e0c6551fb1e1da4f6686376bcab541b707352fa3383353d65be0477cd53ca1bfcefb4b0545e5ab2e680299f |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\logger_table_icon.jpg
| MD5 | e90e5deda1c50ec222eb95e8a01b0944 |
| SHA1 | 1a7b456677ce61aec40fb37830184af2f975e804 |
| SHA256 | 6f2fb146e6e7cac9c5634663605b6ca6318f5264587af5dd0713b04556bf53db |
| SHA512 | bf8213038767d164b6a9a8e73cebdcd0415a44f2ccd115c93f5c09e8213aae2f2bf38bd461bff87b8c331490b60d797527dca20b1746e79bcfd20591d6df700b |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\logger_icon.png
| MD5 | 70b8782333cd514d136052bd5bd11dbe |
| SHA1 | ed55be7868aad61d3bcfd626d439780b5afa8731 |
| SHA256 | b3ab89cc16fbae38b4dfb36ab1f99d10e076542d5eb8c2edd9db3b1d1b721824 |
| SHA512 | 5c54e3180ffc13064eb8e744faa12ab5225a18da99dd54105c759c74175d6de1ec6f8ea45933fafdf3a8f6bce0604ac2e3a25e0a4a33df8fd93a9237d3649a9a |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\icon_close.png
| MD5 | 55054c3a7a61162423844dd2c568bf28 |
| SHA1 | c9ecde134d44be4d386f3c78ad3d49f7c453d3ed |
| SHA256 | fa374fb5a21037211bbf15277fdcd87c30acdc2e1cdc5f2600fea674f0394bd8 |
| SHA512 | 766c328ccc325d3852fa3503e3e7a4bf6f7e2a9289adbadb6fd19f53c4cf803bbe492315951d8401754cfc48a3b014e079802e27446466580e6d790661c95875 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\blocked.png
| MD5 | 8d1763050160343e774a05ecfcecab6f |
| SHA1 | 6590bc6f21e90a7c7d0880201b40cf868de1bcec |
| SHA256 | 2e9c44dea5527888048883f0558313247049bf86809f4a2fe86f5e86912a9916 |
| SHA512 | 7f5cf621a248aa3ece2fcda0c0820009a660b9f6d8fb781c9056527d75c236ee6b7330323f08746a85f48515a3f3b8a920fc1529f2f293f44ce6b81afaef5c44 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_89788100\CRX_INSTALL\img\normal\allowed.png
| MD5 | 659d696b05fd116ca3316067d7d3db92 |
| SHA1 | 59ac6d66b9f37aca2d7073308a99809a14fdbb6a |
| SHA256 | 3c7721fc41b7c3dd694ebefac4533e6a71e85cd0bb18bc66f57fc3910bcda8fa |
| SHA512 | 0eae3e619e9ff32474b8094b0319066795c6dd5d4e4e757dbdae5dc1fec9fcb22b4e9d857b73e0adfbf710abada04a51e957184a107133aec1a3d9a8ae8c818b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1764759327\CRX_INSTALL\js\logger.bundle.js.LICENSE.txt
| MD5 | 4e994bc011dc4913520bd9f4cefd135a |
| SHA1 | de9aa409a953bce76c488dd9b7297a23f63eb909 |
| SHA256 | 923090b15eca2d9a8c7f02431cbc23961b45e34a33c6ca0df8c162abc6f91688 |
| SHA512 | 2d64ebcf3b135c6249d4883c54de3f9bc0cef36c9c071b1295816ee416481659ee1f62d06c92c1b4a92e48c88cb29312398d8cf4e54d3dd5112d801ef3b080db |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\afdflockjgafgkiffnchalnnfadffleh\2.8.226_0\_metadata\verified_contents.json
| MD5 | 5228c944434287eb6f7049fb30d41f1a |
| SHA1 | 54d792c3f38f6c8769de5d6d707ed9153d70598e |
| SHA256 | 43ea601c7dd52c49d909d84ec309c751f055b2e75b5b9e8207b58a2585af3963 |
| SHA512 | 9c4c15e56c002820a74296d93dd91e950c1cc67fb0d6d7f93829e4939beb2987b1795144f4bd649af6b9325d3d6fa565c08c80cbdc1e2608c288b31c472ddd47 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\afdflockjgafgkiffnchalnnfadffleh\2.8.226_0\js\content.bundle.js
| MD5 | 4f48bd044f60013c055b6b0f9de1e2c2 |
| SHA1 | 225a5d61614c0d297441e730a6e2ed4865c46d09 |
| SHA256 | d785ceac31ce5a32997f79dc16c3ec530ec698eabcb35227a883c9755d02f77a |
| SHA512 | 0ae272b8419509329aac1e6823fd7ef1035cc734f1e9cfbb22054deb0161c56ab98bdfbc77cf4e5813388edd96878b20cb04c12d0665db7654e8f36164d080f3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\afdflockjgafgkiffnchalnnfadffleh\2.8.226_0\assets\brand\img\norton\icon32_active.png
| MD5 | b43eb055d738a43fe26f1cbf032509f2 |
| SHA1 | 260582b32d7be10e70bd7d08e274d7d699f44076 |
| SHA256 | ac2a0b07a0fa941a5ccc0aa88211e5b236786467e817d77724c1f54d9fb95268 |
| SHA512 | b3b1ba5d8d9dc8b7b2ccf40f02f673889e68240e36885295e579308099cfc06cb547ea088225fcca1228a7e6302b2b41d4d396020f33643ed1bc22f737c4fca1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\afdflockjgafgkiffnchalnnfadffleh\2.8.226_0\assets\brand\img\norton\icon16_active.png
| MD5 | bb99f03ad1dccf577381b6fb0b59916d |
| SHA1 | b27b10ec2d3a2ef5a6dc6caa17a6ed9cd778d76e |
| SHA256 | f95f8463c7f14eaf3c9212c0c8963e3b7370ec6f5ef687080d99931aed929649 |
| SHA512 | f52d5452ca884178a1d0b81faa187632fd4a3b3072d1d42c44da926fe4fcf6d267f80c5d14bbffe6905ef47057d2bbf99f9164e5d7432f5d17c520c24e601886 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\common\toolbar\icon_24.png
| MD5 | 2a834b87773d3c19fc840f05d6909903 |
| SHA1 | 2c7ff2d4184ccc33ef538d5470a2a98357b4e04b |
| SHA256 | 3a8ca9010d48d5169fb5ad753a32f6661211e438bba4c295b121a582d37cbaf5 |
| SHA512 | bbd851b2d8880d2f1a981f265e596da94dc9c37246cde5dca42068520925066be26d281edf9a8324fbc8a8d1f6ace0bde9456a33db0d39070c2dab35ba22d7ea |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\dark\example_arrow.png
| MD5 | 493f6f47d56d4d48c9c6a46956f6497d |
| SHA1 | 43b1b8e9acdf7f5187fd69e7ebefd30ae464a660 |
| SHA256 | 64bfd47c08b2d7d2e2aafdaed00f7e8e6e6df757e1eaf5ad337cb9ef7bcf50ae |
| SHA512 | a8d93b048607421ebbf5e007fd48bbfa97d085bc6b52374e42f173e0086dc8a9e3e43d8423b2d845d4769a0155db5c0c1807281f9d37fe7dcb16a394d470307c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\dark\clear_chat.png
| MD5 | 9810ecb2522389dd5496a19ac428c267 |
| SHA1 | ff487245fb4e6d26c388d6fc664ecea28ba55db7 |
| SHA256 | e524106265a93f72dbec680107293f02b8f0196b07d4eaaafba48b6892e3e6d1 |
| SHA512 | ace2e8938fd7a40f8ec416d807afcf3de8fedb2a43382ea611296dd5125d5e21fb104fdbed1d1db5c5c94d7db1ce298dfeffb90045f5e1faaa50ce56b93b5e21 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\dark\animation.lottie.json
| MD5 | 4ab201758a98d24a09237ebbe1145c06 |
| SHA1 | d8e1256e25b33237b8830963573e7e8fe1744897 |
| SHA256 | 9dd11b1e76bda388f80d97a1d198ee62eabfda7e2bcb248cf9e22303d534c44c |
| SHA512 | 6433e5aa1574eda5a880c0e09e188554df47b77d2bc19ada692adfd40d30c77d194871cae5e8893467d1b64d4c0101280aa8ab91866bbf0a111b6fe5434db7dd |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\normal\example_arrow.png
| MD5 | d3a23fb49b606371c406f7810d33d4b9 |
| SHA1 | ea287b563b85f06e00d9fcf712d884de84835d1a |
| SHA256 | 567bcb4f7e2deae64d91f61f047b5a751af922cdc8c56311c89ebda101333475 |
| SHA512 | 12ecc30e4e82e17c4afce7c8e5df400398b66ebd729bc6d68adf1a161e97760feea13e71b73b639d9240b9e852562ba7e72ad1c44ebf0a87b944e82af87a4571 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\normal\clear_chat.png
| MD5 | e0807b766b4321ab5c9233a4768f3613 |
| SHA1 | 3a003b6e0508e67c130de66c0244b78b4d96b13b |
| SHA256 | fc5a1b236a374e259a4230680ddc11ce1d4a703fba4db436ee2e695e34ea7c77 |
| SHA512 | 17fe53eb2fa7b5c73172ea1ef0dc3ca5e9533f4fced9756457f0dd99a9c748958f53917778127240560d1ed2bb3b69c3f5fec84b8740c657b44ab0e22085d2a0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\normal\animation.lottie.json
| MD5 | 0c6d28b9b66eb1d8aee8c5e5a60a9e28 |
| SHA1 | 2bc1662f26ff50bb21bcf21a7a4f75bf95f6482a |
| SHA256 | 33da5edae8460d55d7df6117c8af464013a19d9fc86f24a4815c832277913c6f |
| SHA512 | b24367e48c4c38e0af3c098daa222ebdad26d139a82c3c442d960b18bb7197f6e1cdbde7ee75252eef12f1003a07f6c67ea2801966a6a768d3de61059802b4d3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\js\popup.bundle.js
| MD5 | cad81a71ac2c14e73da6549136a8c228 |
| SHA1 | bdddf6c3516253f2f154061a8686e378bd3f021f |
| SHA256 | 1084e3ffbeccbe6debeb1bcceff81e02bd919a89f402f12f8eb7e215b4c5744e |
| SHA512 | 655a5d532af5bba5acee93f48f3788ae5af436860a026c332e62db1b4d17cd84664a6523891b793abdfc98920740d07b9b3f14ac3d0b7097fc01a62d314f2b48 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\js\background.bundle.js.LICENSE.txt
| MD5 | 61b3f0cbcc640f3b33078a194b892ae9 |
| SHA1 | 20509ed3cfba51b1aa9faf93fe3b342cb80792f3 |
| SHA256 | 57bfcb5651d975deb3b5ebcffe951d3a4f94c2353e4c75e2c7563f672dca1337 |
| SHA512 | a24ab200480b1fe1ab4bae2d6fabc406f3cfed4e601ac62edb9ef589d7f797c6d0e0992beb223193278128e7e3fe56ca250905cefa89374e3707999d0c577f05 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\js\background.bundle.js
| MD5 | bdbe1c4937a84b182e2f6dcb1773d193 |
| SHA1 | 21c4642824c6d5cc333045a4ca3474cd63fa81d8 |
| SHA256 | 35f534c95ba76186173bd8da24107f62ea6a4f6be8eeb7137d65efab474bbee6 |
| SHA512 | 93ec3926adaa03c080e48f7dd540ec60528bb3c9c15dac94ddb45ad63b76730bc599b905a739cefb20dfba41fc0b53634ba94eb8d7041e812ca890b91946e809 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\js\ai_chat.bundle.js
| MD5 | 3b059e67b26f3f97756e682c440b88a9 |
| SHA1 | 5897e0e35ccb88a1da34be983c4f683b02ea6dc7 |
| SHA256 | df4c7b0d46c1e5140077e66207bd8d06a5678b3de3cde9e641cfd032d5432a7a |
| SHA512 | dcdb85b8cae46f32a5e837464db9b01fa7d4b9c600efa1f7901ec3e18c254b6ef67f22ac2cd0e74a084756d39ed673e337a69709dd7803d95da6ee53426bd386 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ar\messages.json
| MD5 | 46b27a048d3cbbb6aae174fed301aa53 |
| SHA1 | 9158b6cb420aad7f3fc05a9c75e88331a9c48f2d |
| SHA256 | 2dcb1422451c431907bcf76073d17db6d68dd9ba7853315cc9a71934a8a74faa |
| SHA512 | 0b03e64501dc58241f2354ee2f3b71e8fb559640c91527424e384ee25f3033e739086cd05218a5afa9c7890f426055ff2d394a758b160f4b71ab9bb318475fc8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\be\messages.json
| MD5 | eeba42438090278c0e2fa9ca82e1c0db |
| SHA1 | e0954fed0bff396520cddef0702bc7b5c0006037 |
| SHA256 | 84b9e57f870f701fe3e9fad9b599abe37669fa9c0289accaca2c73b6b4e3367e |
| SHA512 | 2dad148f9d1a24d62d7ceaafdbe0eae69e7f06e6b3f018898bc4ea5f971fc59b494434825ab5bc974fc42ba9091aac2320aa7f879b0ef2c8aee5b7f71f0308f7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\bg\messages.json
| MD5 | 046880159963b23f51ad3179fde0e0dc |
| SHA1 | 0b2a3b2b20bbc40c28ed699d7b7718adc8c394f5 |
| SHA256 | ff4ddcfa6125cd4a447a557fde2a79136abe7b64239579c85b2ce8404ebfe9b8 |
| SHA512 | e613f2a860e9e8489b15ee168b8418c2e31167b0a85c4a199474ddf298fd8647c2f86efc67f3783a9d0d60197e2a2fc5cfe944cbd93c06dcc3c54ef35bbc4e20 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\bn\messages.json
| MD5 | 7472283de14d9fb79dc0471c3e807f19 |
| SHA1 | 304956e6f8341fba6cdd02a46ee452550c43934c |
| SHA256 | c9ed3485c3fdfa565099ccb2d071c5714ae13d8bb999374a7673687d9a8ab262 |
| SHA512 | 0933f881fb9dbc7b8f156dff1f78a85b3e85663e7a0833e8153ffeb405fe08074c20856e928b0f6dcf1d03f2fd4e317ab6cffdcb190bbdbeaf0875151c8db802 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ca\messages.json
| MD5 | d8970daec7b0fbf3dbf755a601801197 |
| SHA1 | 4c8dd5609e40afc9a3996f2c721fb5363faccfdd |
| SHA256 | 7da77bf9a297832b71468d64a31a1de96310fcd532b6a54d6e76ecde9c10568f |
| SHA512 | 45431808c40a45a30607188173ee7a2bbfaf5b244cb1f349de4087ae251d7ccd047be714b8bfd916f8c960c022ad65eaf4bf00803df7a51f7b693dd7723dccd4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\cs\messages.json
| MD5 | 36add988779a13f5ce8f8bd05916e6ee |
| SHA1 | 4410081c7db06b3f71459a0bead95e2a8104b5fc |
| SHA256 | e1de0db32b17b3cf8a0df44b42bd0f37ffb552eafae1ae09c175796233d320f2 |
| SHA512 | bc76b550c562bf7a3b0da1669bd16e465ab54811d5b3ff3dd30816642dfe42236b74bbc03bbd457138ad49606148e1255873c0711db94357005371bf32e9d7a4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\da\messages.json
| MD5 | 6192ccad3db2fc388768a2aaf51c231a |
| SHA1 | 3c9db5d53a78b56115a428a6e4f186106880a8f7 |
| SHA256 | 9d81f1d195be8a6ffc15846691651d3b8f05013d2625f6ed2c8fbf7f5b65e769 |
| SHA512 | 0a9b472a8614c853571baa6b8ed82020cd6770e1dda831617e0da39b2e1293736f08af166d1bd872aa71ef9d2609665ea7d84330c4d566af78db81ee3ac64282 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\de\messages.json
| MD5 | def184eef23b5128731c506673c9d608 |
| SHA1 | d09c564c6e98c520b7fa8b791a15250c9a104762 |
| SHA256 | 63c037fc0420dcfc3e4003540c926a62943887692465d79630dbe230c279a254 |
| SHA512 | 3b578cdc44b291c7c3f4b4eb061b0aa021775f82b410b9560e5de012ff41594a02ffb781f9e037f03238ee04d1242371495a1c755194673a234f37334afbd335 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\boakgmelfgohkobfagbmnlnmpccbnaif\2.1.0.334_0\_metadata\verified_contents.json
| MD5 | da75d62a54c62f3b76eaf5a8dfe0e732 |
| SHA1 | 36207df1be4d0455d7c143eb6dc2deda7d3d6c4e |
| SHA256 | 944d212eba8738de04aa1675e140b64a7019257ea57b97fd780d93f14e3007ad |
| SHA512 | f9cd02d1a42f7d47ead1b769bc318239bc775dd0869bdd64f19a8c0c2ba7f96591e71231e1f21d87133574acf721d213691bc923666999bdd664399adfbdc515 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\options.html
| MD5 | c2bae0478950a19eb0a3fd750229de41 |
| SHA1 | 1145a62c01e8934db9c975f4bed06932d15677c4 |
| SHA256 | 8576d68cdb2a4750417514ec2e74c132cd8bb022bbc2862426dce2b89e91eacb |
| SHA512 | 4dc577cd5b9dc7660f1b93b32de28e833c53bad3df1310add30846052ec589212bb9c4f37a296c8b533e0074f2917d085bbdcc5a1b2b2618eea563512bdd26c7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\logger.html
| MD5 | 80b6a5bbf1150447d68a8f5ad9f029dd |
| SHA1 | 793b13cc98e9c3351b514066717930cfc1e6c344 |
| SHA256 | 15ab759b9df7241d8fd183c53613dfcb418e2bb94b669a2a90b8ae824f1bb654 |
| SHA512 | a6aed0e2da7bcb7da1fd782e9f701d4105544bdfc4559b20761599894c98337decc31402fe9855d3b091040e3ed226eab3c724f10fa530b431ca201054392173 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\js\popup.bundle.js
| MD5 | 033a7220a61c108ce0efb2ad1c7cd4f1 |
| SHA1 | b4ed264f3b7b71332e4af0a544f91b8a20a00f77 |
| SHA256 | 5d2be53e234ee00bd81e194927edee747d6bd2a52d072ad006904f7df3ca4445 |
| SHA512 | 80ceb945f900f7ed1fa3b962ee52bf3a4be5cab4271a1009cfd55b4eea0a13974260c1d2ea83e89c3f89a1552db3ebd6cbaa9eba3c15763627a8b4045d155a89 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\js\options.bundle.js
| MD5 | 3a3fa55cb830723e58fdcc949c51fc50 |
| SHA1 | c6af8c4e4f8987f2fd909036d571b89db1212c35 |
| SHA256 | b5693fdc5ff654efb19e0002c9c83881d4ef3e4970b6ce8fdd3624307a2542cc |
| SHA512 | 4630248f2a6c4c40d75cf1d678191bff21a49cd499101650d3a7389f09615aa15a84ffeff2fe6a042ff8bffd18d20f4a40907604d99596a682cbe7884c8e6dc9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\options_logo_off.png
| MD5 | 73be8ae98b532c988cf52711dd009535 |
| SHA1 | 0723b5b7d89c8788fd717d77e251c2a6d5f3b247 |
| SHA256 | e620e1b7b329ade7185a6dbba26d8379f4a5ea0358d62d477967c61f98dcc452 |
| SHA512 | 2181e147ed68fcc46c0e59dee6fa4e676376ebada3dc18714819baeb2fb72f695c07d24c443b861f637a1d8c7bbafc4230b7a1c4c2468dda7cabe612be6f25b4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\options_logo.png
| MD5 | c59708a5be365e67d09e8df5fb55d006 |
| SHA1 | 1f19d06e5dc903e77622ceffa63abd08a248e6ad |
| SHA256 | 3849be136e8b29c485019aa95976fb9d99bef0cdd32b8fa2a006498e6e039eeb |
| SHA512 | 80e61ae9b4e1549feffcd66e2cdebb0e448d59cfde2bb969fb4a39888b8f2cd3004369b939e5bb15825426dbf7741509812ecccb11d5373ba92d0bc1a1697a62 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\open.png
| MD5 | 06740a0862d41ca771a2645800e68603 |
| SHA1 | 1b04e2ad2854980f237342e00afb4e41e797cc7b |
| SHA256 | 8ca11fe6f921440b8a6e537728a14bae0410b267e4a849be9fd26ffbc9690ebc |
| SHA512 | 45fdfeb902201439d1429d9569aeb8a2d8e489f51c226d0fa8b4dc2f2aebf87018e8c046e6dfe887b0fd9a8599cd7d0dcfe4eab2b9ebd7c1b36520a9ce666497 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\info_icon.png
| MD5 | f720acda93556bf2d44caae93db857ce |
| SHA1 | 3c73c272da866e17c89d747d2bdc1f4df739a1ea |
| SHA256 | 209002237e277255b3339dcb819bc2d4cd2d15a2b8e7fa81d6165e318b335e0f |
| SHA512 | c6114744f4f0f5fa9ec314313f18be7a4868291ae931b043cceb780da34939b69a5c84cd8f4be757f82346c42bca7b1faf3844e9e26607138405e4571b3b8cfc |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\header_logo_paused.png
| MD5 | d91d737171b7db69a483c7c1cf29da58 |
| SHA1 | f20fe54bc07912b921b83bf04eaec8443ad3e8c9 |
| SHA256 | 5e2a7adadc0cb57b60d4abdd58003a7ee89763fc6f1f40659d88d7aa657a25fb |
| SHA512 | 343967705ac5bf76fa78a2642df10a5a7ba4df0bb8c83a8d2ba760e1ee8aefb6130d3ca84528943d166e24ee2fdfcea79c4cc7b74a61ed615894e92a7d558ce4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\header_logo_off.png
| MD5 | 22af76d5a6cb92a7f0be21261048733e |
| SHA1 | c5aaf5e51b458826c61e694e03f1a4ac71213a32 |
| SHA256 | 324967bf4044275f7cb7c8f8e76917a2f903e42ad96bb392f8fd87b1869dfd5c |
| SHA512 | 6ee316d3a316e277b83b90477ce2a9a7b1c8eb6fa30ff722d7baef1c697daea27a8e1f18b770c4285e8f91b76483f235d2c4290103d5ad88ee12fcdab510bd8c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\boakgmelfgohkobfagbmnlnmpccbnaif\2.1.0.334_0\_locales\en\messages.json
| MD5 | 6d5e76084c6a0a7cb86266076d008f66 |
| SHA1 | 8779caf904bbf4b0e19423511fd4a3ed7a92883e |
| SHA256 | d5ec69a6394640ad458b698dab3099632dbdadb25e20dcb002430229e711b386 |
| SHA512 | 8286efad1963598817ee38236b1b9db150365e55823fa50f67f2a0f8ad29b8369705881f4767c8401a3228209e7cac919cd25aef4e5e10162d4bf57676020241 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences
| MD5 | 04b46e70f81fda42fb4576aff525da12 |
| SHA1 | 6b8c94e736fee2997d9da933ad4f75d35232d0ff |
| SHA256 | 92ba6f7c510470b441aeb18d2a023ee997ba610317ec52d33ea102399449e15b |
| SHA512 | 20fff06210d0d42e561e8e6816902ab249edbaa2e25d9fe12ef08eeca242e23891d2e9b8e7708ac90a8e319e229e7810f49f711d5830e77cb5c479ceec723b78 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | 531d3be9171595f34bba6a94b888d019 |
| SHA1 | 64fbbc66894b80c658d0fdccb7f57ba33b8813c0 |
| SHA256 | ba625b9de0163e77e608978e0830d3cd6ee2a9598d3f5b924fb8d315ef1eb292 |
| SHA512 | c1bdf79112eb4bca43d1b63cbfa0574c9a35bc78c9416901ef9e1ae33d66575e43546507e47c4d615d8691535426a838717889a270656f65c83c5cac3ac28102 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\header_logo.png
| MD5 | 78be81acfd37f376ded796aadcb4ad50 |
| SHA1 | 39f47b546e84ad22945f102b33f4f66bbc2eb5f1 |
| SHA256 | 772709acd3d871ca808ca9755db46d6e5c5f2141a2f4b672b1b6d0f95f4f6ac3 |
| SHA512 | 51bcdb9d146183b91b4e4fd9816d18d577331598f899124a1240badb324b6adaba896d6d8e631d8f8960b412f95cf5c2ca3fdb37655b2936d4d959bd9c28d9b6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\header_background.png
| MD5 | 3d7d1af168250aa331fcc65fe95c66fe |
| SHA1 | 1e593c3ec189752032969541c57e654c6051dbe7 |
| SHA256 | df70c33cff57c6015104ef9b7cdb233f6f42b2903580581700fa94cf18647b1c |
| SHA512 | 79690dcbbc89b16272f03c5b1f6a97ff35b64689449a64614b28bfa22641a246037ea8e57318c8e5dfa96be025dd7b432b794bfd8c6bb63b222fb1722631140d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\gear.png
| MD5 | 289430f0f405273df21a11b6cdbd496e |
| SHA1 | c1fa310db5d03a456ff272ef1feeee281dabbe7c |
| SHA256 | aefb86d5a8c31390b3156118c070a667c8136ac88955c0063041daf8ad0b5d07 |
| SHA512 | e7d57796db7e61908bf52afa98359ddf70f4f57e89c1f7910b0ee22432944c6b21924ebe22efd3e77b7901918901f2b2278fdd97231caa8a9e548c17326ca210 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\expanded_icon.png
| MD5 | 1b81496b3ab1f9e15f3c79a5ff4352a8 |
| SHA1 | 8045a299ea176d0f040666e8c4e1c3fceb0e8bba |
| SHA256 | ab30dcdd18248b0211d265ae35a38ddf81dbd7da77cc9d723f786a71a9dd1624 |
| SHA512 | 5b8ac48f6835fd1b870b517dc5db05c0bfd40721fb21725bd71b8d90147eb8b7729fbca2437b7c99e30a40b607018960ced2118dfdd6eb573a4baeecf7a3b5df |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\essential_mode_active.png
| MD5 | 303b1c714a891c4416d5c3bbb333eb83 |
| SHA1 | f42e209ac531630b8c9aa118396a9e6650021e83 |
| SHA256 | 5e92c4b2a77af99fe7bfe23b19d003cd3f423150e3acb2cfc8c85d95c35c0b5d |
| SHA512 | 95a8846306bdd745446d832fa332f972ad37837eb29b89e9ab7adcc3d2ecda98aa501574236c3552250cad9d81b7d05f4a8be4e6bac627a56c3a44db9b0f5ad9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\essential_mode.png
| MD5 | 4b5f1a3195264b12c60e51ab663c3e48 |
| SHA1 | a01e65805503807a7c863394641aaee6cfda6257 |
| SHA256 | 9629f7f257dfa17b8ffb7e8fd9ca35346064606472bb9c96fc37416446961966 |
| SHA512 | 9c1e050ba1e66d4abb03f406f92ea6c470aff09913ce9323bf6ac8366ef0e8da6dd97af497845bd17aa3a7fa6577d36bb0c706c99f205cb01ea88a5ca8cddba8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\balanced_mode_active.png
| MD5 | 420b457f965dbd5bc55d3b95ba660c0b |
| SHA1 | 82965a2dbd3d46c81134ca167aff3206a9f8c7c4 |
| SHA256 | 4d8f719c74974a1422e8614a92d829721a8e37f254c6b121c77712a63f5ebd9d |
| SHA512 | b582dce0cfaf1875aae41907dbbdd3c1a275b413083a0cea4b4be8d984eb9c5daa392063ed5ca533023d64722ec4b2f50c516c233f6acf56593035f0316749ca |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\balanced_mode.png
| MD5 | 57a25cb063d1a2b4b132b0ef5e3defac |
| SHA1 | e096ec70551459bba37d10f21995ca771a1f832e |
| SHA256 | a6d6b5c6e693cde868905857a09e855ad2ced432d2512a0044dbc241771a7f7c |
| SHA512 | 36b62b1ba86a5eaefe34ab557bd9f099f7952c8278149fb6eb3d68fe730721b285ff73ff106599ce4c311c188bbb4bf739c2b90447dbfd09fc38ac63e853b842 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\normal\arrow.png
| MD5 | b499d222f55b7c81feb861a9428e079e |
| SHA1 | ba0f1bf04886200af659e6f1a70e195c11615ada |
| SHA256 | 2801de75b870a2f278d98ddd818600846b94a4456527e22e19d71518261c94f9 |
| SHA512 | 80516bef42df9949dea8333f7c43fcf03e9a4071bb9390b35df2c64148db4e9526c61626c44f672cb7ed57fac2eded5e83d8c0f3c81b76ea0f913b271584ed25 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\whitelist_action.png
| MD5 | a0d2121449df13ac82551e23b053c033 |
| SHA1 | 21a0ce940970044470074bbcab8d5b34e2698c2a |
| SHA256 | d8cca0b6ddd4eb1c1172bfe26c9d46e74337ee0aea87f4378d725338a662e633 |
| SHA512 | 90add1e518b7c2bd93d66e8df1faa381d94ccf2fbce4a8ceed109914dd9c9e70ce41ea3eee0ce5b535bf3b1150a5926d8a68536c8ba8adaaf28c9be715264099 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\support.png
| MD5 | 2d6fa11d7ce9c7cdb0dd4880fee807f7 |
| SHA1 | 167bb158e4410403ca304d89dc7bb6866ab6a1e9 |
| SHA256 | 3919c88a9f7e5b15acd692f47d7c81113f501b4d46a7d78d412cea7dede8ad6e |
| SHA512 | 3dc8c4cee4ed8102afc3085a89f61e8c58fb54d79f33e7b442a7b4d0a2fe0060736da858f8dbeef2099192d254a3f4ee63da21ec418584dcccd3e67cb35e5878 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\strict_mode_active.png
| MD5 | 239c8c0bd22c04b2d7dad129de68965d |
| SHA1 | 8f76a5e826a09aa6d793ee4903f49292adcb0504 |
| SHA256 | a69a0873260ab007f94c3ef7f4d9dcac6dc97912db83906c3aacd6ec5817d904 |
| SHA512 | a21eda73afe86da2cbb40fc875171632ea22a7361a194bfcf07f88685005bc5d4771422a5926ba5da2ab9600f79e879008a2ebb171aa6a36fef6b7b4209f8aba |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\strict_mode.png
| MD5 | 58fa2e1e38e35cde4f8e0b3896ba9826 |
| SHA1 | 04d450bd1cfc98d5da1607ef8031c9a3ce9b7173 |
| SHA256 | 5168ed31b97fef54157104479b5ad47f9c067c00df13ac59c15cc8e17b304734 |
| SHA512 | 35c8fb39ce0c76d60de9773b304ed68c7d27871b1924f45aeed60f8f728d7715883dc072b1e20c358c781d5178c38734dfb9ce46c38c121aeb47ff5f9c01fb34 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\strict_close.png
| MD5 | e8ae1ce99f62e695b6120bd950cc0b78 |
| SHA1 | 9c0d7556f8f7b14b2eeffc4d548ed8ba0987dbc1 |
| SHA256 | 96900b0c4ecd08f39b2d4a9931a607791de7f2a1e4f3c0574e34d68ed1999225 |
| SHA512 | 36c392b1d8e731b6ac652d626a38c0a5d5e2c27ab988cd1f0b1c343033d4fdf8fffafcde1f2df00ab5b1e3907ae472dcb8d4869ae93484243d84c462e21a5a3b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\settings_icon.png
| MD5 | fca6d30fc40a5426b7cc37a19d3a54a8 |
| SHA1 | 3e2f0bce845182a638dca1ca7d1908e035e6f05a |
| SHA256 | 41b595eb8052d879c6c521aab7fd2d41a8bf9b1f3d15916ac71177648463974d |
| SHA512 | e124bfb53b7b107dc5f17e4e15b8f33f17eb553fee61fc562eff2ead5647db6afa197a27fa0895bae701d5377ce58bf6db78ad49988191be9ab42800fa8940af |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\pro_strict.png
| MD5 | e7bfeac6c7d0cdc6a2dfede2d36bdf78 |
| SHA1 | cb0f45cffd8ba660cbf90e93efdcc9dc8c8df794 |
| SHA256 | 3b20d6ab5ff4b5aee32143cd0bebbac92c2ca0e34e94b393b3b669597ef63080 |
| SHA512 | ae70258dc93787e20f0c9427e4b9503e5c6c2b455927d86e5866171c343c96b89de41a9ca978dd25a994c31dd943b57518ff58a15815818cb0e8fcd02c5610ec |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\options_logo_off.png
| MD5 | f84963dda43a2e82bf6c0a185a6dbb24 |
| SHA1 | e0131fe336af15088bf0420320fb93d7bb3d3b9f |
| SHA256 | 5b28a72ecccc38bae85652dd086821ccab4e68ea0132ac13f12bd59d510e5b29 |
| SHA512 | 877240e878f80fc08084a7303f98eec09221e7f5f50f5fdc58cd2c82b3de092c4fe58113d56af3d05d4b75140d1bf4582efb7961c4132cbf4d8b2946db21994a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\options_logo.png
| MD5 | 5037ea3f310b3a642a9fd22e91aaa5e5 |
| SHA1 | ee9fdeb294a6d7263a7527a72f3e5dfc82e387ec |
| SHA256 | 5dd7fb4507a3bdea02b3f667d7900ef90bbfbc91d3b672e051b7a6893f7ae17f |
| SHA512 | 519a5ce2501cba5a3a0e4fd169eb6258cbddfeb8c25f286d44dcd147139e5b3589dcba6067ff61645948d4584d442a4fb1f57d1ffd352f7e4916550f2297eb41 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\open.png
| MD5 | b9bf4c0f29f04acc59d554bf2eb80270 |
| SHA1 | 9c304b9222f9ab522afe47b7ab4e906aacde9e67 |
| SHA256 | 3ff71bf736635b31252e339c1277b31f9bad69494624c37ee0430d229afdb9b1 |
| SHA512 | d13afaf9b639f472139c49cfbdbccdddba5c70dfde4da6272d5517d25618d85d2d35adb783ce44dad8dc24ccee46c48b331303f9b0fcadeee594796f48005459 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\info_icon.png
| MD5 | 84700e82113b2b4a772cad6f736a2bbc |
| SHA1 | da6fb8f5315189a259487db42dd4cb03e1c89c1e |
| SHA256 | 80135ca992a06617e34cbc80aef922f49b77530c80d41168f96d8564b9de09db |
| SHA512 | 721499aabbbcbb948191e23c5f1e572d49488320c878c8d9d43c2601211f831b9f560fb95094ccb2f6d5e254f427f6595efe94f08aec505fd07ac426e009a23b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\header_logo_paused.png
| MD5 | 5d54e3d632e9c35682ac590bd8c707a8 |
| SHA1 | 64249f9bbe480fe2516172702a95ace7e38ca408 |
| SHA256 | dcd8e976ca3178af9ff1b84fac46461e228f2ede94c29f74ddc27ed49fc23df1 |
| SHA512 | 211df572d97e8778e3516e335169183a345949302bc44370464cc3d2426d8b3cf433d199b51eedc2c392f84023cf4475a4cbc102668560a97e5ba58029e78b82 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\header_logo_off.png
| MD5 | 59ab2e67d5ffddf0b5cf2539dd01a1dc |
| SHA1 | 7dbd314e447a948663d2a8eb57d726c05a341885 |
| SHA256 | e67e47b7bc2d042441fd059422cccaf4d415cebbae1c2b2fb59beba16c5a9188 |
| SHA512 | bc7a69f18ac7ed83b5b1ac3829a4e717075a61d1efda95dfa051903aa4787f3b1eb756a34815c94cf97f9810d0ca5388839567dc5e9a0bb0e32ceb170e7c6b80 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\header_logo.png
| MD5 | e8e3eefe5f490e48d845774bbbb4db25 |
| SHA1 | 98228597f4414364db6aea5c8c9185f3b3476166 |
| SHA256 | c779095c66a0925bef8ceb674d96936c96fc408c09c041fd85ff0ba743791d2f |
| SHA512 | 748f5340aba5987459f0c26ca1a424c50c2b2b9aab98ac23f6fa32ce6e127d03ae4b409da9fcd32c87b0e008aa8f5e09146f87c80117816323d47f9e9cb02575 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\header_background.png
| MD5 | 76d521090f4bd63fd00b0e9aca566772 |
| SHA1 | ce2131bdc369bc12fa7e2f5b5591f8cd9a06fcb8 |
| SHA256 | 6c46d890e518e328f0d06578bfed8cc8b9e3b3f25e7500ca7e9afcf5ed1fd18d |
| SHA512 | df4b8b24f87c70110322b266f9e79cf69a347b4de417ee9cb92ed1565f3c6356ec544d3d0c65f0490bd275493429ae2a3cc0d77aacc21fd4ae044d36b2b3d708 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\gear.png
| MD5 | 164da2e0b0a38eb1d63d6e52b44cd89a |
| SHA1 | 2677d3b8caa89f3784bcaa4f9b8c78abbff79be4 |
| SHA256 | 592c5476720fb27f6f725a1475a89e74a118454a3ac26127099dab2d650fc50e |
| SHA512 | 606427b79770341972f4bc905125bc6b31351d0a45ae7eb76fd2cb512a94368f0dd488ea609700ff955418110eb29b9f24a559340a9e7cd47c216371cd060b76 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\expanded_icon.png
| MD5 | fd153d4aa72eb1bc458d87e52100871c |
| SHA1 | 355ed469a7cabe15f9e30260ef794073ce7bf3d7 |
| SHA256 | e6b759174c91b25629126404b221c4b4105927eca1b40d136b738a1738872d83 |
| SHA512 | 0f4b573b006f0ef14bc6aa0dd3a2322cbc54bc8ba29f7edbc9bcdf01378facd69f23bc88c4e2d627616566ef9344ea299cfe402342bef0d76e9de632e7000433 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\essential_mode_active.png
| MD5 | 72dda861c776ce110260496860b0eb7b |
| SHA1 | 37a79b9ad9756c621f39ccef8bc8dbe966c2697d |
| SHA256 | 59b99d82d9e8eb5c3287b48ca5a202aed31cffce4675601242b4ed3f0cd56662 |
| SHA512 | b35d251b7caaa027063d93923f165cc65aa3db3df5e7915bd4023f4c4c32dbec97b97264c4f047796e1f7abb9f4d5e05426cc039e613cf348914e362f0ede0e9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\essential_mode.png
| MD5 | d31bbbcfc4d455dcd2079b1880c56ba2 |
| SHA1 | 105fd3db64ff54a41d5ae54414ed37121c449536 |
| SHA256 | 005148984e6912540bbd4e9f1aec52f0b574b540e6a5dff42d32b7d2d73accb6 |
| SHA512 | aa8a7c9f2749a09abbd331f586d6f3b5334d45df3d4c40811e550afd023d47ce36ff1dd6cf13b9cd0f6b0c8cdb0175895ae3fbc247ceae08bcf37635a9cae234 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\balanced_mode_active.png
| MD5 | a56a44a13db644a86019a57e87bdd989 |
| SHA1 | 15425f919f65b69207e0d609901d0291ef07e9b8 |
| SHA256 | f08095cf0839cbef9e4789ee08fa5beb5b649db3e75cbc7658bfd4f17ff020e5 |
| SHA512 | 3a5bf4c57c4cdecc1272548dede30964a5e1a9b015f066c0b4aabd2e7ec5e72708a0ac49317bcb367fd8f935ecc4dfa02ab521174aedbbe8bf5ef518a54b96d8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\balanced_mode.png
| MD5 | 559c879498dab97a040fe98e381d9f58 |
| SHA1 | f51fe8d3ab3ead95e5d97d008815227fd8710ca3 |
| SHA256 | 0204320dd5dfb0a87ff3c810ffce576d14aa888a6dcf145d2862baa10c6d8482 |
| SHA512 | 1e9ff99dc988b196208213de582aab9632868c9c193c4cc44d50f8394986e61a5a0987fa374dc1e4ca8b09aa6f61b3f33926ead453dc69e96706b8f76a20770f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\dark\arrow.png
| MD5 | 46bfe3643445521bd70bd3fffb2eabb3 |
| SHA1 | daee9131eb5f3cf2edc342e44acdd0408ef8c4d9 |
| SHA256 | 30221ecece051585c12b13451a455924ccbadab5c4e22ded408b622e0112e17d |
| SHA512 | c0f13ed6631e30db9e01390512a55f7c70b0cb46507e57e957543d9f6eb59f6fde8610d6eb8e74f76afcf0ab40bf26cb23ac45178df9624f0b7fb676e02b1e0f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_64.png
| MD5 | 2eb7d5e08d58659942f644af998216cc |
| SHA1 | 3169cd50796534273950a8e2df5e9bfc1a31bcce |
| SHA256 | 8d608e382c5af36a63a9c63b8ec12efb5edf62b7db39621cc6359ded37378124 |
| SHA512 | f30d59f1ecec09534bae48c2bd3f13d577ebd400b937e31fecaa7ef0525db17bd6d208548e7f32ac894090347fed40af2b5914cae6acb5b9bc472b029a100277 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_48_paused.png
| MD5 | 6adc67c3920868a34fbaf3eedfe25813 |
| SHA1 | ce7e43afc687d702ad19ed8770060f6e40b74b1d |
| SHA256 | 60e7397fa6b6c46c6330f1ebe026672d6cdd0728f6d66beeb752fca1881a2b9c |
| SHA512 | b649d290a244a9731dfd4e6d79f4ee19a65481dff79811e02f22bdca6bf54aa9049f6a7fb7d462a536347c6cf2ac8f0f56202d4704780f253008d48633e9089f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_48_off.png
| MD5 | a87ab64560c34fc04e84cc8620332a73 |
| SHA1 | c84db6a0c7463ccbc9d5661616f1d13fe0d230d4 |
| SHA256 | 895646aa8332c9dfc43735f45777599ad52652ae5c18ca710092e663e84559fc |
| SHA512 | 053422efa8c1653b6d70fe92742db3e0f71a064eafe543375e64599308d7a52f856ed6aaeb8a123a569da98a707b15eb33b8a5ffe832393f9f95de4def78adb7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_48.png
| MD5 | 52c2c5fe2a39376ba6f34591aaf8e121 |
| SHA1 | 7e3a5a5a92137db8bf573f72a6143f53059c4d08 |
| SHA256 | 52c15a4202dd3971c82c75705c2a2303bd496dc09acb0fb508cd6960c1735f27 |
| SHA512 | 98c673a034725a39b965cbe7aab0b6897cad951acd072652d109f30f51812c054c0571ec8140877695987e2999b70a9d08cf9b995791054bb7cbabc0e38b7db8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_32_paused.png
| MD5 | e0b20d45ceda4ed438268179f813f8cc |
| SHA1 | 5f77946d6bab01fbbca78a43004c897d08db921a |
| SHA256 | 43a9ca0268ddb8d69110fd6032f2dffb9c519be194539123c69122e29ee06e37 |
| SHA512 | 8d44281d770061b63b94f2c96d91b136819e407c03c3bc5887f1032de4c8c7800f14a2e2e50774cf75fcf67ed8b0ea4938f41be81e020cab342143c8ed53f1ab |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_32_off.png
| MD5 | e45f74df67a69284ae8ed875b3a88a06 |
| SHA1 | 6cdbc91535778357e7f8d0d53327b5b8195fed09 |
| SHA256 | 422649440bce77f0368e93e3fbe3972be623b88b01486563b749ccec5701a57a |
| SHA512 | 31d24ca7c86e72a4c99de9bd834b4c9ead8840af8b733b77b752d6b0ef907ba4ca856fc8b3112b0776428f511b9798d81c27a69b30670cf5b8e4c62cd38eae71 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_32.png
| MD5 | 863fcd28886f4b7f640dca69e7147028 |
| SHA1 | 262defbe1444ee757bd288416f48c08d384601c3 |
| SHA256 | 2080c7b405b43c9d669cdb149d9751ce7649585f1e97a757d1c9909d76cb808e |
| SHA512 | 504501f86ac404f6631b8e6ebeb4ea7162d6802dca10f42a679d03d7ddf49905ba9f83340cb0b9e2fdf20cff4b0ec834fcd60b8b68faf7e70f6aa9ea20fbb851 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_16_paused.png
| MD5 | 70949c9021e36b807038c5491ebbf11b |
| SHA1 | 96be78e1e5840c4ae70d0d4b76ab6b1dffd35d50 |
| SHA256 | 16e9e74afebd421776f1a58d2be4e6166e4e8299057c56b36db8203c717e1627 |
| SHA512 | a1c4f84ba2ffdeef022669f28d1c8866da1975908a13e33daa197b841b37cdb814dff47cc476580f5932d20c119b3f294b6378114761c3d20cbc3290a9228811 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_16_off.png
| MD5 | 0769189f4194e12f0314b2a97e9ec5c2 |
| SHA1 | dd33374f0ec1acbda8be2e9a8d332f8b67b6e025 |
| SHA256 | ae1acf4e701116e89527eb4c1fd98ff0860589d00ef0092cdcc936465d73ffcc |
| SHA512 | e698eef62aac58e871b6d5121f33153e60556accbe7fa632a7a412f37c391dfed9a5f64f87ad972641f31f0f084db70ce91b69afdffd12da62deb3646795d3e3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_16.png
| MD5 | 8c4b2ac20e95e00b20a33e7ae83e32ec |
| SHA1 | 7ee28fee7b6027129ba3b078c2facf13a97df4ce |
| SHA256 | f3be19b8428ea3cd9b7611250a8064a4eb067a5a4479c3ee6fd7157208bd6962 |
| SHA512 | aaa49308d5149d5d15f7a93fd5f4e65e36a23a28c23e48e2adf2481d92cb6e4639408d84c5a980245efe58cea052dadd4f66163d2a9e57ec1439091eafc384e0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_128_paused.png
| MD5 | c5c9ccd58afc323933c5619c214eff0a |
| SHA1 | e3751d75a1213205c2740a215f7469a9f8283cc5 |
| SHA256 | 288f308bc2cf450dc633c791fc6b781e552a742ff50331f8d88b82a61fa7b98c |
| SHA512 | c60f717769a7060d1160dfddaceaed5bfa920cea7a15b8d9390337560990f057f006b95063357e3c888ffca03cfd7f61e7f2f761f7a9338b1d28107bae154e40 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_128_off.png
| MD5 | ef8b6289a2b60b3a0b95a889164c02a7 |
| SHA1 | 0d86100c366cc55043075754e0a0eeb0c8b067b5 |
| SHA256 | cc7a3f40ee3c8ba98cf7ad8375ec7f9d5f951f0a3b3d7cada232e793d3cd3bb4 |
| SHA512 | 3b298feec1c8de2e0764e0e30c6a73208ab8a73152a9192ae243435ccace6da19a4bfe64d39cf3cc88c6b8842d501584c3e545799c38d52d37e598a8675a3440 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\toolbar\icon_128.png
| MD5 | 8eedb5b767113927bfb788d7bb7b0cb7 |
| SHA1 | cb1bcb19a09146c1ac62168386338584314431bc |
| SHA256 | a50dbdc3779bab3852929d6c8c63bef7f575efbee81bdf35e7e76d67ecdd038c |
| SHA512 | 0f69f4d837fbaa6d7b413a5f933aaea00d10af0d3c332d239168ad7a7b7900ffc86532ac41f64f33b468d6a78d2101d8deac39475217b15d2f9b892e203140aa |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\extensions_page\icon_64.png
| MD5 | 4d7ea649781fd8c612cfbd0da491c4ef |
| SHA1 | e687980a5e51bdbae20874300f374cfe0743d130 |
| SHA256 | 197089f1ce0680a0d29c728d045636b532dd211aefdf3a6911e472fe43278ab4 |
| SHA512 | 2ae5fa477bc9fb4e24416d26d2303ef447544b4a24b0366a0324365ee6ec70da55750e373145f67f96e8b516843c73edfdc7741123663f8485fb3659b908eb37 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\extensions_page\icon_48.png
| MD5 | 5a133031420678b7f888d0dc18554b4c |
| SHA1 | fe9ef26ae91e76c7ea0baf2b1d3f7236add9131b |
| SHA256 | 8664b5aa30d5557a7c8195a351c6885728bdcd059d9cd6129fe51431047d4488 |
| SHA512 | 840ba69df8ee28d53a74aaf1b92a8c062c48952aaef3b495a5465ca511c346dc686b24cc8d8f11735ea4651b859292cec4c8d93fb21d8f06ac4231bf4b18d1e5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\extensions_page\icon_32.png
| MD5 | e12ca85b97e826d347709e812dfa592a |
| SHA1 | b66d099a9775a8c8065f593b0c286bce90c615fb |
| SHA256 | 5dddecd0958c2f8eaac670431f32a8193631cbf2ec93861618130ac07b5fff7e |
| SHA512 | 3fd198b1364e10a0e9e6f445a62ab2cb4f6ee27bcbbc24d1616b27424ab2595a6b5a15f2c4dee04a353d49c2ca523d9f6ac425d1c5c2dcbf1ecf2983b777db08 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\extensions_page\icon_16.png
| MD5 | 94e729739ff424d4de44ff87f84d4492 |
| SHA1 | 2112bb951c6d8cda2b73d9b2a9f67d8ad44605db |
| SHA256 | 45173f67af90032506c4b2eed3a0d46a1f9cc6a31bd2d804ed4b5f964c44378b |
| SHA512 | 5961bd9d2df10e25eb32afa70361805c3d982e5f5ae3a960de688443fc10deaeb80f20781adf87d989761da4aaffb32307d9b6cb420524d72e74792aaadf9e9e |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\img\common\extensions_page\icon_128.png
| MD5 | 6f353bfc415e901805c6748e0427c15d |
| SHA1 | 7bfb10116fb42d46b7ce8b087002d19cf1eb3615 |
| SHA256 | 8899fabb8f15ddc278db067136f8ecc6f7583b08e06e10ff590d379fc8565354 |
| SHA512 | 11fb9409ca8718d91442390c5bb1cc178dfd9039123fce995635aa5dc8167160dba7d961c2b1f845c330853a0e518330f8f7861de5ace78c5cf848f458b6290b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\css\app.css
| MD5 | 5551e2ef3be5fd9adf599447389e5880 |
| SHA1 | 72a4cfdb919c8022df14dc44f222b56d417aa6a9 |
| SHA256 | d3507d42e1fb12c4513f762d1599191bab5304446de5dffd2f8a802ff034721e |
| SHA512 | f71f7642245f94769c2100b9540cd5be4f7dc80e7f208071fa71405d5fe501fcc6c5c4afc9de39e66c52758e2e19c795412353dc07412941a2f8d3813f91fd19 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\background.html
| MD5 | e77b5973274a700db856a649c24baccf |
| SHA1 | f113d9988778bef55e2b78e247a30423dd6e2451 |
| SHA256 | 7f8c53c687138a9807b7911890cc186d45664f59b4c8f644561f4ddc59d7393c |
| SHA512 | 4aad265ff8e37d026bb75568503ec780e907d295a910ef8cfb8ed6ab8f51c47b3e044bc3576b1d5055551d55eb03d38cbc521613d8c33bfb3e11b0f617fe64f0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\zh_TW\messages.json
| MD5 | dff7aac6c2369dc370aaa47c2f99d3b3 |
| SHA1 | cdc8e7d712ae2ed0f1cb01be8c3e9182aecad682 |
| SHA256 | 97a1208d7dc54ab112581557ec348977e932b755e467f0a68e5ab52f0cf302a4 |
| SHA512 | fdfaecfe8c79807b1ca3dd7ae758a31668ffa6dc9fff51ff4d49ab8f378719cf8c45584c805d904a03268e375b20f13e76db5a62ffed7374c453741a15d1d287 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\zh_CN\messages.json
| MD5 | 61ab8dbd962b6da3f16f080a65a57e4a |
| SHA1 | c931cf969f1b4b0254b76c6acbe0ca19ff666b11 |
| SHA256 | a4d2d3787c2255afeabc2db94abab36417e72e334a903a69215c172e669a6433 |
| SHA512 | c3e4132c2cf981abd3431e1eafbe36d8a8bcf3421b433263e68f2e2d43ef90dee57e19f86682af3ffb698331d96c4d4303409c6954c47879d1d2bfc4ad66950d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\vi\messages.json
| MD5 | 7e56c43693a8d7657ca3f40f5396f56d |
| SHA1 | 3fbc2219df565301b75ef8d3e45fe96e1e4b273c |
| SHA256 | c1946c6f14ff53483644763d00733f7cdcf1ddd5287a287927c26d495c3761fa |
| SHA512 | 2bbcbbf51d426b14d99368c51bb83f6add404d403d30acf5d2680f28e07b52fc8e0f08dd3f054d3341fe96ce37e3394e9ef5eaac8dc7e13ebb23aba632ad3133 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ur\messages.json
| MD5 | d3e3ede899cd40534ddeae337a43022d |
| SHA1 | ec9fe1b045fe6d7c3c2120cc138c730b1389c02b |
| SHA256 | a5ded924c38bed6d9b09821a7dde4431d04f3f20da4de87277d830f82479fd21 |
| SHA512 | 237aacaf486c10d39ba123125ee181d906d14b45183698796be8f2808c249085b070e9caa347e8076446b73e1ae56c424dbae2e96db601e4aa19427e0f737f84 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\uk\messages.json
| MD5 | 6db1c3b4e5938435e45cc8e90d3baaaa |
| SHA1 | 5689b628c3adf89a4d19c5cd19ab9b6206560640 |
| SHA256 | cba5eefa9faa7347ad98d1afeceae3fc5db42efa4c8408f35496dcf431304533 |
| SHA512 | e300060116fe6fb69f6f62708fee41a6e282f4d4b3c09c4ce9f26516e9c2a4768fd1f5f9470293928ea45a2dba22ac99d71865331a80c2f79d247934914d02a8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\tr\messages.json
| MD5 | 14cb2de66d573768f6ff9cab96c400cd |
| SHA1 | c3eabdc9b778be25210dcdadeca214453957b686 |
| SHA256 | 4ce902abffa76397a8370bd01eac687d301e2ed4d81e00191e66d04d83b2da8d |
| SHA512 | 28edb203eec685e1185d5482bcff76f80f9a0588450cec6b8c5776b8c49a00c905308e55aea6e56e61c4f79f11c71c55c64226d8918ecf69f4085537c6e92cf7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\th\messages.json
| MD5 | 4280b9ce51454aec225d05e59912202f |
| SHA1 | f2853f3668d1663e791acbc6e2b64ca0a4fdced7 |
| SHA256 | f8cd2509caeb97a2d03aabad0066e765ae1b8f9661d5b637a5b62bcce35d2bcd |
| SHA512 | a4460144525049b71f9de264caafbb05c41dad7c97173d2b19e00aa90335d45d1ca5de1063478025c158fbd7383cf71091deca8f3eabb1c0aa40856fb4df1ef8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\sv\messages.json
| MD5 | a5b18ab5d81a8b455585f164690044a2 |
| SHA1 | e9ad69a6fd8f2c3549192e7334304e0fc7534f71 |
| SHA256 | 3a5bb1a65cd59348b7f08e51df5ecabc0b90dda55e1fba9a8a7a22289a0f8dd2 |
| SHA512 | c8ad7bebef69177b98127608adccaddc2fabf6994fae10f0411fdbc13b0e030d0d04dc988d978d232138ce008699cfdae13f215574b2c7ce61f8b7a4af5e3f32 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\sr\messages.json
| MD5 | 20c999b9a9b74b3469222ff08f75c3ea |
| SHA1 | 9b335722addbef9c7e2c1ba7cc25d63e776a5cf0 |
| SHA256 | 07a3af371cd2f03d3e900820dae661a1dafa0622b1ec4275a3a89a4e373cd627 |
| SHA512 | 80e6990799b432d474cb781145810ad9954092e334c03f1e5aea881fad50f039868106910067d01c84d45254050c47f7d7e8a4508c48151f0960678954d78ae3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\sl\messages.json
| MD5 | a6d4fe43eb63bfe30122108a9576f31b |
| SHA1 | d1adba5b437652da1573d61105d4b3029f15b9cd |
| SHA256 | ace6ce075ef716b0d8c963c55b28b9d033bca05c62e667f0e99620affe7c1304 |
| SHA512 | c02203ad3cc82607e204e715f816425101a9999a1cfe93a8cb8a6a2ce6ba0aee6f8528768febb0c954a16610e9484a9e1f1901d7bc667072068358940c8db528 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\sk\messages.json
| MD5 | 2a430d827ec839a1786efb246693d5e6 |
| SHA1 | bf2617519899ab91e31ef331196b4ad2f96c0be8 |
| SHA256 | 4ca48885d3d1c0e426774e4de941e041c531291253e6f97ec53f9fb3b057c866 |
| SHA512 | e5088a0fe2e4924bcc681ce2929862eb30b3b44165eb388128fac3ad790a89063dc433ea095914846d8ed5acb6f523aa80936884a5bc5611efae705cf8607f71 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ru\messages.json
| MD5 | bbcdfa5b9387e8b6b80c4f4d30a89d1a |
| SHA1 | bcd706291baf0bbbbb9055474afe335f6a2c4c5b |
| SHA256 | bac067e2e7ac645444397f7f814ce8fadc5d529e5fc808ef178ea505d3281334 |
| SHA512 | eb93d89995380d28cd57ff65f41023255adf2527ee14b30e155337a7bd518f17d4555bf6b3724085d67a3845bff78d08c1d34ca26797e053c9ec98c36f6ec9dd |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ro\messages.json
| MD5 | 178c7ed90c03f20f19c71e9b5705f3b9 |
| SHA1 | 470896ee040a674614bb6e4cc0062d4111f42eb3 |
| SHA256 | 311db1d0381c412c13d92f5337bde5345e4716d0e43bb3e80d7d688c9aebd5f9 |
| SHA512 | c98fc7e6bd862a5b69260f8d3d4c825f0ca0828b63d644857e5ca7ed68336c82695ff8b49198e53a609f55d7731bbbfb39b3af28926a719f8af9deddbd755508 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\pt_PT\messages.json
| MD5 | 99a9a28a0b5665a1a8e3fa8b85076cf0 |
| SHA1 | fb644e756930c3216c9effd585236e87f690583c |
| SHA256 | 518747e12bec5a7a554b7deabefbf510beda3a96cd04427e123e85c123eedf52 |
| SHA512 | cea778cf5b844aa800676c5e47a91367827abef833519512c402d87c52471020558535aca2983844f6ed4d033abf6011755d424ab921b4592cf82ed95ee17ca8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\pt_BR\messages.json
| MD5 | f2103f500d00f5fde8db4955abb58f3b |
| SHA1 | 5854297898c2419ab8494673d38da1e776cc6c11 |
| SHA256 | 2c41f5777cd7c2655047d9e44f75e87a9ce841d43a3a7b51abf995d263b79682 |
| SHA512 | 05fcd0621d38f90823d055161dec53b149265fd9d06b6d17619e098dd5465252c9fddb52ddd77295d27f88f87a2e314e444bd8be857fbff7789f9d68192225e8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\pl\messages.json
| MD5 | 2384beddf9cefeb6b74c8194b85aa64f |
| SHA1 | 1dfe0ef3bbed37db403e7dfcd26ce5ebaa3d50b6 |
| SHA256 | 5db5dc96d4c219ddd62c048f990481c9d2fe7d1e05a5355aae3f59c1f6cc8bd0 |
| SHA512 | b9868ba844e080feadd0457c8d2c278a01a244aaa3012b710966acab5bbace7d60975a3f8e552cebe7782df2eeb89dcb4eff4dd3788a3685699df4532d4867f1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\nl\messages.json
| MD5 | d14bf464a408d844a4078c8c94eeb101 |
| SHA1 | d070b860bdf4a4fb7a9c40336f01d356bca3bb1a |
| SHA256 | 268db7247b53f3646f80ec609f02b371cc9258fe8e262c7665c59fd90f69cd83 |
| SHA512 | 740f107d123ecee56185eaac63fcc1be84c7c771725b2b499113efde034ad696c0c8ed528a38f256a3c160806b3047de7e60bc4f0f99327d4298da368fafdbe3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\nb\messages.json
| MD5 | dae032b502afffbbcd36ebcae55b7d45 |
| SHA1 | 5eb9a2113fd3c1b68b68c42d94050ff29fc6fdc3 |
| SHA256 | e0cd094bd5f3aaf84855e318f103f67c880d43e88b7d83a9bcb0a8169d48e4ad |
| SHA512 | ac43c3fc8479a5195f0cf785e096f7da933eeef448d31a4d1a572159195e1e5ed428438f38e19fd5b6eb99a9ff377f1f1c9be62a5a3799a30e089bb9ac88a0b8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ms\messages.json
| MD5 | 604320e154e4e6c571e0b4e2d1620856 |
| SHA1 | a7090dd860a4c256a34bec7d16f17a982d65f5db |
| SHA256 | 2ed159fd59fb3e847b59f02bf7f564ba198852392e03b718826ef13576fd2d79 |
| SHA512 | c61a3c469fa2e36575923cf919341c840149010956f74ba24454584b36514d5f0d2ea35e991bbc363b8c285686d5e6920a3a3041a5c9abd93a6adaf30e652cd3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\lv\messages.json
| MD5 | c560f29de746bc4d180288699afc5261 |
| SHA1 | 827a6b7f4795cd7d6d97ef06157831d24c787c5c |
| SHA256 | 0a8e0b35738b25c8f703535e9a346997c9018be665f2bab3a5188929be0443cd |
| SHA512 | 994fd4a885ca66fad54d247d33c2b4c4e6f053c9d1fa8d4adfa60300b768bdfc0b1872492ab25a28a7ce3a76c21b58b0a8f049295a34e6a8363bc4efa5cb7dbf |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\lt\messages.json
| MD5 | 1bf3e47117852de7becb596a35e52840 |
| SHA1 | 3f1d5f0da70c5f201c1f635e38358e1433edbf05 |
| SHA256 | 2e9a6baae1c42603ac2b2be6ac4d700cfe2fcb0d6ab7da69e28b8574ba5aa6c8 |
| SHA512 | 3fae121200137a1083fa2b939d75a80c5b1fb42e3dd8c2d312ae70d97fc9d17d4b6c7aa589600f3167bbba1215d15235eaab65b12037fc2a49d53787dbe4ee63 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ko\messages.json
| MD5 | af36e3adb0f63a6c4fdf6b5f2af1e94e |
| SHA1 | b60c40e8794ea88eb3a84894d1c084ac4becbe47 |
| SHA256 | ae4a6aa408b41ef1f5938190d6210b08ac844fab0f6a74b5d6d44f6ec202af06 |
| SHA512 | 0b0cc1d2f242a1a5e535831dc5e51420ce23e7096d6a36cc15f9592374b58ea4c2ffe2a98428ea0f76b50c177b913c3a2d9bd229a9d328f1f191b90f7752a2a1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ja\messages.json
| MD5 | 8eb4d9be37b492c63a0b090b5e2fbb62 |
| SHA1 | 176bd8bb7db544f310679c8db575a5559b135945 |
| SHA256 | 21e61a02ca0f8e4769343fc8b0fe9bfaa864da087b8a06464ea88463469b9fee |
| SHA512 | 5d0daa0f241ba21ef3c99fbf5857b271893aa22adc8bc445362f82c33a394fcd3efbdeb63e84e457039d401ab440c7bcb0a57857eadd4d1a03c69ae9fbc43995 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\it\messages.json
| MD5 | b446075f5bcb7e584206ad9f27891fff |
| SHA1 | c680f72341547f56afca4430e476b5a85c69a182 |
| SHA256 | 7857568ca469f49a68beda8d7ef100d3d95091d5fff05e3d2b43e1c4c9fdfc06 |
| SHA512 | fac1ac769b7c190f55e6a8563875c236071cbbfda981bd6ef71fcfb64c7cc4e84db8b3ebf8b41a6dc5a38b83679444120b8d559c879f7beb1c6c137300a177f2 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\id\messages.json
| MD5 | 03feaccbd0b71609899ac2f6a9dd95c4 |
| SHA1 | 67c6ba4031259c611dccfca779e5c0b8fcf6d66b |
| SHA256 | 8285c9db88e40419224f8b8f0093a0b98a9251b3a8162b251f6b393065021e5d |
| SHA512 | 89945a6df189b7ee82c6aff6eb8d8c627a4ed6c98920bdbd89f326053d7f12d85b0804a6c4c4e09d275837b1bb40b014a788621efc9d5f3738d7371f7c5ec11d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\hu\messages.json
| MD5 | 36fd009ed08b2e84ea92e595788d195b |
| SHA1 | 24b040431a6e054744cd921eeab083a0279bf60c |
| SHA256 | 5943cc216e37f2482d9a7bc524012d43df231364f75913ecbabae25710c0fcfd |
| SHA512 | e50da64338808c0fc607cb039ec725c93b7b51b450a932130256af3161fd9b5a985e41f124f76586741b84adb558ac35027dd265528d49d420f55e645d0668cf |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\hr\messages.json
| MD5 | f0638d1835e23b63c8581d03dfe01117 |
| SHA1 | 3f9c3b05be78526c5671a75eec3e31d3b6fbedd5 |
| SHA256 | 3cc3467a403b776c954112a7aad8bef07922ce2ea8f933c44a9214fde5939958 |
| SHA512 | 09f6884005ea485c1207462f3169b08e4761f34bf1d870e08b82ab6186b874812e210bdd9cd448b5050d6a90a3e288b3782e1fc488d3b5afccdac4db00f64a80 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\hi\messages.json
| MD5 | f2aca748a99d5a2ef6b6a3cc4a077ee6 |
| SHA1 | cb3a46500431796c69a9432a8acc022e06f8938a |
| SHA256 | 78e14410a9d03388c5ff486b6cf5d8ddb02d0e76c5115ff28366522ed880d5b2 |
| SHA512 | c0dc8780824ce66fd705d299aa6d864f37abcaa50ab9e5dee3cdcee7cdeb1192941e1befd31528aa8823119d3ebb174e2fc5a41c43f145580fc0fd53b4becdcd |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\he\messages.json
| MD5 | 25e1459e54ff339d78a89e7380726de6 |
| SHA1 | e8db6a0ffd2e59652d94fa80e01f0f644dd11895 |
| SHA256 | 51b4795f15a0aa4d4b3406c11351dbc8554c6e06fe3290d71d68af2c40f2768d |
| SHA512 | d3ac86e599080cd58300cdcbf7fd9e7044b9b90f514e432869350ad47af671858c7ee9b61f8007222ea29f60048519c92fa8681e8af324a695f85891bbea3098 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\fr\messages.json
| MD5 | e58a3488583b6f86e7743718f520d743 |
| SHA1 | bd3df6b4ed7a40c5e1b74313998440ad9f4c0033 |
| SHA256 | 6dda27dce77ca995b7111e23f41a7352cbed3d6374cbf1c1ec05c2192cf2fd3b |
| SHA512 | 4a1d62a1670c98c0554b4cacf10ea3fa17a5dbd2e78d748a21c0fd52d2b137df03775e7fee4585974ee3a022c2da0f5d0ff2954c1a0d5ac1e08d2140ff7a1a90 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\fi\messages.json
| MD5 | 19a72da82e07a19f52f6186afc084723 |
| SHA1 | fed5d943b7df36fe9c92a4b876f9ec03e990573b |
| SHA256 | f18e7993d30c8c57549c607d361748492d5f05f018a248685cc97e5dff9f267f |
| SHA512 | 8cf6facb3318133d6a06c2e77051ff6e8657fcbfcdc3f08349b9fcc4c154fa37128f998ec2765e2f59daa91286d786f586fa0b3e65fb4b7155909c7e5c72b0f3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\fa\messages.json
| MD5 | 475b6f3881ae62e195aa0698de10dcb1 |
| SHA1 | f177e9cbd97fd717c28f5ea6ec19ec4446c947da |
| SHA256 | f8344512c8e412eee939b1af58e8de07a8b1d43c696426339f79f6004c0d70d4 |
| SHA512 | d5df319f0a634fd043a06084470346f43e1ff262ebf1586ba75bac1c81e11372ba3b91c8800e1840c95b7141489d3729bad723c2b561a3e461cbb512f0c68d79 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\et\messages.json
| MD5 | 8139cbfd87e33568537e3914b4d2962f |
| SHA1 | ccb90ec9e3a3295f89b26cff3eff00d479d0d133 |
| SHA256 | 5c83d5d3f58ab3b79278912d16bd83303d21ff3135f455c1461fbbc71ada1854 |
| SHA512 | 6db29541032efe2552247e0a37357774ae648b6f5072bd2ad9e3804516bcb704232675df385c1c915d0780c5208282a56564c3f0292b3ceda951125e78f0fd82 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\es\messages.json
| MD5 | ff1745fb4069cb8509293c143e0859d3 |
| SHA1 | ee7719465094059ac5c6541480f5455095db7940 |
| SHA256 | 5e10ca0981d3df4362ffc8ee8d1ec994ef2f77837d72921438a465a802741224 |
| SHA512 | c3b4c8c21899a240f9f14b89f790b7f29048017114c9be5c0ddda8cae00cd5f5305531598976c3be33b877b7f7e12f90fe0bb73b960fe8437d0c0e6f912a048b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\el\messages.json
| MD5 | 61f5181bb7c1eb1ae27596e72a036223 |
| SHA1 | 52686268d5b660553c65be04f200547c583059a4 |
| SHA256 | ed82be15a0c4998ac449735b401540bf8584a4f3cb1d22a72c212e6bb4809286 |
| SHA512 | 0c470401dd7fb661ce489c54872703fef3ab1b01738ecc76bae9081d08fc9a8fbc55bda4c4244b85ab84d4a86518137e69a2361c3a94240e3129fe46bcdd58f1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\de\messages.json
| MD5 | 9fa83219f81610984db871e107efeb61 |
| SHA1 | 8d74a55337d18e0a168afd4aa558e6fcd14ca751 |
| SHA256 | b0a16d127b6c676a1246a49066c82578da2453aeb7cf64dc17f51a45cf172a7a |
| SHA512 | e0df03e320c3be49c28a55f6695880ab634ef1fc2986265877877beae1daf899ed7f1a5e9d3cff8ca7fb976d8c20d77c9e6c0fe14e470fbf6bcc76e6fdeb5035 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\da\messages.json
| MD5 | a5b1ac58490654469ca10f205d36d6d4 |
| SHA1 | 17b2eacf01b18270c682c45bcc8f5f4dcf8c8bf8 |
| SHA256 | c709fbc0f93bd19690a772ceddfe18b797ba0b8325c2f3443cd9ec9322cef682 |
| SHA512 | 4c6cbc0aef050962bb600c719fde74d15b3e6cb83d96fa2d92ed98669df7ca278a9a93f591b47aea57628fee691e885c8e9e71429ee8b3e5b000ce436a02f4ee |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\cs\messages.json
| MD5 | 728e0805d53c78f377e26af11cdf8c77 |
| SHA1 | 31f1653fd38b737a300f527a23a69db675154c23 |
| SHA256 | e65ffe37b59dbb1f900138daa0d2564769dbb61604cc1b5d439db38b21a00569 |
| SHA512 | 7ea2b8864f7299f8c38b6adfaa33e93bb15d746d97408f2378fbc9024299a3b95763f44185d27110027b4364e9d0fca593d47d783f5b16c98636cf39e09b4c8f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ca\messages.json
| MD5 | 40aa326c413101583f94fb70b3fb48ea |
| SHA1 | 45710a74e0f8fe50ff3a9613c506000d12128021 |
| SHA256 | 9d91105b9caa8357e97019b8863baef095450cf9bf09dbe9dc66bf3097d34bd9 |
| SHA512 | d1afe54c6adaca1f3f4e5ba8216327657d4e63a55c4ac4512113b91efb78af454cb8e991df2bbdb07f3781d915b56c294af5969d2699acc2d8cc44e369cf0f33 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\bn\messages.json
| MD5 | 716032e2d00772c2649ffa87f3aa3ea1 |
| SHA1 | ad3ad641292bcad54e88d31903b8290bc5bb8b38 |
| SHA256 | a6f6a6b5c4766d44bc911010906d9c725f2424db8a44583e7cfdba1c18f7e4f5 |
| SHA512 | c0b32a247e1cc72713dc83e6afeddc9521d3a2fc2537755139687efe535b4384c9a3874c2c52972f50e7b52571f873a35781fb0add92036c2cad077b0de5ed8e |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\bg\messages.json
| MD5 | 016d8f12ba72a575e6f72190cef95a36 |
| SHA1 | 41bf0fb4cf2391963d756f09a2fe10c2eba86706 |
| SHA256 | 9c8fc1275db7686234c012fd52f66ecd82f465066280bf9b104fa685de2ba39e |
| SHA512 | e834e42c8155d8aa9a074cac9ef57c42b7498f209d2a2da2552a8291c4b9c46ea8809402131e326815dae6facb0bbedb62c018d48933f7c24c8ee240262681f1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\be\messages.json
| MD5 | 9699d91659fb6f3bb8cd28e49c3cd437 |
| SHA1 | 3250e58f0359c1b08ceff548a6fd0c4974e97774 |
| SHA256 | d75e19a17f0a1bc3e2e04d95ce9c642dfbabb53a96d97e93370de5796e3adb5c |
| SHA512 | a343ba71e2813f59a21fe776b84d39f9fc58446fdf51cd697a6529397fd0661a8f69a399d2a8d351656af2276d338311b04fe4ded2fe48a7a504afbf6b0b4b2a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_locales\ar\messages.json
| MD5 | bb7da78e2baadd645581eac61d1f08a5 |
| SHA1 | a7b0fb3e6b61d67a6d8f05859783c90ce128984b |
| SHA256 | 5efa3a780f484c8f277389e3e66ddf308ea9c6b7ea3d172922dc24b092f802cf |
| SHA512 | fdb2f2388554329a16ae9df2eeae3e9cca1a9b939835033c48b4b0ab0692f45d228d8b74f6510d525aedc814d2bf97ecc685218d82cfb922b4d3704f3c7c49d2 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\_metadata\verified_contents.json
| MD5 | 8812b25c089f19967e2fb3bf69f61bbd |
| SHA1 | f71bc3691f99e3c89831c5902f3bc14f67b85127 |
| SHA256 | a4211fa0704d1a9bf664d7cf309d8aadd2374f212fda1b21fb09118aa0eb2afc |
| SHA512 | 67f509e96fbc6eeb17c452603ec69838f988905522816458e1848d604b118b755fe427001a222244fa108b22717c506d29e69ca804451f7f8c0c237e83b7e6ee |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\onochehmbbbmkaffnheflmfpfjgppblm\5.0.555_0\js\background.bundle.js
| MD5 | 05ed183c17d89384a512f93c9c204747 |
| SHA1 | 85ecf2e55ca4ea86b12db86b8a419e1bff4ab78c |
| SHA256 | 0419ccf87645934744afb4c783236ee31c08474107f2c6e385e2c811ee0ac330 |
| SHA512 | 6cf98f9539ec2337ad37f19cb8a6d7b1ec2e11379e61d0e722342ca962adaa820c5b76c0838a0a60dae1f0813c5ef310cb79043470de864b821fec6525e0aaee |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\el\messages.json
| MD5 | 733355703a4cb0245dce5b4742f5f3b6 |
| SHA1 | d118313662146f21c0dcc06cf60e566d163eb3c8 |
| SHA256 | 08c7e9c974fc47c6bff5b224b86b31434a9e77389e7a44b8975862932325ddfd |
| SHA512 | 014183da8df91e3a1f4a959a5052bec53058da50638063fd12bd4a98cf245515966604082e3b83dcc632cdf232b66adbbe584190a1e4c3d92293ccf47aeecba5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\en\messages.json
| MD5 | d2b4e5065db794c7e4111d37655bf9b2 |
| SHA1 | 8cb165a7abaaad1c4d8b8c5da5a83341b3b95edf |
| SHA256 | 9ead70fec4077da4a68262a13a83b5de1dc12f8de0ff1306dd87ed2f3d072f5b |
| SHA512 | b81662a2ad76b2bc304347db546d3f59587100cd258345a0b8824ab6300529a014d01a7dfc81d7b8632a3c0d3f6f21dc8da6e6233aae96439e3aa59e175708e9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\es\messages.json
| MD5 | 6f0a8266512481f08b160ad6ca458b2f |
| SHA1 | 1541e87179be73360f8d444fd91d16ddf8446109 |
| SHA256 | 0b7dc5a5fe90478abea810d49e31bfec3bd159cec3319aa3c80a8850cd272997 |
| SHA512 | 07e07809504d5a40a2cb348d8438c23bc0ea2e9a00d0cd6a1ff7772c6df0ad161ecca8afa8d7223c9317cb09054f9ea750d3c5c4fd5225a5b3a0816a45478645 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\et\messages.json
| MD5 | e367d0e395ac78f5370e09abb2111f53 |
| SHA1 | 22a04612a951059cd40687ade4a901ee3707209b |
| SHA256 | ca948dfcafb628d041f3b0b4ef793a121487ee4d4af7e615b5bb3e8491a27529 |
| SHA512 | 20f74ae01b93fc200f9748edd2a1a6a9512f69b7ecd5deb04459ed44b167f7d155ef6cf12cd1cad62a5d64f4db608a1665e0f41a2b58da898d164d057dd9a4bf |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\fa\messages.json
| MD5 | 0bceda53be9dc3d7d3c288071fb3b5ce |
| SHA1 | 936ef2323396608a301046dbda8fddfa9689c4b4 |
| SHA256 | 8a27d00cb8d5ed28c4eeb309e5ac2e7b01541aaee1868e70125e7fa98bf4572e |
| SHA512 | f1b12cbe627d38ea508c037b56da10960216bfb86d88e9948927bb2df0445f3291564aaf0ea608bd0a7374d5f7f515de2897a7b582905b1074379a5875c10a12 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\fi\messages.json
| MD5 | 81a8514ea6a782d26bc03b2d80df8bea |
| SHA1 | 4809b50786a1d0e719bb649896e124857b63f358 |
| SHA256 | d2fe6c8f2d8753081939accb66acf917b68c77ad0d5dddceb5dc5f0cabc76758 |
| SHA512 | 75ecedfe66b65735fcf462d126f56564f2ba2d02ae42a34664c720e23618026dee767288752d8209fd3c891816bb78f8ae052886e39cee3a23f1b0833e6467a5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\fr\messages.json
| MD5 | 9494d9698aede6de0fa9b9540a98596d |
| SHA1 | 121679a65cc9c7f4e11688621fe04a5ca39d26bc |
| SHA256 | 42691dbcc902802687bee5c2236833c6fd55223f9544eb94f9af6d86f904bba4 |
| SHA512 | bd96d8b31c559b6762fbbd22712e78412d6b2642a8210a6087f972c5aadd29dff897cf72788cbad2d659268003f880c7634d2a30e858195ed3afd438c524da74 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\he\messages.json
| MD5 | 5782e09ffe4894382cfd7fdeceda087a |
| SHA1 | d40b0ccc42f717fcee57c1ab22f18c15a048c0be |
| SHA256 | 07e91838c85fa69fa4dc4de3774a8e9ea5308eb14420f2048856853885e01fa1 |
| SHA512 | 55c5ed583b8286a57e0ad96736df68b65ef02b24378e1bdd0207a0df2e931e5ebd3f753da2acf22a9328f3af544d1b766426475b90f35b9b0c556364e0d31348 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\hi\messages.json
| MD5 | f36e5a6572a45b4fe7c4beb22afbc37b |
| SHA1 | cf06aa6acaca4580b6ab89a246cbc009caa9dcd1 |
| SHA256 | 7fec45e9a1bd1edf85076204d3d21ca5b49860011ead4e2772ace770d1d7b89e |
| SHA512 | 46b0e7c1caae15dd166d743558ba7b7638b923072849d85fce6812091532270012308149e9df2efe51152243b04174537e3a4abae70300339cbc6e1b42221661 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\hr\messages.json
| MD5 | 6e9b554fd3dd97ba0b236257ae1d94f2 |
| SHA1 | 9b59c7f63f6bfcf60bbfbe13ffcb0ad65e0aa040 |
| SHA256 | 50e41fb56588449e0a4826cc956de9024a4d2c36f72ced93d4ca7749c48de224 |
| SHA512 | 1794a2dc7ba1cc603f5cdbc0d2442e6b4aff7174fdfa0417cc341211d221656035d4d89884838d98bee64995ce681f59308a2a505a6f6066861359b13f690b58 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\hu\messages.json
| MD5 | c416cc27877f5eef4b3cae6027a786dc |
| SHA1 | 77facf212fc8618f8ae5ba3f5665b17b18de410d |
| SHA256 | bbc64d22a4df8a19f218cb1be2660eb8682ba018ad8d08233dacd4f96a5cf164 |
| SHA512 | 7184abd6302198dd22f9edab57b584d1e6ade09bfb77e72222136b1e9db110275a0cfed9b053020eb0fb57b53c3079f0f8daa075c6074626ce02586be516e2a6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\id\messages.json
| MD5 | ab39396c647727d48a181d532a1cfe44 |
| SHA1 | 1ac9b86f5833aca0c36a2d050ef27fb984ce91af |
| SHA256 | c0bbf7c9106babca931eae32d6744b81538c44790034ead8b093ffbe047e72ec |
| SHA512 | a322623ecc8a8d2619f56d35f195482c0b7ea0c65b549c300776f64b966b8b2866d7c04c1c89d1ecb60a11a8dfe19bb52a7de992e6c6c6a6e1e5fad4abefd329 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\it\messages.json
| MD5 | c3e793a100ec6f02d97012efebad67ea |
| SHA1 | 950548795b7548c279b583d04c91ae2f747d723c |
| SHA256 | ca194de2fe4766f60f2782bf67e2b4ae459bdf160df6d8a790df87d0473adb07 |
| SHA512 | 23b7b573d7c7b1fde574349d64f2a9a09e9965595a1c58b18960a91dbe450f6a9b9fd9efc065ad089ec6af779919292f356e13269de7322fdcf666fc8b68ef27 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ja\messages.json
| MD5 | ed0f1d2e908910a9aa7d54aa8790ccce |
| SHA1 | efe1ffe2c764527a94305df0ad6b19d31cf44f0a |
| SHA256 | 14fe11e37f71cc6a5361f73fbc778a9e2ef478597ac98d00844b109e28c9089c |
| SHA512 | 6d82bd5eb71535dd352ef937be077ed23291ec9c280051684d69e64bcbca6839d594780994bc8d7345fd5e25939a56c43ca73ecf3875a05bf739d5094afd33a1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ko\messages.json
| MD5 | ff9d6cb29b03a646b39f7462d763bf3e |
| SHA1 | 375e9d2a99b61b00ccde5701b366e5b43d37e3b2 |
| SHA256 | bfcbd319c5f067bc1adb0b727457a71f5c3652a5fd17d6324e2fa4ecb0162b44 |
| SHA512 | 9de611048b3be4f0134ec95932ae319bc2e5aa2459f659b18fd5dd51efeed72ca9e2a8ebee5e3070d825bdc954e255efc86dc89cb369db8d27c6c579565f21c6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\lt\messages.json
| MD5 | 017e4e0d7b216c11d9d08a3bb1c451f8 |
| SHA1 | 4f985c0ae3f83a3b0cab69c25e36f4e0d4b53843 |
| SHA256 | c969f733039593e784c79ecc3c98a81e93dd7f150981484cee6473cb762c2288 |
| SHA512 | e2079b6e93e6dffd89aa546704dca4fe57a44eef10c468113bc0de9eddc7cd01b4890088c3a047e3779749a457172869c7e46b457f873467ce42878540a42408 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\lv\messages.json
| MD5 | c461210612573945cd1c8cff8e7875f1 |
| SHA1 | cc30025e3596d727f1bb73aabd63aafb40ffb266 |
| SHA256 | 1a8fcff4cde88ecd9cc051554cf64ff4513a342e4f18920e84f85efdeb02df0e |
| SHA512 | 25270d8861392b75da08edb5820f6ec98f4f5a864c9ec7037344fd73456860a1aa91eda4e1a9a17643b823f587bcf7ed5e9b2772c8b8592865ee58fca2e77022 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ms\messages.json
| MD5 | ac49fb4f023b877fb54618bfae47a8ce |
| SHA1 | 6c6a7f6bb2273ec447ddfb764145e5fe0d9d4445 |
| SHA256 | dc19cbe051aae9bf2ef9ca93f33229e5a71292cdd1485a0faac2c3a65d24314c |
| SHA512 | b676899ec1c036bc6c6273f572e0e4b81d6a59d19351f0bf5c8863bb6fae806c09571c485d51071dee9e38fa2f15322e5ea592e342672c0e32ae8c351e371c3b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\nb\messages.json
| MD5 | 219ee0f71414da492d5bf3fd5c601097 |
| SHA1 | a7069cd91ce373c36b999c4e18226d11e332ab06 |
| SHA256 | a5bc72c4309fc1a871d9bf1191e40abb971be177341528559a8bc69e0e442477 |
| SHA512 | 7a8136ff3ca79a1e42b623bbc558421c7678e84242aaabb9207566742e0a52b14e13ed851409a60ed6aece43736abc25148dede36c363352860d02fafe137fae |
C:\ProgramData\McAfee\WebAdvisor\ServiceHost.exe\log_00200057003F001D0006.txt
| MD5 | c4aab0ea676d9861da89d4181aba5941 |
| SHA1 | d8c48934060105b3d390808b5d5882426bcaf238 |
| SHA256 | fc71109977bfbbb93c880d12e9fca08b7f3352994ced02092cb4c55e28fb043c |
| SHA512 | bdf83e3112844797cd12782833917af6f19e060a80f9e8ea94a9c1d13eca7f26518ffa223b8c6e6174b7cb5807df3466e11363e7d554c867bb7d4ba56474e78b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\pl\messages.json
| MD5 | 158a12127cdcf6ac63c54d2c0295dd3a |
| SHA1 | 5f84e8992870574e192590c206ca3e62b6ddfb3e |
| SHA256 | 5a9675da28980746a4e924a0f9339451510d8aa4b0e0362b9fb88b9961f945b1 |
| SHA512 | 6a6f750174c1182c00e79e9bb114314735b87e525bf283e5ac91229efe8f725fce59a75d5505d349865f5b85cca80f7e3fe4db7874519d2cf34eff897af25478 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\pt_BR\messages.json
| MD5 | 71670482a3701b4265962d05da6680f3 |
| SHA1 | 7f028a249e4b0b5297283c362cceeff249fb205b |
| SHA256 | faf9b90a1ea7823f5aff592acb25d771fb8a68047718e74fe8fce84a3ffaad0d |
| SHA512 | d4f5ae4d041130ebe8f4a9feac39ee7389403f4934d2f97d67c2acaf5fcfcc5d7e952cfec1e91b4209da1a9e6f2feecb33f1307c5d14566677d2d6b819848557 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\pt_PT\messages.json
| MD5 | af83d6722e16dc637cd7e13c4d3e1214 |
| SHA1 | c6ffc96acc617141cee7035410bba71712d64134 |
| SHA256 | 4b346028535538f773bdd66db426462783b87523b6dd2e6ea3a28c3659019479 |
| SHA512 | 05deaa2ef3a807c41fc2c7c721224168350776ee9a47dfef4ed3ecd57c372cbcdc0805cbc41ac8e7d11b19555b6d44ef9d2cf0f39c4c62d1c8a98cad985e8582 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ro\messages.json
| MD5 | 70fed989e19a3374211dd0b01b90d757 |
| SHA1 | f9573c7c8dfadc49e1311a00b191c3e1bf4c2192 |
| SHA256 | a5ee43eb70d61b38d6ac6582165a49b74b422f54ead65404efc50fd59a5e1794 |
| SHA512 | 9d87207a270d8c725c11b77f9069122a27864ab742e4f29f20bda8582820d163ad604f7dd579ba753b51aaed1dc924076f34f39a7e2f062c9f09da5245517247 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ru\messages.json
| MD5 | ceb60f351fa09acdc062703c9950e9bb |
| SHA1 | 1ca482a8b4f76118e3aa305a7c49cec8b718708b |
| SHA256 | b57993804d7117099fa592cf80bad56eb75dbe6b31d081819fd56e457c14aeec |
| SHA512 | 426bf1214bda7538e36234303cf1c9de8a47c478ba857f67a8615a643ee25b535f399826abe97b224138e6bf813179d37b68233f26d6b8df57f43100b93d7e99 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\sk\messages.json
| MD5 | 3118dc29e32fd133b0d4450a0ceccd20 |
| SHA1 | c272ed1a0c85bac80e23ed01b3b11df7cf9f5f49 |
| SHA256 | 0f71ab1c64fba29209f7d076a5f669d67d5f90552ee6a9102bc258ed5dbee247 |
| SHA512 | ac95ea6cfc26f15c91d1c0b169b35efc801a2f35262df22ee67e9cce58f34bd229b078974f9dfe2b44ac3b99305c190e56eedf599e869556df69be9e2286aa59 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\sl\messages.json
| MD5 | ff966a59ad3153b99bc849a323ff231a |
| SHA1 | 16dd235679f928aca56d459b9eca5c0cf7246b3b |
| SHA256 | 5678a52bf16d0d293bc5767c6bc4619fcaadb9f450439d1de493801d92a9085d |
| SHA512 | c67b8fdd71db34042b6f6f89eaaf36c86f0d56fc769cf72d6ade2d77903b442f14f64a7f2d597c540eb7588b7d8d0f5e487f973c8c309429ea2a684d6d68a8d4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\sr\messages.json
| MD5 | 12d89b2e6956ae06055ca6d414fd7a74 |
| SHA1 | 79183a31543d03cfccc36aef770db7f135459525 |
| SHA256 | b5935aa9cd43d3ef473f14aea11f6e91c74ca6b927368289a645e3ae1b79d220 |
| SHA512 | 21182e97c2083c918ff58cff1b37d848797775f33e8c327d51cb70e11bac41d8ae06b3714e40945b15372e4b6b02317261bbc7633157c103087712df03769d3c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\sv\messages.json
| MD5 | e6c27f6b060e0f8a80147427409e77d4 |
| SHA1 | cc29736cb661c6b540626b8b1998df75213c4cfb |
| SHA256 | facb4d67b73256b205cfb89bea78bc74fefd552e478a6f3628da2e22444aeac8 |
| SHA512 | 6eeda3ca522841bfa4b510d13862447ce4c8cb84cfcfd088db7aaa101402201a1417987d10d54a98d2a7b20424b4277581a0cf5474b46e461413339f53ea293b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\th\messages.json
| MD5 | 67601cd224b73c20d27c33efa724dfde |
| SHA1 | 263015b70bb7863ab6bef906a163c1c4acee58c1 |
| SHA256 | f2d8967be74267b6641bad32d2a9827dfc72eeb0789286a5e1bf64890381616c |
| SHA512 | c7af8bcee94e3ead543d6daa600e52c16b97db828d20105af96e4fbbcf31584b43dc15ac7216d0ceca872a0b1af7b03be7162ee0f8510906f57a6f1abbf240a0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\tr\messages.json
| MD5 | 8170f95b7a439bf8fa84e2ade0c3a3f0 |
| SHA1 | 146506fd88255177921aeeea0499cd2524603310 |
| SHA256 | 7057daec584024d95fd0b7d166f9783e60b332aa8cf253d1be5f8b5b82dc64a8 |
| SHA512 | d3a1de7326363b89064eea5d9a6a1c446fb27fe245354762368b8415e4a1c8391ffa1822f8dbb94dd512e993c177918f50b89ed8b98965cc937540b9a14a7546 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\uk\messages.json
| MD5 | 5158b5154b0deeab4f85fce94b809af9 |
| SHA1 | 14ca2eda384b162866fec11dee54731b91e3140c |
| SHA256 | 34539fef9cc373f041173d60e9f87ae5835b0f3d57f2d010b44381a490d9b3bf |
| SHA512 | f486faf5c4c5c11e61cd5eda8a8cec4b5d6641d5185bf76835b7188e99794d149b214888c1859051ecfb2fcef4a04a79bf80b725e46c592977ab005fcf19d89f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\ur\messages.json
| MD5 | 5d1b79387d95730a21752d83cba2bc8b |
| SHA1 | 2b364e370a98b013f85c4e507edad773d55ec144 |
| SHA256 | 41ac89ba3e681686f31f700f02a2b1f3ac7fb1c96bc9d38305de79307b211778 |
| SHA512 | ead42d0060b0b6cecf1c8a92c626fd2ff45089ba755e8b33014d8fa7934bf1d6f7eeb040daaa8757688fe1fd73fb45f9ffc411ad8758ecfed58c4c69205c6e5f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\vi\messages.json
| MD5 | c77f78bf7e10d7a1ab4a86bbb31a73aa |
| SHA1 | 96316c18bea4e6f389f79142c0a0495f9642b72b |
| SHA256 | 8906e491876a194f5d361b17606a6f884addb2ca29eb92c70eaf7566540cce64 |
| SHA512 | 465d72a751a2daaba17e88c874423a6866fb114119296f52020654eced305e55fe2b69f545c652730b8e6f439ccc9a0b5bed05b5f7841eb8462d68982a5dbcb0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\zh_CN\messages.json
| MD5 | aa2845f07d5122ca351187c24937029c |
| SHA1 | bca72b440e009ee852bc05fd1a2176d826a142c8 |
| SHA256 | f8744c0605fb01bbe50d4d3c4bf51d6222dbe7abc1e4f043001d22383658af39 |
| SHA512 | f1129003026b677f5655090b084c635d0bee474cbc1e4ea72d0ffadef3d558aac022fd11de5eb705dcbcadc70f50613ec74e34134e42ffe4a538b5db74ad8c5c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_locales\zh_TW\messages.json
| MD5 | 170bf382fec96e3a4288cd3f749bae8e |
| SHA1 | ddee6b820fcce6b8d4e86b7c560d6f5851885e71 |
| SHA256 | 0bd1762d6c8f3e1d72f9c3e23233ec2c7deb9f2e3fbad7413afc545c3fd81c41 |
| SHA512 | b55e3e4805c0c31a36ee7f4678f2c8b794207d0620864784a13b670c0435b0c2374be9917404e4c5cc1e2d9c0bd3722c7d982bd75b38da8fbd4db5b14018e150 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\_metadata\verified_contents.json
| MD5 | 1f92c809ef41924fc955a00e4551a7ba |
| SHA1 | eabef36e9df22c2b845d509fae3c2a3e42e34c42 |
| SHA256 | 289ce58b442119426d125702622b76a211cd0095c07d3d9c12f666cf4e340918 |
| SHA512 | d6ef45fc8419a88a68238f81ebfd1bb6799caf1f469f95a64be1186dcd4309a0efbdaea331c92839e69cd98d6b3ec2e73bcb2a815e549ce2fd00c22c350fdb6f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\manifest.json
| MD5 | e909fcc79b6cf94f68c458100c8b76d2 |
| SHA1 | 1b3152d7282f9549b60ed738da53acfbf4cb2af8 |
| SHA256 | 36855b0d40a1bb5538b09f49d6c33a05a4e34279ddc8e6f5c4b6a85807a39300 |
| SHA512 | ad557c55a5aafbb5e34f25fe3b876e082647b389f54187abd4f92059f25fe6a8e27741c9182a6dc78bdd3335ccfdb5f9a52fb61d11ad59e44ecb4e092ba6158d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\background.html
| MD5 | 08c891bb60e76a4e1d54616844a602bb |
| SHA1 | 4ca6f95c19ce26df8f9ea33b803be4a33008aacd |
| SHA256 | 0eb7bd9f2249dbce92999fc474ee7518d1399f8ffb4457bdeb8e57b20988404d |
| SHA512 | c06746f292d7ed911b81f76523efd09d0f82ec02db937c7d8370c3b468a7b4fccebfd056eaf0f023f5c94ad0be2e0460a8cb3946364a72b03b2368de3e3f4c8c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\ai_chat.html
| MD5 | 2046d095b08a1b69da75a477650b6232 |
| SHA1 | 86ea17450a9270fcf13fb0ca02a4a61b27905cc0 |
| SHA256 | b14ca1bd516253b9804ecf766f6c1ead60b9a60084e346cc1fdb06d9faad4d7f |
| SHA512 | 51041b7cf46814dcc6d74aad7021684af4bb875fa4070b0673df031af8bc6aea80732b3e5f529bb7745191e52c4e1b61941be8fdd61228fe3a66cb4aa5b3214f |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu72xKOzY.woff2
| MD5 | 4743c758a952f2bd4a35d4e42afc002b |
| SHA1 | 394a00a8ed0de504af13ec49be0f0884dfdac1c9 |
| SHA256 | 7aa3c7e43ee40c94ef77505e7da7dc587b0ebb3dd261a2c176a5d17cd0cdda5a |
| SHA512 | bcb9d877dc286dbffc397713010fd2cdb6926c3233a439cf4c6bef0c0e5c0fa62349dc621fc673bc0f415d8601b7f76164311106e1eaa96c1eeabf7baa0ef863 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu5mxKOzY.woff2
| MD5 | 8bb64952764a884d67019b3486296ab9 |
| SHA1 | 7541837ef0d1a0e69be10243488c3f2141fd632d |
| SHA256 | 491158614c16e4a767df0f1ddbb82a8462b6ba308b8774c698b82e850a425291 |
| SHA512 | 1eeb9c017cef91b6bd309bf5f9a1cf71ecef7d2fd667d66db2ef52cbf39d61dbd96c996d9c151742c628e0c28ce73c107a3071522839c0b8734168566c5c6856 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu4WxKOzY.woff2
| MD5 | c1e9793c84cb26c44ef2a2cf8b6f49ce |
| SHA1 | 16ac6efcfa07f298d6ea07f523d48cbbdb38a840 |
| SHA256 | a223f1cb930ff49e86d7a550fb70d89526b89358f5649efbf5d0589aac159357 |
| SHA512 | 4b81bae4e9bfd128ae8869e6471abff66ffc636932a326d2766395898270b5e9d7254f7a29830401c93d0815fc5520abb609730eead20af26e66dd699ec821d0 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOmCnqEu92Fr1Mu4mxK.woff2
| MD5 | 479970ffb74f2117317f9d24d9e317fe |
| SHA1 | 81c796737cbe44d4a719777f0aff14b73a3efb1e |
| SHA256 | 48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3 |
| SHA512 | 13f6b2ecc2407445c1f97109ededcc8ac64fae89fc90432a28ffdaef233b373089be25731718408c32ff3cf632afb260d0035f85fbd8b1b4e068a0d7baf9f6a8 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmSU5fCxc4EsA.woff2
| MD5 | 484cddf4a27f89deb619b0c5c38bdcfd |
| SHA1 | 6b2379ecd2e6b3a47992dd34bb23f6a36f15928a |
| SHA256 | 14b442bf8304eea6709138641397ce44aa9cf4bcd64d5ede30872cb64bcc9f7f |
| SHA512 | 11dccd74b33972d71cfc543bb30dd99cb335a73b6baa7b584168b42da4bdeb1dd8ef8583d67bdcaf576103379966d959129f16cdf506f20d7ed660053e2cdc49 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmSU5fChc4EsA.woff2
| MD5 | e83b8f976d12362b33c7047c09ef586e |
| SHA1 | c384951b54b76b3fb5ebdaa6ab0872c42114cb8f |
| SHA256 | 996da6758e09cf9382a091845b1fc4c5d786fac4f2825c2a2996270620c4883e |
| SHA512 | c8d699fcd4123ef8fb81846eb4fa71526a784efc24a10d683cc40213b81c855a7476d9e7487da917a1bb69e6d6a4d07d9e9035e16678af1faac9d3793fd844c2 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmSU5fBxc4EsA.woff2
| MD5 | f7059272fd8e0226350501393f4450c0 |
| SHA1 | db1507e881285b8edd0304ca22dd8881e983957d |
| SHA256 | dd1862ad2a625679ff58e3992323a22aed59222fbba034f911a9a99afe76f1d8 |
| SHA512 | 4a05dec036f9a930e0a74e01a29b786677c68999546785a87c9107c616fe3470d1e9f1995a2e39ff34b93449b07ce5a99594079e0c4e47c53144c957dc88b257 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmSU5fBBc4.woff2
| MD5 | ef7c6637c68f269a882e73bcb57a7f6a |
| SHA1 | 65025b0cedc3b795c87ad050443c09081d1a8581 |
| SHA256 | 29f6da0a8c21c5681511bb9b08663d3fd2c5d09c9bd8054ec354c563b8c8b7c1 |
| SHA512 | d4e7de23aa4a93be278bdb2531122ef27d29b05d78d7c3223be712414bdd9562e9574d4f5187c93efebeedbd62a92c2e6bd08a4ddac035ce861df8d0ff169001 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fCxc4EsA.woff2
| MD5 | 16423fb4da5bb6d54592839d6cd8e1be |
| SHA1 | 7860418d3d14f6b685b4d1635860be2b987d3291 |
| SHA256 | 66a6ef379881e3124e20f6dcecdc16672b1a7c3e415a305995621e40a075624f |
| SHA512 | fc7e0351f5625b9d47aff79171a5b2374d5618a4f68aa8cfd2ada66e635e3e90ce492570390ca0e3ce2e3a5b08686f61b7e2fb3e1d831216d661d17029a1acc8 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fCRc4EsA.woff2
| MD5 | 378698af3b6776fd1e3ee0a51c3d7b87 |
| SHA1 | 194bafea8b9e842fbb94fc2edc5f4c38acc5592b |
| SHA256 | 1f083966aceeee42dd217e2018d68b3e63fb9beea41f717ce4fa34a4df88b3a5 |
| SHA512 | a5bdfcd011027ac1bfbee373b1e187153cef8798987c3c480b00bdce8ee77c46a228e89e14f35569c73ca91362dcdccc36afb296af99878725ae0f5b1c3c1018 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
| MD5 | b1b808436b5eafe9a683fff584d80fea |
| SHA1 | 4c64586f861b4a42528d33a687dbd4d562312cae |
| SHA256 | 9c7063e4ddf4fb376fa7af3b9caf9845251f6224dffd38f1a369278c47e4b4ec |
| SHA512 | d91b6437203d1d34dbd6402fb74d5c960446c8397d47722850a5cf70a15bab71514a958bf5ab3fa0aa356cefda26b989165bdd28c8478ea387db42ceca6b2ce0 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fCBc4EsA.woff2
| MD5 | 0f80978b9a5916929ecd5e1e21bc4169 |
| SHA1 | ec212b8b243aa4a9af8b1b04362bcfe7edc602e7 |
| SHA256 | 675b01281adf2cd36d2dbb9abda799bfa9dffc2178576654de53699bbfa09171 |
| SHA512 | 313f28d65cc4c1f86667fe93680b10722d9667653b4bbdd9ad380e8847a5b6336d18edb62b8d24bdf96adbfa0e87ddcc3a1d5905b47165d4dd4d894fa124b990 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fBxc4EsA.woff2
| MD5 | 665639f6a0519416ad2904f1c218ea30 |
| SHA1 | f4eed37334ad7da3aa91a555462d669cd5e140e7 |
| SHA256 | da6e676db98d451a0d583e78cb5509bceab7b1b33b3b56f87cd2fd62be5516d7 |
| SHA512 | 972252b77c09f21580cd81f3d471f4e2fc381f2c3ea782de435bfc28f46beb81e78f52003b2a5cb00c568d42f953a0a83dc93bffe9811b6f751bb305c650b579 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fBBc4.woff2
| MD5 | 020c97dc8e0463259c2f9df929bb0c69 |
| SHA1 | 8f956a31154047d1b6527b63db2ecf0f3a463f24 |
| SHA256 | 24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf |
| SHA512 | 0c2d5d9fd326a1cf4cb509d311ee2a5ef980e951a8996d6811d401b7ae154cfb80ae21dbb03adcb9171ab24d42a35424cd90c6966f584110bdd1c63dec099a13 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\roboto\KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
| MD5 | 7fd643e63fc847f47521a2604072ce9c |
| SHA1 | 3c94bb8e0036e871351aedcc91b1d53e9b1ca146 |
| SHA256 | e6bbcc62f3b6a3ada1215006f0f6c04dbcc035efe815caf60e6a26eafc335b7f |
| SHA512 | 4d5f543cda0bcd2bf7dff79e9332a5551f59a3d4a54d5cddc93f1d322b7729c8ad7147decc72f5df26fb8585ddcbfc5c517c5d69c0eb331bac8522875f342867 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\css\options.css
| MD5 | 1579c20d9fde5f86c0f018803add39ce |
| SHA1 | 77ac9a44e22bafe7fd8100c12b26cba5c524403a |
| SHA256 | 41a91d07fc983893014d75c4da16f5cbf5e60a71bcd683467ad03e5f83410447 |
| SHA512 | fdecbebca608cbe86c5638781de0d734773e0993ff549022f602a425fab965bcc09ab3510b395d5315b6c17caf1375d3822b0b6d7ed818516f5daf34d290f809 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\common\extensions_page\icon_64.png
| MD5 | 26f3f68bd71e22ecda91c7e0165dec00 |
| SHA1 | 6eac07ad6b5036d6eb0f412985a40939401b5f77 |
| SHA256 | 6fb9a84ba27d24dede2f51acb3a2923d9b88b4422e3fc6d5dd32a301e3956e63 |
| SHA512 | e95d52a5600f9568011a2ebafb7b7a33337cf2a5c92abb2e6832445baaf040dd5260f920b0de69d6e6e5b4b5779774a19776db7432564e2be8eb3820afd26228 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_903145233\CRX_INSTALL\img\common\extensions_page\icon_24.png
| MD5 | b6a0f60c497fb42242139f5b9b3a3081 |
| SHA1 | 8d828c1d17b7f225579ff7d1b45fc4647232f73e |
| SHA256 | 96bee38ebbb4f08844a180888bf594ad58aa35f0b2ae90d03d077447ea22ad2b |
| SHA512 | 283705226f6ca707a208f92dbdf195b3acb0e69efdb684f739cf5e7a52b5d32730efe539e43fb138f5563cb89f9df99ce69d2c6354098af961911c1d8e751837 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\arrow.png
| MD5 | 050233502f7d33dc45f3e736048cdf8c |
| SHA1 | ddbcea0c91b33e0731fc1291fb7681be2f339eb8 |
| SHA256 | 206f2884087b9acafe2dc11e63cf01532952621d8c582a126886a634de70f67e |
| SHA512 | 05d5ab80ad326f81af1c052161dbcfa399423449ca6662ddbe0fbd8f04d11703e1f5f6b63108f0141e16c39c91b63ce1d7559d2d1c38d40d0e0103bd044f8f58 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\img\normal\ai_chat.png
| MD5 | 9c21a12f0231ddc489109fb74bebf5f0 |
| SHA1 | 4b8b5bad011ad1c631a24e56b4c7e6baa7328332 |
| SHA256 | 100ac276247b996bc7b9d4a39dde865e86fb09d6b1bf9c5347d8eb0a48bf1b59 |
| SHA512 | 62874757ba359de0003cb63aa4d4b67db36b8ea910fca925aa3c0fa244298d6cf83a4958ab404a7eb5e5b9177ad7319a94a15490dabc877544c0108d10e5fbe5 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\js\ai_chat.bundle.js.LICENSE.txt
| MD5 | 6b2a0fa5f16ff4d01b1e1e48265d95ca |
| SHA1 | b5d53160f6e2ab8360891660e2a7d8fe8d5e9990 |
| SHA256 | e8fa043825358bbd424fae5a843b2a6f38e1f7ee557c93300f92423ded8a3be4 |
| SHA512 | 651a5a25303760e3ea6e2906b4a4db8d797f6c3e2338af90d1e2e098f7cfde014e6abaee159652b386c3197c567d20ecda83d0f570ee98eca3095485d63586b8 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_803154211\CRX_INSTALL\app.html
| MD5 | c5199f9c2bf3ef2eab91521d51dbe31a |
| SHA1 | 818de832a3a7b38c1ae7dc19a4ad82860a3d788d |
| SHA256 | cbe351f968259195b8b06b6eb84005f66199fe2d3753b272231e98309bc0f022 |
| SHA512 | 5c78f0688a2f9ec47e0b3f2d20202eccc6a71a71cec98ff1253f5f4c51d8246ad34507df67b433d585fb7d9eb0d061f2ba32b74b37d951b5e0fe8d33e50a5a02 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\icons\icon128.png
| MD5 | 6a26cb923b8a415d07c30e8b74ccd136 |
| SHA1 | d51efe6a0c87537874de4e6d1aab53bdeae5929d |
| SHA256 | adc7ed578516e060e17cc37241d1fc058777cb0fc808def60d8bfa2309bbbead |
| SHA512 | 58b57af5d6b6755b136e1fcb32e5a97302c473c560b69b5c2c1500bf204a5092ab0b143a10a50e4bcf0a2cfc926a98f1d63f9964097dcac5bea7968624d47789 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\avast\icon.svg
| MD5 | 91a7c3ec0467f0e288f6afa178656bee |
| SHA1 | e631f3800708f0ba1436200342726a3cb588f119 |
| SHA256 | 88954d793a1c88f81a124b6cd9455bb7c99727ba49f99a437ae21aa1471dae92 |
| SHA512 | 040cf05168ef32067205a34daa863720d698bf2aa8fc7a9243b5854de2080b51ed03164933ec67f5edd8d9a5ab7b4bad09551f100b5ddffbd164141ac8ad2a7f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\avast\icon.png
| MD5 | 94a73def8b7e2c9ca07b0d974acae57b |
| SHA1 | 5dc258192300325ade68e7ce5079006e7ade23f9 |
| SHA256 | a0ea771f573c37d239707dbe484aa1de5764f77581f6eabe4c856a01d84445a7 |
| SHA512 | b5c3bbf626987c3b7f80e534d889430235a7950a1d9e1df48d67b9e3d7d9824eadc6d7871d46e0ab4875edaca8c7dab7d5109b658d8ea0a98ccbef9e47b0174a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\avg\icon.svg
| MD5 | 44b895cde80fde31846a76eb84925017 |
| SHA1 | 0a7bab1bc7f7c05e53e78ccc0000cbd0ec763689 |
| SHA256 | 98f371676bb73135c55eb5e40262bbfeadefc717d0bf175b8da627136bf07164 |
| SHA512 | 009db3c97f0112966efc9f17ec3e66c74c4ce9eaaa404a5c356c3e201d2d5e7ae62225423f176cbb1c826d13abe7b589a43e40b461b7deb3a5a4a6ec0de7b5a8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\avg\icon.png
| MD5 | 06918658a5144d15920ce3089802bbdb |
| SHA1 | 58df1500c80c86c68f08499d636679cc13090021 |
| SHA256 | b2cfb79adc45a5587a0b187580a72fe778ac14c4c073bd624efee07de9c27785 |
| SHA512 | e5da10ec6ad6161b9757fdc37572c405283512ae14b8cb431358d72da295fdd3cb2ebcd0e5ba414dbd84bf12aec5eb229ea8111f0509f9d008cb5098f9605953 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\ccleaner\icon.svg
| MD5 | 53d3147175fffe2d71eed5db7ab21138 |
| SHA1 | 4f3c397950706342b86506e33229fad0592747bc |
| SHA256 | fd9001d35b016899e7b80302ce3f754508390a5d5775a337aeee12d0cb1a919a |
| SHA512 | 4b0160e80c258e43cd9087380876ec7815d30dff1954dcf2662ef2a4085dfe564fe7b998044832afac26c902fe5f744fd7507ddda7ddc37be956a25265de23b3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\img\logos\ccleaner\icon.png
| MD5 | e173f076151ecaa315777a1cdc6394c5 |
| SHA1 | 0c3423744ac9c011d4f40b9e416bf9bd0748c753 |
| SHA256 | ee060039ee5d705cad81a871f1678864a801f91a2e800f93985eb00a0d23a16c |
| SHA512 | 069f004e642256f07dc078164dfd02912639d803aff32337080b4e78fb71e84965a1c01ab16357bda0eab50b1382aeebc172c2fad9d11b68028d055ba9e40bfc |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\_locales\en\messages.json
| MD5 | c01bda904507ad435bc35744985c4ef7 |
| SHA1 | 2c298313661fef987782c54829d0f16dd8b129f2 |
| SHA256 | 661505cb11e4b456a6eff122a081aa95e742b405de833106761a90193b2789ba |
| SHA512 | 52870e5b03ab7db71a9588e775b379bacfa34a4d6afa856d4b09902ceb86b8f92b5b610c4e6db164a13a8fa92241030bc110fc6688a612185902af6e24d1aa83 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\_metadata\verified_contents.json
| MD5 | ae7678ee666f5323508e25e355bf52ed |
| SHA1 | 546eefb983a0a4add2a80dc1b41c387855ed1bb1 |
| SHA256 | cd7854b559f7421f1d4469fff978c3d8a5e65f2c93e47b599882ae1895e75c6f |
| SHA512 | 8884c9ba3f530a28a918627274593f50d21ba067baac35490cf91a328983a7450ab9c2d08181ce353c14a18853603f8b1e20dd3f8dc7047c508f94cc3420258e |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\popup.js
| MD5 | afe960ecb0c8e502f086fa0c079fe906 |
| SHA1 | ea2b09a25c16f64ba346eb44fae8a7f100721a3c |
| SHA256 | c577165976da57c7bde916fe329d8f53b4e7c32e8c543397b2017188652a2edb |
| SHA512 | 2ee91a31f547e4798e0c15319d8654928ee1f4d90edfffb2907893edaebf3fd6b906ff49cd2b794b5215b90863341aafaf757763fe9fdafee86be8518b8b6c28 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\popup.html
| MD5 | 533e314c6b3d2d31a1d89f8885c80983 |
| SHA1 | 64605122a9279193b2465d88dede450471935779 |
| SHA256 | 98050462e9480795ab7e63cc3f097a4bf6b8292e1fb27eaadfb0e4ca6e7adbd0 |
| SHA512 | 1696447537d7f0370a7a1c296e59f709021ddf0eacba62de33c9fb794309aab1eaee3a5c9534a26c0a10d6f7ecf81a707c932346fc90c8c147e905c5bd560f77 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\overlay.js
| MD5 | 2e139f8901f0224cdf3c8282de49eb99 |
| SHA1 | 6296747c5a575f79367231f1787409df1a88244d |
| SHA256 | 9a72fb36f88ee3cdec265e68d9483c86e0ce4966d9c236a5c3d05e6d463ae51f |
| SHA512 | 018421482734e7d68b817c2370af79715bfbb9299bbc0787f4a785395b97e397ffaead19716065ec1264fcc77297b904156b440c3d0a8b7e5a117658507a2d00 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\manifest.json
| MD5 | e9bcc46307b31ca8fef984145b69b009 |
| SHA1 | 9e8c7739ec99d206b83d63d3acb50cfee5c19ab9 |
| SHA256 | 44f4dcebe39d5952c0979ffc055dcff6ade22ac9a35d58028dfb763a30c9b123 |
| SHA512 | 61b033dd8fb61ad532d8a3d6632403efb11fada9bcda70b5286ed3e8fefb503476f082ffb9e53ad69e3e4102bf6a85f9d0b0c9b1a09690230a7ddb5fc0ebc95a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\contentAPIs.js
| MD5 | 230487d1a334dd93e1e58776b649e666 |
| SHA1 | 9c4f5f40d18bbd7e8743e3a169013c496868680c |
| SHA256 | 1b6a880411a56415ba5c81776a8f3126f638b6f555d8303aed6c9e0124275018 |
| SHA512 | 100c1d272b8eec8501cfab0167b9e46e417c7bed6fe78824a22bfebe48727c77661854d17925600509b65399b1fe345d142c6ae1d36dad4b56ffaa5d04dc941d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\content.js
| MD5 | 748826ee616784ea761c6b2efd8cce27 |
| SHA1 | e407d92ea2aed385d144f4bf32f636c562f0fbf3 |
| SHA256 | f971751d14373439e79c62c5fb48c5e4b1859e4318bb15831a94fe499cd206f2 |
| SHA512 | bc6b139c1ec9495c8433e9de2c7aa09b268d9ff9c2e7e6eb1523e9d41a7657cff763cb0cb9f3afe3fd728e38f6d596866f42c3ba42295b8b2cca6e00297aaad9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\background.js.LICENSE.txt
| MD5 | 275fe79abee3b697f1673c8bd9c58856 |
| SHA1 | cf2b1a01feb5dba1eadb49e8fe087675fe70a7fd |
| SHA256 | d33efbdf4d309bfa4448199551371ff81d5f57661b781faf79d256554e038595 |
| SHA512 | f6c93cc7bb4d678fcd51ba4024371915d614621b0f526130ae0a51ac4711c8cacc8881282538674867c11b0e37c1f0cfb5a64bb047c92594e0a4d4c25b26a932 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_608452643\CRX_INSTALL\background.js
| MD5 | f30d770f7a456c66de5d385f50ba5d28 |
| SHA1 | 406a6cd7466dd95ea6dc690ab30dbc868fce4cb6 |
| SHA256 | deafa7b51d206c7cb78757687480131a6630c7f5bd6134317ef22ef0f7f0cab3 |
| SHA512 | c49260e58f09d17bd20bd9bd7a5de59350ca476c8c63defbd0c463a3849bdbdd22f89d21680a47ea0f61d17555b517c9ce3c805631d9885314dbf65b927d7625 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_1324710158\CRX_INSTALL\img\icons\icon16.png
| MD5 | 74d658682a89aedc22582c15fe8d8583 |
| SHA1 | d0320a5c085a96d7f87a8f07e2045ffabb56449d |
| SHA256 | 7f4b72bd4bb72d574b516de85126cb91d9e9492af939f3a9bae80a8ccfd53b56 |
| SHA512 | cf62c3b790ac34bc07411ea158bd5a1d3e3549738aafdae6202fc37a2b429effda94ab2569f3314ad48d05c0fcf99ba97dc65b5faa1e5b92d9da41f548f0acb1 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_1324710158\CRX_INSTALL\img\logos\norton\icon.svg
| MD5 | 2ee58c8732aea4203ecb92e16e5ac68c |
| SHA1 | f8cff9d53e57833e10ad2cb2489fb75a57ea7003 |
| SHA256 | cbd20bdea1a73d4cc506fbafb729d201d01fa08f1884f4495289672f34f398c8 |
| SHA512 | f6deeb2e330be99e4d5ac63625f7b7f2a052ef2f778c99657714245e9b2ad912dae5029e8dfcd5affc13bc4c892d4ea508db471f009d6c550030c477ee98d87d |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_1324710158\CRX_INSTALL\img\logos\norton\icon.png
| MD5 | 75e461d8925e8468b3994dc838bfb68d |
| SHA1 | 40a05fdacfcc9f153cd3df62a95c75fe148fc0fe |
| SHA256 | fef31cd788c1845647cb739db304cb65fa21129a93500f51d8865ce52f75a0d3 |
| SHA512 | 880c83b8414bd441d20d61360b7018b4f6fcb68c2affd8b1e32b1d9317e86dda8f9eba925df31b552011d5158eee2f30970756b26b2e77f3cb91ae35c8c37cc0 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_1324710158\CRX_INSTALL\webstore.js
| MD5 | ff713828113f6377533d41a36bff5ebd |
| SHA1 | 7157c2333be0a6df2db2dc0c25d36738acc823f4 |
| SHA256 | 60657bad3b62a195d588178203e25df302ecdb8b51fcc49cc4f628aed8998dfb |
| SHA512 | b55bd6b59b57003785db6a8f7e0f46b2ff4db619b4ea143c09f1e456ff1c5efffa46226984849cd8da98f48c06a79a4d00edccba3b7e1d4423e448f1be001113 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_878136323\CRX_INSTALL\_locales\en\messages.json
| MD5 | 7fafe793c9bf9b5b43aa5d128c89b866 |
| SHA1 | 2c954082b4939602a52d1c8c9b239da70bc96c09 |
| SHA256 | 23f8c9ba84b4654ba6a0d7f7eba743a1b3efb0d660424044bc07a98495056613 |
| SHA512 | 8fe4bbcb64b517001227de504acb4c98d0bd630650356a55edbc7f51e7aa5844d041464267b2c489be02534bd677ed7db389410021efd3943a7380855a3e0974 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-regular.woff2
| MD5 | 81d0487ba73afd292730e6f89e83c2ea |
| SHA1 | 20f0b5b7cac1d9a707d3cce56b7a4c16a5a11d46 |
| SHA256 | 557116ee5706daa3b6cb2f52e7490e22db9c30ebfc447a5c85458a5fa0f6f84b |
| SHA512 | f069c794442a237d55a31a4f17fbfbf5d8c4d82c12508ad45371641dfa177f03b7ef59360d2e91237d5d3c38cd11b0f3a145317b58af8d0cfc0e19c65eb313c7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-regular.woff
| MD5 | 2b6f63fce9104d1223d83dd12cd6038e |
| SHA1 | 1ac49ab02668c5deb14a497faefcb7bfa6c15731 |
| SHA256 | 32ad89cba217fa7f180d331f6e43d87a75e8eb1b97ed102d178c534fd6e51038 |
| SHA512 | 1ad5b9865a50dce57ff6571352ecb4467ab7c6821fb343f4afbfc85c7cf35a4c84a8ea4357fa7878919947ad913aa2d8b8318277373fabf2297e78ef20117aca |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-regular.ttf
| MD5 | abd464fd52dec0108904f062f30b31d4 |
| SHA1 | f51881b3732bcb7aac9592f50184720e7d726ccf |
| SHA256 | 0c4595868d57ebb5f2793e22e8493bfe2606cd8c628a039d2d1a4fa79f642b05 |
| SHA512 | 7ed6d565101bdd3e15596c7cc9ba8cb4c4a7be57333fec06bb01492360b409194f0ae6a8db1c368a1b1880ae260c122d1f0f551b74a6ea18e932d07687ccaea5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-regular.eot
| MD5 | 916fcc0b03b40457b311609ac7226183 |
| SHA1 | 193e96a3b8ed9720bdd05d56f81dfd9dea43b5c2 |
| SHA256 | 6ffc257b02167f060ce8c84cf4137f896b812a814ecbdbf9e85bf3af99428dcd |
| SHA512 | 974b5ade776b0915c3cca3dc4f0b5dd6b635f0053f10658fe63145e16de623023ede0ba3571caffb1aa6e4adcb9d3b3ee3dfd3d58d00028311621372bcb78b48 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-700.woff2
| MD5 | 15df1fb3e82321d94a0ca758c62e25d2 |
| SHA1 | 9fce105a87ee8b8bef404942cf48c42ba5ea1ac2 |
| SHA256 | b41570405890d4f995da7b265ceb5cfb50246a940f9489525a8f526cfd160356 |
| SHA512 | 6e18ebebd7d7101cd04394595e4243abaebac2894ec303978b8fcb892a2922539c945ee5c549470ce79e44dddb25ccedc03fff272fcda17883c29b504e5de2d0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-700.woff
| MD5 | efe9ead0aecdedc597ec9d4e745e0a58 |
| SHA1 | df6a1ea1917ea01c1f53f73cd9412afcfd254875 |
| SHA256 | c173db3aba8f65231290d9c956253e0f8bbfb12750e1c4c56b26cf64fdefa735 |
| SHA512 | ec781dce0b93d82d4096f8fcf1b3397b686d2415abadf543dd00ddb55a5aa49a87d063ed4fde670eca3ffb0c97c72df506265daf73c4b03f4d6d9a98996e9109 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-700.ttf
| MD5 | 81ca5af45045261f536c71baafd77298 |
| SHA1 | 4f613dced987f67dd32883fa0cd9298a20c102f2 |
| SHA256 | d123a1a00d692830f1f5276c64edfbc7abc9d0640bbb02596f83e10b14f89c0d |
| SHA512 | 2156c44e95f51c8a56ca2aca1d5b6127a9e76ce709506ddda2df37cac554fd04303f14a11232a18ac6098c8502ed515d2ccbd1f8671a180490acf8a573457284 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-700.svg
| MD5 | 2e00b2635b51ba336b4b67a5d0bc03c7 |
| SHA1 | 8338e3159cc9c5ff55cac72674afb7e90118ff19 |
| SHA256 | 7e40ecf3b9b2ded5a267a3fe330eda6d71c10a1fc716d12237812322057411cb |
| SHA512 | 60979ca59776caddff6cad8d391d8191aa37f838f50c2c1343749060e88aaf40db8216e30e6bf00ac164be967a12c0221d72b6b60416cf455a15b5501ec4d969 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-700.eot
| MD5 | e5abc8bf8bd5635024706adffbed5846 |
| SHA1 | cde58bdbef093f6a589a69188bbeffa23708291a |
| SHA256 | 602e36025f912400eb552f0f522bb8a75e9e9db6a825695c89dcb49a5828aef9 |
| SHA512 | fda634368a61e4c22a0d8cda09e0c94feccf1579a9c3d20d2faa8567422c4a44ef9ae139a5efdb05619adfc78d2f6f4e5ebcfed40e7a0beb9ce0117eaf183a9e |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-600.woff2
| MD5 | 0dd0a359a053b2b5bb856a9580da9780 |
| SHA1 | 4f8481415cbf3e5900f926e0f1b2822ce991c36e |
| SHA256 | 784a7423298c587ce89819cd81d6e225877b32605b4b40eb3ccafb3f3f3e5750 |
| SHA512 | b7e09a097632e2c1a06eb08c7610b715bd2aba83e35468ced16256de4b96acb113f1946de74998ed1f246ce8e8e8f2a7a780b18aca2e0b56130c5c087e127c54 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-600.woff
| MD5 | d90dc5001b28fd92491e2240ba90fd91 |
| SHA1 | c50363443e57440d39d47e1c126e38785e24ff7c |
| SHA256 | d44d59ec2328d3dce4046b23380c9f9506db2e31a99cfa1caa207d41485a5cd5 |
| SHA512 | 63279222a2d6d7a58958ebb9932ccda537d1e0ca008915d3a1fd5dadd35e8102cfc5fd9343d9386ac71c0f5418bda2d022d52b8a909f60d410039fad4dcaf46c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-600.ttf
| MD5 | 5613b984da07ee40456c6bc790ca2f21 |
| SHA1 | acec6c48759b9a14a56371ae0027c1577f05dec9 |
| SHA256 | 8d0e99cf50d6d7ac44bbceaa8062697392b9f71532d8e9716ff9cd2bf5a78103 |
| SHA512 | 7f65f9f5574b2a8b1f35f3e5636f8d6e20f57137b878e143e092739dc585518cf2bc4f151a171e952d48d038b1fd0b44f703acd7f20e33c88e45e0a02efe9674 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-600.svg
| MD5 | e16f375be3c2a73b58255a02f6d3a9ce |
| SHA1 | acc429c1bb8c8748b9fa1d00722401c8d8a8c007 |
| SHA256 | 4a464102b4370f93e3f5d492dfdabc3a8d7f8052cb817d4fec0542cac04c30b8 |
| SHA512 | fdfa163b25cc25042cb34159cc357e3337b32630643c39bdf1b37a13c486ea3c02293dbcd2be790b25438e6f116566adeeaf7b437e85ae4cf410e117100b767b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-600.eot
| MD5 | 1d509ef7e31a881f30ea87aae524fb10 |
| SHA1 | 9682d47dc55e2f2722c939524855168ac2ff1d8b |
| SHA256 | 41cbd2cce0e80cc929588af21c12ebcfb92d98ef90d681899c4a2d275818d7f4 |
| SHA512 | 03b7992b965977602a2a301e46d27fc6cf41fd2b8c95afc733212697f5ae155e15dcfdf3100274a7085b551e6ad465762e77e40f228038b0af4c42cf67f0dc04 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-300.woff2
| MD5 | 83c3deca5df9e979b477c60c55772d98 |
| SHA1 | 86332ac5f59a4f86a4c736b1b923a4a904743750 |
| SHA256 | a6c5ec600dfa7ca47ad224a89eb4b5ae06797927da4a03e54bd105cb1cc482ae |
| SHA512 | 6de271d508d7a7a96a21092676965aa1a3c7fd5615e70f36debb8662e4f92b03997e87a5c636f9f63a2afad0dfb4d2f3e3f54b926908fdb2d4ade616de9977b3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-300.woff
| MD5 | 3afbb2a57bf45e649851c02e8b8903de |
| SHA1 | 87af1ba8c716ef612137987d750b2a27ea17c439 |
| SHA256 | 19eb6a474121fafad38c135802d788ebe347a0e1f9438e7e24477e52c458df87 |
| SHA512 | 06fdcd6c03a06d270fdbfaef3cab801b9fa8429478c4e99e11b02969bea293e78181a64facc6e853cd98c5656fdf1b739466a02fef545836e82b506d05bf332b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-300.ttf
| MD5 | 8c3dd994987820cc2b171e629be201ee |
| SHA1 | 39d6e91a35dbc4b4d588e400b0d20923ddfcfcaf |
| SHA256 | b5f97120805971ceb303f56728f4b940e88a0b0ca8a6185b9561613faa510acb |
| SHA512 | fefdd89cf660e389a573d7c576a788811eaea735e23153784ff718cabda78cf4624d0c273e43dbfebbc2325b5c0e5e6f3e7cae09eae55d8b1d6eacb2ff4f722a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-300.svg
| MD5 | 27ef0b062b2e221df16f3bbd97c2dca8 |
| SHA1 | 1183c2939f6cad1ac69dc16d4a0b943d546e4b2e |
| SHA256 | 74df0c40c70eaef5c8fa9f3323b60940931240a3ac6b1623fdcafb1c4bed5185 |
| SHA512 | 0eaf53651f23745292e64b346ff097bb6fb0294e351a4701dc304541de65926b8b8d7bb5de8b8be5ae8279a178f4f977a39190ae29443acdbb7819881f1fff64 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\fonts\open-sans\open-sans-v15-latin_latin-ext-300.eot
| MD5 | 2d728b382ba4d5774b5cd3c985af6e63 |
| SHA1 | f9f17bb74029bfe8a12c82f1a528da926e78142d |
| SHA256 | 790fa6f6cdfda35b03950836a557d186a65f7c50cfbcafbd15c2fb8004bc11cb |
| SHA512 | 6845c0ba03c194b63aa3908ddfcef66259575c346ed1ba0b5662a3a08e8e3a0304a6f49ea9ecda12e4c2e0cee899c1c72ab9cfa15426b8506a8749e98bdd1137 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\img\icon-on.svg
| MD5 | 7d6f6b27842ae1bcbfa45f04669ed7e5 |
| SHA1 | b58d4e18d1de9e869a457520353e73384376b2c1 |
| SHA256 | cb5031b92d05a40fbbeba5c22fcbee49542826602a8ebc5aa2de6084755bfd6f |
| SHA512 | 69734737316105daa385a22944e31542f424e2f217d2f94ff8f6469c12f34577f7def6ac0c74fc4b0e13079791731afba23d273df95e5e0fbf7fb326f99c0163 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\img\icon-48.png
| MD5 | 455726b96e7b10bc519d8f68ca0ff700 |
| SHA1 | 7c6cc22d7f5959a398a12c95071b031247f87b60 |
| SHA256 | bc6f6111cc2973f49b0305f79d5c33debe50a2d2fedf3ee612faa207896a725f |
| SHA512 | 1ca5db8466a4310d127b70eb8674851a814fa5aca8682f1f771a946e71e5bbd4ea4f2fba281ba6ad8921cdeb07e4947179144538c70b560dfe5d5f7791737245 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\img\icon-16.png
| MD5 | 964b18181490248e5d4b6ec1d37f8d56 |
| SHA1 | d7f7d12fa39bd48220f4d8158f05f39706a1cce9 |
| SHA256 | 22f8515513e91b308c24b0f3acd2dfe1c1ca62fbf795d4dc1f688099d96f3cbd |
| SHA512 | 444b56391f4c87a569fe5a8b7928826462e15e2c5308e8b7fbe95260a1781f313e7e4b2c0a3295d1ea39c16debbb7eb08f32feaf478d27706de5729de143d983 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\img\icon-128.png
| MD5 | bb04d9216907d7ce3552f5269ed56943 |
| SHA1 | 8f38bc15605438f28f10f3a7b19405ac264a00a3 |
| SHA256 | 5255543e412b35d417acbf1a36d40d593d30cb2d00e8aa54806edc2876b018d2 |
| SHA512 | 4daf0e01d69da1f92b66d8093f30284f27fb4e0c18a9e86dd3aa281df2adce038d7878de3fe024d5627ea5980eb79a814b4f800370f4e4312100f3ef330155a2 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\js\background.bundle.js
| MD5 | f8a8d9dbf5fe7367770fa891e647e7aa |
| SHA1 | e7b208ceef2d60a34a24b5e680b740eeac0c272d |
| SHA256 | 029d7a6b0044eee1b1f7a936e159dfecba10b318de7e05ecc3f6795525dbcbe4 |
| SHA512 | 8e62b23c1de1ebc0d34f59ed795021b4b4116fc7c49bf1da365ad4895616ba8403403d45bd2c14ce58f967b5e266e550971a0157833884a58a913774b82942bf |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\views\popup.html
| MD5 | e3709558c6998c808e07553bdd7e60b0 |
| SHA1 | ead5e2d02fdbb83b75f9a40c445184847d07c027 |
| SHA256 | 5b5d11aab7f8844b6bab4497f82caf4a736f565301c4866c9f9b3f259a604437 |
| SHA512 | bc5df31470e49854d556fe8712d0393dcacd8c790804a6ffc0a41e95ab55bf5d964e3bad4156c37f06f4a2d68a3660be1a5683bc11b3b7fffe77a9735859dbb8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\views\options.html
| MD5 | 268dbab3d2bef14c65aceb15ec0037e3 |
| SHA1 | c40f859765f4e32e07b29c5cf675b571a49388fb |
| SHA256 | c10a217d93d9db7f3e50328b3f8a9314d8fd0376da88c00f5d5b9f2924326820 |
| SHA512 | 010ee0ccc0518d0f00d8f14a03080b4507eff1c80e15acac5407ed86d09d82ad9691ae4354dbb23988e6ef8226709ccf083a02d67b0142b97d9d5b997cbffc75 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ar\messages.json
| MD5 | a5d85d08654dacfc837f7b6f72e6dbce |
| SHA1 | 2cc8f59d687cf8b686a7349f9235a80328b2e354 |
| SHA256 | b8598beb9b2fc91a17f86ef9609f0d49cf016ea48f7d5d0535b163df9bfdb673 |
| SHA512 | 376cefdff2af3e597eca7bebfcf2dc579058a92220df2fcd9786d4514bfe8c9f9436939d9c432693665f9262cee375b68e96d1dc9027f73f7a5a330af3b81171 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\be\messages.json
| MD5 | ab74027d0eaa6447c64c50c29168ac28 |
| SHA1 | a6e65c6362c4e80ad2b5f28f8a6eb377af2938b8 |
| SHA256 | 00ea40f1306a99eaa642e3b613ce277411d53d88920d5deca5b1d0798b51d30e |
| SHA512 | 055c2bdef9f06a90ea2d2b10cf79318ec9c185fc334a70d8cf4551cde947958f5881c3a50c4b5715cb3a4585722b92bbb4a5f59156762bf819c0e6aadc5bdaff |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\bg\messages.json
| MD5 | d945e162c3b5842b29e7a11f22479f97 |
| SHA1 | f0c697a96f230babb3198b445ddba14a33c6c846 |
| SHA256 | a18a2d8484517ed9584229d5cf58f6ad7618926210249261c29af14c6326a025 |
| SHA512 | 48a1f5e071892b7ea6c54293595948d9858d0a725f7ee4f3ae6bec16cdce9116402f2272cdf06eb9ae3f8a53a45f3c490428fc5591f59331ebd082cc56e15b56 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\bn\messages.json
| MD5 | b5af23ced9a7a5b995c9fcb1119dc2b2 |
| SHA1 | be85158410ab3c36673d5b8fa14d5da07d9530ee |
| SHA256 | 4cb40cb8eb1f2c1fc2a6691ac0d2b7138299d6dcb0c1836beeee8a43af12f7d0 |
| SHA512 | b3ffc042c7d4246e87a1c26f0fd31a6130347f8097a07fb64be57dad22d7b5deee9ed922be647edd049dedfe00c8f4c066fcda8481ad65b3b7f32ddbd1bac547 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ca\messages.json
| MD5 | b1d37ded9d6e3569f955ddd213101059 |
| SHA1 | 6cc5fa9f49c6bca83fe862a50b2f8e9eaf838e42 |
| SHA256 | 1b20cc3de4bc55aa1af9a31618f5d07e630605774c7c92fca0862427b5a5de94 |
| SHA512 | 095461240b28552b730ad24dead2b7b5191ba8c77703a1758e60c6097dde41834a3f6147cda5880bec52a363b2772025a55245f7138b515e87f9a64553b09d0b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\cs\messages.json
| MD5 | 3b971c847376f49c17fddd94d99ee14a |
| SHA1 | 06f57556597827c5f11fd80c335c055d83c0c63d |
| SHA256 | 162a9f2cb434afc1093581733aa643a1b0263f21c01deb24f26d4a3fed0274c0 |
| SHA512 | b2e1cde93cfeb327cf6e78d8b1a4bda800881e5f345d7e50fe7ec0359a422b2ec80be61f3b248b4230c72a07d55db8264ead7c0757c1c16b38b3d3ca94bd408c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\da\messages.json
| MD5 | db729316339e408f888da652d099e6af |
| SHA1 | 747689da330277dbabbd2dc219febe22df744375 |
| SHA256 | b715724bba10ff50273fb7ac3685c5472ab01fc7c3024e7b457841881b7c8707 |
| SHA512 | 5c52b71bf8f1a832d8e04f7f8be3e88ff8798632a3aaf89ce3550adc3aa41d3ba10f020e0fa9d95aa96b490827d900f8e2d4228ab79c737d2157268b31e09700 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\de\messages.json
| MD5 | 3c651f7432afe9d495c57abc69c30b62 |
| SHA1 | f0d6d0084a2b54b8ea2fa9f21c047341e42c762f |
| SHA256 | 0cf5f828601348cdd46fb6c260099d1846edf1b6f4a009e5c719a55e50ed3bc7 |
| SHA512 | 2193461a027d5ab8df2defef283a36362e845068faafa7ef040c308532a4894c40dd6b47a121739ca7b6fd683df9443053bec46e3073ef573da2dbfb270b4fd5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\el\messages.json
| MD5 | 9288729963e1230a74efbbf071de1fff |
| SHA1 | 17a438183e94c336a9a50e631074fd43b7d852b8 |
| SHA256 | c647435b41dccaa5f77620a0f4d423e1f777f5f0738ad706de86571f7ad76482 |
| SHA512 | d4d2dc015cb0a4cecd456799044c31958e4d281adf6216db6f73c24eef4e06e7f6aa3320c1abee96a63f978f5c09897f8e0b78237efe472d50ca087db38bccc6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\es\messages.json
| MD5 | b87f24a632f1394f2b4d953eb851d522 |
| SHA1 | 06b230390c38da48e958e38927c4f27bf4877c4a |
| SHA256 | bb68ef6c46d390012368e42a08314c4653697cf0e4e6c4c8f76b788056d4dc87 |
| SHA512 | 6126293d7917220d8b28ad13df87d1cc0757444c139058d144282bb4763527e0a1abbc86225448dd7f315807c3808e513670d81092afe6cc801f2f83379e9424 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\et\messages.json
| MD5 | ef87cb0ac7a3b415d75cdd36be6f4828 |
| SHA1 | f68f606d8d6ea71240ea1bc88d04f5b0ddd9b170 |
| SHA256 | 0e56ef46d2c21ac8e1870f178b91f45a4726baa3424b2e89bf1d35ee01e25da8 |
| SHA512 | 60f98c8feb52eb35a995edc1c840847f27fbbe666b894551ae41dd4121a8679e5b84002a1e8e932ea7d73f3826c46b10b31dff4c06b38d158a690c045bd220b0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\fa\messages.json
| MD5 | b37406066b6b248a9ae6be6d6b94c838 |
| SHA1 | d488c6e65357596a9178cb86db67183e9a7dbfd1 |
| SHA256 | 84dc48a25f3697a1455743d80430def6027553ac41579e621e232ae3e153f46b |
| SHA512 | 259f9bd6619e44413a9110cef481f64b043dd820ccb8fa73893f32e71b3f33c357c6ab2dc981eef9a9f444051d8caa1fcb6128aaffd1fcd285a2724b28f6ed32 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\fi\messages.json
| MD5 | 99bd1faef0a8d04fc945c3e11d31b151 |
| SHA1 | f5ea3cb156598052b99efce4eab2e9b64ac37518 |
| SHA256 | 106d6f20de82ab642b825be080855448835e59fca46f6d6546c484502f8e6637 |
| SHA512 | 3e652b08ce58f6f6f212fe62329cd441ca0fa362be464ddecbbf9a98c090082c69347820c7c8dde213061afbe5f12b98f7d76ca7bee135a757d10fa44d320601 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\fr\messages.json
| MD5 | f53ac5863deb7bde23e127995c086f25 |
| SHA1 | 99a4f59892d06747b51b363de267f466a72e8008 |
| SHA256 | c7f83f037f2a9561a79b66c7c5ba6ec230ec038b01ed0442832471d2c4a4ac08 |
| SHA512 | c93e65ec1a08d792997cb13676ad40539dfb2bc1fde18b8759534f47b6908f7f4d84a2108b579fddfb8edbb4de00b1eb50adbcbb209296a91ba38b0f19bd9d13 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\he\messages.json
| MD5 | e3333278d6a92406f8aa1da627b7ec25 |
| SHA1 | 02b0d6f2e9547795e4240e6819948dbb9b4481e1 |
| SHA256 | 10921f5fcc54a5bd0ca546b2ebdf2c65a4c062d96fdfd8b6b6adff4228b9e758 |
| SHA512 | 6d02737934a77fac4fcfb1e489f9c1164a8aa3111a324acb4754cdb9512a0111a004ade9c0cb9f858efac9543d9263fa393bb1d751f4a61c8e3bc741ff826149 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\hu\messages.json
| MD5 | 830f778ed7e5c02342d67feff9abd3c0 |
| SHA1 | 793d0aefa539d3fd0f7dc4ef57d9daceb4713911 |
| SHA256 | 0f2c4646e051b466bbbe8e28f4366d0cedeee9ce9d7646ef6155494ff7c1aa70 |
| SHA512 | 44ae829af29acc1200fe4c8ba151b19d1e816450f45a7614ce40f72e544812f5730b4abd09de1ecf6310d918818535fa4e1360335263f4d2eaa428f96eb02457 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\id\messages.json
| MD5 | b664a816e55958ad35e9fc0bba1a72c6 |
| SHA1 | 38c3c869bbee7f6e013dcb79a6b78e658079083c |
| SHA256 | 80242d7f7b07846e4dc49ee6b25c8f1cc71c7d161038e2a939f4bc8d09b22bb1 |
| SHA512 | 6ef9ccdb7411cce478b82ed40d8d7d87b2ee185f368e49ed5ea8f3ca6e77e83e3198a27ebd8e05c2c9147d8ac57bada682b094b0490ea162869959e61c5859f4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\it\messages.json
| MD5 | 3a40212d09511cf73a9abff33ff23553 |
| SHA1 | c0c592b1875794e1f086b116799d91fe03552a67 |
| SHA256 | 4bc03d2796dda350fb148d6dccfec14e818202e79775a1711ff538dc3cef312f |
| SHA512 | ca0492bfe61585c8c0c50d41a35573fc26657bfd7acde16d15326bf327bf04973c730e96ffc18ca83e05b365f0730c5d41faae1feb0717046e919332e1d781b5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ja\messages.json
| MD5 | ed7a51a91db6521ea2eb3fcd488b5f40 |
| SHA1 | 2f981947fc94d1c310a58a182aaa251bfe86e882 |
| SHA256 | 8a0aaf8ed4d59ade98354e5f596b6b2c4a03b5065bc3b09d6c13e9c983a527a6 |
| SHA512 | ee065a401a6d65312c12afe604dad9137a9247b96bb6d6dc01d14fcc9fa2c6c299eb5d0e8f1d30abe4b46f8b9af85e6cc935566c6b3ac2225666cb2628de53c3 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ko\messages.json
| MD5 | f19d786e8a7bdb0f3bbc0f9e6d8455fe |
| SHA1 | 5473f500aa1b5d0cf6ec618cab463010e8386a70 |
| SHA256 | b45b7a2b28bbe59db53e26486cdedfe5aa5ee19dbd01ab94fae8d124cc3de826 |
| SHA512 | 31d5fa959f6551cfc822c0b7d8e4d68baa9f7a3e2866f383bc1cc4e3cbb6e485da1491d811fc27d57e17bcb3774bf384c9b84da1cb3c5bd705a56551669a801c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\lt\messages.json
| MD5 | 416f2b8ffe43a7f035f41007d50fc2d1 |
| SHA1 | b9628abd0b6bef289b7d9539611577c4460005e7 |
| SHA256 | c960852e7e43057f6ceb4acb07d0a9f2a8601d44c5bfb67d69211bb2354b988d |
| SHA512 | 67f0dbea7f8616b1bbe30d1ae30e2bc8d4f4334aa33904728f093afe1672feea55abb15ae375787a2e9dbb6e246b33ac1ed74fe4de79f68c75e93f81cb3251ba |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\lv\messages.json
| MD5 | e6a8020d78b58be2ac40858986057522 |
| SHA1 | 1b63a5f1c26ae7d01da0a2eb28eec39d28819e0d |
| SHA256 | ec31919a5adea04160d6f722b434d6ab3e3ec72244f330fb3e671b3d4816ab1a |
| SHA512 | 3ba8933e42fefdf9a07aa666528c6e380bf025bb0a4d5fe7c18a404192d45493d68224dc51af9904c604775547b814ce00b49a8b132250fd2b7bcef9907d055f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ms\messages.json
| MD5 | 29d96f05a391ef594b04b9da43133261 |
| SHA1 | 86fc11af431d61dc229810ff04815caa90d5250b |
| SHA256 | a0395e1dfa50f0ba8bbd6118424fd1303ce19a3ca32972f5eee012ad850d6901 |
| SHA512 | 1672fb73c5a0f73c7bf776fd9189e1e47ad8f2af17bfb49a6d299e01098e0de5761900ec909da31770fe86636ac8e667236490f0f612d5e59d9bedf182b90935 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\nb\messages.json
| MD5 | d7e7129b526af85ee114ea293636ef3e |
| SHA1 | 8726f0da967ba7c66aa49ac8133528bc12948a7e |
| SHA256 | 8c2f8c2e708da78b2039f7ce7a6c825852b22f8f865f1ef7ff8250ea475b0361 |
| SHA512 | 9a46dedb87fed4ddb699c289f3f1b67c7cf1ad3ca4f66b65c326aba6b74afb155fcb11a7688219c427ea6d93a9a09b3a1f2c9747d7c2fb0b5317fcc990047d93 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\nl\messages.json
| MD5 | c33749fd231abd98f45fa1bd4d18275d |
| SHA1 | 2c30b01fc6f2a71f86d58832acffba4eb7646e99 |
| SHA256 | d0b6b9c8bd7c7805ea6dd883dc29ebb8d42f499ae40ce9dd7d9b1082d105b375 |
| SHA512 | f085bc98930b28117d33c85b34973317d24d6784601efde34db0f877251e506e9c345b0e4fcd9d8aca7b8d754f8692b5ef920f6c75f5d476917b32e8e4d1f2e4 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\pl\messages.json
| MD5 | e6e130f30085ad6b55886fcaad73741a |
| SHA1 | d30e6de45bae3ff58cd05ae6e75b45dc66fa7b3d |
| SHA256 | 8691f6363c4aa7fb4bd1fdfa0a2413dbf992eb942d719692f42b68ac26b3430b |
| SHA512 | 9c144743939659318894389dfb97184ab29f05a9b2b0cb823f2414c61c2129ec8f8cca0208db534024b7b96332a3e7c8452afa66043c03b1c2d27522d72c32f9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\pt_BR\messages.json
| MD5 | 8dc02b40c5afd3142d3701e850dcb50b |
| SHA1 | 9af12b26f0ade1657e3d10063f44445de356b6a9 |
| SHA256 | 9d407d8979bb58d330157be475c619f27ec2bf15c3530805b4b7518c714c4c0b |
| SHA512 | 8d9dea428da9a6bbe9b3f8b631541aeb97e4ec890cace542ca09a04474f9ecd20f31ba6ae7d421a54582eee8da1715a077f77cc855796ddfb3aea30457ff39f8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\pt_PT\messages.json
| MD5 | 7ba365deba378a383155a74a11ebcfed |
| SHA1 | 2c5e66dcc18e9178a0e6a25f79ff545af08abb1a |
| SHA256 | 381877c8038b80afe11865a00b82dd78e9676da2511bd08087257d8ffe8f27df |
| SHA512 | 19f2f5fd60334bbdec5a8a1facb15521c4ee90d60458fa42a8331a1f7dae9b0ba1d5c0d2a5386f160b157af0dd7cc33488e93fb6407623ba5fb93ad689eb4973 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ro\messages.json
| MD5 | fc0c0aac29d05eddba3b1aa1c974f426 |
| SHA1 | aa176688c93ccebc58ed53c344bed5c25e33900f |
| SHA256 | f4a86eb6a5a67178bfa24255874090e9c80a5acaa458f14dbed91c8e9c3da1f7 |
| SHA512 | 640e4b745e08d23a4bb0146054e99ab5a66552509f20d9afecbea42c2b0c67f402f5bb9bd3ca73a5ce788dc75b2af36cdaad36322f297017383f07fa0ba31937 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\hi\messages.json
| MD5 | c3954827ca16d49de136110caf6f4129 |
| SHA1 | a1ed0910d1b12f2a2e5bd88645ac214b02f2c953 |
| SHA256 | 7a1039337aadca607c99a392ad2558d16e3f39c048c82e2216c094ab26770d37 |
| SHA512 | 6f8567ffac22f1fecd101a96bcfa5bbfec79cdb1ba0e305c1366fdab519df096b826d6c54c07ce4fb1c8520f2baabf008357d9fd7e18a92f35987131cdc49147 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ru\messages.json
| MD5 | 12a9ea240df3a579c96e6aefeaea0ca8 |
| SHA1 | 749ad7498f904f3ae4b7fd91db3b674df72855db |
| SHA256 | 4efe5990080b6388306f12b74b31c493701d45794e8a300a41f6a90ffb0591af |
| SHA512 | cff032611e8ad4e66a404d8eae5951775c0c730fd9a0e668c56615cda7bb5c25359c2987820294b28999dbebb39905526299ce656c0887c9009c88caecdb5dbb |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\sk\messages.json
| MD5 | 5cf9cd122e26346effd48db0c8fc75df |
| SHA1 | 21dca1f8f552ab09c765d80da60ff87e937af76c |
| SHA256 | f43aa954098a6d72d3d5a9dc74c131b10f59eb111b5217913db0c0d68b7a4019 |
| SHA512 | f5819a66bc5a7f9dc9a80a0d3391ae68c9d6f923f90f8f8713ce96155ef95b726ed36fa71e6afd0d03a2466c9154cc9085332fb61263a4ed610761851c8d69ff |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\sl\messages.json
| MD5 | bb93e260e7e2c75d4591c678ee93f81d |
| SHA1 | 942289144564a5db6d9eea6aa2c37cb0d83af037 |
| SHA256 | 03371b65cd719a56ae34e00c3d05d20739eca452c0895c214847724cfd401c99 |
| SHA512 | 5acd8afc440961ae342a3235ad94244f11f26f486d69086cc55d4e991c205dbc9b19fc82ae918a3fa64326ccad844596d70adf8abab81b212c11903d24308fab |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\sr\messages.json
| MD5 | e29a2d569b43e93a63de075bba9b51c9 |
| SHA1 | 619fe39b5197f8a17090db232efe565338ad823b |
| SHA256 | 32c9be85fe0871d2acd30aaef4434f3369eaa1b3b12a39141754f98d9d7d181c |
| SHA512 | 421a01e0a27e39e56427eeffea01777cc2ac2368dcfd42df6adc368bcc6a1dcc5e07a26209e88c57f106dfb64f255e218cc1bb95e77e5b9cf85dbf11a1d68180 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\sv\messages.json
| MD5 | de263878f8f7c10d670221567d9ecb24 |
| SHA1 | af91e39c90f1c06de18791893eaf1af1f34e04fa |
| SHA256 | d0ff3826cae2bff8238c84f3a6f6870874e8fa93c65e73d896db9cc3c3f14922 |
| SHA512 | 59d1a6f5c7e487cbf9d23cfd207bacf7aa20ff1f8616a3431370b6e1db2752d2b23fc5d3cc4b260804d3d98f1e61c2f5b5fed39440358f2dfa458e4df4db1fde |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\tr\messages.json
| MD5 | c6ac0d250d4483dea83ff01fb1dfada7 |
| SHA1 | 15c863f7380fa277ae42da5514d73cf5af0fe503 |
| SHA256 | 945b2841f8b7db64cfa9738e1d4e9ce652d0e54a2bd174cbabc94e494f44ab7a |
| SHA512 | 33a43f0c98b46af15021d09facc4d29f6413ec9276b2e70733573dc96c2f28877a7bb5e2ed52f57e2b22f975037482b84fd76fa793674cd82768b43636f92754 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\uk\messages.json
| MD5 | 5e024d5910e23c1c2052b560a8ae62aa |
| SHA1 | edf5ba60588876ac2fbc1787ec519dfbce9308cb |
| SHA256 | bb3582dbdafca749ea74eaae270b5c61d61cc1961c2f33fe3a4e45e1b2306e26 |
| SHA512 | e465fdd296ae049def59e7856bb44cb087c1585de36db98505e8a15f909a92523098c4eaadd750a8aeb5d90065cb60521bfac4721042c80ba7ac4a76b0689dae |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\ur\messages.json
| MD5 | abe5427813da3a1efdd72859f8ff9f68 |
| SHA1 | a6366cb5d6d0d08b43cc2dc54e6c66c48cac195c |
| SHA256 | 82ad8bc296bfa1ecbca8866d1f6c078aa987346e3a37c609b22f202b53a5cce2 |
| SHA512 | a4dd9ff6eda79604826b6c03b983dba837e99fbf085e832b93d47fe225df07406ab9cf6296ae3093e7b37b6137b3122a2468447cad7d1703f8f5d33987840149 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\vi\messages.json
| MD5 | b5f18b94d6479fa84715a4245f6f25f6 |
| SHA1 | 54800434c74ac6a2e0fd8a1672dd8242b6f39f69 |
| SHA256 | a41883d12892ffb1d888ce4cb7057db2b6d00ffa8f037ea6e962927c3f095739 |
| SHA512 | e3ca50a862cc890157346600201c92bdc0fc67eb412cd0eccb4d3b90ef467788a32b84413ad3ba567313554076c5acf677a5f438e6a2147423dffaf23a4a2acc |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\zh_CN\messages.json
| MD5 | 79dd279b4fa24a31c0267fa5b58962a2 |
| SHA1 | d32bce6872dba9065a3f22ae5e7ae5d4fde38855 |
| SHA256 | 944b3c946452b0f12c39a13c3d44d5836b22e6939be6d90b21fa07d91a87e4d5 |
| SHA512 | 79d6dc7cb201019b78ca52ac04a0f3080322003e858725a730f5ae6e8cbeb938c06a26078519c0ac5b6f4057955d919de2f37050bf7bc74ecd4f325d3cb2aab9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_locales\zh_TW\messages.json
| MD5 | 46b65c0271c694dd6fb28eb690a007e9 |
| SHA1 | 7480cb94f90ac788792b3d4c077986a4a784fb04 |
| SHA256 | e86135fc21e9a5090399003977062b1ef42ef50ab134081c178642c1f9cb1386 |
| SHA512 | cfcde69635feb1cc78446bacbc6ef4fd4ac4eafcee22a2fa29f81040d6204cf58a15b82dbce40098a25ebff6ba1e66541aeedb734ec8469963887fb8c13a18e6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\_metadata\verified_contents.json
| MD5 | 2bdf4d8c93eed2de85525f1d49b9f427 |
| SHA1 | 7b2e62fceca17a6f3167b0bc6b13a9284ce7dc33 |
| SHA256 | d6b8ce4560018a0ea71c49e2fd9e539e2ea2fac775762d14277d55e47f503658 |
| SHA512 | 4715bfc6e9ca088eead36c2420476a5f0c5cf22f69d3895cd13a4cf25dd1208fa329ee3149563f2b4c4e9210d3feb05b51380ea946772ea9fca4ccc999b8cfcf |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Extensions\Temp\scoped_dir8100_1160941196\CRX_INSTALL\manifest.json
| MD5 | 253d12f545c3e24d1129e5f98c68f98a |
| SHA1 | 8a9d8c90400ec9b583504f5be98fb1d4e2e26000 |
| SHA256 | a14d2edf37826c68af6f4be85da450820c168cd4cf4b64be70b1bee8989d342f |
| SHA512 | a7944a3527ce651dcb5aeb4861651649ec0e498a0ec616fd081f033ce7dd1235150b0fae046ef7b3006b2953d265ca8ce0ff324518ed732ae6dcfa0b58598261 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_189643371\CRX_INSTALL\js\fpattr.bundle.js
| MD5 | 7580759316acf0e6d7a16da84559e6ab |
| SHA1 | f17ead86d623eb3527243ea6c6f5512a66fe7186 |
| SHA256 | f11caa7844dac279cb19b87a7704e4982804a131b5893ec436aa092df587b2c0 |
| SHA512 | 181c4f78dd497539f010eb75e529f9fb48539d559eed5376860e4292cce86ac69b698d7791d64262cfc43454a98552a8a9bcfbf0c777e7e92f7cc67d035e59c6 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_189643371\CRX_INSTALL\js\content.bundle.js
| MD5 | 97adfec6bd687e9709445afc0c573c39 |
| SHA1 | 1186a12a096465da449f1b0df7270dbc5283f4b6 |
| SHA256 | c103fc2d0a2484f40fa091e188ead5757b737bd86d2a926488062436df8cdf50 |
| SHA512 | e242f0673a8cd0f565a4dc79937bf8280421e2d90a0d7ac6cc18ffbc0b54a692edb714d9edf49d096c88cddc6465df086c98203d1abf960ac66e1186730bd009 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir8100_189643371\CRX_INSTALL\_locales\en_GB\messages.json
| MD5 | 70c7984777731215a65a737b98c49dfe |
| SHA1 | 60da2b4e5a80334aff5cab61d67fa0facc62f2f8 |
| SHA256 | fbc68d0c4ed3346ae2a84580168d43b8ce12bc97564e04131ce47a0c3328f1b3 |
| SHA512 | 2609a01feb2f4aac8edb180d854dbb5c93e9b053791d2bfe9c1bc3d7baacb8fcc75c0953d7e150b2203ee1a2f4e65fffdd281bcbfc2fa29326576d7b887052b6 |
C:\Program Files\ReasonLabs\EPP\ui\EPP.exe
| MD5 | c34b17bc8f78195442812b5c4ff1da59 |
| SHA1 | 9109d30aeed4439b3fc7811946e1431915fd8fcf |
| SHA256 | b97eb6954110c26b7f4a8a8e2ebc27dfae706f8f71518a1d01d8747ecb4fd074 |
| SHA512 | 7212e36edc49aeb692612c847b69ddf594991b8ad94e3f05be227a55edcc8300f9eec6959871ebe3f8d82f8f8b97aa7ae591287bf7cc34a3d2a26680e5099b44 |
C:\Program Files\ReasonLabs\EPP\mc.dll
| MD5 | 81fcc6ce49ea658cba52e24ce4261023 |
| SHA1 | 5f9d5118b94a11de500715df015a377b645e88a6 |
| SHA256 | a2ad3c285d0cd5ff190edc42286f3bb695310d35e134daa38a2425a71da69dde |
| SHA512 | 04e8051034887ebb82e2f735cb87132c266f44416ff751dc0a2a3f592e8e6b83ad2f29a1a656ec07bf0168bcafddfade5acbbc562fb5439b9ab8377298743a83 |
C:\Program Files\ReasonLabs\EPP\InstallerLib.dll
| MD5 | fcb11ae023b02f3f3afe68cbdecd0f32 |
| SHA1 | 486865ebebdeae59c036ffea5fc613d079b05f08 |
| SHA256 | ab30752603586c284823d22862ff10497064bafdae240083aea6d58155829866 |
| SHA512 | a227f54026f76d536223f9e692251c0683dfcdb0ca3fcdc3ee87fa26bf2dc402fc4bbe94238bade5d23ac5118652ddfcbf299b158d878a6c42ca0abd1717e333 |
C:\Program Files\ReasonLabs\EPP\rsEngine.Core.dll
| MD5 | f451cef44d1ad7d9b9531ec6c72b159e |
| SHA1 | 88ab6f826648a378cacd5c5497369fd2a69a2f59 |
| SHA256 | 776e53005c0bfa5ee7e4116809b83dfa249e14c4f12d63c3002bc8cf2c2492a7 |
| SHA512 | c31f07c49c1d333fe4646e8a52cc0061cd6c0a1d976a9df2bbb6539036f3cea0fbbe5a70025ee01605549224ff5658fd604b68b8a413344d7d0b2008202c61a3 |
memory/776-12536-0x00000258F9EB0000-0x00000258F9F00000-memory.dmp
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\55627d68-6aa2-425f-a162-91b85a718ae7.tmp
| MD5 | f3d32d9918947cd0ee98a95e6782ea0c |
| SHA1 | 7d352e9a4799b5a180e11eaae4a7ef1a6ae51d2a |
| SHA256 | 33845d8a8dfe591b8eed4b27f2c47dc856b11d86c6bfec08074662c559ed4d01 |
| SHA512 | e4818c7e56b2a7f28610f14f738fe92018528517182e5cfa2e17750796bbdecdc2bca3af71afaad2e27a19a17e487fc321e8e20c286268dfb7a126135817804d |
C:\ProgramData\McAfee\WebAdvisor\WATaskManager.dll\log_00200057003F001D0006.txt
| MD5 | d024c921ed15ccfd90f8c0bf85e17c7e |
| SHA1 | 7807bb9652f41d877f31d03cbad6cfc5633d61f3 |
| SHA256 | edf5bcf6b7df633ccd185b1fc5b34adc548f286cf8877b9d682affd8fad51a5d |
| SHA512 | 2e0d397dd6a74beb2986c987afe7212df6da2360ba00cd8da97fded611545cb8db1de214ba9c13a246a19edc4428e356912c8abcf4f4fae02573603964b683a3 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir12152_1726043662\Sync Data\LevelDB\LOG.old
| MD5 | be5d79ef7b84f3450861745dca56ff1f |
| SHA1 | 60ddcbc01a7c0830646b206b216ecab5b2d40f51 |
| SHA256 | 2b7967e28d7ebecfd81164a4517e49234938890cc1ce9d204c47bec26c7b1324 |
| SHA512 | 02403ca04e544068feff8f5a2e883ecebac0f3c93d2299288e99e23e66fe0ed40180385bfe3a44f00976659c0b8af5b2f8e05690566e70b64358b41445789744 |
C:\Users\Admin\AppData\Local\Temp\scoped_dir12152_1726043662\Sync Data\LevelDB\LOG.old~RFe5fc462.TMP
| MD5 | 1bcb0ed7dedc4e879288eb7b6d3f7951 |
| SHA1 | 3aec7dd86341caa2924e293b15df0df1d53867d2 |
| SHA256 | 57b36526be82aea963002b143ccc996e3651a46cc73a1faeedd0bb0df24448d7 |
| SHA512 | e1a6ec849f079c1d35da5b12be9f993d364869eeef9c4f6264a958b69e58a28b1085bb043d748e64825df5e9d8ffba26dff6af94928fb9b00a707eb3babd3705 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Secure Preferences
| MD5 | 9061070893b12959f85f4e5a236b5494 |
| SHA1 | 9c870d30dab4d992d0e69806d43bef49dba9f1d8 |
| SHA256 | c652304edab8f9337b6f78f125ca23a5e64508b894016538df3a27611d860ced |
| SHA512 | de09985042036bfc3110e4efdcb47a69e61616d80deb3b09d4c8c8e010da118eb81aead473b314bf3836845587f61a241b09a481e2695bd6859414f6b064b573 |
C:\ProgramData\McAfee\WebAdvisor\WATaskManager.dll\log_00200057003F001D0006.txt
| MD5 | f69c7bef0651be6636ca74b56a61df20 |
| SHA1 | 1369b648475535635f54c1a732aeb0ad2f2dac36 |
| SHA256 | 5ecd9b329fc64728e8592c4f3a71a9facb637a0d5fcd6449016ff1d9240c315e |
| SHA512 | a449d1e829e8cfdd77a65843df4dd339636aeac7e7e53c996f573bd6bd484f7b99f9ce7ea088a3967edf32fbcadb180657b6909562e46176d233c04c4d4566e2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Crashpad\settings.dat
| MD5 | 7f63048d28ca781b800c1a80fb386beb |
| SHA1 | 0958933febdc4962c01b27aa1fd3d6ed079d4586 |
| SHA256 | d5fdcce169a32e04768da26a2078b88a3d0e42cb925cf1958de4474ed29b6b92 |
| SHA512 | 28508ea5a46250d6adf4b01c188d6ae27f9d9978fabb730e3ec26b20836d04e026b7d1d9166ca28d20b89aca4ad8cf49db1a6246a102456b8612643d833f07d6 |
C:\ProgramData\McAfee\WebAdvisor\ServiceHost.exe\log_00200057003F001D0006.txt
| MD5 | 09d2761b71b22fde130d24472d9284be |
| SHA1 | aa8b679d56c6777656eea88c4bd030a6430861b8 |
| SHA256 | 4a414fd75b0a0f34f83920597e3dee715cd5cd8658d11e7a21889c40c34e6cc2 |
| SHA512 | 12beb20d808a0bfc5aa18151ac357e2b2f6e76c93c15d05b00b25b42c7ab0c2d733ceba669bc422868beddbba04c0d267e2eeec1467a2c373429b3c4f47f26ea |
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\e63e8946-7183-4d66-ac64-90d506a1c67e\UnifiedStub-installer.exe\assembly\dl3\07086c66\f22e8fd7_7ce2da01\rsStubLib.dll
| MD5 | 3bcbeaab001f5d111d1db20039238753 |
| SHA1 | 4a9c0048bbbf04aa9fe3dfb9ce3b959da5d960f8 |
| SHA256 | 897131dd2f9d1e08d66ae407fe25618c8affb99b6da54378521bf4403421b01a |
| SHA512 | de6cde3ad47e6f3982e089700f6184e147a61926f33ead4e2ff5b00926cfc55eb28be6f63eea53f7d15f555fd820453dd3211f0ba766cb3e939c14bb5e0cfc4c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\TransportSecurity
| MD5 | 4cd7da2d751f3ffce68637f81bbb61d3 |
| SHA1 | 10ee8b17efed46cf423d07b51d2c93379110d3bb |
| SHA256 | 480a034af4ddb89084593cefc6081fa7414ad0121eb4503710f2c0d090c0b729 |
| SHA512 | c5db2bdab9b3a124d6819bae317cd4d816e884d6657cabca85ebaffb39fff997368f9e1c69a74325dadea8a74b57486acec9ae5b3aa554b4cf93626d6f7aab2f |
memory/776-12930-0x00000258FA050000-0x00000258FA0A6000-memory.dmp
memory/776-14584-0x00000258FA0B0000-0x00000258FA0EA000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\e63e8946-7183-4d66-ac64-90d506a1c67e\UnifiedStub-installer.exe\assembly\dl3\1bc04e62\79135d4d_1cedda01\rsJSON.DLL
| MD5 | 1b899a7e7cb09e57e9124d238ee09252 |
| SHA1 | 278579155f59f8647a873541aa0e596f2077c060 |
| SHA256 | 15e065330e041de31cb37f9973d21b7cee45687719d9737bb41dd441a66cd50d |
| SHA512 | 95b6696e1494428c22bb2a1eaa896b60e7aa8f23c1d6b44796381d8177bc2293e7fcaa47109954f9c01946ebacc15ef4b5807dece2ec5a4bbee3b1023633a8de |
memory/776-14605-0x00000258FA0B0000-0x00000258FA0E0000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\e63e8946-7183-4d66-ac64-90d506a1c67e\UnifiedStub-installer.exe\assembly\dl3\c1c21fae\79135d4d_1cedda01\rsLogger.DLL
| MD5 | f35df6651eb38de67d1e8d5c47fde178 |
| SHA1 | a52f3266a702afacd3d017ce5728b0484aa3a392 |
| SHA256 | 548317de73925ff05f6fbe7b22c5b97c6c4be33826f365eeb327b5ec9a3b0c8e |
| SHA512 | f3fac6d81a26d0ab1664e81c027472fe3c4517e876d00cc643eab1c2d01e98906dfff351fd94b29f6a5a115ddfe08b81e696d8626d90379a15930faa953b3b80 |
C:\ProgramData\McAfee\WebAdvisor\WATaskManager.dll\log_00200057003F001D0006.txt
| MD5 | b3dfefe4e98c926685fcdfe313fc3fdd |
| SHA1 | 40b2478ee23a4e314f83e3e11be9195b4979a759 |
| SHA256 | 3e99ae6655371e67fd3c6f46097febc5ea23b55010e0a700604c20773b34eeae |
| SHA512 | ec9e64d6237844d270f1e3fa1d8f7003e1c21b28e5dec0ea9408fc15ca34574e03b6d0770492f68e9f8f56275c378098f506e937551cae84c061859a81d3b6c3 |
memory/776-14633-0x00000258FA0B0000-0x00000258FA0DE000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\e63e8946-7183-4d66-ac64-90d506a1c67e\UnifiedStub-installer.exe\assembly\dl3\938d5ef0\804f584d_1cedda01\rsAtom.DLL
| MD5 | 50aa2656c227001784142fece1575ffe |
| SHA1 | ff1d971b757048734af907643988e7a0456c3768 |
| SHA256 | 144079dd0161a81eca70935969b580f4f3d3f401f819b2bf9cb0be36aa4324e3 |
| SHA512 | c53951a8c08485f9c06529014310cf7895bc523e811a3f3614d39b4a95b56f8f5fa045151e71223aee878cbb7cf209623518012571f8e6a742714878d828d87d |
C:\ProgramData\McAfee\WebAdvisor\updater.exe\log_00200057003F001D0006.txt
| MD5 | 16ad0b1d89a17e748fc6ef392754b07a |
| SHA1 | 2d2430866b76f68ce1dc27bc755e9df0fae9e574 |
| SHA256 | f9e1d5a601fe5d74227a38371d0d31d4a95a35bf8bd76c69eae07911bb75da78 |
| SHA512 | 29a633d8dba59ef752f350b2f9331ca8d6c81a624c3d2b21dd9fb0436af0fcef7b7fa649c615834fe79d0abd9278e16b89504fd43af20cd10704f5388b3b099d |
C:\Windows\Logs\DISM\dism.log
| MD5 | 36cee1e2cdf6bd8d44d75fa17cb9df99 |
| SHA1 | b96c3b70301ae7d9f4a8aea5f88f9a3856a8892c |
| SHA256 | 10e2e279d12deb1225800eea2bb322b63a1203d76ba64f7095dfb62f45c23a79 |
| SHA512 | aa7a6bf8c2aaddc19731c1d128575293b10e3b89fdf3d098688bf32eaa55f096065702537bff450b900bedfd52c6a438ffcf24f5c38661fbb20881325c6c84ee |
C:\Users\Admin\AppData\Local\Temp\7zS476C847F\e63e8946-7183-4d66-ac64-90d506a1c67e\UnifiedStub-installer.exe\assembly\dl3\3729b489\79135d4d_1cedda01\rsServiceController.DLL
| MD5 | d8a2f9ca19b471d0c78dd6cc874cd46d |
| SHA1 | 701ff0a5cfd6bd74f44cf9d6c6e67c2231ca6134 |
| SHA256 | 9eb05801276f62f5497b5136317c2301fe619a77176f96f417c91fbdd26c500d |
| SHA512 | 752c50b02d54dcc8f2a85de73176574919989d1c9596de5570559f6c70ad09dc183e45c6a3d62413bccc170206f77ab1018cf470fdad21023a5a70a972f7f2ee |
memory/776-14777-0x00000258FA190000-0x00000258FA1C0000-memory.dmp
C:\Program Files\ReasonLabs\EPP\rsEngine.config
| MD5 | eb3bcd3a0848530646609a1c1085c46b |
| SHA1 | f4cda2a9fa5d41cd1b7564bf23806d6c4a77eb09 |
| SHA256 | 30f51499302effdd182ce651a294c186a04bdf516865ec12352af60c2d2ffbdf |
| SHA512 | a0ba8c7b9864ca342930b817b37983270e5816a16097d1ddd1fbf38ca339db4c8d59d9fa71947bb83cfb4fcfe5a0cdc982a9b85adb1c91a2bff805f687f7a692 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | caec3e683b01bba174885700f4ec779c |
| SHA1 | 19bff7a5c702fc5eb2fc9151138d188729889c3a |
| SHA256 | f28aab1e1389eeea38118f805548b8919a79c8c7573b25bd9b284bec4d7efedf |
| SHA512 | c093e33b96ee6b8d303660b47dc3355a41cb77217731d51e0c185a353870512e18742931bf87374e4e44b4d8c39d85863db50e974f48e9cdb6878fca1003cb11 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State~RFe5fe75b.TMP
| MD5 | 571927260023a7610493b8d7d22c5382 |
| SHA1 | 08235494346b7046a4f99a860b92940b82484622 |
| SHA256 | 238246724563412666567430f41e090694c1bd8c6a94c6c841204646c3a2c7df |
| SHA512 | dc7e5d95c2c1e4e9bb28c2f58ed9786df8e66e117d61cc2573dc6cd452cd9030a1eca276328454d23e18b42ce3e91ceff3d57d7567546038b4f6115f2c27b984 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 0a7b71bf001f878f53a5ba442a6b7374 |
| SHA1 | a323048e0c9807e984a1167433b09f2447bfc783 |
| SHA256 | 1a5c250d274f143c0f0cfb378720ab992607c6548f984f14c8048d7484492a07 |
| SHA512 | b65f73adf57a4a75221ec978f3635ee81c869bd853104b1e0042d52b548bb310b987825cbdadbd5e1a4523d101002a0c8cda3145469a27cee03f9bda55a4b87e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences~RFe5fe865.TMP
| MD5 | fd8e00e396f6bf7448e8f1d7cc6ef5b9 |
| SHA1 | ceff3ee35002596ed07f4b742733c407b6ec0f53 |
| SHA256 | 16ae08512ac258efcbdc449e4a04873f301157e4079bc73d9a88c2da9ded43a4 |
| SHA512 | b99aa1ca51f758e856b106efedb5e2ed75ea24fe58f97a9ec67a733bbfb7c2a500b004de98e4c8ed9a240e4caa87eceb7e338c176c8361856591dd1778779143 |
C:\ProgramData\McAfee\WebAdvisor\LogicModule.dll\log_00200057003F001D0006.txt
| MD5 | 1276f4fad5f8b57c46462f4ad9815d97 |
| SHA1 | 42c7afd8eaa812eab3f6242431e330992ef9c1e9 |
| SHA256 | b04edab6b5b3128278f8a836a2a146228a2de9327580466e1edc5f451be410a5 |
| SHA512 | 61983e96f91d21042e9c284ade3e2ebf66a677d7ff351b96e52439d6c8ce0e101d8ce8607a5993c59268381f51385f51c873c7cd091ea6f3955c54e1ad647280 |
C:\ProgramData\McAfee\WebAdvisor\LogicModule.dll\log_00200057003F001D0006.txt
| MD5 | 4aae58bea2ab1b01c123c1eb247a1c80 |
| SHA1 | 1e0b0c4eeb9289e4ddb5a83dc68dabfbe2fbd20b |
| SHA256 | be32821e75656a14d7f7954a34b2d23abb43fa431e17a6d027a5154298389f2b |
| SHA512 | da23ec44c031b7981f9cfeb168d837a3ebd6068557c88003fa0a578c60a23543edff4aa6f17170080a997a2ef85ce12ff78c40431f05db5e270acd9c2ef9539c |
C:\Program Files\ReasonLabs\EPP\x64\elam\rsElam.sys
| MD5 | 8129c96d6ebdaebbe771ee034555bf8f |
| SHA1 | 9b41fb541a273086d3eef0ba4149f88022efbaff |
| SHA256 | 8bcc210669bc5931a3a69fc63ed288cb74013a92c84ca0aba89e3f4e56e3ae51 |
| SHA512 | ccd92987da4bda7a0f6386308611afb7951395158fc6d10a0596b0a0db4a61df202120460e2383d2d2f34cbb4d4e33e4f2e091a717d2fc1859ed7f58db3b7a18 |
memory/9460-15061-0x000001DA289B0000-0x000001DA289DE000-memory.dmp
memory/9460-15062-0x000001DA289B0000-0x000001DA289DE000-memory.dmp
C:\Program Files\ReasonLabs\EPP\rsWSC.InstallLog
| MD5 | b2ec2559e28da042f6baa8d4c4822ad5 |
| SHA1 | 3bda8d045c2f8a6daeb7b59bf52295d5107bf819 |
| SHA256 | 115a74ccd1f7c937afe3de7fa926fe71868f435f8ab1e213e1306e8d8239eca3 |
| SHA512 | 11f613205928b546cf06b5aa0702244dace554b6aca42c2a81dd026df38b360895f2895370a7f37d38f219fc0e79acf880762a3cfcb0321d1daa189dfecfbf01 |
memory/9460-15081-0x000001DA2A6F0000-0x000001DA2A72C000-memory.dmp
memory/9460-15080-0x000001DA28DD0000-0x000001DA28DE2000-memory.dmp
C:\ProgramData\McAfee\WebAdvisor\ServiceHost.exe\log_00200057003F001D0006.txt
| MD5 | c74f0138f5a140a005e493d644c9295b |
| SHA1 | 187a881e9df608272af7985e604a40feec32e288 |
| SHA256 | 256c424f8d87b9b743afc6bef77a5333184bb0795085d74310f408667d0a8ac5 |
| SHA512 | 69c5817391f6d8424d0e8d2802ad1ab4bd4f4b3ae61933cc82caed41700aa8ae0b9dccda67a84abda812e372931c65dcc1b90f37cab02a4c25fdf28e838400ea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | a8e6b489750cf5e099a745bbf5048381 |
| SHA1 | 410de7afcdc050cd8b9b65e96407130a71c7f396 |
| SHA256 | fd7e9b5074fa39916439155bbb6d244e19bc10dbbec3ab5ee7a154616c9a8f1c |
| SHA512 | 6733c49c7423cc2a4ca62555cd42abbf87fd8eb4e2d030544c849768e6fadb860d340a90274800bc68c79f352d4ca26079d83c97ae50c01606580f0df026b8d3 |
C:\Program Files\ReasonLabs\EPP\rsWSC.InstallLog
| MD5 | 43fbbd79c6a85b1dfb782c199ff1f0e7 |
| SHA1 | cad46a3de56cd064e32b79c07ced5abec6bc1543 |
| SHA256 | 19537ccffeb8552c0d4a8e0f22a859b4465de1723d6db139c73c885c00bd03e0 |
| SHA512 | 79b4f5dccd4f45d9b42623ebc7ee58f67a8386ce69e804f8f11441a04b941da9395aa791806bbc8b6ce9a9aa04127e93f6e720823445de9740a11a52370a92ea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b0be6829d2bb0dfc5ece644738c58f15 |
| SHA1 | 528633ee9666ec7860462bd7a55821d7cd95d7ab |
| SHA256 | 07505dacd9380aea68493341f00781bb6f57f02aa58abdfdb704047d5b61ad53 |
| SHA512 | f876f534350736c8035f825e48180b10b8c4d42987fab62e62b02abcacd6ea49ce6984ec9aea1741f7094fe33e7e1aa4512b8eb56da44156f9a4a0ac261febd0 |
memory/10248-15329-0x000002C469440000-0x000002C4697A6000-memory.dmp
memory/10248-15330-0x000002C4697B0000-0x000002C46992C000-memory.dmp
memory/10248-15332-0x000002C4690D0000-0x000002C4690F2000-memory.dmp
memory/10248-15331-0x000002C468880000-0x000002C46889A000-memory.dmp
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | d7a2473d87480d9c88c529f8a4bca502 |
| SHA1 | 7269592c5733c132b935fa750588ed2f3a894e05 |
| SHA256 | 7262fe1cbd21cbebc37e11818578ace330bc1ca5a279758f68e55759d229c336 |
| SHA512 | 0cdb362b62f0eb6795992cc7c048ee973100ee21b6c4bacf273ce56db1b074863a0200290a796ff8036c8f595f83afc0c26213f272b4f4dce2824e2a0a795d3a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe60035f.TMP
| MD5 | 8fa8c65ed1c561dc90ddf1ab5b83fdc1 |
| SHA1 | 44c1a75183c7ef468b2bd9661d841f014a9475dd |
| SHA256 | dc392a59a14ba06ef83ac61ae5201e311e7fb063980a17ab48adbf529cd0ee5c |
| SHA512 | 495e24d2558ce3e1aa918cc9953fc5b886cabbf6b730e100009e2e9a5debbd9f322a18d91ef919243820465fb0cb69db2c0307d5610fea17095275f1c5dfe0f0 |
memory/12440-15346-0x0000022EBF280000-0x0000022EBF2CC000-memory.dmp
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7e3a7d41ac22ddeafd6c07b0e4e282e0 |
| SHA1 | fc56e0ad22307acd6a470944938876536fec4cd9 |
| SHA256 | 4922404794654608c7a2797fea59d948178b898ee53ca49c1444ec602720d38e |
| SHA512 | e90a0cfa47a1a925d9ef2e168601358ab8370de30eaeb1c55c4a075abc47baabd384fd3f04d0a28fc14d107523033e5dd5887424a2571a1b292dcbf0991aa305 |
memory/12440-15352-0x0000022EBF6B0000-0x0000022EBF6D8000-memory.dmp
memory/12440-15355-0x0000022EC1050000-0x0000022EC10AA000-memory.dmp
memory/12440-15358-0x0000022EBF280000-0x0000022EBF2CC000-memory.dmp
memory/12440-15368-0x0000022EC0EE0000-0x0000022EC0F24000-memory.dmp
memory/10024-15372-0x0000000002AB0000-0x0000000002AE6000-memory.dmp
memory/10024-15373-0x00000000054A0000-0x0000000005AC8000-memory.dmp
memory/12440-15392-0x0000022ED9DA0000-0x0000022ED9FF8000-memory.dmp
C:\Program Files\ReasonLabs\EPP\rsEngineSvc.InstallLog
| MD5 | 705ace5df076489bde34bd8f44c09901 |
| SHA1 | b867f35786f09405c324b6bf692e479ffecdfa9c |
| SHA256 | f05a09811f6377d1341e9b41c63aa7b84a5c246055c43b0be09723bf29480950 |
| SHA512 | 1f490f09b7d21075e8cdf2fe16f232a98428bef5c487badf4891647053ffef02987517cd41dddbdc998bef9f2b0ddd33a3f3d2850b7b99ae7a4b3c115b0eeff7 |
memory/10024-15395-0x0000000005C50000-0x0000000005C72000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_5v5ku5oe.2tx.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/10024-15399-0x0000000005DD0000-0x0000000006124000-memory.dmp
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 01fc99ac444db1b5c2c2ac84e3e4a389 |
| SHA1 | e228bfdcc28512556d4b868848b555333f944e55 |
| SHA256 | d5ae3dacca866b887461d86173883314bbec272e5b1f6fa3ec9240cb5336399d |
| SHA512 | 60b8778d64d3eed4b990778080288a4ae9481f11824e6f5e8e220e26d3ff6f8e54c448c4058fd53aef842040757e60a91524d4b445ed3a5dc2a32796a0d9a90a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | da4c5095e449c66746d240bb0dfcf4ae |
| SHA1 | 12c0e588926f144b9ecbe0d05ff2aaf147b401d8 |
| SHA256 | 0c957ab96dd608cf37b670b627a81426720b30f12924c9e770df81998feacc26 |
| SHA512 | 08d85c0d812b237fa1e0cb3fe95c32abbfc6631931b1c39028700089bf578000b98cc45cc1fc9144af33d8158f6d334b2f9bb6627c0ec9e273e67481b63a289d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 30791c03ab687a749e3050aee6270fc1 |
| SHA1 | e1de8ecc63decbef7389579cb868e0004f667f08 |
| SHA256 | f569b5f9daa2ef594925276d7ae804e58c1fc7055bff9e80c85a8e2e0e7a1a42 |
| SHA512 | d4fcb7c2646967be48a2a0965077efe97887f656c38f7bcceb9a8691a9b83b624f67dc858e7fc42598a3e6810e3c80cb053ac0ebbc6e60ba22b197c143ae6f08 |
memory/10024-15448-0x00000000063B0000-0x00000000063CE000-memory.dmp
memory/10024-15449-0x0000000006980000-0x00000000069CC000-memory.dmp
memory/10780-15471-0x0000020E68B60000-0x0000020E68B90000-memory.dmp
memory/10780-15490-0x0000020E69470000-0x0000020E694E2000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | aefd77f47fb84fae5ea194496b44c67a |
| SHA1 | dcfbb6a5b8d05662c4858664f81693bb7f803b82 |
| SHA256 | 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611 |
| SHA512 | b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3 |
memory/13184-15600-0x000002612BE20000-0x000002612BE4A000-memory.dmp
memory/10780-15601-0x0000020E69430000-0x0000020E69468000-memory.dmp
memory/10780-15602-0x0000020E69590000-0x0000020E695E4000-memory.dmp
memory/10780-15604-0x0000020E68B90000-0x0000020E68BB6000-memory.dmp
memory/13184-15603-0x0000026146570000-0x0000026146730000-memory.dmp
memory/10780-15606-0x0000020E69530000-0x0000020E69562000-memory.dmp
memory/10780-15607-0x0000020E69B80000-0x0000020E69C08000-memory.dmp
memory/10024-15608-0x00000000075B0000-0x00000000075E2000-memory.dmp
memory/10024-15609-0x000000006AE20000-0x000000006AE6C000-memory.dmp
C:\Program Files\ReasonLabs\EDR\rsEDRSvc.InstallLog
| MD5 | 1068bade1997666697dc1bd5b3481755 |
| SHA1 | 4e530b9b09d01240d6800714640f45f8ec87a343 |
| SHA256 | 3e9b9f8ed00c5197cb2c251eb0943013f58dca44e6219a1f9767d596b4aa2a51 |
| SHA512 | 35dfd91771fd7930889ff466b45731404066c280c94494e1d51127cc60b342c638f333caa901429ad812e7ccee7530af15057e871ed5f1d3730454836337b329 |
memory/10024-15633-0x00000000075F0000-0x0000000007693000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000101
| MD5 | edecc39414185c69c4502289ea2b02a6 |
| SHA1 | 622f14e2325688d9b63a604820887ab18c5f1c49 |
| SHA256 | 840c232217c212fed238e8ac1439b7bfb0cc04be1b9295cc783d593b2de137f4 |
| SHA512 | 3eace5544ee8a94f9db721da0ba8733a167fe8983106700c523f42c33116faffa03f0a007613a988ed709b8b23c8223882a0fb1ab01050d499bf5f321c49fac5 |
memory/13184-15620-0x000002612BE20000-0x000002612BE4A000-memory.dmp
memory/10024-15619-0x0000000006920000-0x000000000693E000-memory.dmp
memory/10024-15643-0x0000000007D20000-0x000000000839A000-memory.dmp
memory/10780-15644-0x0000020E694F0000-0x0000020E6951A000-memory.dmp
C:\Program Files\ReasonLabs\EDR\rsEDRSvc.InstallState
| MD5 | 362ce475f5d1e84641bad999c16727a0 |
| SHA1 | 6b613c73acb58d259c6379bd820cca6f785cc812 |
| SHA256 | 1f78f1056761c6ebd8965ed2c06295bafa704b253aff56c492b93151ab642899 |
| SHA512 | 7630e1629cf4abecd9d3ddea58227b232d5c775cb480967762a6a6466be872e1d57123b08a6179fe1cfbc09403117d0f81bc13724f259a1d25c1325f1eac645b |
C:\Program Files\ReasonLabs\EDR\InstallUtil.InstallLog
| MD5 | 789f18acca221d7c91dcb6b0fb1f145f |
| SHA1 | 204cc55cd64b6b630746f0d71218ecd8d6ff84ce |
| SHA256 | a5ff0b9a9832b3f5957c9290f83552174b201aeb636964e061273f3a2d502b63 |
| SHA512 | eae74f326f7d71a228cae02e4455557ad5ca81e1e28a186bbc4797075d5c79bcb91b5e605ad1d82f3d27e16d0cf172835112ffced2dc84d15281c0185fa4fa62 |
C:\Program Files\ReasonLabs\EDR\rsEDRSvc.InstallLog
| MD5 | 6895e7ce1a11e92604b53b2f6503564e |
| SHA1 | 6a69c00679d2afdaf56fe50d50d6036ccb1e570f |
| SHA256 | 3c609771f2c736a7ce540fec633886378426f30f0ef4b51c20b57d46e201f177 |
| SHA512 | 314d74972ef00635edfc82406b4514d7806e26cec36da9b617036df0e0c2448a9250b0239af33129e11a9a49455aab00407619ba56ea808b4539549fd86715a2 |
memory/10780-15659-0x0000020E69AF0000-0x0000020E69B1A000-memory.dmp
memory/10024-15660-0x0000000007750000-0x000000000775A000-memory.dmp
memory/10780-15661-0x0000020E69B20000-0x0000020E69B46000-memory.dmp
memory/10780-15665-0x0000020E69C10000-0x0000020E69C38000-memory.dmp
memory/10024-15666-0x0000000007960000-0x00000000079F6000-memory.dmp
memory/10024-15670-0x00000000078E0000-0x00000000078F1000-memory.dmp
memory/10780-15674-0x0000020E69C40000-0x0000020E69C70000-memory.dmp
memory/11040-15673-0x0000024F8C520000-0x0000024F8C54E000-memory.dmp
memory/10780-15685-0x0000020E69CD0000-0x0000020E69D2E000-memory.dmp
memory/10780-15694-0x0000020E6A0D0000-0x0000020E6A439000-memory.dmp
memory/10780-15707-0x0000020E69C70000-0x0000020E69CBF000-memory.dmp
memory/11040-15762-0x0000024FA5090000-0x0000024FA5142000-memory.dmp
memory/10780-15767-0x0000020E6A6D0000-0x0000020E6A956000-memory.dmp
memory/10780-15768-0x0000020E69DA0000-0x0000020E69E06000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ab94f3055ce79e9803b88aaeb1482b17 |
| SHA1 | dc39b2b5e810affe06ce1082bd7096a732d883df |
| SHA256 | fd8d0c3b9b63cee5228c8f3c2b6b71dea592d20879dfe494b35258e6db171135 |
| SHA512 | fe38a485c51b11c2712ffa5bb4e1c8861a31cf4f6f2586b3c2d351c620140de3781904cdc4213b81359c412290c63d95792c2a22dec6741b6386ccb102c85b5d |
memory/10780-15820-0x0000020E68990000-0x0000020E689B6000-memory.dmp
memory/10780-15819-0x0000020E6A440000-0x0000020E6A47A000-memory.dmp
memory/10024-15874-0x0000000007A20000-0x0000000007A3A000-memory.dmp
memory/10024-15859-0x0000000007950000-0x000000000795E000-memory.dmp
memory/10780-15934-0x0000020E6A580000-0x0000020E6A632000-memory.dmp
memory/10780-15935-0x0000020E6A4C0000-0x0000020E6A4F4000-memory.dmp
memory/10780-15954-0x0000020E6A640000-0x0000020E6A6A6000-memory.dmp
memory/11040-15955-0x0000024FA5780000-0x0000024FA5A70000-memory.dmp
memory/10780-15970-0x0000020E6BE50000-0x0000020E6C3F4000-memory.dmp
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | a623c96bce5db12fdf94618ceec9aca5 |
| SHA1 | e02fb1676db28acef86ba3760d5346c2d2363f9b |
| SHA256 | d4bdfeca3b78c31c1a92ab0788f70f69a099c425fca7e33214d1d5be49b5815e |
| SHA512 | cadd2ca8f6ee7cc865e48f2762b715705e2f8b1012314845922d0345dee0e3e999e741e77bd603ce15f3a9b1f78a2f63935b0689476f5d063684be53f63c942b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 106a5089cf88c0d5b51c7baf66e19ed7 |
| SHA1 | 7c9a2d8ccdb7d32e9a60f645363edc61c4aee153 |
| SHA256 | f30cb791d879f76ac1ef24c7871003b5752efad563a15723ac465744fa002620 |
| SHA512 | 2e512fa32f3cd7fe314a4f6b211ff8cffc81d37bc2d1db8a6741751bc2496d8775596a54ef7babe74b6476ec6b25ab1cf3775e468e4489a15d6f771ab9827fae |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | fb673d3175d80407d4c8ffe447cb5437 |
| SHA1 | 05b6c10fdbdf21205a8f52311a9a2e951a86fc18 |
| SHA256 | 3b01179513b4b1acd0171a287871229ef3e6d2f0586b28d58f28d768c9ac7293 |
| SHA512 | bfdd552548142cc83335aa7eda0a8c2965e8b692e5bb266c61e2863dee4e19cd72b5691dd2fdc959dd84e9cffbc77b995c1d15004797e595f777563b5ecd2227 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b18b2d5078031d257cddd5dbe5175ac9 |
| SHA1 | 40c2132b1b695c23131f580bf04de2734eaacc35 |
| SHA256 | 0e46e21c084bd2c02a25de40f5582a4051c37ba19a9eee89dd66995c347eaa79 |
| SHA512 | 2e8bc3b65e3ae12b72dd27ede513c6ab831dda40b4939fef0d0f355324332b1cf1d148aee487a2acc69717128d3d7213a2f56b034eb943041806aa071cbba506 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\cximagecrt.dll
| MD5 | 66df6f7b7a98ff750aade522c22d239a |
| SHA1 | f69464fe18ed03de597bb46482ae899f43c94617 |
| SHA256 | 91e3035a01437b54adda33d424060c57320504e7e6a0c85db2654815ba29c71f |
| SHA512 | 48d4513e09edd7f270614258b2750d5e98f0dbce671ba41a524994e96ed3df657fce67545153ca32d2bf7efcb35371cae12c4264df9053e4eb5e6b28014ed20e |
F:\LDPlayer\LDPlayer9\ldmutiplayer\7za.exe
| MD5 | ad9d7cbdb4b19fb65960d69126e3ff68 |
| SHA1 | dcdc0e609a4e9d5ff9d96918c30cb79c6602cb3d |
| SHA256 | a6c324f2925b3b3dbd2ad989e8d09c33ecc150496321ae5a1722ab097708f326 |
| SHA512 | f0196bee7ad8005a36eea86e31429d2c78e96d57b53ff4a64b3e529a54670fa042322a3c3a21557c96b0b3134bf81f238a9e35124b2d0ce80c61ed548a9791e7 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libcrypto-1_1.dll
| MD5 | 01c4246df55a5fff93d086bb56110d2b |
| SHA1 | e2939375c4dd7b478913328b88eaa3c91913cfdc |
| SHA256 | c9501469ad2a2745509ab2d0db8b846f2bfb4ec019b98589d311a4bd7ac89889 |
| SHA512 | 39524d5b8fc7c9d0602bc6733776237522dcca5f51cc6ceebd5a5d2c4cbda904042cee2f611a9c9477cc7e08e8eadd8915bf41c7c78e097b5e50786143e98196 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libcurl.dll
| MD5 | 2d40f6c6a4f88c8c2685ee25b53ec00d |
| SHA1 | faf96bac1e7665aa07029d8f94e1ac84014a863b |
| SHA256 | 1d7037da4222de3d7ca0af6a54b2942d58589c264333ef814cb131d703b5c334 |
| SHA512 | 4e6d0dc0dc3fb7e57c6d7843074ee7c89c777e9005893e089939eb765d9b6fb12f0e774dc1814f6a34e75d1775e19e62782465731fd5605182e7984d798ba779 |
F:\LDPlayer\LDPlayer9\fonts\Roboto-Regular.otf
| MD5 | 4acd5f0e312730f1d8b8805f3699c184 |
| SHA1 | 67c957e102bf2b2a86c5708257bc32f91c006739 |
| SHA256 | 72336333d602f1c3506e642e0d0393926c0ec91225bf2e4d216fcebd82bb6cb5 |
| SHA512 | 9982c1c53cee1b44fd0c3df6806b8cbf6b441d3ed97aeb466dba568adce1144373ce7833d8f44ac3fa58d01d8cdb7e8621b4bb125c4d02092c355444651a4837 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\ssleay32.dll
| MD5 | 0054560df6c69d2067689433172088ef |
| SHA1 | a30042b77ebd7c704be0e986349030bcdb82857d |
| SHA256 | 72553b45a5a7d2b4be026d59ceb3efb389c686636c6da926ffb0ca653494e750 |
| SHA512 | 418190401b83de32a8ce752f399b00c091afad5e3b21357a53c134cce3b4199e660572ee71e18b5c2f364d3b2509b5365d7b569d6d9da5c79ae78c572c1d0ba0 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcr120.dll
| MD5 | 50097ec217ce0ebb9b4caa09cd2cd73a |
| SHA1 | 8cd3018c4170072464fbcd7cba563df1fc2b884c |
| SHA256 | 2a2ff2c61977079205c503e0bcfb96bf7aa4d5c9a0d1b1b62d3a49a9aa988112 |
| SHA512 | ac2d02e9bfc2be4c3cb1c2fff41a2dafcb7ce1123998bbf3eb5b4dc6410c308f506451de9564f7f28eb684d8119fb6afe459ab87237df7956f4256892bbab058 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcr110.dll
| MD5 | 4ba25d2cbe1587a841dcfb8c8c4a6ea6 |
| SHA1 | 52693d4b5e0b55a929099b680348c3932f2c3c62 |
| SHA256 | b30160e759115e24425b9bcdf606ef6ebce4657487525ede7f1ac40b90ff7e49 |
| SHA512 | 82e86ec67a5c6cddf2230872f66560f4b0c3e4c1bb672507bbb8446a8d6f62512cbd0475fe23b619db3a67bb870f4f742761cf1f87d50db7f14076f54006f6c6 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcp120.dll
| MD5 | 50260b0f19aaa7e37c4082fecef8ff41 |
| SHA1 | ce672489b29baa7119881497ed5044b21ad8fe30 |
| SHA256 | 891603d569fc6f1afed7c7d935b0a3c7363c35a0eb4a76c9e57ef083955bc2c9 |
| SHA512 | 6f99d39bfe9d4126417ff65571c78c279d75fc9547ee767a594620c0c6f45f4bb42fd0c5173d9bc91a68a0636205a637d5d1c7847bd5f8ce57e120d210b0c57d |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcp110.dll
| MD5 | 3e29914113ec4b968ba5eb1f6d194a0a |
| SHA1 | 557b67e372e85eb39989cb53cffd3ef1adabb9fe |
| SHA256 | c8d5572ca8d7624871188f0acabc3ae60d4c5a4f6782d952b9038de3bc28b39a |
| SHA512 | 75078c9eaa5a7ae39408e5db1ce7dbce5a3180d1c644bcb5e481b0810b07cb7d001d68d1b4f462cd5355e98951716f041ef570fcc866d289a68ea19b3f500c43 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libssl-1_1.dll
| MD5 | e8fd6da54f056363b284608c3f6a832e |
| SHA1 | 32e88b82fd398568517ab03b33e9765b59c4946d |
| SHA256 | b681fd3c3b3f2d59f6a14be31e761d5929e104be06aa77c883ada9675ca6e9fd |
| SHA512 | 4f997deebf308de29a044e4ff2e8540235a41ea319268aa202e41a2be738b8d50f990ecc68f4a737a374f6d5f39ce8855edf0e2bb30ce274f75388e3ddd8c10b |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libssh2.dll
| MD5 | 52c43baddd43be63fbfb398722f3b01d |
| SHA1 | be1b1064fdda4dde4b72ef523b8e02c050ccd820 |
| SHA256 | 8c91023203f3d360c0629ffd20c950061566fb6c780c83eaa52fb26abb6be86f |
| SHA512 | 04cc3d8e31bd7444068468dd32ffcc9092881ca4aaea7c92292e5f1b541f877bdec964774562cb7a531c3386220d88b005660a2b5a82957e28350a381bea1b28 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libeay32.dll
| MD5 | ba46e6e1c5861617b4d97de00149b905 |
| SHA1 | 4affc8aab49c7dc3ceeca81391c4f737d7672b32 |
| SHA256 | 2eac0a690be435dd72b7a269ee761340099bf444edb4f447fa0030023cbf8e1e |
| SHA512 | bf892b86477d63287f42385c0a944eee6354c7ae557b039516bf8932c7140ca8811b7ae7ac111805773495cf6854586e8a0e75e14dbb24eba56e4683029767b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | dee28c3147786d526d0c94022fd5bb66 |
| SHA1 | a294364943c66af568d0d651ef6e1ab81d09f303 |
| SHA256 | 4dd4464e35652522e72f4ffbd5ce985688a1e10df934b59a9d2779cbd87dd838 |
| SHA512 | 95b45101663a47e98f9e39b471ab3a981fe732b09e571ec6a0af604b3c75160166e2f65a02af303347deba8d3132e545b50b47e615b3420cc1a678433829e21a |
C:\ProgramData\ReasonLabs\EPP\SignaturesYF.dat.tmp
| MD5 | f04f4966c7e48c9b31abe276cf69fb0b |
| SHA1 | fa49ba218dd2e3c1b7f2e82996895d968ee5e7ae |
| SHA256 | 53996b97e78c61db51ce4cfd7e07e6a2a618c1418c3c0d58fa5e7a0d441b9aaa |
| SHA512 | 7c8bb803cc4d71e659e7e142221be2aea421a6ef6907ff6df75ec18a6e086325478f79e67f1adcc9ce9fd96e913e2a306f5285bc8a7b47f24fb324fe07457547 |
C:\ProgramData\ReasonLabs\EPP\SignaturesYFS.dat.tmp
| MD5 | 2a69f1e892a6be0114dfdc18aaae4462 |
| SHA1 | 498899ee7240b21da358d9543f5c4df4c58a2c0d |
| SHA256 | b667f411a38e36cebd06d7ef71fdc5a343c181d310e3af26a039f2106d134464 |
| SHA512 | 021cc359ba4c59ec6b0ca1ea9394cfe4ce5e5ec0ba963171d07cdc281923fb5b026704eeab8453824854d11b758ac635826eccfa5bb1b4c7b079ad88ab38b346 |
C:\ProgramData\ReasonLabs\EPP\SignaturesYS.dat.tmp
| MD5 | 8b314905a6a3aa1927f801fd41622e23 |
| SHA1 | 0e8f9580d916540bda59e0dceb719b26a8055ab8 |
| SHA256 | 88dfaf386514c73356a2b92c35e41261cd7fe9aa37f0257bb39701c11ae64c99 |
| SHA512 | 45450ae3f4a906c509998839704efdec8557933a24e4acaddef5a1e593eaf6f99cbfc2f85fb58ff2669d0c20362bb8345f091a43953e9a8a65ddcf1b5d4a7b8e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\c63e208e-8ce3-40a0-8ffe-849ff2584a90.tmp
| MD5 | 4e009baf236260a41863f0773616841e |
| SHA1 | 9cac2da183eb47f04a1ca56c0716886542da2656 |
| SHA256 | e34576fa3aa2e8ab2d3a9a1a5ec79de9e6f858684ea4924cab5e559655bafd03 |
| SHA512 | 871b50d7d45118525fb7bac01a9f6eaf82abfb62668794bb19eddba62f5f6960f9499793e9038434181c0a1a64ed8e3b8a55246c4e31040e22748801d9bdead6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 419360703c824aca96f53fb4fc9861a3 |
| SHA1 | a71bb443473542955629e737ce40d2a8c29e5e1c |
| SHA256 | 485eb30455b9ee6aa79cbc3292b91ed82cc83e04b10849bfa4037f83712bacfd |
| SHA512 | b86fcc10dfad08c82370640bfbd7137c3f6683fc839af558eb1eea5c3a4698ab4cca1f1485a104d06080087edbec80eaa6f12831f9f7e6720fadece491cb4ae9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\9436cb44-b781-466b-886e-eac0b3195ca6.tmp
| MD5 | 52905db9cb379609a9de53543d520c93 |
| SHA1 | 0d72a802b2a2d12f05697b9266175ec984430bf9 |
| SHA256 | 66eb899c78a9a0f1494e272070883cc70092c3778fbd38e159a80bcee6f90dca |
| SHA512 | 0f7cc72c3b41bc2d924efa1c5cc9df5973fa840f39e9ba95b933968d644a31ba3b3489ddcae69bdf7e97d42cfa0d559a91ca6db3f533fb7e823d97affe08c507 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 12af3eb56d4bf957abfc880489b90ee3 |
| SHA1 | 7da7d582abb8514957c57fd34f78d38ab0ddf6f0 |
| SHA256 | 4e117b96f8ed843ee459327de58392566c3c3669aa3690778207353856aaf221 |
| SHA512 | 7817fd97a26f2900d03855eb65b6df037a2310d199542bf4c369a2624a56e5263af5aa720ea4cb1b63c9ecc7d316688b5629cf172059a1c516f5fde1ca27c3d2 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | 43d1c61b69306b16e17b54a1a3c1da7a |
| SHA1 | e14ef02b312b722dab79e59295722d4495e27a06 |
| SHA256 | 0eab28ca5f44536cf871f3ff648f9a7c2402cfcbeae312ac992bb3b860d85384 |
| SHA512 | 4d0ab706461d2eef380bb32cd16f685f99eaee984bbc4a6b3445fc149aae8f711ff84e373c8e333c301e0bd9f8f5d46b4f90c179d86cc87f38560a41b6f9b7d2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 8e433c0592f77beb6dc527d7b90be120 |
| SHA1 | d7402416753ae1bb4cbd4b10d33a0c10517838bd |
| SHA256 | f052ee44c3728dfd23aba8a4567150bc314d23903026fbb6ad089422c2df56af |
| SHA512 | 5e90f48b923bb95aeb49691d03dade8825c119b2fa28977ea170c41548900f4e0165e2869f97c7a9380d7ff8ff331a1da855500e5f7b0dfd2b9abd77a386bbf3 |
C:\Users\Admin\AppData\Local\Temp\c79ef221-401a-4d84-8647-a51ad2e162b1.tmp
| MD5 | bf3e019761e1a00c8ac4397d12411d49 |
| SHA1 | 58059e9e5dfcb1855c7770fe34b48dc62150c690 |
| SHA256 | 66e5674d567e1db4afc33ad8b38edd2b2e3cead40d329f10328b6c50f4239823 |
| SHA512 | ca7929f708f01f32c7a9ea01acca88392c0efa2cf0b45d9c0056736306a57296125e3616d83a6fd65c497580f404c56a62434b4cd274494efb3a340083a36202 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences
| MD5 | 353c4c3f04e81a766cefa8e9e5d84226 |
| SHA1 | 25f4382216abc0bc551ee217da452612e6b0cafd |
| SHA256 | 9d18410f76b3e462013adf0a54ad6bfa3947a3028621d3259a5caec72399a2a4 |
| SHA512 | 8ab68c5dcd1420c7678ab12759ef39ee811750ea2fe79eaa4e50f7fa59234bd2d6f7788c86f6b19f09d2b8614de69acb596e79e5940604ce01b9d84460b402ec |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 1d4ec8daa2b3eba39685cc3221f674d6 |
| SHA1 | 099422593ec50e32f1cbbdfe9c7ba3623b33519f |
| SHA256 | 47131ebe7002ad8091f99b16c2f846dffb674da5f40d2f5dab121c5b86475637 |
| SHA512 | 46cb2035d610ff8cd59015342d12fb363f44f66059d02c58bd4955b1212fb7318c7d98a5a718574025115d670e2ec2bf4c7c1eb68c5cc82769cb6e1895a9413a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\6a30ddf4-9c82-460b-a647-f43e27a248bc.tmp
| MD5 | 8c87e79bd8f98f5f822743491ddafd9f |
| SHA1 | ff8662c3ffcc90992ff6d3e74221d3c9f536902d |
| SHA256 | 7bf71c16a269e10e5e2ee8b353b7a8073e33b8f578c04940b8ac5ea6239d3b56 |
| SHA512 | 19a5b1abea87fa07301e181bcfba9748d77d66678b63300cd96c5e53cc0211152bfbd158687d39a9d8fa398aba2988a105e808eeb66668489a492a33a6b9a2eb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8168bbd383ec41851910e4c248422c7f |
| SHA1 | ccc98093cdec259ea5e4c30f2e54632cb5ba0158 |
| SHA256 | bbbdd7b2bcbf85b2bd663cbbe5bb4c167f4feb06366142b5555c36c9cef61661 |
| SHA512 | 12a868fa41202c03223d3e42de064ec2edde1ead9b56bb64d7ababb59f57cc851f976a23c576b04327854f305bba92b692e4b91431f6ebfb19237c5b19548b9a |
C:\ProgramData\ReasonLabs\EPP\WhiteList.dat
| MD5 | 892e06bb002a31d3d5f893fcdec8763a |
| SHA1 | ca56479db4fdfe010894d70080d1fee4ffd580f4 |
| SHA256 | db037200e61dea3d29bc2acb91c8b5cfa8b1e57b6141081f69d67d129c256bfa |
| SHA512 | 1e4b0536707f5996f139821d0a2bdbecd722e98efdec2d28caa050f2eb7b62afab2412c2c63db7b09b6cb744f5fc9b04b0adfccd34bdc48a3b0cd2c5e2448657 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 5f09762670c43d7ff89cc8bb2835f56f |
| SHA1 | 5dc6f8166adb41bb8ffe0db50a4d3fe27f290354 |
| SHA256 | 9335f163d0ed1dd932e665ec27e8dfaeb0e4f947cd4a95ab1acd9720d72745a0 |
| SHA512 | 6d5c3fd87b2e9eb1a63a223d986b535c4a098fbe098a436d1fc1769313227e30df5eaa454aa9ea9c0e839d349f74ec0251bed9aed0374575624ea6547b9ed2ed |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity~RFe60ebfa.TMP
| MD5 | e562b4381e3778698351304dc205e1e8 |
| SHA1 | a9f5d400c94c2bbaba96ba86317b3631be46e7bb |
| SHA256 | 054e163e41eab718ed1bfde4dffffcb223a831637186f42309eb08c953cd9972 |
| SHA512 | 9b31fde0d9c6d415e170e6cfae2e9a97f6a0ed595233cef6daa2043dd9191fa073d296efb3389a304d162fca086ffb280a31866197e49ef4991da60a07ff2664 |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Bookmarks
| MD5 | d7391c071cdfc257e83d57f4f229e136 |
| SHA1 | aa6460943762d0dbba66b18a15835bcbcee25458 |
| SHA256 | 30ebab632ad383d8f61af177730bc0f52ecd72845b40f1b6ed5a2c5f094b12da |
| SHA512 | 189bebd057b736b17386d2089be68ee44b87127df01ec45c360c3f1967eea4297c09231c2d399519b7646a406533fb357ac9f5db03c920a8a49dcb689b43f230 |
F:\LDPlayer\LDPlayer9\dnmultiplayer.exe
| MD5 | 77138e2662cdeffd61cf6210ae3fb8ca |
| SHA1 | a085b99630efc74cedd0be9a0eeb57eff7b3850f |
| SHA256 | 68c83685da55573ae966db3113ee513dd76ba489024373968e527bd44d814724 |
| SHA512 | a4621910aa3ae4b5dfa558e69d0270717341467cf067d9397e2bbf118f789c87eef8750ecb25ffd9c60f51f35ceb40b211ce9a738116c4dfc06e543ac90d1bcc |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Crashpad\settings.dat
| MD5 | 57710e571df2c8a331d83e16d8f69b30 |
| SHA1 | 020959b6d3984047be4d9e082b86c6e8a6dbb2df |
| SHA256 | 80edad97189606b2ae7d05ab7e04daa14bf612cb34df6e9e7557251aa0f5f8f9 |
| SHA512 | 859443a9a0d5a3c9586bea1c65fd77434638ae9daccdc5a11530d185ecccc457c3e9f3d1a2ba98d1af93ece678524c57fef713cfd3e5c02b819fb0c70b1eb55c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Roaming\XuanZhi9\ldopengl32x.dll
| MD5 | b2e3ba2084f827f2e46a917983363f0b |
| SHA1 | 41fd27f8688b7a755abc0acc72a2a6a0e1045c78 |
| SHA256 | 7daa3d35584a7e87c3e8e3afeb436d088209966471d6c766328087823f1f3e73 |
| SHA512 | 4aea989bda6efc91836264f04f23fb3760764e3ef7809f618ad949c2e64b5a167fe5d054607535ec22fea4942d9ddc5ea7f70a1f529ee23633c1cd275d90e508 |
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\0972B7C417F696E06E186AEB26286F01_20B3A034565B44ABD07A9F640D47689A
| MD5 | 5bfa51f3a417b98e7443eca90fc94703 |
| SHA1 | 8c015d80b8a23f780bdd215dc842b0f5551f63bd |
| SHA256 | bebe2853a3485d1c2e5c5be4249183e0ddaff9f87de71652371700a89d937128 |
| SHA512 | 4cd03686254bb28754cbaa635ae1264723e2be80ce1dd0f78d1ab7aee72232f5b285f79e488e9c5c49ff343015bd07bb8433d6cee08ae3cea8c317303e3ac399 |
F:\LDPlayer\LDPlayer9\vms\leidian0\sdcard.vmdk
| MD5 | 4d592fd525e977bf3d832cdb1482faa0 |
| SHA1 | 131c31bcff32d11b6eda41c9f1e2e26cc5fbc0ef |
| SHA256 | f90ace0994c8cae3a6a95e8c68ca460e68f1662a78a77a2b38eba13cc8e487b6 |
| SHA512 | afa31b31e1d137a559190528998085c52602d79a618d930e8c425001fdfbd2437f732beda3d53f2d0e1fc770187184c3fb407828ac39f00967bf4ae015c6ba77 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 989a0d787e1c59775f64574e0b3354f5 |
| SHA1 | 94b7af4ff6169cf3009897e7ad0e6de5464ff8dd |
| SHA256 | 761c6e1e13ee8e492bd338c926ae92b5e83191d8652d6051f38eb0f8aab578a3 |
| SHA512 | d27a189ab0eaae233a1d8b4c79938d2039c8114ba6d73c9796e506cea20fdcbd1cca47a0d9205b447a2fbfd3009ef1d471ac24e62cd2f38227724579cd3c6d00 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7589493f99656b8423b5a6e8388038a8 |
| SHA1 | 61c20b85f6961fbf6c96f93919db850e47b6453c |
| SHA256 | 09ec343e27e08cb1427458a7266b762165900de046a030cf11cc65fb1a7ef8f1 |
| SHA512 | 3d3651f6cec2fe03e8600fb2edbd07d34f2f4897df8e577a89fa1eeb9bfab7953ba5a4e36c68ef46508206b24a59b6dbb8f73773a2b17549421dd16ee7a89cdd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 07fbf571196268136341c2d245322240 |
| SHA1 | 0e998f144739e7535ab92f82b9668f6046178f58 |
| SHA256 | 0a4e621bafde4f0ac67a7831299cd8398b347e519e2ecf17a6afcb1370604dcf |
| SHA512 | 6c16e6469ce42dfd7627a20ff7f1e6e2bdac92615cd235fbdbd2a68f54f85362c62e17434d42713ef570ea59ce9dca71bd861682af3199467db46c730ba5f969 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | a34b69185524ce3210e40001304ce9a1 |
| SHA1 | a904eab6330f3a1d770ec45ac5b3335fd6a7acf0 |
| SHA256 | 8b60cd2dd78cf331167b799b26af1939635a4c89593a2636a69bd61c066501fd |
| SHA512 | bdce6e2145835271b141a391d56b7a77b917755bdb41299ad5a448a66c311532953582a3388f4982fe096f83c09d87c5bd3086e04fd8b25c1a5b62012c651039 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State
| MD5 | e52d50440ff01f48671d6dc9e405aba2 |
| SHA1 | 219a28987d21b04bac9092376b29f28a9ebace14 |
| SHA256 | a87d4102ca1b9bef0eff664703e120bdc8d018ca00c634d7b9c7c7ec292a920c |
| SHA512 | 8529df981505b59002ca9f75ad27828160194ff8b92bc26bfe59f27fb452c1448ade6191723966c23e4959e1c81f180e2b64613ddf501b9a93eb5b0b718b673e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State~RFe6121c0.TMP
| MD5 | 2800881c775077e1c4b6e06bf4676de4 |
| SHA1 | 2873631068c8b3b9495638c865915be822442c8b |
| SHA256 | 226eec4486509917aa336afebd6ff65777b75b65f1fb06891d2a857a9421a974 |
| SHA512 | e342407ab65cc68f1b3fd706cd0a37680a0864ffd30a6539730180ede2cdcd732cc97ae0b9ef7db12da5c0f83e429df0840dbf7596aca859a0301665e517377b |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | ee721b314e2d71c1cb84b690cc2793be |
| SHA1 | f1c539ab4178d877ae575f165fdf9256562f7945 |
| SHA256 | 4a5966349c6206c98e56208a96407c876a9bddfa64ee72aedde7dad66ae49ecf |
| SHA512 | 8325aea5fc586ca0bfbc513cb198315285641ebdcb876924c1a5189b5f02fd3f5ec0d620bc1315f34036add52825f38caf0ab925652f0271fa376f727af215ce |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Secure Preferences
| MD5 | d45840d39b601cb7ba88d9d64dd1d2d4 |
| SHA1 | 899d307fad91fefd3e02be8a9314befe10b93157 |
| SHA256 | c7394c154855275984a8b4f15ef33f08d2f2d2591ceab1031e2ccfc472f7c697 |
| SHA512 | 304d96058c9728ac3eb8c6b45a2e3ee4d0ef9f3c7bf33f785a6fe63d8f9392a54a8df645872b9a5889f3cea491d3d0f5f2b0f87266db64ba0099ec1e3a3dc2c5 |
C:\Users\Admin\AppData\Local\Temp\nsuD1BC.tmp\sciterui.dll
| MD5 | f40c5626532c77b9b4a6bb384db48bbe |
| SHA1 | d3124b356f6495288fc7ff1785b1932636ba92d3 |
| SHA256 | e6d594047deecb0f3d49898475084d286072b6e3e4a30eb9d0d03e9b3228d60f |
| SHA512 | 8eabf1f5f6561a587026a30258c959a6b3aa4fa2a2d5a993fcd7069bff21b1c25a648feea0ac5896adcf57414308644ac48a4ff4bdc3a5d6e6b91bc735dc1056 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\TransportSecurity
| MD5 | 6a9ffeeddfaacf2d451958d6ffa9af8c |
| SHA1 | ffcb8787839375278c8eef53b91d3cca7927c9c9 |
| SHA256 | 3bf92ac8ffdefb936117f56eec8d03aa3591c6654458b63fbeb95524fa9033f2 |
| SHA512 | e8aabfae28d1884b93c686ea5f27718f537d18acb18eeb37be10fc9f97d57054dacd1fa59e7664321bb9696381f7cc0bcc5b943e7e3dd5372680c32b40c99ae5 |
C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\AVG Secure Browser.lnk
| MD5 | 386a3a355d1d178bdd35378a2a255423 |
| SHA1 | ea1e0bff866a115d99ed1aabc0b7d76971b6a82a |
| SHA256 | 07d65a799b332e8c575ece6a3b7e5a2d950179f18738bf152ee4489063a977a0 |
| SHA512 | 4dec8fdad29e8441d6bfe8fc90571542d20a9e1863423d0c5c9713c180a38d4a88159d2924c28cd32b955e10c697be9a1330c0f472ab19352fc91fb0c4e157be |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 9ef578bd5bfe4eb2da32acd86c1ecc23 |
| SHA1 | 6d26109cc1cdb8d8ab64f714d369d42bc487d574 |
| SHA256 | 926781e75ce6322765beb5a8a9e02169c0cbf8fff52f5e856fd89e41e6795007 |
| SHA512 | 6b708a50c3195421a7e9f38b8ae9b4aa2caaa5d9d1e4179f0ddc6a0783aa47b9faa14eb3a24db91c0a688024049defc25c89ecac672df3ab042306e55f332646 |
C:\Users\Admin\AppData\Local\Temp\b3cd0196-bc75-480d-8dc4-be0e5c1633ac.tmp
| MD5 | 7361d437f5f0152896832358e4941350 |
| SHA1 | 918b3e9825ceb47f873267918877de97de71be8c |
| SHA256 | 11c5652a64869d8146a56f83f7b431d72c40a8dee538b78291408347a8f504d3 |
| SHA512 | 45435876b782ef718a10edb14263d16a56e60d8da8843c164baa59713717ab1ef96bf10cffbb206da24b0ebf186f0228dde3804c6b9c586848dccdcd9ba6cfc0 |
C:\Users\Admin\AppData\Local\Temp\4b5fbc66-ba55-46d1-956d-45cf52460e9a.tmp
| MD5 | 3008e7672855a4e6fbbb835c2a4d3e18 |
| SHA1 | fd1cd9538985773ef4b6b1cca8f9bb99e76fc8eb |
| SHA256 | cf40f88d5b46c423f0243bd7ce1adc39bf52f19208eb763f08c36388068760a2 |
| SHA512 | 6e1752f5bd155670c8aabe0ef97631257f4f2780b080978251df7a7bb0b18d1bea25dbe27a4e2a37cd77df3842f6b314001df5077fcd168d87fb239985f4e153 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_disabled_32.png
| MD5 | 99123906febbaff7bd182013b6cb4392 |
| SHA1 | b6eafdfa3bb2ce6c445709b97037c5d42f47042f |
| SHA256 | 2fd54e16073f6fcf4aa9a5966acb384706328be970541abcc524b8ba462a0884 |
| SHA512 | b23e140d01eae42f9c1a0a25062a4656a6a11ba37f882693a9c7c07539a71ee3619f7b593c93b016cd5a7d97143b75ae08c2cc49a60fd8839af0f976396f422a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\cboeampladkmkcbnnepgijfpdgmeaapc\1.0.1_0\icons\icon_disabled_48.png
| MD5 | 1ab56914d18699507389967e231b0687 |
| SHA1 | e2d5b7bb61c0f3b478ba35f12a4dee5bcb0136ee |
| SHA256 | 382c9f3a1eaae396c07bfce46aa9b311b281d8f64bf40f4012d62fbe6ab3e856 |
| SHA512 | d43bad6a9b232e7445eb7670d162b9370488345566eced88238420e25d7d9cd2050c3c25c629bf3969f23681d337e8ff0008c5ce93b4b1812f25b4346a0060c7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\service-worker-loader.js
| MD5 | 34679a8029e867292c60d4a37a5c597e |
| SHA1 | 994e855eec5b6ded3e365ce828f8646c6b6f7ee3 |
| SHA256 | a04c0b004f15f9058d16dee395025cf6f054fa33751242707fac789d4536d814 |
| SHA512 | 03734f81215043de34aa60a7d685114542d8cedb3be763d5292feb164fdb8b521f89d1641235da2d82a64da5278a30598cb7fb8fa3d9a87d026b572fc9f17482 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\assets\messages-86fb7e29.js
| MD5 | 6d62c5de88a2381b5627e0d2df7b9a30 |
| SHA1 | 08c76dfb73e09780b0b3f98e5da414494904417e |
| SHA256 | 068f97ff81dc092e4d201f575a2d330a0f5830e847edc6e0e80f8a97684ba75f |
| SHA512 | a193d284bc5c017353e8ce1a51f2449e2e58f0f35fbfbe8173f812bfaa91840f2cdede70897c64d271601f8836ef4f694dc099c2271c18b448b9892e5043e291 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\assets\index.ts-loader-12fff2f5.js
| MD5 | 3db80d2844748cb8365541c6c260ae47 |
| SHA1 | f26ea3d817c75932e73fb361eb87c34d2b74c731 |
| SHA256 | 12fff2f5f6d8ec89484ecb1b6337f693745c56c4b4f1d2b81774c532d21f9450 |
| SHA512 | 0b9266ed937bb441f76dff6757861a24c963f95cdeaae304f396edc093e088824021f92471f60b68f4bf135896dfb4dac9105e295572d2cdf85d629ea9c5b67e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\assets\index.ts-ae5ba517.js
| MD5 | 50bcf1fd951bbe65d3e9ceda508d29aa |
| SHA1 | 5812417e49b521dfc2623434dad97380b6c5d1a6 |
| SHA256 | 861428d94816c77a78e1ba0ab7e0c460c0716d3725b9988e96eec719ed9c73a1 |
| SHA512 | 12dd93b2a22fe1646b060ea5912e56b987ceaced3f836e46b1b6b3296c8f76d2927dbb25b6c76fef9e084fca0d2afd01a33e92319bb916fe8f03b3c461be5234 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\assets\index.ts-68082f05.js
| MD5 | 4b1999e443b36d6b3fbd8b0655fbd9c4 |
| SHA1 | 9ce799c09220d286590d98f025b2b1e254d1a4f6 |
| SHA256 | ce01cce8b0b3614b1655f40f28c7a39f9532ca9e94c3fad05021940ff8b9a0ca |
| SHA512 | 7d260afb87d8bd2e8d104d49094fd681a3c6f39fe455be0d2445901c2e0d224a1a2416bfe3f0c4e3417760ad4d530be26abea2f9c07f80fe047b847efed91a77 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\src\assets\icons\icon-48.png
| MD5 | 2184400582c25500a74577359a1f7e7b |
| SHA1 | e69eecf84f7d2d98bf236edbcfc143fa42d01bc3 |
| SHA256 | c6c3593c7d0af5c9a7f2e26b98ef2629e392c5da87df80653d94ebe412d5c9c0 |
| SHA512 | 24858ebec11fc0bb586eb2d6f555f5e798ec9708ad89b0a94957a1537dc150a584b70865d7fed53d3f122789812d390eb6af6b68ff4cd93296b2b0e5a21b103f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\src\assets\icons\icon-32.png
| MD5 | 9caefef512720012470700a11b0bd456 |
| SHA1 | bfc11bafa996fbbce1566a569a79d5d72b08f1e5 |
| SHA256 | 82c0a843e1df5cc10a8c6beabee8416281aa89c73798d7bb6a2cf4a237a24ae0 |
| SHA512 | 3bb42b23babd54cb902e595b84a398ad5b2c9bd2e4bd4951a8b0cdfdbf91f6d0e04bb1fa944c54d673babdbcf0400c1947d0e12fba8057c3f69ab1e61b89aea1 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\src\assets\icons\icon-16.png
| MD5 | 46c4711e8452178b9c2471f9c59c2667 |
| SHA1 | e020f7ba4a787f840d204525e8eeb21d0c21e2be |
| SHA256 | 4e1aed06fc4105c64aabe9580069d0cdeec3464a693241e7c02771e1beda860f |
| SHA512 | 42f2161205f28003aff9ea4a8bb33a0a0ebbdbb9bb5e9446efbca4f000a4315b2bf7184d79254c148da40597cc15bf8f22a02a3da78cf5c9026ae35e4bd695bd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\src\assets\icons\icon-128.png
| MD5 | af719a0c95789b088fe4b9f82dd5ee98 |
| SHA1 | cca49d2a728cd456b450cfcc20f91acf781c3105 |
| SHA256 | 5b861963c613fca1dc4aac9a416e43b2165b05a4277478f74b7f6562a378ff5f |
| SHA512 | 4a6f77684b3bc459897ab2709754849868bac64f4e099c1e74970339c944738278454d6c043ee8a2a0337e9891e7e7126bfc41e6fb0f5fac544b978ae36f5082 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\src\assets\images\adblocker-bg-1.png
| MD5 | 404ead15b3040c2a16cada6a18088aab |
| SHA1 | 57d6d1b3d601532d1825c738ee51d0971f137af8 |
| SHA256 | bd474396ecae2864798b9b33062afe3b599dc834db30b6a2f4cff0d0cbb9f9b8 |
| SHA512 | 12173b41f487987aceac82c13f63b1318107c48d6803dc1f89053245c1c08d092761399ab397da44f0ccca5d9ee3c79ab98081cbdb25a78ab5b97f0b52a4f784 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_400884351\CRX_INSTALL\manifest.json
| MD5 | cfd55d89aedcb24f5dc14662daea26de |
| SHA1 | 0eccccf18b2da8a23a34f983641c7c28f2ef5864 |
| SHA256 | b027e1e1bf93d33f4aaf3d61f7a5a6b34a48134be16f1defef2dc5349e2e8800 |
| SHA512 | 9cbadad89a57705a74a0d96055437a394ebca0752adbc1d1c56f8f8878f0594b65bf7c8826cbb8a48fafc2ff976152a79ed1b82776c83c3f54b0e5de11d3fbe3 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning_48.png
| MD5 | be6f1c1dc7f6bb33016092b100281180 |
| SHA1 | 868b191c047e5518789a7cee51ae41a4bf5153aa |
| SHA256 | 200d816fdf0e8649c7dbbd63c7088aadb4dea5708afa39b0bfaabf3721bb8667 |
| SHA512 | 744a443b2c1b246961763b15bea84fe88e82ba93e69fd6f85b3501dd55a32e6f4c24209e8abf067f8b4bb3036f05715a330951a052668d8993b8a5898e7cbddf |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning_32.png
| MD5 | 402a2bc59a0a246d2292abc910de85b1 |
| SHA1 | e7d2a897066d629e02e29df062063e4b0d8bb793 |
| SHA256 | e1dedf486f3073698c8895ea9a4b88e4c2d241fe66be75167f6ce989ea8475a3 |
| SHA512 | 114042b9e88008f379d44ccec186a7c5ee4a9f4899736bc286841b1d3112b6b7840b651c4a1810540c02d01471799ebb7e2a8cb055109dce7257e0e2ff8e67ae |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning_16.png
| MD5 | c3d1964e49f8c4c2bed7e6279dc88272 |
| SHA1 | 9874b2e441315f1b5d372d047178e5e502a3014a |
| SHA256 | 48295d2a05fe12fca99472d29de1646628723ff7856e84dcb85ef2f3606f4fb3 |
| SHA512 | 25f8a9ebebc7e1a1376755bf367b1b5b5792692dec215bf076a837b87e18f08a44c272614d16384473108bc07b1d90a9670a0d006c38557a41fe9e2c4b9c936a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning2_16.png
| MD5 | c5d0c0f7f9f37bb352e5bc8c2030a1b1 |
| SHA1 | 7852eab28175c5f64cf6c9a8e26edf7707133d3e |
| SHA256 | 04fe3f3d477e7f5c548871d9e3e8b3064e35996a4063a60a370dcee6a204db45 |
| SHA512 | 166412cb822fabcf8480f9d5c78fbd6a1e5f83ca6aeee712ce8cfdb4671d7a0979f486bee97ff01365ef7da1ae0790c7ab1d791e9b313beaa0ab9ac6402d4063 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning2_128.png
| MD5 | 3295521ba38f92deadf975a21e239a29 |
| SHA1 | 7078ab97f03566f57b5403db3bb45047126873af |
| SHA256 | 6ba4f2be7251c9379d3ecfbb231464b8fb7b2fcbeae7c63a8d99a074fd1b7dc3 |
| SHA512 | 3bbd77f8f25e6d5ecbe00acd6c75a992bb4688c835932aa2264b317496cb2257edcdcb88ccee8f46ffbb1388eeaf1f22165923088c76d87c2e1fae2d8c78b67b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning2.png
| MD5 | 3bb8509b350f21f21343c2e8a4eb22e7 |
| SHA1 | a33c97cdd060f3fd1bf652f5bcbdb1571f6350a5 |
| SHA256 | 2fa980c9bef20989d200998c632275ea4e5cc2dd1d1c279395ff27e56329f2a0 |
| SHA512 | 7e0c55e764a53583e2103e023ab003688aa9d44a4f53cc1e586489493285c57c2fda87e83519a2adbe71a5d0d8d80622ad0a73bb27d6fb2a91f348f5872782cf |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning.png
| MD5 | 9c15aebec8ee6361c1ba9a9edeb431a8 |
| SHA1 | fed944b15d59b3f69789a2a82da0f1d813709ebd |
| SHA256 | 7681cd645c126843720a72e21b3f8485d948c194320910aca06091f3cebf5285 |
| SHA512 | 1939d8e34a7866d658cd21f96922f8d6d0ccbe5fbdcd93278d194fc9e7aaa3f0d58ce32407cffc3960a6fc5aaf0df5abd8c6e5d61e47faa72fb698c04a310372 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_disabled_128.png
| MD5 | dc0ee05d8bf51d7fc83adafd09fd303c |
| SHA1 | ae16e45464becb6a5e5caab2b085acb1349b69de |
| SHA256 | 84e9fcc162434ce32e0147543d297f785ee68c1a51d9ead1722af63e7f620512 |
| SHA512 | 56c333c1ec1598600da2abe10c840334a1b82590cf083e7fe190cd4f1f53e19928a536fb00b0e66a4dd33eab712ab5f49d4abb37a2a2a02cce06f60a9657d644 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_active_48.png
| MD5 | c337db6be4c45b2457a8bc317b8f5faf |
| SHA1 | c934300181a555e4b87d2c53ff773a837e4e18b3 |
| SHA256 | c56fac799b899785b5104c4b44467027d9fcda9158cbb0b9e7cd1fb1293da6f6 |
| SHA512 | 1c86d736e62af07978e3645788f8f0d08f0b6914d3b774127f72e6dc02f2fcb828b4eaf2eff61b83cd224dcefdbe6a2b5b96f6c4eebf8da578829fd0b97b02a7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_active_32.png
| MD5 | 4ea619db394f5bdd0a6b999ea4f90a21 |
| SHA1 | 6c8a2f6def5d420c3a2959c8aee20d02b6487221 |
| SHA256 | 5ec7e449f1b3b289276a5eb2a3df29b05a821d1644b7a922a4da6027533e9249 |
| SHA512 | 44f8e02e9d8d7c04ebc846f3c5800c4e0109ff5032f1a2e5999d6e829adc15e71323a2148ad527b86138c1168267395144dcf46d29bbb7332b42e0e6ea531e03 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_active_16.png
| MD5 | a17aec844c2ec3e2c6d008711dfc26f3 |
| SHA1 | 4bf42eb9ae3f6596fe9c1fff6fd3c080244ce186 |
| SHA256 | 1186fea81c63be4e1458228de1082a7b1c9aebee6b4859853c2d0bd3c6f305e6 |
| SHA512 | 09eedf3d49291cab2ea0e73f5e7b0cf2ec7ab097d700800e72c8bf90b587f2eb766bf6c329ff4f4492a6fdf9099c8f786c03be4322d11c804d7237152e8354e8 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_active_128.png
| MD5 | 81346649cb8375946c672e32d3bf9b30 |
| SHA1 | 0c00d3bd8092954d0530be4c7d8fd9dee2e9a927 |
| SHA256 | c3a1be99ecfafd90e4710770d50c1260c92f150215f7244d22e5518e6202fd4f |
| SHA512 | 83b2af6163679ff038c919d94c5fca20fed3deec5a182f47cc397ffeda54959cfb6846f423a4904845c0fdb035b7eccf5e369496ad1b2b14a537f1bd1d53c0bc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_active.png
| MD5 | 7025023ed527694b815c4b4518a6a9e8 |
| SHA1 | 18943edb97bbf5e69faa3e0c92997c9c4ce624e9 |
| SHA256 | f5df828a3b73ed42fd72d7c54af685d562cb7aabf61abc7e61bffd8488f72ad8 |
| SHA512 | 9f9b4af1f1500f5b0f91678215cb76e7e9afc86ff18322ac0c0bea3350d1878ee0ffe94fafb834baba2bc347aba5937cdf39b738b31da2acee1f90186fe9caf3 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\warning.js
| MD5 | 2520c3027fb7fbedeac649d66a93b4ab |
| SHA1 | 22f3341f06a6afbdbfcf1ae70773fe74ddef694c |
| SHA256 | b2e000980ddbf4e1f2fd6f7cd5b71143663503173e59a6affb4879d5fbe82aa1 |
| SHA512 | 865af2d54af5768eb5bb71694c9604afb6622d6dab6534bc840af4827350f1d3780e4def31206ca5a9cedd1c53225b8a4302dfadedf390c47112fa49bcc7bd72 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\warning.html
| MD5 | 6f6b09cef174e705e742183653fe758e |
| SHA1 | 665574533f57864d79be4de7c99fa7722245d50f |
| SHA256 | c0b2fc1e63b6f7ef9ccdb9d43e4bcbe9865d8acda57839a4016087553f265faf |
| SHA512 | 006f99a860a6ac6e23a07e6fa3dbba060096a1f50ff839a8a21a0d6cd114fd91c432b9425dc96b78adb5571945a1d03b5d94af02bbd6127f042fdca45cd3f541 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\popup.js
| MD5 | 669f0c4e8887610b9c9aaee834beef8b |
| SHA1 | 4e51dacca348d1a898bd697373eb0f829f076858 |
| SHA256 | de98670bc1b6d73a979a75789ff1fbae52f307967b899742b2881a9471cdf63a |
| SHA512 | 037b4b20219f6f0c82bfb2c18a351af30641c10d320e3eda7cdd4dc258676c8cac40a908c119ed8ca34f4c2b76394bdae3ccb753781fe3034edeaf202042b25f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\cboeampladkmkcbnnepgijfpdgmeaapc\1.0.1_0\popup.html
| MD5 | 8dbeb11860aa56321c607337cbcb86e6 |
| SHA1 | c209b2465a5821a5ec9e8d30b90fad362a500933 |
| SHA256 | d05e125f910c646a127da2be326c62a1648bc90a3ca682afdfca6a2bfc5387d1 |
| SHA512 | 1f3ffe249bdf93a935ded209a27436d6645acc83efee224a1d10b934eeda87599a1ea7cf14fc333691e5c5cc8e2ca05534ff41f17f3721b085ca50766b8be449 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\manifest.json
| MD5 | c1fc1094d80a1dd0310285a724d8ffdf |
| SHA1 | eec342f83ed6fce6e53b51a7e2f779c0e1ca6e2c |
| SHA256 | 45bc49661f5776c00adf7d15a6d5320a61b40dd01084c997b4f3171965f6069a |
| SHA512 | 05b31904407be1abc47acb84722f2b1b56d2428a6fb926b264bd7bd4576dc13b31baf0008f192013bf22d9f263f2f6c254b10d6f139a06bd36dbebfbeaf77450 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\cboeampladkmkcbnnepgijfpdgmeaapc\1.0.1_0\d3897737645de49087f1.svg
| MD5 | 136d1b4bf4b7adf44865978068718c94 |
| SHA1 | 3383fcfaf01c48b73f9ce7f2f662d0115577f9ac |
| SHA256 | 1f345b3511f67dc4216077e858defc94df174e04e0c917a72f35f7c708b855cd |
| SHA512 | e9d16dabec6a07f7652d97b340cda70f0d7b2893f940278a9b3b621ce0062294e335614dc2f397d4726c866355a176ad0048b272614e36a55247b32c2dba2ff7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\cboeampladkmkcbnnepgijfpdgmeaapc\1.0.1_0\bbddbf12672a339b7dc0.png
| MD5 | d6506d55722e451f4d13151ee693f680 |
| SHA1 | 9b2f8a60d9da27b05429a9ab30d62c1c518da669 |
| SHA256 | d496c91adef2aa2223dc421188e0af4b083e052552d3a246e62d36483ffe269c |
| SHA512 | 55cfea26435d14a1bd5486167f79f1e65bd965e3aae05be36d61e0b38f813012621b8f2d32f2f0087f41009ab579def4f777ba5268deeae1ccbaaf9665c7120f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\warning.svg
| MD5 | 408375716fb2a77720319b68a8004099 |
| SHA1 | 4cb7f9007ba4c268df39d5859580ec22c4676c53 |
| SHA256 | 57590da87b240ea2425384bc4b06c2de9a97d25cd3700aff91827f62607c88fc |
| SHA512 | 7f300dbc7a9835dc2f2b694305225403ddac0204dadb9cbfbb5cfdf734aba4f140525260a07b2cdc2caaa3e833ea4d469268641c1ef64bd40180b75bcbefc643 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning_128.png
| MD5 | d4ad565db4d1579ee2500aacad91b9d8 |
| SHA1 | 069747cf07e26049d82afc520c826ad5b3b477ce |
| SHA256 | 652a2d5d2406fb45dbdbdd03fbef0f21a3efdf41beb1d654c0989f1dbe40b026 |
| SHA512 | b7994cef1a7988aa3120b7224af657468a6eb5f2f9fe8bf329ca2e0d58b170d129ee0a46e30c1297c3186da2486576a5c54ee7d0447da5cc0d1014affd58ffd5 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning2_48.png
| MD5 | d7c76d7bd1c05c82ffe2a94f987e9566 |
| SHA1 | 01b9351d8320734b8c20ee2533374d820fb814ad |
| SHA256 | 8dc1c6ae1561486b4da74a55b74b9470367d5ce040c55448af3ba17c214fcaff |
| SHA512 | 584aa9d9ab355326788ffe7f1745e8d7afda5303650d58c7fa85d0ac6a63356b3b2fcfb3163804c42bf7bce549ae4eac7660546e4b495aa4c00bfdf335b679c4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_warning2_32.png
| MD5 | addd7e9683ddfe9502a4c6cb84fec358 |
| SHA1 | cd06fe06a9151d7df976822d11d23349ff779d10 |
| SHA256 | b3d2181f3652885081501b31c30e6c1d7f6e30ef4378c20a1caabee7f92d6029 |
| SHA512 | 7a803bc03e36ef5f9639fc12a21da1a602380f47e822a5df879eefc45a3419d20fed4b750bfaab4ba951e132fbe72d7da79e398970f8e6351d8ef995e2bc913f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_disabled_16.png
| MD5 | 486b9faea77d0864251ef8d4666ade5e |
| SHA1 | de162b46c9fb7fccdcf89a4d8977d67cb5400edc |
| SHA256 | 47b21d13eb7e258e884ea3af2d61c2a3a2ec2d94f84171081d8cb9a3a12385c0 |
| SHA512 | 755ef069cb929db1ef2aeb534a69e0332fa1ac290d070ad35a8045fd9e03d1228b0bd99b9ab0b3b193f6dd7cae827362e0694f21db79c1e1dc8cf8a2033ad26c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\icons\icon_disabled.png
| MD5 | 74e6dab6dbbd5d5f33528d4f3aa4d035 |
| SHA1 | 8c4c17f7a4391ad5663aa450ddd70d47c0cee368 |
| SHA256 | 869e9c156f96d0463156e9b2f28e276a706b9e6b41eaacf41ee5b45568ef7148 |
| SHA512 | 3ecfafb76bb9983fd3109dc914f66530ee53c14d1a9babd6983befb8785a94ad5707d48f3b33da4b8faf35f873cda98ddc813b0c45eb066b09e0c1765b03a44d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Extensions\Temp\scoped_dir12380_2022520840\CRX_INSTALL\background.js
| MD5 | a4bc45976df2440091fa127bd8c44c65 |
| SHA1 | 1d7af45f71962ae53625b0f4c302ed97bd50157e |
| SHA256 | bb43178ce7debf9c993a72e764a4719725d92932b05b754f9de5e0e66813a7af |
| SHA512 | 8732daa7a3b041a9e9cf3dcb43dee7006fe05a1e2d5d933c6025d78c2d9d5d760e40b4aebb1b33377cd33f2a549a46c152331f4519648c0ccf149ba50ed19557 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | d5af481f5ee0165349f79e2c64aeaff5 |
| SHA1 | 54471a065702fc1991639a87f7bfc8cc0a32a01d |
| SHA256 | e3dc84538b5faa6d8bd2d70317e25348ac37e43aeb450c5e7d3202b75a4ac8eb |
| SHA512 | 9e3b57103ece86d48b9a93d9a26ac956d4b33233bc3fb47e2694cabd5dba8c6814efe03817dd992b02f2da4b1494205f1cfa2f85c84620373de95dd17244764a |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences
| MD5 | 13bb97a3c0b33b4d9e66dd6fb096d280 |
| SHA1 | dcba5ba928b30ccf698729e38219cc13c65f5ca1 |
| SHA256 | 8f16d94ef346cd42446026d6b6e74ffa9e0f3cce1133c544adcd3291a2474559 |
| SHA512 | c45314a1a6a3310afe329593e292235edae1afe45271ef134b64c941c736eddb7e112a193cc58ff74d53c62c7fa7dc85289308504977931c718c416d9360c855 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | f0898e58a915bcad508d80faee0988c5 |
| SHA1 | cf187755de60272c86669fbbdebda1772516b4d3 |
| SHA256 | e824dccf9524c2b8c3d85711120099d10d8d73b81415760b95108fd7df4961eb |
| SHA512 | 73e373d8211809173a3ad623a2ec585f7fb7c1f220290a44aec7977a1bb2ffb78b7f8a8538e6cdc149ab354a02946221e63af01f049dd7d4264c576ce7857626 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Secure Preferences
| MD5 | 47e794831a9f0413419cb8fe82ed67ee |
| SHA1 | 6df624b1e2dead9415363acf7cb54e191fa1fea2 |
| SHA256 | 097b25966e730045fb5d991e7d8c4019d5bcdca50b078f4683f85d6d2755e296 |
| SHA512 | 3231a3f1174253ee657260507d59178bd2e8a787ea770d196d7200f35f9926283836b00ab6a5d012c560c2b8a53df251b7b15ae06974213891b1ddf3f379176c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Secure Preferences~RFe616ef5.TMP
| MD5 | 1d05f3dbbf4962954a905599bbf3a508 |
| SHA1 | a993d0de9112795a8086c0529f755036dded1158 |
| SHA256 | 7603a1789d5b30ad11e3c58291f8086f8a9bcd5b9200c12b3a72fb1c8cda2f61 |
| SHA512 | 8483d548364ab534e257766e052d77d8033349b0c3801b2c62cbf0bc408184e70dbd971b828b2ab9818ee502e5cb42168ede91d484c9d55b2f52a891a7a4b0a9 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Local State
| MD5 | df08d3c57d747ba6f621ef35532ae172 |
| SHA1 | 9973f44c7c6d5282472f912778c95320876470fa |
| SHA256 | 840b8f6a291b5dbfe90ce29612adb321dbd64863b721331c427d1309f71e0572 |
| SHA512 | c062d7d80c61bba556a4bf630d6c3fcc2d38ddce6fdb9d02d899ec2477351fc2dd91395a2e6021c40450800fddd0e34a4dde6ab610151a79df6ab9e92de8f4cd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 5e4623b524a84fa9b4622f5f753a3377 |
| SHA1 | c8247cffc14a174ad2f058b5ba60d83b729498c3 |
| SHA256 | 45de324fb4764d175fafc04a1839f398e5f215f51937e9b370f5f1577e24b461 |
| SHA512 | 8199a761ea5fc41f42e5bb9c5885251a5fce2a5e9d7ddfcedfe91ac5f8b7bbda85c648b90c1a28a446a59af77ed0179f151e01b08883911920b1d2dc50a876d0 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | de9b32c86ed4aed55f29d1124bb25761 |
| SHA1 | 90371e79b27b482fb705c9b9e36844d70cd610b2 |
| SHA256 | f008c3a13b36f99890620469c9532f31962ba96141d6792bc7a1c3136a726c56 |
| SHA512 | 96801a2bf7aad80e915e9959ce803692dffb9a9abe1372c2ff241996c89eec09f8c270cbad648866654548c4e9e9c2f30899878562ec735a37c1f30f13364332 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 311c0df6c691ca5ea2b0cf2c5f7b76fb |
| SHA1 | 6c5277cdad54f36d41f9dd6a9cdb7bf9959570ea |
| SHA256 | 58b9e2bbdf1e08d64429055f732d20152df933f9aa6cc53f9a3a09c424186700 |
| SHA512 | 4f5776802078b0574688474efe1bcfc8b9c18fe2e387cbbc24077903c7d8492d988cc39663ff1e8022fdf88b926a77d4080be7f16bcb8e0811d3e9693c1499d6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\26cc8f430c37ca3e66a8d3408a02dcaa5fad402e\07216c11-d3c4-4765-8cb4-4dc737bcae49\index-dir\the-real-index
| MD5 | 1137f05c9e9b4be320f28c2f080da4d3 |
| SHA1 | 83ead5e9aab63ae8d17af97f5f988a2b577f467a |
| SHA256 | 8c6213838eb361e1ea7678d37aeece5eeb71224e11c50d50509653bc1dce0b7d |
| SHA512 | 1fe63219337af442162ff567e513a9e9118367d96818e7c79c1b98e74c305150a973b4d8d199068dee16aba3f03f56af7d0f74ef31f4c3f677dcb71d06469463 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\26cc8f430c37ca3e66a8d3408a02dcaa5fad402e\index.txt
| MD5 | 051b8d0dd56f54b12c9c3b2e6ce76fb3 |
| SHA1 | 40dcebeb59e982df8a843504eac8ee06504d945a |
| SHA256 | 2e72de4c9940531326be6e5f866740014586fded45b864f73a4514aca8dcd6fb |
| SHA512 | 66e77bddd2ce7e7a052c8daa751cddb6f85458652a1160792ad949596f09615e83f9082dea3e84d78d163aff76feda3a2998866cf9f5ed93c0e2971647890022 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 5685000abc01efec52ea0255bbdf70f9 |
| SHA1 | 256d1d6043c514a6382ffcff6369720f9fbe6b4e |
| SHA256 | a6913d4b6cc8488e55faf4eaf1bd90952c844191cba3661123e6aac5a0fa995e |
| SHA512 | 8bce3c4d1b1952f6d5713d10102f57df7adc3b59f2a0365bb0619b3a2baf0306b02ae743409f4bd60a6144c95c5d77bc9f3e2350437fc6214084cc5cb9803254 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | c41b7d999167f286e85216565bff63f4 |
| SHA1 | c678fa738d5a2e006fff3665079affd9cc33e75c |
| SHA256 | bef5bd5faea894fdc7b48eb6f324984911937b2794c94e12050a4e1d3c53945d |
| SHA512 | ee0468a5cf96f2afb366404ae85c983bc4aaba4d8c77885dc6b47e28c50be073bd24e68c8e28a9790f0d4b31f48c233c01806543f0d96030282dd913d44e197e |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 2b8229e7744057eb12c4d7e39882b3fd |
| SHA1 | a53aa074956dc191cff7f60987ba4ea498c772ab |
| SHA256 | 44e87bc3cd8a77f64db305cfbcd9c975e69412545e94ae12e9b8b1ee51ea1ca5 |
| SHA512 | 01f8441e17a970df9209fdf61a13ca1ddd2d47213ebabaf6b0a5d2f6b484dcef5fcef4ea3bb6b49f0946d3fbe82166b892d332be2a4a864f8581a90da5319073 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 16c6f998aedab232d44614347961685d |
| SHA1 | 4fbe1a95be200950b5b1c1b19df4dbdf1a832b43 |
| SHA256 | fe1d2f5425bbdb0f9925f7f99a1542e47b51249250e3186472ceafadf8201c58 |
| SHA512 | 6c918c2eaebadc57fb5275390af496e0296891e3705794e394bedc5c67d5f464b2c20269d5085dffe883fbe6afd70995649173e406bdd305906ee38def3af2d0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 5f7e9a09541f0da6ce153b0dd8029c8e |
| SHA1 | 214eb057e2b1c723f6d8b88ca29d608ea473721a |
| SHA256 | 63f87b38c82ffedb7bbd10968f2017b4a240473a33962a2b68112cc045811b2c |
| SHA512 | 9ff794ccb27417ecc8f9dad7e1c053fcf86d0fbfb38c3bf17f8b7f174e57a3e0a6178b99caf9f60f9f82d5341b6a55575e03d9d2267806596636df1bc0e6eefb |
C:\Users\Admin\Downloads\Unconfirmed 682859.crdownload
| MD5 | 2b94924855cb2faa5428d2392a223c9c |
| SHA1 | e0fcee0fadbd0e0407f5b2e21cecd180445f19e8 |
| SHA256 | 3929f40a5c5f7ded4c2fd50e48cc27cb38305b220fefce559c31f10bc6f0b1e1 |
| SHA512 | e1721a8e5fb45a8cdea2d2380b08b2b075f54a9cbad9f616199cf5a6f2023be721a3317a1cf3c75ac3a6e0a48fe451aed1333c3654cba8e92cc621efedfca8fb |
C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP\Network\Network Persistent State
| MD5 | bc4d6fd11733f6083525dba70b8269e3 |
| SHA1 | 6d40bc8fa2bdb12073e826a5195f5b0540a803a1 |
| SHA256 | 920301a2b45a0ff7749b9df796447370bdbbd88fba6c3120b56f9c11f03ba9cd |
| SHA512 | 6a60e341214d2b3bf47d8871abe0b30dd1a8a896e87f62cb05bb3f67b9650c4796addbad739358e2ade3f1cb8403c5ad4a4d83cfe71d2db289a22f945607ccdd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\DownloadMetadata
| MD5 | f1d555a831a67cf5e903c22a36fde765 |
| SHA1 | aee51ca1af0057573ce9258e93b3a739e7c7cbdb |
| SHA256 | f9987808804f6d6242c2b35322088f9fff26ba5919d0c1d0f7f62435656e379c |
| SHA512 | 0cdb43614a69f5b3ea40e400796d088d67862e71bdbf957b8157e8f2dc2b6897d2b36e4c0455ab82a8275bdf4f87b7377b07634faed3497240134a1f600824dc |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | c15f6947ac51cce8787615346cd2253b |
| SHA1 | 6b4b90fe9de80dff562b8914080208a81c1ea207 |
| SHA256 | f94378094ed91e1873226544137c807892e636d8d2c1c0757aba188391ecf9ce |
| SHA512 | fcb25b6aab0909a49ebd59273d3349ff710f9e73980a8b9ea3e9a0ee69d684cd220d6dee805bbab89fe33592835f7baa12d0f21370ca7cb06dfbe5e1a355f1c5 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State
| MD5 | df302b6d9abc5e5d0404f8d730ada37a |
| SHA1 | a0b15d8d237114719f6f336a5b9c572c9a08c819 |
| SHA256 | 720b72c1ee4e6f1cef459398a22548a77ed416c35aaadf23c1cc4936a527d82c |
| SHA512 | e5fec1676500485e519c829d9dbfb8dc9199ef4455c74c609c0d05ef9636e94fe29bfabbf76e13844004e653ea345630ffccfdcaa3f8d0d67aec5a34a3747774 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | 0aedfc7c6d72b2f6cf84020782729c6e |
| SHA1 | 260110ac931acecc9482b862b3d8dfac8f45e676 |
| SHA256 | 57fee9df5f78a15b90481ec383bd642dd4fc24587f8b6bd4c02472bb20b1b4dd |
| SHA512 | ea5f2bb0a40d6173ccd3e432a5e61c60280ed263cf061826715504b383fdfa221d47813f00dc5b77abaa3ccd5c3ff08e973d66cfc63772b79cb409fd0d3c7176 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_000020
| MD5 | c83e4437a53d7f849f9d32df3d6b68f3 |
| SHA1 | fabea5ad92ed3e2431659b02e7624df30d0c6bbc |
| SHA256 | d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb |
| SHA512 | c2ca1630f7229dd2dec37e0722f769dd94fd115eefa8eeba40f9bb09e4fdab7cc7d15f3deea23f50911feae22bae96341a5baca20b59c7982caf7a91a51e152f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3995060abf31c91df971c7b0fc6b5943 |
| SHA1 | a99051c693efd58608bc636b9ccc3a09cc3cbe25 |
| SHA256 | 4b02f99913671785a91f8013c7f4e09b8714cf51e8347a99670de66d21cebe62 |
| SHA512 | d81e25accd49a976f836f50956fa763b5f5a47fe1029c31c4cfb6829a1e92beb77fea42bd91227211b254ce0b9bd4b7cc44ba8cc389dcbcbee43694c4fabb0fa |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\TransportSecurity
| MD5 | 5eee42f91da03f2c7260e2e7e2c63c7e |
| SHA1 | 8d675d26133c990241fe0c70f26230005db9890f |
| SHA256 | ecdf59e7ffeefa1a09129d89232fecdc124a5ab583ad54250de3d0c616590505 |
| SHA512 | 51fc3f57f1a980b2125316be2a61507597fec9a1316dc8043c55f1fefc7e4b094032ee8e016cdb062d026b5f9a34969acecf45653bf13a266b4307859fa2962a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 254b8a995b2c6363816b0480006bb3fb |
| SHA1 | 05c7732c56b5c66ff921a2fe6a0f3ef8b1d1db3a |
| SHA256 | 7e399335bae5aee9af7976b6e1a253ab277035c5133e540a733a5cc13f767fe8 |
| SHA512 | be5e3abdf71bdaa39dce4faf2cf2ab6df6ed722b2b4a8c4d9162ac0d6545ced66bbb1eecbd47db50f4a9e0ba0ddc0873a1984ba47a5850829308c6b98044fe0e |
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler.exe
| MD5 | f73e60370efe16a6d985e564275612da |
| SHA1 | 2f829a0a611ac7add51a6bc50569e75181cdfd58 |
| SHA256 | 9cf076866935a0c64366efaeff2ec76d45ac816030ebd616fd5defb1870bc30e |
| SHA512 | 2e44e87c285bb7b72d45c8119d08ea6f2d13cea77cf0005a3cf530790bb86c7f2df7c5edac9d86c9d7214abb224738c3bf6b31f6bf104051512bb1de133042dc |
C:\Program Files (x86)\AVG\Browser\Update\1.8.1693.6\AVGBrowserCrashHandler64.exe
| MD5 | deef1e7382d212cd403431727be417a5 |
| SHA1 | fac0e754a5734dd5e9602a0327a66e313f7473bb |
| SHA256 | 7d410e9eabd086827b16c89ee953a643c3e2f7929616c0af579253fd8ca60088 |
| SHA512 | 6b472a57fb89b128aad9ab6313a9ce8b171f7d73264c67f669adc5cf1f0421d81f654dad1419b620476abb59dd54e1aa03a74a26c5c93813f6fb8575fbd97d4d |
C:\Windows\Installer\e628f6d.msi
| MD5 | 66140e921ffc869e5dbd7d0337503f1a |
| SHA1 | cc26b0818dbb2a4d3e242fd1caf7b45e036961c0 |
| SHA256 | d2ef84b42a4358e58f5566d842c389b229ba073fcef20b2a3007b6ce76a06d2b |
| SHA512 | eb4a787e76a6700112349b5eba78a4467ba4a2364d30eade70acba480e4df1c5d48bcb31ca136f81b350c466911af97cb1da1ba964c2d35003a4e3e86c738772 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Preferences
| MD5 | 6069c522f4be624c33d30eae38e3ab53 |
| SHA1 | f933574c94db81cb1ae83cbb07062432fc8f05af |
| SHA256 | 2b52b138950ed5abf0ad4baf36f702d2ed19d0e85db728d3d0e91a5bf4fd7f5e |
| SHA512 | 012d286604a6f8a6b6f8fa029924a1e4c0248ea9b6a22db1227ac602dbc0af1090da7617c979c58b800b0c8293187c3f6754acdd3a482c396c018d4cbf9675ba |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 0631dba30d06f29713db4cebaed23d69 |
| SHA1 | 9ab6e23498015968d0179ede17ccc88ce85d58ee |
| SHA256 | e61788f14ee67ed1b0ac63ecd8b823f4631b63b07a08ea742f71defba826706d |
| SHA512 | af5b00c13b18d0ccac330c15bbd63a32129bbfc7821b306a2ea5dd99d4e12c99ef8a80a8f3b33f0739ee5b50165b6f086bcd24275935664fdcdffc8052e7491a |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1309947442\manifest.json
| MD5 | 77948bdb2e35fa15564864158de8cdbf |
| SHA1 | cb2945554466894dc0476b6b90d44ca5ceb3f28f |
| SHA256 | 07ced9cfb310a0616c41151dc8359d42d795fa5ebdc3aaca30bf8c365b8acabf |
| SHA512 | 0df2c59dab68f5071fc906075efd601032eb8913efbe21788168cc0f29e0919f13fa2aa86476d9c13808193f4c635057f155d702855ab6a4b146d49fbba88dfa |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1309947442\manifest.fingerprint
| MD5 | e1364bde755fc4ffee58bb50ea187466 |
| SHA1 | 335d018a918bde48931e042bdeed14ef3cfdb897 |
| SHA256 | 6e8564a3be7c1439bcc7e3246b2ad68304b7e6e46db36733b10dd8954c17f603 |
| SHA512 | f82f8338cb0b7568a922ea68a4c6822d7b5f369108171267c10adad63469fd66ee2305ad29289a0b6c4262cad3a052a869bc4e378369951cacdbf88e44b69834 |
C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP\Partitions\plan-picker_5.35.0\Network\Network Persistent State
| MD5 | 52e394a5c1752ce7aa65fc3589dbd2a8 |
| SHA1 | e975cdedc7b0979b91d3c84257573a90e22404b1 |
| SHA256 | 7656e297de79748db27a81f2503dd6151eddd72c1ba8956b69e2320f88d5b46e |
| SHA512 | f19b2d98016a196319d681d661ce62f04d82d3c2a86c0d04ffd588e6413eb69f1b15ded4b127f76518db164c7e9f011f71430032a94b02692b883ab170f42ac4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\Network Persistent State
| MD5 | 3ad721dd49dc077cf6b95bb7abc0be91 |
| SHA1 | c8818a106d0a3d1f205e4b55d2511d22bf6f80c9 |
| SHA256 | 77191a4e15401626f53babfe3aa5bd627abafd78ee4c8f9739d314cdd108e500 |
| SHA512 | fbd83f0b4566701556694d7012f8e347f4a98e92b98928a5ce6cc5dd5312169edd272f78806aef91e22e23f659eb88e45436cc3fc8229b5d6dfe3a3ed834fe0d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 9e2c5d80924274b0aad21aa442c0a77e |
| SHA1 | 1062d02511adb8e5763c11e9d366f4378e8a0353 |
| SHA256 | fb2f6664db69a02832a7facf845c7567bcbb8d937a2e8f1b672edf26be5ebcee |
| SHA512 | fdbf533a7e86cfd4febc1df60f27e2b0f388f3f4f000e2498724a6529c8e6e3d10907856e41297fc5519b345a9fde8ae886bd6a04247c063dee50274b1ec94c6 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\TransportSecurity
| MD5 | 6323482cd50670f070e6cf1de9eb1863 |
| SHA1 | bb3250c6850c0c2c1a9cec35c4c0fe90e716c351 |
| SHA256 | 25e6bb107e3623848a45b26a5c9f626efccfaa0ad6c23a3e1050febc49c2e990 |
| SHA512 | 1f3e8f7ce9404fcf3487ca1a31bbc6cdb7b6943703b9edd575466b7a2b971eae718ad90b21c9854d0b6ad1ffec3fb1a30f506bb6151227ccf68bb2058dde6b5f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | cb9db809057eef88bdb430655f5a336f |
| SHA1 | f8f497d2a2af68b655eea8dd1b02c8c43064beb4 |
| SHA256 | 204439c4296427434d57a34fbc1b99079db0c07ec5c9aa6d45b2c16ee40bc0a0 |
| SHA512 | 561ca31b1a9612c6b939e88a3aa6938480ab71d028a2a0c467ba284afccdc3af619a999ab1a983b6a4b0e1d2fbd70cc7aba63ca761fe20d67e5fb235ab54725d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | c773c31ba7795c6c1b0e740329dda3ee |
| SHA1 | 4ac81e55f1134861103586cc94c3369c8b029b19 |
| SHA256 | ce587aeec562a141f708c2c38e2c21a5fbe8fccff7205e57bf7aca24889e9cf5 |
| SHA512 | 6acf9320a359ff8a857aba4f6e4950223234e8114f252de8224471b9b88996c1d193a48f270430e17470d31322d9534d3fe7576a537ba0bc816c38a924ca8931 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 0d30d596d6cd32f7d273a364fdfde8d4 |
| SHA1 | 19558e08754541de4fd5f74027ee897efed9d680 |
| SHA256 | d4580a513795ee4347bdc502f036e19fce227acc1ca98fba3b3b4c7a8190921f |
| SHA512 | f98d08bacff79f390e296198b51dfda14fd84b78d238c0a67bea6197b80e7806b838a1f285d6483cd44bf0ac7c575b08b00da0c156385b0d68dffd088a55e553 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | e98274d607aa916ab90b6b4d74056796 |
| SHA1 | 69659e85141001abca9e58069b9ecc1b5d4e9843 |
| SHA256 | 889dc2c2b2a43c7768d8d20116f8997a14d53545146e13b950e209aad8d14582 |
| SHA512 | 48467a566d6575350b5b2dd7833c7bcfbc6e0cac02cbc30abbdcb50338fd98f085302940ba6e7b8ab633f67ec3979b1b4ce0e9ef9377f13bab778d4c94757594 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\DownloadMetadata
| MD5 | d8fd386a93b49a4e93d938d122772ab8 |
| SHA1 | 97359a851bef0d82e76f9d5b734df2e680a5c72b |
| SHA256 | b2b17edf618872d047884e9d2ad62dd4689fd8ff0ef5ee2761dd9e8123d24f06 |
| SHA512 | 21043bc9de914798ee0c3ea8c847f6fb726c1d1d43fcbbb5f80831b51adaee9ea0f47a1422e609dbccb45198b724f2b117b79fadda9fa4813eb5fdcc07fb45d2 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 41e7e833ec081833e0e9c97c379356d4 |
| SHA1 | 7a20823c7cd80f1f954b46ca69c13f98e385105e |
| SHA256 | fe6bb0a48aea821af7a04a9b319733ba370fbefc5687a7aec9c06dda3325baf1 |
| SHA512 | d7e1ed3599a505d9af90e10aab176acfb4b0cdaf8531f075f94a8c551f519ceb649cb9322e041a69ddda3dfaf9caa67e20d7ec424b6f95d5f0871dd42434a1fd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\DownloadMetadata
| MD5 | 711957cff786641394a2defe3f84d629 |
| SHA1 | 7743bb6950fb700c43e424e4c0f3458a0bd8568b |
| SHA256 | 1704db846fcb7418cb6c2919fc9ba91efed386ee3f4a577c00627f4e3407efc2 |
| SHA512 | 5c022745dd6dd6ba02232588545a35e97a5818db3111c94abda45711c96872c3f3295232d92439980b3b3f9367bae3c01bc4ed27ed8d0ca131663efe2bc645eb |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | c127a5f5bf6876c62301112b443901b3 |
| SHA1 | 8731f71568957371cf80fa04bc0c05015d6a86ae |
| SHA256 | 65028401c42c041e0ad8827dbc0336809645a378c39615e6d13b546e47481b48 |
| SHA512 | 2e062a103690dc6342d6d1b8c72fc7a6f587a167db72ac090c33734589a33c5bf67cf42efaf150b3d50c5f9095895ce6618bd30210936349c79732c787aaeaeb |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1485225488\manifest.json
| MD5 | 05c5976d715ddd3cd7c7cfb35ed3ef25 |
| SHA1 | 814895d5d1b3e221dd20fc175aac0214ada6f83f |
| SHA256 | a5f3d847ebeea9c9e21bc1640672ba84c0f15f0010758a50e384780f337eb119 |
| SHA512 | 3951a45638e6f615eb022dd65b5e00fe5d4d77b79c18fc4cc5714a59053125b3b14ec7655b3405193ae27a035f2b3dc9e98bb76d7da6fba1266549ec709506fd |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 5f0a269e5fe110f7f6e0e7583b145714 |
| SHA1 | b5b9ccc13d6bc97e6878a9a49cefe73d3cce9dd1 |
| SHA256 | 4da696cf1fa416777919905a6d17a1f26afb2551af9658066fec45fc05e653a6 |
| SHA512 | 264e08b1e7f0561e48477a002a5654d0a1d2830ce7c7f6754cb7899916c32fa9f96ce77577e7522f057ff8652a9b0ec347373cdcc8f2060601bdf7fc575f6052 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1062026787\manifest.json
| MD5 | 2072fb30c382277957679ba4540ccd2b |
| SHA1 | 7eef55eadcb62788a49de78217503db87d661038 |
| SHA256 | d47efaf9adba6a69fdb950502bf2e2f402885ae00fc88f0f2a643fa38ac3552b |
| SHA512 | af85b4558ce535f538184c734e4a26d65f284b1b44689513ec7206671c7aced5fb870b339a21036bcb5e8043b676217a223635e0293f9a048fdb226455c9620d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | 0606389a87c15ebbca0eeba1275cbf51 |
| SHA1 | 9458d4f0fbee98e725558ffeb8e51d50c7f584da |
| SHA256 | c0a299d91496b8270f2702facaf0f3c2959f332b4fe68ee4e54e201a6490fac4 |
| SHA512 | ae1e0dc7d9517afb149e0a264066738b8a9aded08363023ecbee4d742459c2ba96c1bd08360e675f4acd2f0e46e7b109407a540e5fd49b828bca8882d134cc60 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 7c6b2c3788a7423110aebc85fc17336a |
| SHA1 | 922b37fc00e1b2b33a271dfcd859defd5131730f |
| SHA256 | 42af31aba305907f780cd654b53b8e647d4c224015f282b74481e56d9d9606d4 |
| SHA512 | 4e1c1e234c3f9a1698aee5273307d27bdf19395787dec58eae874cb1dfcd751119f0feb1f4be098607e2d9317170994bd4fecd78b70c807de0b9c102342ddcff |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\IndexedDB\chrome-extension_gbohaofhodnpniflcnancekmknlomeck_0.indexeddb.leveldb\000003.log
| MD5 | 93840a7db64d9ccca76bbedda63724ec |
| SHA1 | c93acc7a256985149d846063557d930daec1aeef |
| SHA256 | 49dac2c6bb8c02dd5b099cd7c0247dba96d922aa6a6bdf177822fdccbc8e7693 |
| SHA512 | a4182a548aa422a6b8b77da4deac1f517acabf65141ceb6a4caef88bfcc0e519bc8346783b5b801ba9dc7a4ac276c7b2f2d013007b5d04a5a381982b47e2b6b8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | 509fd9124b99929aff4fdd2cb80c0ed4 |
| SHA1 | 973f242522abe74e6dbcd0940e080ec269978d6b |
| SHA256 | 5593d171fa86f6f2b66913f217a778749d449dad59e797d3196456d4e7a44850 |
| SHA512 | 5afd1486a39577ac68dc6b460bedce0d38647961a7bd961746606d52ac48563ebd422e1ac88e51a97236ae5c6d80fa4d75e0e6c63b722033c08805ffffcee4c9 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\741e0c5a-60b3-45d6-8643-0293766626ef.tmp
| MD5 | 790d909dfa06e4b93078a52da59d5dff |
| SHA1 | 262fa9fefdac7cf77c74988eab226dda8c3a2b5d |
| SHA256 | 858c755fab7f2fe78ff05a041b58a596fdde7562a77dec9bd71d59e3d7725f8d |
| SHA512 | 422af00f8d78a924d96b6b53aef3b481f0ab493fa49c660813b42f49951e09ef3f8cecbf4a2c34531b0f59cccab36e8615c5d1213eed7263a39af611152daa1f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\DownloadMetadata
| MD5 | efebe77acb01be53e6deb88e5dd9e5df |
| SHA1 | 658c0de2fb73ce74ca23e583f8f2c545288abaec |
| SHA256 | d711dc19b4b0c386547268cf8724fd783123cae95b6b01a8d0da366d746f321c |
| SHA512 | 0d125d40975ba3c471f47ab7ccf7209835fd78e8bc1e0da6868b295a89db956d4fb54dc32603f8b462b0ca77ba8efd41f75fe1ec3c47526cfbafdfb2ee5575b0 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | d91dc67778a23300e72d9c3951346cbe |
| SHA1 | 127408ac2d37b591a1200bf0f9014a357ae7918f |
| SHA256 | b02981f0ab89158b252000ee155a96b6e7debfd51e83f27ebd6581ce2c35c723 |
| SHA512 | 60f2cdf7d8916e155609020ed927005eac299892b79ce1b4fef3b443811c30e393188966cd82f1e8bdcccf1d8d96f94ce8055014c47439cd1580fef5a7530d4a |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 9174d52497bd4a3b52b2932887d4a90d |
| SHA1 | adcfadb09262c69e82d16635a1a84980895594d1 |
| SHA256 | b286701f7525554d6e0a18e7eeb144fb7a699a3b32cad79c410c0feb21c6a438 |
| SHA512 | 05b58c8c2c64616d5e5b8e26e1530f7accebac70fd282c51b716427b97b1c708cd645fd963afc2269768018a5e9248921a6497e00953dd2af5d7e7fd06d8e7f4 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1815264366\manifest.json
| MD5 | 0f67b9e46f33292d4128df2ba2b3fbef |
| SHA1 | 0d13b836ff813505302c88121f05165e2c3fe03c |
| SHA256 | 56846581034ba5ee2b753c5fc6f44db831ed9444a52fb6bf14d9045e8d4a4b33 |
| SHA512 | feceb0aee32925c55dd97f39cb81fddbd35b0844310ee14c312b928a11f80811d2ac4eb934ae219f8ef996ac0e08f05ed05deca813438eb759bdbf543701e5b4 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt
| MD5 | 0823b102d6b13d1d27393036d0590a03 |
| SHA1 | 6d50cbc66682ec0d6431ac1aa2eee8deb36b878a |
| SHA256 | da9f07057b62592a366f74434c0e709f70bd5fcb912bce8cb8ba0b30a2d6ae18 |
| SHA512 | 100760d95e36b8b63e80eab06c44039feb207f01d6bbc5f4c73cc8523b3e31124a96fb0252624daecc077f6da5ca7744727becba6ecc4a98314cb2c6c2384d3f |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt~RFe64bc7b.TMP
| MD5 | 8d4ddcb9efe0f51eaf7f23546341910e |
| SHA1 | db9bd4d698ce0852882015c48a15a43f0b5f9923 |
| SHA256 | f7726ce288af5913730a329585dec7122f78fabe366773f408f2aeb5fcc0a4c6 |
| SHA512 | c7bf2a3f971b28d92a2c149622645b9c0cb0762c293c99d11b572148e8e0ce2fcf4240af220ed136f358ec98a38f76ba89a3e435c251c6b17e45f460891df725 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 9c808da3daa4511796324c8a43b9ebad |
| SHA1 | fdc5ac5c1fd3a96d4c22fe9c525021419b48f593 |
| SHA256 | e7e0c250610cfc32c586594c88c8451c9bcd7c3f4a39d77b4457ade35281a4c6 |
| SHA512 | 36827d020b895dc3fb2cbf04dee034541b3bf6477f6bc6868f80c2f51bb60db34be820f12b464b135b16cbf1534230ce22386e7c1d37f965a1f0220fbd81b93b |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt
| MD5 | b3bfdd8a65c23dfd82497a04dd532ccc |
| SHA1 | c6d2f144ce7a4b81ebd05c59ed5e60f467e834d1 |
| SHA256 | 1e441de8f3d06117c8fcd8e91d79fc203961c49f4d600e8672b347d8c49d3f8a |
| SHA512 | 7dadc14c2ef12e9ad374187292d73e7d2e75cc56d31d70004a02b0df2caef7a0ea0b1eedc5db13430fe2ea0f2b5bb112c022171e5fe4e0d7123f43cd36b14b71 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Preferences
| MD5 | 76c9ee95fb9bf632b5716e4916253c9e |
| SHA1 | d14ef9d98c79a048073e6c879dff172ca78be2b1 |
| SHA256 | 638cb957f9c3c25377da611ece36c2fe3b4b6647174f3e43ee7368eaf548a4af |
| SHA512 | 79f9c7088c63d2b7e3301e85e0ee3fa978a04fea296e670b8971f271b5bfcba1890163ee22646b3e53496c2c4a0e34e22f52aa324f00225668b0fa37ce0ea508 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 2162a853fa271217513164190b9aa7d3 |
| SHA1 | b5213975d806e9c8c89b192a08bcb18fe5f7c350 |
| SHA256 | 3a57304444ca662bf554c0c67afc218c70bc053b26c9c00cf99a5969bd025fd0 |
| SHA512 | 4a1d72b0ab2793a2f4fa1d10902c5975f31cabbeed9e51167b7a4b63139b514eddf95c94bfa15fda8b72722065e81f29edc5c7b1dfd62cb122c60f2464d78157 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt
| MD5 | 85615473126c71664d802ea8398856b3 |
| SHA1 | e610d681946175fc3e734215432def927a2cb93d |
| SHA256 | 2e3dd3d245cf9cbcf6697a8a9aab15c34db15dd89d5e7d7be77bbda1dcff6874 |
| SHA512 | d010d126203809a787c08eb91405fa9a4e60478c3c2ba2c2fabc4d8d6081db7825e6ce780b983678c38271419b6c09cf84a15bba08feb0f94c11692a7fca479d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt
| MD5 | d465b2e7d0120b4384d05a4838be9aa5 |
| SHA1 | 49f04d1161eb4e6a14ad96129d6051f4dc50e46f |
| SHA256 | 6e9a4196750fde5042d1d92621e9b6bdae94dd66136bf459270c34cb6fe27074 |
| SHA512 | a339ff5ae97faae8efdd822fa116d8718de5d2f37843f76535a611ffd59118152cb8286a2f431ed15b4cb32acd650c7bfd356e2b6cf4483c6c58ebc594aca9df |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\WebStorage\11\CacheStorage\index.txt
| MD5 | 40790704ec1ed7cdc09da9f6ae7c42fa |
| SHA1 | be6979942a7812c833bc1e5b37c70001147a2a90 |
| SHA256 | 14eff04f805002efff74cc4fc33aec7bdb2b01d0c06a162660466ee55ca2e26f |
| SHA512 | 092527125077cd3eeed5a55fecb9887f880312154719e35cd9562b38722a451217ccf207796b4f4ba34318774d39004a9fdd098d62e8b39e0d0cac781a4db26d |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Network\TransportSecurity
| MD5 | 9be00d5064b9c0c0c23d8f9e9f7bdd3b |
| SHA1 | 75f7dbdd67c26ab0b6be75f6a47c9b305a81e61f |
| SHA256 | 58e1f44afb5b1899533e034883599a4211eecbfbd1a22543a11905b86d891814 |
| SHA512 | 72943c7d1a3924965ab959939fe2f4936cd441f3f33504bc2e8880e20904478d61abfe6f0d7e671fb140ffea3a9c0f071cb0b19ebd48243618f750067bd89fbc |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_517745088\manifest.json
| MD5 | 225c08f039684dfb54aac162dd9d5b9e |
| SHA1 | 426bd1044bfcd5e1a10b58ed1f217a6b33b2e9c3 |
| SHA256 | 98306b21c0aaf9546301f4ab7fed785dc369c67e2fd2ad4d62fc63f072a51e3c |
| SHA512 | d6ff6cea0c08d13a642996a110432792048d21160c04543fbcacc60abcde362318e13a42fcd7520bc7673e98544a68a3eb6cc4338f4f4d8e90e0dfd5c40b77b7 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Local State
| MD5 | debeb2d4c66f4ccea84a493777d8f703 |
| SHA1 | f3a4682d0fcfadca71c0a7fd8c15e047368eb747 |
| SHA256 | d9fe796c09f5d16eaac945cd6531c914c01d7f8f7bab207f4918cfa69bba5048 |
| SHA512 | 9c130c08814d7abc559e3d0b15420c2a8a0e0a893db99a3f27a0607530f469e7bb4d163f861eb92c88d41d7fc4a7892c115366fa8b5dea80fbe9b26af68b7c60 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_00002c
| MD5 | 115c2d84727b41da5e9b4394887a8c40 |
| SHA1 | 44f495a7f32620e51acca2e78f7e0615cb305781 |
| SHA256 | ae0e442895406e9922237108496c2cd60f4947649a826463e2da9860b5c25dd6 |
| SHA512 | 00402945111722b041f317b082b7103bcc470c2112d86847eac44674053fc0642c5df72015dcb57c65c4ffabb7b03ece7e5f889190f09a45cef1f3e35f830f45 |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\523778e7-2582-4014-a0b3-148f18c324f9.tmp
| MD5 | c574153a154d31f1c70d8ef95a3b975b |
| SHA1 | d315f8f6b605d667ad74cd9c864cdd9bc04eee62 |
| SHA256 | 34ffbf8a231f3151f25341c4302bdcba6b3eda7ec040c9c2ce5537c09c2bb59e |
| SHA512 | 2363ac48e8dd460f35d07f5a347be5fe22cc7c9819d7cbfbc073c57da7295bc2cae71091138e9b1d369fd51d936cde463353dad20157c28fbb5621885e3f96d8 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\WebStorage\4\CacheStorage\index.txt
| MD5 | 52d3a59fb69ce4ba96a6ec30cdabd1b3 |
| SHA1 | 881771ac2cf5d5f6d4bc3d7840fd2705c5191168 |
| SHA256 | b25933d6800e06a0f0a70d7bdc76e61b23cee8a6bbb8dcc0039ada48af27dffc |
| SHA512 | c8c9afb5506bcb6c3eaffc5cefd43d525fbed0b75d71726375b819614998830c8d1ef11dde0613f68de7102f16bfc0ab27b98d8e67cf52b9fbe03f5a6d723dae |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\WebStorage\4\CacheStorage\index.txt~RFe656f21.TMP
| MD5 | eb809954019d091d28ab8927be68a911 |
| SHA1 | 562f863d50f272d8139d79f46b987b615249b741 |
| SHA256 | 901e3d4b577f468280e2d27525396e139af14d4dad45eb35c4818e567a9fea6b |
| SHA512 | 2d92f0c4a818c931d83ba166b1fa2717e9518329408a45cece4f5dcf865345d89d369f77f6cbba7708bdac4da35fc0c20c81b135da2e44b5e4b137e73e9c847c |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e75a6484e4cae733cc3c974ac0097bf1 |
| SHA1 | b77a993c9b9972a1d6f09b8f124631d29d078040 |
| SHA256 | 3e6ccdea035516a956301e47e5773770053d0a16f6e70a95633c854a4fcc2bf9 |
| SHA512 | 17d824f96f3edb9458ad44ac48cf1d384832ebecb666e3b971b181d1c8891fa6eef789d5aebbe0cbb84b098455e919ab36296be2af756314ba04cf3a9f268c91 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_000069
| MD5 | 20e193409981319aacf2f703c4a58d19 |
| SHA1 | 43b4c7cf6a40fcec448535a0ed5acfdcf98ca55f |
| SHA256 | 9b9599c10fa006ea38672d1cee6fce6ab0f306498ba17a5bc458f58bbfe2fa4c |
| SHA512 | 2d49582bd1f8cfe105cdf5113cd1f21a19e6e64290719d4200958d139e51ab9105a41a5f199c2019827d28abbd34bd06645286694e993ba6bf363bc07a6759c7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_00006a
| MD5 | 26921cae78b43f0dc55305de1ece8cd7 |
| SHA1 | f7afbf891f7221034a65e6c8d8ef5e5c6187629c |
| SHA256 | c66af7480bdf137d11af12b4d6000a3b03f2b5d521a4cd6c37e5a1cf3bc5cf6e |
| SHA512 | bcd86709957e3ca2d25519fab0439c048352d2abcb51214d466f7aa5bcd8b94e609ec9f31b6c48553365f28504b29a6049f1edcd8b196383ad806e65b92d71ca |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 2b8329b29ecc170e5e05065724841179 |
| SHA1 | ce5ab6094d27327e4de2249dadb74e77d3f67bfa |
| SHA256 | b32658b11d566a812ee6f1f82c746292632b3b4d9e39229543d7ed051ba3bf32 |
| SHA512 | f5b130384a311869d667721a06767ca2dae3a25c205e9785a2b770a6a3ead4e40f432f8fd34c84c7748d86760304b1e873b5cc7c0c0114dec8eaea8b5285206c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 8e03299137209579152fc0eaa2baf1e9 |
| SHA1 | 133c90d213da59e1fb78a193a583027417af65bb |
| SHA256 | 6c17a4589e19cfb50822ff87b5f2ca2e2933d8c8a3cd99ba9ecacbb4456876e7 |
| SHA512 | 719f435942a578115219d0811623b79b6fa92da0913309a47b13d3728bd45df81f8f0d170a529cb24d70c1d841035ccc87f83369c092b2bca3960a1da4df8ef1 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe65ad24.TMP
| MD5 | 3de22af70c09c6ec19151c5c1791438d |
| SHA1 | 31f951e9a4e5445ba774421f04d9552e6bd366bb |
| SHA256 | 1227696d5d408308315468f9e61629b7c9498c354ae257c9ba36d733e0d85382 |
| SHA512 | b503ac162e8568a6874290f8492886819fd14a3a1196622159a97b0c992281c01ce3126d5bd4ef8392585edaaf07b050962f17b0adc56cacb27cb697cdd98fa5 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_000076
| MD5 | 53863885a9f602118eb10a04cb830a94 |
| SHA1 | 4326899ab24ac5df27cd25ace9e41d0e906736d5 |
| SHA256 | b75c1d4bf4c9cc73096ad045864df101768049445406c726f6c535df17585b36 |
| SHA512 | 533322cb4938f537fd692c981c612cf63ecd541d64764f4f2c2afbe6248a1daf3b67a98816b4d8b68218a3404a3c82013c518b55ff51e479b9863bc627525471 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Cache\Cache_Data\f_000077
| MD5 | 7fda4c62c1bdeae7a08e6fd438104bac |
| SHA1 | b1f626e78f5f6d7be993303a49eb81f0fa4ce57c |
| SHA256 | 4dbd328e347e890a801d51f9a5f8d38a3efd51ec34c0aa22cc83d0a95d6d9d71 |
| SHA512 | c4a36a3c1ff23023533dff103a108844b7cfe4e793aba0b1b5576431e77dd6e9edf29fad68132577ad6ad55ca7a011a38723da2fa15d9071d2c6ba4e02d1dadc |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG
| MD5 | 87a80991fdd213e3e4d56138522b3489 |
| SHA1 | b516039b7e1302bc941d60f9accb1d95aa918865 |
| SHA256 | c74e00b1dcf67daabc8daffdbb9cf657f41494e02d5fe6dfa5cd436bd9f6f139 |
| SHA512 | 7954d9080c590c45c3714c212f00836e6b1c832bc5b7aff17d2f09a84f4dc0f16126b5042b6a7d299eb296d402714fece7f6525912edd6e72919af3acfdaa30c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\000003.log
| MD5 | 705ff04129314c1d3643c8d8e87738d5 |
| SHA1 | 6c1c0ef8b28d42e4ec4337599cd73302c55736aa |
| SHA256 | 143beba320c63e657bcfa33a856295b1f0826d0b32daffab666a7ea942f89c8d |
| SHA512 | 3c305092aba83f25dac8952782ac17144ac2258509fc5c0579600b4a3086df705cbee5f11daef6d6bfddd293c0b528d5459806369149418eafb25d116b6a55bc |
C:\Users\Admin\AppData\Roaming\ReasonLabs\EPP\Network\TransportSecurity
| MD5 | be56f420f12521f53bd6fab890f4c101 |
| SHA1 | 60f530f84c991d05dfa3e887b37e3fa2e9698159 |
| SHA256 | d4b1999a29e76107593d8055b681d16874b3b4e201caed3f8aa6b45c863f58fe |
| SHA512 | ded8a681d85b3312d79a99cdcc43b3c739c80d38f4501c681a8506f371bba56e47033062ae1fc22e0e898fead80d9af7f33f6bf8b5c9144a752f9f595145f09d |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\SafetyTips\3038\_metadata\verified_contents.json
| MD5 | bf3ce18d863733ba8c924413cd915362 |
| SHA1 | e9bfa25f7b68570d3e73ae4d366a31b11dde70c9 |
| SHA256 | 368b8adc10a04e655d0954723793e1eee294488c1f40d6440cb29613db301222 |
| SHA512 | 43330a2bce4e96cdefad6d80aa49c930111a99efb775ecbb416fb76a324579730f499c9c4a6be806f0282bddd2c3735b72a92b7d60e796ac8eb0935d994bf39f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\SafetyTips\3038\safety_tips.pb
| MD5 | 60ec8890171ef29186ef10e14334387f |
| SHA1 | 740b0a3888fbbe25fbee2f906df666d91cbf7c02 |
| SHA256 | 4813873b42ddd0e989cab4d79c9afdd06d94eaa9594adae588c380a3ce8560fe |
| SHA512 | 720d2884be0cdfc2e3bfe30d5d8d8e5d249b79f9dfa32f24af0730363627136d440575527447a357b9b441157f098be4108cb56ddafbb0758de5236a328a93fc |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1893029480\manifest.json
| MD5 | d5aa769547c3e82d22eea169f9bb5503 |
| SHA1 | 0c6920524b9832a74510dd11e03c92aec6def0bb |
| SHA256 | 9a72c32fd87b2b214b8bf46857f4d2e1364201ed3797a612a11c274cb91dcd24 |
| SHA512 | a28364e21868df9b108b55269dd4eb05a88abae52023a348b21b49516af8139ac3be820709d6fb321efc379538c627540434ba8b575e20637d608835df2c23b7 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_1893029480\manifest.fingerprint
| MD5 | ed61d7336e35f993a283858694b864b5 |
| SHA1 | 5b79748377c813d8c2a48b2cbd654827e877e59b |
| SHA256 | 4a883d69d021f712c2757ed60cb7cd37ead5410d5ed2bb3a9b49edd393bf757a |
| SHA512 | a38075e208a0cdf57cb5d2ded2decacb6fb15a52e807e65a661c0cc93fd42790f8aed440eec4a3edaa8c3d14795c99ca9fd3f9d87116fa3eff10719f4d4797ba |
C:\Users\Admin\AppData\Local\WaveBrowser\User Data\Default\Cache\Cache_Data\f_00008b
| MD5 | c2935832073d69b70a3369efbd1490c1 |
| SHA1 | 9c008bc89c0b6d50c89c6246e2061b58a9242f19 |
| SHA256 | aece29ef481c87f8fa1b6f0042637f0a8d721e0805004df23c13a96c3f1a214d |
| SHA512 | e1f0e4b05f92e44beb4e7b3a39a113836cd1b8064658c41ae24a2d0f43df61334d0f4659fc48152c426cd1cbebccb6372328d440867e11fe4a047a2d3ac9b5f7 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | a50bcde3bc171c7735bf8bfe07b81970 |
| SHA1 | 2349a13c7546a2270a2de3e0e80cd721dec386dd |
| SHA256 | 52b75da715f179a3c852e2d8e4e7a2a50562f116189ce7ca09189e5758184b3e |
| SHA512 | 2c76c457fa6c42d47634c1259b9b6df545146e2acd1a7dd28c617e1e9b2814088ac5497994b31536b98edac381ed7fe07fcb4ea63daa49813c9cb2c7b0b67658 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 52e42be2194339181c4e3558961831eb |
| SHA1 | f6b3bca91483d9c8a6607dbd151fb04a4a8c7c09 |
| SHA256 | ed107e06cb34ed697e4c6d67b4e6d2fae6e66b77a943b644f872683ea25233c2 |
| SHA512 | d5534b3db54bb7f77429c3b0475508d9a052372b33be5c01fd9fb78e80728b47b9f69c870cd29cb630f187a6daa242ed29af90d192e879abac8d5c53d75b5e2c |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\b94f0173-5092-4ed9-ac15-ed52a97a9bf7\index-dir\the-real-index
| MD5 | a83aa3a3812f11ec99eeffddb090681d |
| SHA1 | a517d9f21e4ae3ebded39ce64b24dc398201306d |
| SHA256 | dae66a08704acccf78864e57db66e0ea45cdd9b435a85922cfb1240d7b3b13e3 |
| SHA512 | 71c689b652293b94bd0c699ebad8ed9aaed79c665fbbff1fe638d17986b0eff451afec8116c62a0ab9e5a525bfec0bb43922c9689073bc57eb8b24798348f561 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\Network Persistent State
| MD5 | 5cd7e024999418fead5c80c93279cfbb |
| SHA1 | 15f7e364ba51a7d7120a83a8350ca885fa3d534e |
| SHA256 | 4dea2071dc95bddcf26dd81cb47d6d6cfbcf4100f90bbd8d7fac831c37461fb9 |
| SHA512 | f1d76e7d78a0f16c024591f0007168e7b8726e6ef46c6b9bb34ed16ac1763399d55c731783f2c275a73000099ea178c3808a5606bc35efc120c63753cc4e9f17 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Network\TransportSecurity
| MD5 | b25762362e3431163e0e041d6e7f53e1 |
| SHA1 | 15fcd7ac684339f3a002a1fef1811779f59bde7a |
| SHA256 | 139441d2364f4762d2aa3a38d1155513408aede3df3f785993b9ad3952e82225 |
| SHA512 | e01c0d564d92b8be2ddc27cb2d0cdabbf10e779a2fdbba90b67f95371f2ef21801344296529212f6e27867069b9391a2ea8bd1bdc720b685b12e6566f33ca24f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 7ad4e28d53d02b57cc1ed1a3331b3c52 |
| SHA1 | 1cd99dac5416b637ef9076f1d73fe3944dafc3f8 |
| SHA256 | 87a6922cbbebbf3080a0fd131b88c01675b93db205a636fca3b403a60c25b2dd |
| SHA512 | 58187b684159574e777959c6b0f36d3bde85558086b6b518072a95fd8e1d4f1b5e19379b9110d43f17bcf76b3faa11d41ad619265612ce3c4a502d76ee9e8583 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\b94f0173-5092-4ed9-ac15-ed52a97a9bf7\index-dir\the-real-index
| MD5 | bea2b396d511cb74fdfa42af49acf43a |
| SHA1 | 15a86b515415c3f93ed53fb49bf9b5891a2bb84d |
| SHA256 | b430701e91296e96ee7da8f1eca686ef24870f3cd16e8154f6a5c813ded0342b |
| SHA512 | 6fe1dc490ef311903688ba99447505254245fdcca6b47093c098ec151df879ca6e9c227067557645a2ea1a9a9e7700fe74e23bcb25c71cb9d894aa13232dd092 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 25c6e29428d5a00f370a34825489945b |
| SHA1 | aa2e7a767d1548105a1142a8166ef5b6a1cb61e2 |
| SHA256 | 95b95267544ca2d36a7f93fef5916103ec9d8c53cd2b3ba8cd955952aeb46ed3 |
| SHA512 | ac4e0e2ff42b726c2e4b96e498596de4bb091ea17f10a67eb615ad48722acafbe6561b7f440353714637865b7d10cb9359d88f1ca854cfa3a01ce10fd1103f20 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1569256601\ct_config.pb
| MD5 | 181ee1bbad107478ab3499ee1b805f67 |
| SHA1 | 866287353b5961d4cb8ae2f112eec6f0de30bf2b |
| SHA256 | 714b517420cb69a111c375499602022411b4708c4d9fdfa72299a59dfb3ae737 |
| SHA512 | 0b7f6780361d6b9f175a960facc08d50b0bb541f98edfafa33a444b4ac0b86b922f4e0187fe0213c3623d10c144baea8fa43bc4153dd2a7686c32b92d81feeae |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1569256601\manifest.fingerprint
| MD5 | da36afe3be5973f087bfa4cfa01300f8 |
| SHA1 | 711dfb13c75d7cbc2639ff56ab54391061c481b6 |
| SHA256 | e1b06747165f80cb623acd3e99372edc9a1c69787c38de6ccdcfbc0ec9d7f6cc |
| SHA512 | 0480e30e2fbb64293e7b6178f1fe02d89b7dd0a2e91abc6a23dec6ebc6190916292b73e17926a3039da06a6785d04ec52b18f5e98b12cc34213639007d55728c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1569256601\_metadata\verified_contents.json
| MD5 | 2ba3be107961521ccd955de81f4c58b2 |
| SHA1 | c4de592419894315df49ecfa288fda48e716b829 |
| SHA256 | 00ef4511d6afff110131f9b6beea3d1c87bbd969a5c22c8b26081288524a0695 |
| SHA512 | 0bb0f838023bcd01d9d41e1fb7ec0984eca2e1b9cbe13c2a14f9cc26bed37dab6dab03908e3153190304a174f7059a1354fe896c18d99056b8fba625ad30842b |
C:\Program Files\chrome_Unpacker_BeginUnzipping12380_1569256601\crs.pb
| MD5 | a5ce6498c85fd6192c0cf8163dd1d78e |
| SHA1 | 0aff2338c879a878cd04c13c760133d9d00d3725 |
| SHA256 | de20add60a38918cb64a20f26a13d59826f85c2ce3991dc4256f4c93c6e0e729 |
| SHA512 | 199e5db476382bac2fae6f3daba68a5d4013848c2ba82989dafaa1cb55922d39b3ec4fb428c1f7767321a1960d83e2bf642bd51e11f141ba96bc4bd006d29342 |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d00a540ffd3b5057167972c916bc40fc |
| SHA1 | d199452a33856e2e77e764c6e0a15e8b96021457 |
| SHA256 | 8bd58993f348b6952ad46729933939071dc5a018658adfb33b5655b20cd9eb7d |
| SHA512 | 516cdede25991210e5a2d8f32fc0ff5e1d770ea6756310f84f9d0ba42e8516d9e3acd03ce547b6727cb588c7fcf9a82f1a60e5ff6b758416b17752f20a964d81 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GW
| MD5 | 8207b99d59b1ec2c50dcdeeeb76ae3f5 |
| SHA1 | f8b7f660d8d81bd020025a289c28dbf0a0ba079b |
| SHA256 | 627111172517a58b7e9a89f6ec1edee904b7a96c7f0c5941e4fa8ba77b85a5bd |
| SHA512 | b631704f1c6d744a9712cf525aa16425bfebc5b30ade7660c69aeb3e5d288ad209e8bf82cc70aa6a164b1afe2f7916ab2bc1eaa12b09d68ced0673d64bd0ecd9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\EH
| MD5 | 90d20c00b9919238eb952c123acd42d7 |
| SHA1 | fca9cb330b294a463f69ef2b39b683a0b28eaf1d |
| SHA256 | 544380525c29fd6d8a4cfcffb724fc8c8bdb36992e92878d3d6c28f5404790cc |
| SHA512 | fbcb82a27f49872479bd5107fee561106ba02282b390b9fdbc7b16eddd2665253c6b5c10c7b1eb3d6d2514bbedd5e730a02e87b7764a1bee1cc4d0c261044692 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CV
| MD5 | 510507fa4c924590d2744b7529fe16eb |
| SHA1 | 4b0a87694ac0dd94d59c2998a59776899bdf63da |
| SHA256 | 0c3646bb6b2445c8a8cce9d9444e3ab5bdd3f25b5565ae40faa0369cb3eb17c0 |
| SHA512 | 69e1f6e12a58ebd12e06e84a1aaad89c47e3e1f2b601e175e7194f66b29a85ca4c2ad590c367920b3406659d272ad8b74fa4c79360432c186b1a10d54c57399c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CX
| MD5 | 518c18d08cc966d29640b814b5f84e9f |
| SHA1 | 95bb78f632e98736456ff7a035781d1b7a0cb977 |
| SHA256 | c4f3de14ed4bc26dab96a2f5ae6ffad16f17bfb8377467c230aadb1c63734b36 |
| SHA512 | a1ba48f96b56a5fd487038c5187665e000af7e371ca676817d34078c251b17359a974d73969ad237504a83200885bd41425e951af0f7f405fa4c6ec6d4322816 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CY
| MD5 | 18893b96f7e7cb4208e684452550b1b8 |
| SHA1 | 1c3450dd13088e1f30dc110ded0196adf39bcc2b |
| SHA256 | 940aa4582027361bf18c2e2ca6d75ac34d7f880433b7d68b28d2e8c26bf94660 |
| SHA512 | 6b8100170ef13e4e394d187822569e24d39856576df1b7719e65aadd4e3c33485c956749792b0c4296865be45d7ffb47465702310bfecd159e821bf2b3ce85cd |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CZ
| MD5 | 1f86972f102a0ec815e62692ff7900f6 |
| SHA1 | 7d047af8105446af187d3de962337db4298ef1e1 |
| SHA256 | 14808c381ee8c3c0940cb8b094be3c2f92d6c340fb2e3f8fc465e32024045371 |
| SHA512 | 3b07819d51489e8e74ca4204a056df0abef2a4b3d52e114522e2f54f3419348f5f2fb52118282f1bc60106499af00494124a6932da66477dca0301e7526295db |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DE
| MD5 | 919d3be93074e1c38a2d43ad8c1e454d |
| SHA1 | 4617e076a5d43afcccfa0fa56edde695cbe9f5a6 |
| SHA256 | b4fd97f564aeb31cd5fa1419db7bb06f4a595faff58ae7778a9f5674d9edb3f2 |
| SHA512 | 5096f08721c619493f9abb3c18fdcc490bbd9f52e2e998e7294b67d1dbb5d2f816be910fe499482880b1d0833c9112f048e9056275a53566c6493f70cb0917d6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DJ
| MD5 | a0e6ea8bb6b97dfe7910d6e3cb4294a4 |
| SHA1 | 3ac730274b8b7ffdf2f6656fa4a87af789e8331f |
| SHA256 | 8a4d0534f749a24beaf954eba802d09096c62d2c0af5821db1025312ff49b032 |
| SHA512 | c9ff2d1e14620d992e37a988ad83d883448552d716042dac5db4953c4b30d49ce78a965b1bbb2973cafa358ada7a53d3eb9bbbfbfc62fb5efba0fac3afd920a6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DK
| MD5 | 372585aebe4a51d0346462ad582d1fc5 |
| SHA1 | 71e614d5922d93e6d972dc180d7aafd805a97bad |
| SHA256 | 2f1f0a4b05ec96869392660c344a7d7f87f381496ef4de0f45ee5afa6af0c3a6 |
| SHA512 | 30fdfd411dd4226f9bb17cb57b661c77c0555c8504485b8531fa4cbd458c1b52ef201a43230b708ca1f21be2cf76e690bd5d70aea3d304015f8f923cf1dabc56 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DM
| MD5 | 6c6e74e245abcd7cf552338fdd9466c7 |
| SHA1 | da54654e0fb810be6f2774e3162baa483984b3c9 |
| SHA256 | 0f238237055274c95c143f322d865406fa5bb648f3d733bd623aad162adcb539 |
| SHA512 | 4e39866618e7d25510431f39ffebaead29e616585af499364de7d0bfab6093a96d1a4f17ee2c0727ece7075843320af09451bfef86322edc63b57c59facc48f6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CN
| MD5 | 34efd0cad387f0db19b355d815c8a4f3 |
| SHA1 | e73f7be6408905a19b9e77641b40e717b355153a |
| SHA256 | 3fcc4c3fb095d7b0c8d88ad4d140c5f3532db524075cfcb13ba2e618f1996758 |
| SHA512 | f428557b46f1a22f0d0486fd9646c9e439f16789fe6050d1bfcf785acd87738425f96f80fa663056ff52068d1094028504cbd904c678ccee1050c24a82e525f3 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DO
| MD5 | 670c0fe8ee3bbac66d31749ea16d40fd |
| SHA1 | e77d9a5ea83b5220cc4ad52019303a80362dd5d2 |
| SHA256 | 596e33172a8460eaa7308db3f63f25f0295f6bdeda55bd1e6b8e7bb30a9a4309 |
| SHA512 | 48d8b636aef28007ef50c094cbb2aee6b1821e461841a28568b62a9b6fbd18d0ecf9acdfa0d75350b6f3369eeb25cf0c417c691b830195ad934daa36fd055b87 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\DZ
| MD5 | 63fa5e1cd2688982758219ae6b6d30b6 |
| SHA1 | 74fcae670875c8b768b14c79c90cba60ff25d758 |
| SHA256 | 8ee2699ba8f6e02a1ecab33fc0e8722b25af7a9ee39a87fc9e8906151180f669 |
| SHA512 | 352780308e766fa0629bfc28fba51c6876d52bc8091823bb7c74aedf7b45891df3bb19cc1c297672e69b8ff097add642d6a22f41f4a00113883397979626a3fa |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CO
| MD5 | 61351fee0f41cf721b528189114d6cd0 |
| SHA1 | 52a290462d8c9be0d109e6abbd2694c08a0c6e2c |
| SHA256 | 6f1753633e09116ca6ed251fd453c74f028ce577de745fff69d7e5632e766acd |
| SHA512 | 39d807c2c63a5370ca0ccbf30e48e28b01198d8acfb259a87ad260f37a2c332a667bc7269579110b8b7e9340165ac557942e55cee658d3d98019d1fb2752f7d5 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BT
| MD5 | 42af443c66fc02850ce8fcfca06189ef |
| SHA1 | 3616cbb9489aed69c0c98c01a91f89aab7c28c59 |
| SHA256 | 780cce8887791356077838db2ade22b29ff3decc960295ec243da12fd36280b3 |
| SHA512 | 8732be205ce7cd0bbf6e308498176f7f0b009b264ae5ff7b2de4fbf1b39bee5d8c42adcfabfc80a1344e3775ade801b0e77fa07541dcb5c0d891bc0c57315d7e |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AT
| MD5 | 47c9e52a65c07926784bb0ea99671c81 |
| SHA1 | 848eb23bceee95bc6d6ee3ff31aaf50d4c320542 |
| SHA256 | 45dcb070172326bf5157b89174972b94c30e1defbb439c7d7e15537133646917 |
| SHA512 | 92de707adc32866fc16f1d26310ce1dfe16287dec5c04e40c7cdd31a4e37e79fcba050eaa28f8c95a13aef385f4fe89b74d8cedadb40fff25694740a51f5b201 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AR
| MD5 | faa339dc5064610d9b9725cba428543f |
| SHA1 | 40c59d9eafb94f275aa5b463e1a75b8b2b13845b |
| SHA256 | ad9907ef478c5865d867682e51d58867ac1716b62412279a98261ae24cda6ff2 |
| SHA512 | 6cf22d5d6bb4b59b796ea52765db0596a2cfb0bda97f8881df4f3b1e76a583c943a68f4ab288ec0f7690da4485cb0285bf759faf6712a589896915ea2d959c56 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AS
| MD5 | 0620f228151d188002ea6fff1f31b91a |
| SHA1 | 36ccd7f720af9c0e81fcab6015e6f8cb2de1afbe |
| SHA256 | fc11738ee59d5b96e4203a13b7274a5e20ac39076a708867eed04508ba82d78e |
| SHA512 | 4b091f78c843004cd8255e1f205a6b919f7d667fc5c859d3a3be9aed1791f89c7a1ed9f94efaab069f4fb08dc997bea46d849e4d853348aff1bb549a0ac601b8 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AU
| MD5 | 6963e74d5a1dfe40afd9186f3e4046d2 |
| SHA1 | 8fc88f26634e2d770ad303ffeb78b33ffa359aa1 |
| SHA256 | b46b3f2168d78f610edc047dd47e09297b33c1c8aabcfe391dff39ae3dffd43f |
| SHA512 | d5f76faa8ace4c3b4173457a13c6b4f9675011781681d9e9f3e1265fd2d3dcbde10de8c05aea7692fceee5f7a059600d6383a35e568ce9e2c1ef7fed07af5bdb |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AX
| MD5 | a16881ff20fa9c1b98e3709e53d4eb28 |
| SHA1 | c80da92531732a132c86851c5f2b343821f57e0f |
| SHA256 | 15a7cf465603da8e23de9b7b4b2eb315f68f94940284640ccc98c69ef479fb61 |
| SHA512 | 9188922720f12bdd7710e370f75797838385792f81e515a1d9fd536565ca8a667df8272947e650e547dae4f9660bb72b344a4f137a3801aa6a30deb283cf4292 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AZ
| MD5 | 0f68f806f6cf8fd058b96dc65bc308db |
| SHA1 | d5b49d5dddfd37609252089fa49c9aef12701b86 |
| SHA256 | f4f31c6257928eed5702e67b564fae7b823012949f88cfdc26426c5644723e58 |
| SHA512 | c3fb6b17482ce7f0c51127a964370b1e51f3c427097a2fee5c57e9a7a83db71951d61dad6238f5ab3286b49d405b0bade8fc859f8ba83b245dece0b32fb19f9f |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BA
| MD5 | 26ec206aef30bb7f4b9947963b9fbc8a |
| SHA1 | 28d10ed233692d1a6d9f03d142405d868a2b98b3 |
| SHA256 | 33ec30f69dc2e32e11095f820fb6a99650f180e46f98888de324155c0acae814 |
| SHA512 | 553d1af5a59748177e8d814a0a14307c520de3d5f1ddbdbecc847a354ee6e09d91140192f7366537568eca20880dd9698e1a8c75b2790aee5d73fca2c7f0ce28 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BB
| MD5 | 600e3d06956c5ab4498fba7569d6255e |
| SHA1 | ac490bd1f32a670f52d49cdf2916686395fdbabd |
| SHA256 | fdec40401191290328818fa66281cd0fcb159ad1f0002d260920487fc37f9bd5 |
| SHA512 | df54475bf989d281096dc84da14fe76b1eec353a3cc7e524ce5fcc596e018eaf149636ed4b274c9feb12d255928e411c03cc4b968ee0a970aec8b360a9a93780 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BD
| MD5 | 9742bce652e027dfa67f3c141e2b5280 |
| SHA1 | c878c74e89c5bd92e233c87995f2b109a2706129 |
| SHA256 | c53a57757bf31e9d1622f25687d5d44d5a56170c4ddfea1cf90a0b1c7d243c4b |
| SHA512 | ee2a44c302aa3bdd1a5d7601afa740f93eef5ce0377216a0b9302989543824d1c9ea73e39973e815470cfd8baa3c545a075ab640d0091e7e4032d80c47dbdfe9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BE
| MD5 | 3d2c6b42f7aa097e410c71870be66915 |
| SHA1 | 33a597d82a6bada6a88ec623cc4c3340dc0cff23 |
| SHA256 | 0a29b08f354fd72dd8e8adbd0d5008008624e2e1dda8be4414689b0ff6d88e6f |
| SHA512 | 727f8521ab790caf380853a0189cde1276740470f2146ebc1b19039d79b89cc2cec9c9079f89db36e9559a3179c00b7ac6566f5b2f1a0025bce8a6ed1869bbc8 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BF
| MD5 | f182c330b806bea1b037069a3384251b |
| SHA1 | 73e09b521d249a730f313cab82c10f9ce7fab458 |
| SHA256 | 041be25f884ed604337c1de083e0c569ea0018f522d3ef4f0c41e59abe1c5676 |
| SHA512 | 41e7d6d04bdd8463fdd11e0683fb977a0db7092bdf8a8ffed134400439f8f637daf52407781b98680ee1088707dc1cbccd79cfa8ef4a4fc8bcaf3308504d34b0 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BG
| MD5 | 723ddc15728c018eedd0cd6ad59060cb |
| SHA1 | a10ee354b1eb2237e2d8c5c6408be39bfbeae158 |
| SHA256 | 627b3ffb5c4f16d054ad82a332ebb6b475719d385950ff6728820d547ea5ac82 |
| SHA512 | 8dfe9d8eda561cf6fda17df8d247a1c163401afdd17ddc2b304470986f02af89c209eb4ddbebd1503a18c6df092178d227b9dcc51720b2253a5dd152e8582346 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BH
| MD5 | 4bd28cca42b5e41d79ca52e2182cac1f |
| SHA1 | 31f5afa77034b655bb8303b6df3a8781253f4410 |
| SHA256 | 656acec353fd7ee007dbf852c28b5e2fd797cec4b1afe55e5b32ad6b617eeeef |
| SHA512 | 37c59ec82558df376f31b28d923ffe9b56a7811827789b4f6249d068c08085b3e1a40eca39df8632c318e96906236edd41fd6232beb6e0a7ec5af162b2e539e6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BI
| MD5 | 69ed1f3cca0a160b3a8804f50dfcda49 |
| SHA1 | 33e468a07caad02e69bfd0d0c7a6a68cc68dd286 |
| SHA256 | 37111eab5befcfa81303365081e67ce5e824c4571de33186c1e9ebd8b84c9a80 |
| SHA512 | 6de2d583ef74376577d43859fa5a426b3508151aa72a44044b496f1acb43e68fa30f10d5e66eeadbcb009c2acee0249546c14d910a124c19c1d7ba01fc01a6b9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BJ
| MD5 | b945330bc5dcbf831d6c1998110dab35 |
| SHA1 | 28de76b57adca4bc1617130667d9613113f95117 |
| SHA256 | 3524ee3cc99299638a0d6313be8afe2d781820dc35bc7043fe46ffed88dd3c4d |
| SHA512 | 7c12ab08dbc760a9ef8b5c2b48ad3aa5af7b76c6cefb7df39b3510b6f2a0cbbd80378e19881aadf2cbfcaf2d20fcff1293b259ea2bc1aea8ef95857312423ce3 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BM
| MD5 | b261b508193fd6ef35770af7d395c595 |
| SHA1 | eebb55279e7d9058070d00611ea8dc11a514c087 |
| SHA256 | cf39f0b7377a114c5facee7d073f0474fe808b582f17e759cbc78a1e63621569 |
| SHA512 | 505f91d56fa25f6ff9722adbc8d15bb0923446d3d921c2182cbd2419dd9884445d52a4f651fd7fa99b3482fbf33341b61afaea6a5ca9839d175f0bfb42f6a4de |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BN
| MD5 | 8b6d2b42ce4343f3ed7943b22b25bfe6 |
| SHA1 | 1baba84b1148f0bb80529c053fd86df3d6c66eed |
| SHA256 | 4b775e5454391655ae7085e8e28478982a503bf922d1e511ddb5d6b5628434b9 |
| SHA512 | 1b1f6a95eb21fb0eb4d6fcfe86fa2cf7889acdb461327c4513fe606e98b65f9fe87644b7cda1b9650348c9faf171e13b5354d4a97fd3e68af777729d16e27f4a |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BO
| MD5 | 8f764a6637e4c73d1de70b9c4af143cf |
| SHA1 | a2770023e675270a2a8079e5e3adc47f0d10fd2b |
| SHA256 | ccaa8e8f4435f92f9beef78fd5bc7d0471e28421d075f8cd159589cda3613cd0 |
| SHA512 | 970f3452658c9b9c0a9501b5f7fee275c9728819127046fc2b6b55a8a42af7e3aeb2e26c6d65593aceac02ecc5b7ad5f560a7c4f3691cf758dafe680844eb56b |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AO
| MD5 | 19e4bbd3fb571c80604735841e574837 |
| SHA1 | ab052ccda0e664fa46d37fdf6a0c81b2d10ebb66 |
| SHA256 | 7c249e4eada8ab15a7a726a4903fa24d52662202dce183665ae3f0a5f10f071e |
| SHA512 | dd63d90bf55ab66554a2d582a0be4fe213c3f22c0d619c139e088bf0622d3d65d73f4cb734203978377e94404f56890751721ca9191e1173eef341ebe37dbd0e |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BQ
| MD5 | e98a82ea030d3f2a9c7bdede2c034b1e |
| SHA1 | 3c353cfdbbf029f31a6d95523e64e94316dcfb13 |
| SHA256 | e89d56707e8089fec8176880136b91d680754da8949d92e79e191f4fba3acc71 |
| SHA512 | 2c0db8876353877166fa97db396410a1f4ef8f3fc0f8746b1b7d8fbbaeb107ca49664de7d734786ac64e7a3161556064508c9a27382a2e86243f9cf49aff18ec |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AM
| MD5 | 929906aaa7e2e4b3d708357b95ab7cc1 |
| SHA1 | 8408c71f955332e0455baa60bd9d498434dffb46 |
| SHA256 | ad517ffaf90f76aeddcfd293ebb57b64823ac95603f497a5e559702a17a90933 |
| SHA512 | d9ae8c9848d020ab66e351bfab824eb55fa8ed7e2f91c5e32533b6a9858f543ec9a7703c12ddb75833824b42937bb7d70e1003fc9802835f228422d892f3d128 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\manifest.fingerprint
| MD5 | 23c2318e4b64a80dfb293b44ddd6cc97 |
| SHA1 | a480a4d10f745093379c1848652984a32fd48133 |
| SHA256 | db3e32a0b58dc738e5f089216b1addcb02b7772f11791fc4b372e2fe5bec2544 |
| SHA512 | f320b5c6ddb58bed3b266d06e4a6761d9b994922f2378ed56ebcb9f80dcafef74db2e23b2d19f8e0ad728f182caf21d88f2bb10c8e2f4619aca2b28f87f9fbb1 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AD
| MD5 | 703886e95a528d6c03ef2e9da05d31fc |
| SHA1 | eddf80f8cb69850dd6db6de127fdbfe4c3862480 |
| SHA256 | c04fda38de18271d976b46189fd1ec22ca79cbbfe747e7a49fc1f57a948372b7 |
| SHA512 | e7581797e8969048d6408ef1ff8779e51139e6ceb9f58b2f66a1c8afb502f86d858fd56f189c7be0ab53df3b18130195775654c7857b35e801a775dbe0616722 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AE
| MD5 | 1f7e6288a1a9296e24d736744bf4658a |
| SHA1 | 70f67c46b882dd7f0bc647a86ac1d3a1f91dd9b7 |
| SHA256 | 0e4790e01614570e9d4794c8da704a6e361130c7eb24a050c104ffd7dff9b650 |
| SHA512 | 3c234b7ad4636c46907e7a97984e8c5070739b73165ca01dd782613e4127ece95851f8e3f4c2bf468c0cc961b26c806afc5d99a6bf1fb7519f28fcf2c023a5d9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AF
| MD5 | 9410e0e7f58938808cfc8c6b94daf2c0 |
| SHA1 | 5e6ceedf123a447484fc5ca4f1c955ea4e3d4758 |
| SHA256 | 7a6715b59181b862245752b156d45093376b988d23626effe79f20da6333e0ab |
| SHA512 | d35486be813fcb2c851476998a1d0bc0c58108da2aa5366ff4745e292f2dee675e1a5722958f59f21fcf6db09e5c698d31add4c3a48d012d6adb1af302790d17 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AG
| MD5 | 7c5d2c7ca9e2ca9c495558036a51d5ef |
| SHA1 | 08449e8873f3e1ae654e5e2c1b4f1a6ec0476949 |
| SHA256 | 1d17963a0bceb45dc17ee324b800dbaf9219789444e816c7c810f5884abed150 |
| SHA512 | a292250914d43c03755479976f208d20b0a8e90205540ead681ec1ff85a87170d2202d6ac1e19166a3bcc16b65de24e1ee92a0a089e1d0a3cd8bfdde0be45b44 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\AL
| MD5 | 7d80a70f8d93d578980db6d53e1c6b24 |
| SHA1 | 50434a02fe1924d54090be394ddf4f9030411923 |
| SHA256 | 61d76aaf85e1316bf92310f4a816088f0ff2a216add0c5e569eeb2a3a8cfbec6 |
| SHA512 | 593b76225de273068e7a940fd8602377e39df416c6746e126059eca479bf37031596338499cac9ed8120d600746c83c95d279ff287c5317afa4360ffc005b358 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BR
| MD5 | 9fcfa8c7027b8ead5dace154109cae68 |
| SHA1 | b2f5c500d9e3402a6dbe40daf452ed26cc0df79c |
| SHA256 | 390c19579298d7e3818b05b6f552fadf8e9974af866b8acd86106e7fc3722547 |
| SHA512 | 6df1e8fadd46e28c63dc95c2149002a244a19cd5e81f9d77f97bfe3b55835081f966a3712066b030f3d620c59dec7028182674eb506f200b4a2c9946cc2bea0f |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BS
| MD5 | c677130f130ea140e975f56e8d9d1679 |
| SHA1 | c9bb9ae0f88043d01f6ee5e7672c1ee74fb59985 |
| SHA256 | 867e574d79506dfe9b7978b6df2d8c6361dcfa6e10527214a1ac71b7eed0398b |
| SHA512 | ef5624455ecf2f6a579131b8d4500880ee346b032f2005c0f6050bffc9804f7f3e49a037daffe1b34183aa57f7351fbda908a16ebe64af0077929a426157fd3e |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BW
| MD5 | 908e075e2ce543832ac752c68ef077c6 |
| SHA1 | 25fac5ea01058094f06673dd86f479955167be89 |
| SHA256 | 851254ce808e0ca1fcf301c9fb416805f40202482a8d0c7bebcd27f9ab0c0bd2 |
| SHA512 | 3a9a0760e7428d411b764d28a7d18b1ce44361f33301881955d33aebaf4dffa0777c761a1b1c28c9fbdcf2aa4f27b199604001a37486bab01a257ceb366fce0c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BY
| MD5 | 2c6d6035ecb23672e9b027c74e113b80 |
| SHA1 | 00c54beaf77020ca88513ca0a3d29b88faaa448b |
| SHA256 | e7b376ba6c3403e480ef8c5eecf96e3e4b270fc7918141aef1df271f7682cc38 |
| SHA512 | 4dde8a71cf80897b4099b43220d6d869c20d5bc9e21b06ec2d254754551493acf0e7b4a58864a5dd3e57c93917f6f16056f43cbc78b950688e2d13cb362a10f6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\BZ
| MD5 | 1f39f461c8a96306d8b4f22e4c13acdb |
| SHA1 | b6d0759ae1076c21a6cbe708033a44798032ed95 |
| SHA256 | 37053b3c698f919744ccab42d3140ff1ed2e5da86842920c8429c0c33f49d995 |
| SHA512 | c8b9972b02b4f985594406f5dcebdd4cc271bd2f785f6243257a0e5c548d3c13c1814815fde2d2fc5817c9afc7764d056baa92048acc83554fc9a304e7a75d9c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CC
| MD5 | c65470f2be947e77f73976118ccd3b21 |
| SHA1 | f0ce760fcb9f221b4d6d824124f5cdaffc30d65f |
| SHA256 | 293c968a182cbd3658935171a61341306095f745aae71f8582cb24b6580a1cc1 |
| SHA512 | 2aa99f8cb8a24741e681c6cbc257bc49787f7a4c1c44905bf0361eb0d68571a3efa00d2a48d0d6ba5938a46ef760bb2f4e66d48603219f2c84b8dcb494a53959 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CD
| MD5 | 56a8746d0cfa7f90a66700285c660219 |
| SHA1 | 7b168f582de4d0632dda12e191df05a17dca7be0 |
| SHA256 | cd88721a708c781258e061220c78a716d3b3f052c1005518be5bcf4b0a3198bd |
| SHA512 | a3fed12785bba4fea7a823ab4738768e5836bbbda8ceb9fe383cf0b6190ec90e01999a096063c893ea151464f98cd8e2ba3dbc35a43e347bae9f65acbeac8c51 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CF
| MD5 | 3f898e413088182b9051aa73cd45b490 |
| SHA1 | e0948bc23b31cc5299d4f0c0b55bed5ef6e15ba6 |
| SHA256 | f2cf8bb282c2aa4017a59081d31d0d4cc640cd0dda8885af6490639f1d0dfa8d |
| SHA512 | 3c9cc33583643de5302ad2e89507927ce20fcfcd29d5a7fd718e42a974f39fda840b5dde5fd908cc8c116e5d75c0015398f8963ad0d1d4226cc3613aa8b93aef |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CG
| MD5 | 8b73cbf25e9229618708b63a102197ca |
| SHA1 | 001b8f5c1e46bade67245b88797d38e6ba7da539 |
| SHA256 | 1941560199447713d736266ec8c338a48b699af2174f9713ee717bb860acaa54 |
| SHA512 | 66d9257a43f7b6417f0df11abf74a01330d6a0d1eb485db74a684be1f7399f4424d9a651f95130221110a5fd32a1539e91799740e2139cbe32f280906dd5172c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CH
| MD5 | a181c0c156fcdbae783600e1aada3dff |
| SHA1 | 6b8d3c24025fbf6d6d14b046ee148e21b7d2983a |
| SHA256 | b7da6f7a01eaed8128ff049db725aa5a1c9689ee1c0521861a275a3a977881e0 |
| SHA512 | 829f506a7a0c27c45cc20c281f01dc4b568cdc61dea510148d691e2c1da99e62c806f9e16cde70e2e777ec53f92d1ded79040d442a9392a5e94987643d710f25 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CI
| MD5 | 2a3bd8f973ce1c1516ae8286142b5fa1 |
| SHA1 | aac8020cae3d662d8a63cb0f549d5f867259bf1e |
| SHA256 | e806df1e3bf60b3e1ef5f3157b915327db0a61a68939bc89ce0204f6295e4e35 |
| SHA512 | 7ac5b48971f56eacefb9cf4ce62d69cbf98a3dbb6e7225aa28b2691069354690e6cf4b6745347d41924a6c1f2f79c0a2c4efe3dbdb3982f38ae673b90a5ed4dc |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CL
| MD5 | 00c377e2db9952715bcefce8c9777a8b |
| SHA1 | 5849fc1c33bba2866597b65bab347f05494beb1a |
| SHA256 | 5fea5dbede989007ec83a12cbcccc10d41269acfb819853cdd277923a1182b47 |
| SHA512 | 19319f8ad642af8d265f74e65be4bfccd1f54e431b9cfb7078d291a92ad0e9afa9bdcd8d3562dcad96a26bf0ed4e19feb98c11d38d55d5889bdce3c31898beb7 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CM
| MD5 | 99a594dedf5c681e4cb07ef9a1635757 |
| SHA1 | ca3dddadf43cb82c6dc57843c4055b54f4262e8e |
| SHA256 | 9aacf81a4cdff74215b8cbc81ee11564fe2158a7969c4e7fc032d9b779ee8453 |
| SHA512 | c2a0e14d7f44cabd67e75fc10d09c94d3518f9962cb3fd1fe2b9aa843d4695ea524e424f516443c90e676ec8280c3b61c58f47df104ba1ae3e01eff46928e9c9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CA
| MD5 | 9ee3b1e2f7adcd6d4c14386d2c45af21 |
| SHA1 | 60a6076528095648443b69f465feda9a0a9cca0e |
| SHA256 | 6dd6d1dce8692f31fe0dba38804cfbf40cf6acb476e4c927c900a6685b21e2f3 |
| SHA512 | ccb273ec1fa899db07fb74f31dd90c99fc74d4d149eccd97d55fe961f0d209f18d1b25029a39a318ced69c37f7988c8a1b824237c78950b21e76cb148d9c2148 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CR
| MD5 | a3178ac5ba17dc6b4800c0a89b303968 |
| SHA1 | a02921a77b50677d1620c34156a1ee06e87f4df9 |
| SHA256 | 4deee9bcce5b0604a32fa0e3485bd3f3fb5a1f7570d36979e64dc7ede64a92ba |
| SHA512 | 69418607a49ca87cf657d88a7eacdc8835d89df90337aa454630515e06308af31d4391ae3e73cdd74d54bee4b82016d83b53542334ac41cd0005671930a6a2f3 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\CU
| MD5 | 5c191f15b985c1ddc73b594362b01ebe |
| SHA1 | e162a2eade967e743aa8b9ef79b45ee570d219cc |
| SHA256 | 4b31bc3a9c372e897ddeb2d10327a67802fa86c9ecde4d5c9369e236b0b294fb |
| SHA512 | d42e7c9681c504053522f1f664aac420dbcd765b485b4113f5f0fce1eb2e0782047b0d2820f810dba31c96506eab6b7dace5987e2adefb87de9e37f2a26af3e2 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\EC
| MD5 | adee0e814763e28ab1f9816db45c2563 |
| SHA1 | 28aa6f15de9b2aa3c94631e1d1403aaf269366d4 |
| SHA256 | c88bbdadaa54df6891b2835171d59ed28bd433c99657b9ad354c861a2ad34ee2 |
| SHA512 | 89229e71ce1fcbca46c649342a3271a893b0ef701f7ddf22aaad96a3ad709b8c4785406f70102c9ebd6a4f83f716f2b18c93274c26f7d1bd41193d42cd8eb4a6 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\EE
| MD5 | bdcff7dcb2bf098c9751def977fac0d1 |
| SHA1 | c9c9ac87ceb4544af35b1b610254695aa9defa21 |
| SHA256 | d5b56de0a5dc76ec6a28634c5e9121afd2acc9d9b38bd896d4e7dd7f0adc6ead |
| SHA512 | c728b280c5b1fc04943c4c44a7d616f455ec48502a09d87230a0ad2798fe0288bf9bd64b3f2b011b328e9b680a86fc233ee930a9b48467bb4307f2b1850cdb82 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\EG
| MD5 | 48f5366f0ff0a2f57fdcb50f0365ed1e |
| SHA1 | 80ef67435523a6bc9bd173cc52842c22fafb1e0c |
| SHA256 | 0c86f54e48cfa3681790726d8feb68e61df80295818fabf74b41ecc84f4c096c |
| SHA512 | a3f45928c4edec25bb98ac9e13c3810873f34595b28f695a32656abf770a02e562edfd26c55a969f39aceb9a482ca450eef36eb07d9ebe1979fdf3a0462b983c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\ER
| MD5 | 0dab1e683adbb28ffad92488d1868a84 |
| SHA1 | ed86353949ec210f06a4855b0154d9237b3e7e61 |
| SHA256 | 66b64e49a6dc3c843113048216b34d0c46429f4e5cbfb664ed740f62dbde68ea |
| SHA512 | 4cb6e86542ee1753a08a28df068a5850822896926de6e906672ecf5b51098606e2b46365a325a918070a4909011c676080e84b29d84b452400b8d4736d5673f9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\ES
| MD5 | 51077e548eca7d5718b5f9e960825c24 |
| SHA1 | ad36799ad7164c0cbf4654ad08cdb0f7eafd87ac |
| SHA256 | 4973b1852eb707b1de0ab9eb2e6a9a73f4112e51337c5898096ad52f42a765bc |
| SHA512 | ea5ffe686923f2bfcdb9a9f2c6c3f1c2a075fa1e38c44d203f0c64959e316da6982cb44f71febd39376eb60772b42cc74d9e84a8b71672aec499e98ac96ba9c9 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\ET
| MD5 | 8450c0186a15677aa9cbbd03e1a7bea7 |
| SHA1 | 311f366f8c23eaa3358f32dfaf24191889b4d39b |
| SHA256 | 9eb316ee6fa03a7399b7c3b5275e0846911c527d3bc0ab52f0902ae9f21577a5 |
| SHA512 | 49117d1f3873c15f793599b7d95073ae55a2ea1692b6d6ac99a6052a8a0c7a2a522bc633f3d8d571d78a64fe034c4a0b27a4038d7ab9e707ce2b42ef217718b3 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\FI
| MD5 | 0ebef86babb1e59ce92dcd4d54a5c92d |
| SHA1 | 873916d944918305b8a5cb0628a14454fb753a6c |
| SHA256 | 0556d5a959e2c3ab941b59d6d3d25f84c41ec7094bb72b47e0832856b4600a54 |
| SHA512 | 0b5af86b4d201832635b16592cff6dd1b3763083d0413182778572f61623009f77960de0b2b46bac7e68725c3759fa5cb21855ecffb611865e597e1314eda6c5 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\FJ
| MD5 | 421cab1943253a7f20625039db826220 |
| SHA1 | 7d23fbfa22c8e85bfded55bacc3a803744eca78a |
| SHA256 | e3ebda99a9127967eac0dda1eb0b50b1089c8d3f43392bef3eedaec3aae342dd |
| SHA512 | 604dfc146e1ab185abe4172256e41ea7376bd82a244034dc427ce0e5249fc8a371e9e51717abe7d0ed31d7f1c8f79876ab6b62e3ab0b8573e1e7b14a8079c974 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\FM
| MD5 | 06c2921c87b5592e2043ac6443dbacce |
| SHA1 | fa31554fc66ea4f57a0c7555bb1aced5ddcee825 |
| SHA256 | 3178c9c33a890dd150368897706eb98bce65192c2f2c01f2bbc08d03d98eb863 |
| SHA512 | fadd0a3aa5fdf0fed6bf34e87b2fb89f1f5eef60e73f7f8aa64cb4ba9a63598b27e613a1895bb3f8f6cee40a03de2f10ab1af0d0df7ab945ebeb2e364b6fe500 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\FO
| MD5 | a9275abdf70863c83516d8e9cbe0e798 |
| SHA1 | 51fd516ece1ff60a456ad6bf4cc71b9e95ad53a1 |
| SHA256 | 4f0fb6e7110b65ef44eec59d5f99890764e122253a92efd2d85a0026c8dc55c8 |
| SHA512 | 61d5cdbc717cef57c74d4ba8721f015e2e04496463a842a90432b19ac42f1ecbbd4f9fa55d7223c7b4d5920578f62ce111a7fb190f3e9521c3b4a236b68471c7 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\FR
| MD5 | e36f7a3f78070165c87835304074862d |
| SHA1 | 540a59c53235614e6951e1997b4925ec791eb305 |
| SHA256 | 8118dda0772f7e91149c1f624875b93a61633876ed1dd33a0ecb7ba3b041e63b |
| SHA512 | aaa3fd398144e68b86ec2ffa1a7b38736945f6eb6d806c38a30d0bb444f6bb3c9ab9cb2dc481429df93ab85c355dad21a58e014b39c09e2f95ec3e4fc5362135 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GA
| MD5 | 13e7248debd6cb793390badd2eca4f9e |
| SHA1 | 6e62883b4054d0adcf9368517b77bd8eeded516b |
| SHA256 | db777d830020b6fd4d0f055036a6998d7afc8da34c19a9059d291a6f168d000f |
| SHA512 | 79e0fd5121c37d5df35bdabc682141c20e4003b60b205f9c026beafb3ac72a4007214bfa74739e5aa438bdcb0c9016145b79dfd33e43475d1834cae3c6f5aae8 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GB
| MD5 | 4f92dc8dbb483054a4631da920dd9b3e |
| SHA1 | a7c5a12810665cc1119dcc9a97fd205e1957d8b8 |
| SHA256 | f957f13e18b1080d232047dd358f9bc1bdb3e0cb99b2fdd2e2b322965b45845f |
| SHA512 | 5e3eb037f271e24b98e42ae8f19e55ef246068df9940a79c7a3035f7868c461eaf29309450e82b4c88e9a5a1d9d1e4c7866749498e1977555c2e663859682df8 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GD
| MD5 | 221db18bcd60483a1d2e32f52a594d9b |
| SHA1 | 78ab33b00f3513a301107289baab49115609517e |
| SHA256 | a343303d923a9ab969cb45a161e3300b5c6622f7d814247653cf4b33e98e6e79 |
| SHA512 | dddba81e9d468d68f2af489156daf6d203a469f4b57383ca1f99d880b823c0bfb42393cd03054e67a765c843d1495f08429ea57ed1d1d67f3d981d26485d3df1 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GE
| MD5 | dc16c689429934acd7b91b948392c0c1 |
| SHA1 | 4c09fd6c0fa8e257fff43100796d509eae1030d8 |
| SHA256 | 94b94c22c89688999b272608d0c04f3bebd72b1c946425d2af5f84710bc22db9 |
| SHA512 | b49ce88c2bb32a1aca9a1f0b9e34734c3c7514e33d730afb48ff2da652325c09ea37d4b5dd1784d730c3c8907642c1ffd9c6d427e72fdd0c48f308d72b67f61e |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GF
| MD5 | 9ba9f8a11966c98d3733fb30f85bc072 |
| SHA1 | 41c356af71b38d855572b3089ae6e59426bc0386 |
| SHA256 | 2d17fb4d626f50e2a5139a7058ccdce12ec73ce3e45d1f7515908184df2d6168 |
| SHA512 | 9cb90bcb123cec171ddd9276e4d21e60d662773becd24d10604b1e194f6042e3eee37db86db402b7cf57e5c0108609fd090dfea19844d78bc1b9affb3303aa92 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GG
| MD5 | 965547b2e0b971d7b5d535ebecad9588 |
| SHA1 | a78946c499b57876cb56255d8ec292e3a4b9bdd7 |
| SHA256 | 5dc51d2ad3d8ec6701ae9f8bb49d9cfbf500e5bc901243b181c41c17baa74460 |
| SHA512 | 672da95a2f0bccccc862a234e58d785ed08ea4738b821467b22250c1edb902bbd692bd526ae5d66d6d97318b131147c944c7f001e9e2dbf4e751667fa6c03403 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GH
| MD5 | 87fab326aff64622912d2950d376c9b0 |
| SHA1 | 9cd56d24196f17160027a45b5b47681a60375af7 |
| SHA256 | 9c53f5699ca29776daa3726590941125682daecbcb740a0534e0eddb838081f6 |
| SHA512 | 5a7fc747068428ccd26943abe9f68a37562e09d56e6eb01a9b4e5c005e3778c16ebcff0e086ac648a56443e01df1eccfc271696eacfdf8cd0c99eb302dcb3495 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GL
| MD5 | 1a6f573d593c48581501802045812bdd |
| SHA1 | 7625092e196fa5629e41b03472070454b288e3ea |
| SHA256 | 89fbad8fdeb2c02331772a79e59efc17da521cf765cf482a6db6ffc6fedf6760 |
| SHA512 | ddabc4a42cac0e2fe3f2660c306dd5544e95ab4c946444ebd60ca62551897464640c0e0917d6384844b3a6690d67445b005cbd979165e8e51bcafc97520afda0 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GM
| MD5 | 5dd1d893f52524b80556dcdae11b06fa |
| SHA1 | fb3c49be33c087645cf3a6edc910662160603aa9 |
| SHA256 | 2da6763e37a6b1b5ad395ef4b6ce9730b2044470f1800cdabc3043e45e572bb6 |
| SHA512 | e9005b2ec771ea17ebc044fe9aac947eab97d2f7ee73d66009f693a5600e159a5955d3956094b4ce1745bf81dd6c21dccc0c830a940bd00e8cd72506504d5862 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GN
| MD5 | 721402f1639cfbfad3073e689c3d3950 |
| SHA1 | 561092dc618926ab2719588f30c45b0853a311ce |
| SHA256 | a4dcb1c7eda6c08e769a7e2638b1614eff417c1311dde34499f21cea2ca0e62e |
| SHA512 | 564997a7b1de52782fb215ad52253bad14ce003cab38a836eef1fd30b6d189f7a9160e32fdd2d74336a8a24ecf5a73c388834052b97f2ff6b36ff110bbe0732c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GP
| MD5 | 8cdb549ed0bd37a3bdbf2720e455b005 |
| SHA1 | 007598897855309fedda411719ff2a4bd82da29b |
| SHA256 | 244b4ff4ab09fe9dd942cbc151222a05474bd9dae3953da8124edfc5e517c12a |
| SHA512 | fb07ac50515eca2ed2888555d667e8179218da5eb5b5c9c6b2cea4d9036f8dde313315bf352326d2ebf1acb180d5b35facf79d3018708d76832baf48029216ac |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GQ
| MD5 | d31e5e24b67fd9347289826b262f1d55 |
| SHA1 | 49ee2eb6c2c1fc28b49f0afcc30b56d4aa684178 |
| SHA256 | a5d1280f5bf5ad1adbbda587549a85c7f97a8ec8d53fe271aefd262434ed4875 |
| SHA512 | e6eb0f68e3a35610c79006a175fa0c379170261e57922db98248a53700a03ab6d91ef917d7923ec11899ca63216f7baf1ae703345a4acd68367f02404d74a8fe |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GR
| MD5 | 831d199888b8776abf12ed9b6ab16a00 |
| SHA1 | 6774001e21a18ea418af807e731b10a1a2e8c9ea |
| SHA256 | 00e4b18fd52e2652ad0a0663da50975a070d38189294683d83fa8dcf31bc3156 |
| SHA512 | 3656f9c3e36eade1960d7278c12118fc8b0e827910fb856a7854494aa6b963fee9114df4e6c2ec74843d2773a81ffac0c66b6065b2a65869a8141a7a2a3f8d95 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GT
| MD5 | 92be756130c756ea3e619135cd478ec0 |
| SHA1 | 6e824701c8b55a4838dc0e1ee8d49638686fed31 |
| SHA256 | e4b44bac674d1dbf57d8f954697b944fdb0d490f3a0243a177daeafbd2922395 |
| SHA512 | 45a04f20cb718f25c8b1cd015c012f3dddc3d405e1d4596d00dd299f141886650ef936a7e65511adc50e1ce36ec5443823202d9bd937148d64bd53b0a1f6ae38 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\GY
| MD5 | 99f799bfb3cabe132acaae0b4566028d |
| SHA1 | 8aae52e24983d97d00a6d0d014524c127b3a76ee |
| SHA256 | cd6695d4612fb20eb6a3ff273ce71b0ffe77708be0c887b517c5df1c73b078db |
| SHA512 | 88abed56e5d5682c7ce073a6bf0c0b02696c962a69184f795ba301257df3b85ff40e87a0470d037d8150efd76f1030a16fe8f5abc170837ae62be57160ebdc0e |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\HK
| MD5 | 8837e0ca3f239bd81a7a971085c22bd7 |
| SHA1 | dc635ac96a8c56d837f8f5558d6967f1d1be5a90 |
| SHA256 | f1e03e5ed80364c81557151ad396713de992994633673b02249765ca32e38540 |
| SHA512 | 661ce3455f377bd416a570572f2e5cdb5e24bb50bfd33a36d295fbfdfab57a4229ed3e91bd7f71a0b4184273ae885b244381ef44d507974c011d098b9aaae5ea |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\HN
| MD5 | 651f328c6f0d6f794038f4100137e4e8 |
| SHA1 | 532b9e48e8425ee677d7a1ddbed07b5ef21a1b74 |
| SHA256 | 3263ebbc632c7a332aaf1dce9fe941e97595bddd0e060551afde4289c0de8503 |
| SHA512 | a02d5b5de7d457df6ebbd09aa4ea96da0d2ecc385cf16b24bdc6841cfd66b55b58de5d71162b3ec2e09cd1aa02bac48ef4abf0d4f77d2b357f7ffb2fc2d69adf |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\HR
| MD5 | 386bea0a39ea9eb9b9c6d2997bb72623 |
| SHA1 | ec162d97cb2b7bbe5b8ebade88058b6d7860971f |
| SHA256 | 3098fdffa3c74e46859b6628f3fde08ccc1d6682faf8b9486b9449a89f274076 |
| SHA512 | 8381c5f314de0183fc1c97c84fa443442c179c34b2941ef16f72da4da59412b80bc759b653f8bde0d4399a7fbffca22a98d5824deebc3a62c366a3661bf9c98b |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\HT
| MD5 | 5387613c9539eb20d1bc150231c83c6e |
| SHA1 | 91cd3bda5784317b31bfbdedb4496a24e5d79a26 |
| SHA256 | 82a88dee1c0b8e1201c9821e7c5a8c05ad8123612a10970c3878a8b4037eda51 |
| SHA512 | 8fc1a3ac9badc9cd4c58af1376de52627816690ab245363dc290733bfda84e9a8e62b9894926255ab91e8931db14a9ed9f1ce18212285fa1c557a67bfe84d530 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\HU
| MD5 | 77b5cdac320947ae7f562dd7030d7de5 |
| SHA1 | 93734707d23fc090dceec2b3776cb98160fe95b2 |
| SHA256 | 1211feec35d8bba85a195b322b58cc52d1607c3f6adf06c29ea057e62f488b68 |
| SHA512 | e0889c346b0bec2700e0c53ee6d14ac30ef43693e78ba48576bdf38a4e467436570795353feca1be2ab7aefc0b7a55f80eb6e8d337b09b7f8f089e911d52864c |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\ID
| MD5 | a143f2e02a07460e8be4472c40f8dbaf |
| SHA1 | ed8ff3e6e04eab8e0a03fd83f8e627048a48a6ed |
| SHA256 | d9c861d395c81a8a360906fc0f0c510ca828907b1fefda132c01954e0b28938b |
| SHA512 | 8c0542a91539cbe9e71bc1c29ee37ce32dc496f3e6bd4665e80b05d2fc0e40c87da87d68aba28a4739853494a9ca76983e5d3c831af69aa12ef918b71c92c485 |
C:\Program Files\chrome_Unpacker_BeginUnzipping12632_845287404\IE
| MD5 | af560cdbd569415c5fd4a314ceff9c12 |
| SHA1 | 90466fb8a943723aca7df02e07f626b3882789f1 |
| SHA256 | 7ca2a1cd0d0c23154584b8f1468f69aabd7f07240029a1ff260f17993fd8e625 |
| SHA512 | 7f71cd167b8a94b18fe62f7bafc8ebe88d03284ffa12b70fa8af225bbb9215bc5509be26fc4a03cb9407d34f1520777d23311ef21f7d71ae361833e92b5cbf0f |
C:\Users\Admin\AppData\Local\AVG\Browser\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\b94f0173-5092-4ed9-ac15-ed52a97a9bf7\index-dir\the-real-index
| MD5 | b3988997ebf6b59dc4d040deabdffeba |
| SHA1 | 5f24305ea5a0a48f41d171466df4072291e3d14e |
| SHA256 | bb8a7d83f79627d9107f66c7a3f8c2d6f7594bf199e3fb05ff7dc6bf1a5b6bfb |
| SHA512 | c17f00c608cfded868a6f55ca60ce8b94c7e7bf01737b249b298f3e1f9c05a5612c1c4bc53b3aaee92f483c017d9bcacbeab180e1a18a14e5a94c09824a2f071 |