Analysis Overview
Threat Level: Likely malicious
The file https://youtu.be/yNvlIVhNppo was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
UPX packed file
Reads user/profile data of web browsers
Executes dropped EXE
Loads dropped DLL
Modifies file permissions
Enumerates connected drives
Suspicious use of AdjustPrivilegeToken
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Modifies system certificate store
Modifies data under HKEY_USERS
Modifies registry class
Suspicious use of SetWindowsHookEx
Suspicious behavior: EnumeratesProcesses
Enumerates system info in registry
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-04-07 17:39
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-07 17:39
Reported
2024-04-07 17:44
Platform
win10v2004-20240226-en
Max time kernel
300s
Max time network
301s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\.opera\Opera GX Installer Temp\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\icacls.exe | N/A |
Reads user/profile data of web browsers
UPX packed file
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\F: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\D: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\F: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\D: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\F: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\D: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\F: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| File opened (read-only) | \??\D: | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133569851568592594" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-399997616-3400990511-967324271-1000\{E8EF2773-C0F1-4148-A66F-5EDF5EFE49A5} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-399997616-3400990511-967324271-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\OperaGXSetup.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://youtu.be/yNvlIVhNppo
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa9b3a9758,0x7ffa9b3a9768,0x7ffa9b3a9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1652 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2200 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3036 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3052 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4556 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=4672 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4944 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5116 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5312 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5444 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5592 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x510 0x514
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5616 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5484 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=3140 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4840 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=3104 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5216 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3032 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4964 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=3120 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6152 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6164 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6356 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6508 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6512 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6600 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=7044 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=7156 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7140 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=4632 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7624 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7260 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7924 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7424 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7240 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=1952 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8244 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8428 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8604 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8168 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7236 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9368 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8536 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8488 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9260 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9360 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Users\Admin\Downloads\OperaGXSetup.exe
"C:\Users\Admin\Downloads\OperaGXSetup.exe"
C:\Users\Admin\Downloads\OperaGXSetup.exe
C:\Users\Admin\Downloads\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=107.0.5045.86 --initial-client-data=0x30c,0x310,0x314,0x2f0,0x318,0x74e6626c,0x74e66278,0x74e66284
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe" --version
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8520 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Java\jre-1.8\bin\javaw.exe
"C:\Program Files\Java\jre-1.8\bin\javaw.exe" -jar "C:\Users\Admin\Downloads\PacketDupe.jar"
C:\Windows\system32\icacls.exe
C:\Windows\system32\icacls.exe C:\ProgramData\Oracle\Java\.oracle_jre_usage /grant "everyone":(OI)(CI)M
C:\Users\Admin\Downloads\OperaGXSetup.exe
"C:\Users\Admin\Downloads\OperaGXSetup.exe"
C:\Users\Admin\Downloads\OperaGXSetup.exe
"C:\Users\Admin\Downloads\OperaGXSetup.exe"
C:\Users\Admin\Downloads\OperaGXSetup.exe
C:\Users\Admin\Downloads\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=107.0.5045.86 --initial-client-data=0x2e0,0x2e4,0x2e8,0x2bc,0x2ec,0x7232626c,0x72326278,0x72326284
C:\Users\Admin\Downloads\OperaGXSetup.exe
C:\Users\Admin\Downloads\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=107.0.5045.86 --initial-client-data=0x2e0,0x2e4,0x2e8,0x2bc,0x2ec,0x71dd626c,0x71dd6278,0x71dd6284
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\OperaGXSetup.exe" --version
C:\Users\Admin\Downloads\.opera\Opera GX Installer Temp\OperaGXSetup.exe
"C:\Users\Admin\Downloads\.opera\Opera GX Installer Temp\OperaGXSetup.exe" --version
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=8876 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=8940 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=8552 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9252 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=8900 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=9272 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=9232 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=1756 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Users\Admin\Downloads\OperaGXSetup.exe
"C:\Users\Admin\Downloads\OperaGXSetup.exe" --backend --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --consent-given=1 --general-interests=1 --general-location=1 --personalized-content=1 --personalized-ads=1 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera GX" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=1 --pintotaskbar=1 --pintostartmenu=1 --run-at-startup=1 --server-tracking-data=server_tracking_data --initial-pid=6308 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_20240407173955" --session-guid=b2e199df-63ab-45ef-8e8e-4de079c21122 --server-tracking-blob=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 --desktopshortcut=1 --wait-for-package --initial-proc-handle=D808000000000000
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=744 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=5664 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Users\Admin\Downloads\OperaGXSetup.exe
C:\Users\Admin\Downloads\OperaGXSetup.exe --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=107.0.5045.86 --initial-client-data=0x2fc,0x300,0x304,0x2d8,0x308,0x7232626c,0x72326278,0x72326284
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=8428 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=9252 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8860 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=8128 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=9004 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=8256 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=10208 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=5364 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe"
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\assistant_installer.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\assistant_installer.exe" --version
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\assistant_installer.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=73.0.3856.382 --initial-client-data=0x288,0x28c,0x290,0x264,0x294,0x984f48,0x984f58,0x984f64
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=8508 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=8248 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9740 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=8960 --field-trial-handle=1636,i,12253685683279778778,13340711588299845175,131072 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | youtu.be | udp |
| DE | 142.250.184.206:443 | youtu.be | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| DE | 172.217.16.206:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| DE | 172.217.16.206:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | rr5---sn-aigl6ns6.googlevideo.com | udp |
| DE | 142.250.186.118:443 | i.ytimg.com | tcp |
| DE | 142.250.186.118:443 | i.ytimg.com | tcp |
| GB | 74.125.105.10:443 | rr5---sn-aigl6ns6.googlevideo.com | tcp |
| GB | 74.125.105.10:443 | rr5---sn-aigl6ns6.googlevideo.com | tcp |
| US | 8.8.8.8:53 | 81.171.91.138.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.118.140.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.184.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr4---sn-aigl6nzs.googlevideo.com | udp |
| GB | 74.125.175.73:443 | rr4---sn-aigl6nzs.googlevideo.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| BE | 142.251.173.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | 170.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.105.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.175.125.74.in-addr.arpa | udp |
| BE | 142.251.173.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| DE | 172.217.16.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 84.173.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| DE | 142.250.186.110:443 | apis.google.com | tcp |
| DE | 142.250.186.118:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| DE | 142.250.186.74:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 110.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.86.106.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| DE | 142.250.185.97:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | 97.185.250.142.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 142.250.186.110:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| DE | 172.217.16.130:443 | googleads.g.doubleclick.net | tcp |
| DE | 142.250.181.230:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| DE | 142.250.185.206:443 | play.google.com | tcp |
| DE | 142.250.185.74:443 | jnn-pa.googleapis.com | udp |
| DE | 172.217.16.130:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 130.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.181.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| DE | 142.250.185.110:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | 110.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr1---sn-aigl6ns6.googlevideo.com | udp |
| GB | 74.125.105.6:443 | rr1---sn-aigl6ns6.googlevideo.com | udp |
| US | 8.8.8.8:53 | rr4---sn-aigl6ney.googlevideo.com | udp |
| GB | 173.194.183.169:443 | rr4---sn-aigl6ney.googlevideo.com | udp |
| US | 8.8.8.8:53 | i1.ytimg.com | udp |
| DE | 142.250.186.46:443 | i1.ytimg.com | tcp |
| US | 8.8.8.8:53 | 6.105.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.183.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.186.250.142.in-addr.arpa | udp |
| DE | 142.250.185.97:443 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | youtube.com | udp |
| DE | 142.250.186.174:443 | youtube.com | tcp |
| US | 8.8.8.8:53 | 174.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | consent.youtube.com | udp |
| DE | 142.250.185.78:443 | consent.youtube.com | tcp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.114.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | 78.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.114.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | the.gatekeeperconsent.com | tcp |
| US | 104.21.42.32:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 104.16.114.74:443 | static.mediafire.com | udp |
| BE | 13.225.20.181:443 | cdn.amplitude.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| US | 172.64.129.8:443 | www.ezojs.com | tcp |
| DE | 216.58.206.46:443 | translate.google.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 240.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.184.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 104.16.53.110:443 | cdn.otnolatrnup.com | tcp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| FR | 13.39.145.251:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 172.64.137.15:443 | go.ezodn.com | tcp |
| US | 172.64.137.15:443 | go.ezodn.com | tcp |
| US | 172.64.137.15:443 | go.ezodn.com | tcp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| DE | 142.250.185.106:443 | translate.googleapis.com | tcp |
| US | 54.187.211.61:443 | api.amplitude.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 23.14.90.91:80 | apps.identrust.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| DE | 18.184.98.28:443 | btlr.sharethrough.com | tcp |
| DE | 18.184.98.28:443 | btlr.sharethrough.com | tcp |
| DE | 18.184.98.28:443 | btlr.sharethrough.com | tcp |
| DE | 18.184.98.28:443 | btlr.sharethrough.com | tcp |
| DE | 18.184.98.28:443 | btlr.sharethrough.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| DE | 142.250.186.131:443 | www.google.co.uk | tcp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 172.64.137.15:443 | go.ezodn.com | udp |
| US | 8.8.8.8:53 | 8.129.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.20.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.206.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.145.39.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.137.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.166.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.211.187.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.98.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| BE | 13.225.239.9:443 | tags.crwdcntrl.net | tcp |
| IE | 52.214.182.85:443 | bcp.crwdcntrl.net | tcp |
| IE | 99.80.66.155:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| DE | 216.58.206.46:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 131.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.66.80.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.182.214.52.in-addr.arpa | udp |
| DE | 216.58.206.46:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 66.185.250.142.in-addr.arpa | udp |
| FR | 13.39.145.251:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | 88dc54b84451a6c3cb7a7048f55ba42b.safeframe.googlesyndication.com | udp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 172.64.152.89:443 | cdn-ima.33across.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| BE | 13.225.16.60:443 | cdn.prod.uidapi.com | tcp |
| DE | 172.217.16.129:443 | 88dc54b84451a6c3cb7a7048f55ba42b.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| DE | 162.19.138.118:443 | id5-sync.com | tcp |
| US | 34.120.135.53:443 | oajs.openx.net | tcp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.152.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.16.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.135.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.186.250.142.in-addr.arpa | udp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| NL | 72.246.172.22:443 | contextual.media.net | tcp |
| US | 34.120.135.53:443 | oajs.openx.net | udp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | udp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 34.98.64.218:443 | google-bidout-d.openx.net | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.172.246.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.206.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| IE | 67.220.226.232:443 | aax-eu.amazon-adsystem.com | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| DE | 142.250.185.98:443 | cm.g.doubleclick.net | tcp |
| DE | 142.250.185.98:443 | cm.g.doubleclick.net | tcp |
| DE | 142.250.185.98:443 | cm.g.doubleclick.net | tcp |
| IE | 52.215.59.81:443 | a.audrte.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| IE | 63.35.81.137:443 | pr-bh.ybp.yahoo.com | tcp |
| DK | 37.157.6.243:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| DE | 142.250.185.98:443 | cm.g.doubleclick.net | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.113.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.226.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.59.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.81.35.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 104.16.53.110:443 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | download2301.mediafire.com | udp |
| US | 199.91.155.42:443 | download2301.mediafire.com | tcp |
| US | 199.91.155.42:443 | download2301.mediafire.com | tcp |
| DE | 142.250.185.106:443 | translate.googleapis.com | udp |
| US | 8.8.8.8:53 | 42.155.91.199.in-addr.arpa | udp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| BE | 13.225.239.93:443 | woreppercomming.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.8.8.8:53 | www.ovardu.com | udp |
| US | 104.21.96.72:443 | www.ovardu.com | tcp |
| US | 8.8.8.8:53 | 93.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.opera.com | udp |
| DE | 18.193.17.187:443 | www.opera.com | tcp |
| US | 8.8.8.8:53 | www.googleoptimize.com | udp |
| US | 8.8.8.8:53 | cdn-production-opera-website.operacdn.com | udp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| DE | 142.250.186.78:443 | www.googleoptimize.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| DE | 91.228.74.251:443 | cms.quantserve.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | www-static.operacdn.com | udp |
| US | 54.225.145.9:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | pool.admedo.com | udp |
| US | 8.8.8.8:53 | 72.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 187.17.193.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.221.184.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.66.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| BE | 35.210.53.219:443 | pool.admedo.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| BE | 35.210.53.219:443 | pool.admedo.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | www.redditstatic.com | udp |
| US | 8.8.8.8:53 | static.hotjar.com | udp |
| US | 8.8.8.8:53 | snap.licdn.com | udp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| US | 2.17.251.25:443 | snap.licdn.com | tcp |
| BE | 13.225.239.82:443 | static.hotjar.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.145.225.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.53.210.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | alb.reddit.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | script.hotjar.com | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| BE | 13.225.239.19:443 | script.hotjar.com | tcp |
| US | 151.101.1.140:443 | alb.reddit.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 151.101.1.140:443 | alb.reddit.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| FR | 146.59.148.16:443 | pixel.onaudience.com | tcp |
| US | 8.8.8.8:53 | www.linkedin.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.148.59.146.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| US | 8.8.8.8:53 | net.geo.opera.com | udp |
| DE | 3.125.70.222:443 | ps.eyeota.net | tcp |
| NL | 185.26.182.112:443 | net.geo.opera.com | tcp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| DE | 142.250.186.34:443 | ade.googlesyndication.com | tcp |
| DE | 142.250.186.34:443 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 222.70.125.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.182.26.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| DE | 18.193.17.187:443 | www.opera.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| IE | 68.219.88.97:443 | c.clarity.ms | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.88.219.68.in-addr.arpa | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | 34.31.224.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | desktop-netinstaller-sub.osp.opera.software | udp |
| NL | 82.145.217.121:443 | desktop-netinstaller-sub.osp.opera.software | tcp |
| US | 8.8.8.8:53 | 121.217.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | autoupdate.geo.opera.com | udp |
| NL | 185.26.182.123:443 | autoupdate.geo.opera.com | tcp |
| NL | 185.26.182.123:443 | autoupdate.geo.opera.com | tcp |
| US | 8.8.8.8:53 | features.opera-api2.com | udp |
| NL | 185.26.182.112:443 | features.opera-api2.com | tcp |
| US | 8.8.8.8:53 | config.gx.games | udp |
| US | 104.18.8.172:443 | config.gx.games | tcp |
| US | 8.8.8.8:53 | download.opera.com | udp |
| NL | 185.26.182.117:443 | download.opera.com | tcp |
| US | 8.8.8.8:53 | download3.operacdn.com | udp |
| NL | 2.17.112.33:443 | download3.operacdn.com | tcp |
| US | 8.8.8.8:53 | 123.182.26.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.8.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.182.26.185.in-addr.arpa | udp |
| DE | 142.250.185.206:443 | play.google.com | udp |
| DE | 142.250.185.206:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 33.112.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| BE | 142.251.173.84:443 | accounts.google.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| BE | 142.251.173.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 216.239.38.117:443 | beacons2.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 216.239.38.117:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | rr5---sn-5hne6nzd.googlevideo.com | udp |
| US | 8.8.8.8:53 | 249.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.38.239.216.in-addr.arpa | udp |
| NL | 74.125.100.234:443 | rr5---sn-5hne6nzd.googlevideo.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| SE | 213.155.156.180:443 | d5p.de17a.com | tcp |
| IE | 52.214.83.111:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 35.214.220.162:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | 234.100.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.83.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.220.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 188.166.17.21:443 | match.adsby.bidtheatre.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| NL | 89.149.192.201:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 82.145.217.121:443 | desktop-netinstaller-sub.osp.opera.software | tcp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.17.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| FR | 141.95.171.142:443 | green.erne.co | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| FR | 141.94.171.216:443 | pixel-eu.onaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.171.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.249.124.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.171.94.141.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| DE | 142.250.186.110:443 | apis.google.com | udp |
| DE | 142.250.186.110:443 | apis.google.com | tcp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| DE | 142.250.185.195:443 | id.google.com | tcp |
| DE | 142.250.185.195:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | 195.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.184.250.142.in-addr.arpa | udp |
| NL | 82.145.217.121:443 | desktop-netinstaller-sub.osp.opera.software | tcp |
| DE | 142.250.185.195:443 | id.google.com | udp |
| US | 8.8.8.8:53 | rb.rbxs.lol | udp |
| US | 217.196.54.83:443 | rb.rbxs.lol | tcp |
| US | 217.196.54.83:443 | rb.rbxs.lol | udp |
| US | 8.8.8.8:53 | blogger.googleusercontent.com | udp |
| DE | 142.250.186.65:443 | blogger.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 83.54.196.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| DE | 142.250.186.106:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| US | 8.8.8.8:53 | assets.zyrosite.com | udp |
| DE | 142.250.186.65:443 | lh3.googleusercontent.com | udp |
| US | 172.64.154.100:443 | assets.zyrosite.com | tcp |
| US | 8.8.8.8:53 | 106.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.rbxs.lol | udp |
| US | 217.196.54.83:443 | g.rbxs.lol | tcp |
| US | 217.196.54.83:443 | g.rbxs.lol | tcp |
| US | 217.196.54.83:443 | g.rbxs.lol | tcp |
| US | 217.196.54.83:443 | g.rbxs.lol | udp |
| US | 8.8.8.8:53 | cdn.linearicons.com | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | use.typekit.net | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | d1dvnx7eh6slvq.cloudfront.net | udp |
| FR | 185.93.2.244:443 | cdn.linearicons.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| GB | 104.91.71.94:443 | use.typekit.net | tcp |
| BE | 13.225.20.88:443 | d1dvnx7eh6slvq.cloudfront.net | tcp |
| DE | 142.250.186.42:443 | ajax.googleapis.com | tcp |
| US | 8.8.8.8:53 | 14.25.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.2.93.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.20.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 94.71.91.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | p.typekit.net | udp |
| GB | 104.91.71.97:443 | p.typekit.net | tcp |
| GB | 104.91.71.94:443 | use.typekit.net | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | d1ilhfswodzjlp.cloudfront.net | udp |
| BE | 13.225.20.15:443 | d1ilhfswodzjlp.cloudfront.net | tcp |
| BE | 13.225.20.15:443 | d1ilhfswodzjlp.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 97.71.91.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.20.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | e2c79.gcp.gvt2.com | udp |
| IN | 34.0.0.42:443 | e2c79.gcp.gvt2.com | tcp |
| IN | 34.0.0.42:443 | e2c79.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 42.0.0.34.in-addr.arpa | udp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| BE | 142.251.173.84:443 | accounts.google.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| DE | 142.250.186.110:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| DE | 142.250.74.206:443 | google.com | tcp |
| DE | 142.250.74.206:443 | google.com | tcp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | 206.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | e2c31.gcp.gvt2.com | udp |
| TW | 35.206.197.180:443 | e2c31.gcp.gvt2.com | tcp |
| TW | 35.206.197.180:443 | e2c31.gcp.gvt2.com | tcp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| DE | 142.250.186.118:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | rr2---sn-aigl6nek.googlevideo.com | udp |
| GB | 173.194.183.103:443 | rr2---sn-aigl6nek.googlevideo.com | udp |
| US | 8.8.8.8:53 | 103.183.194.173.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| DE | 142.250.185.206:443 | play.google.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 173.194.183.103:443 | rr2---sn-aigl6nek.googlevideo.com | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
Files
\??\pipe\crashpad_4820_ZEUHAXWEFDFMIVSF
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 64ba48663269e461da6d5d63c1f90cf8 |
| SHA1 | f106bfca2d87ff7011d955418afaf0162a7ac14f |
| SHA256 | ad3f7fe9ded3e4c7fa237250aaef45571a33ec4050d02c4fb0016e261b6305b2 |
| SHA512 | fe735654d8775a8cdcee9a0a3a53a1ae785783c1ee4a2b78f56611e8012a98d95f9a0b0ece2cb9d909fb9bb872ca0a2bedb7e1a7afb9851ec33d28b652cd8e6e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 217ececda3c7b07a10ccb9823ebc5a7d |
| SHA1 | 6f9bf11b15e487a1cec25c38c04bcd0657ceb120 |
| SHA256 | 72de7c7c708ad905559a78daa2d631038c008bc9605814b380a7812d7cf79168 |
| SHA512 | 7673f66a526b0128bc58cb35709c7ffca75a3ba54f38d1b2402c19db0fb9e54a59448e688185346db5bc146fdaedd1395d45a5204229d354d1193eb16603218e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ef017fddcb3d8e087cccbb0406bd1c95 |
| SHA1 | f94ec0d7d44deb4b206be936cf2c288ab3ca0cf5 |
| SHA256 | f3ecc9bd3bfedd162782eab61a727559cdacdb2a98c5a09ad24a5a5c5c3add3f |
| SHA512 | 4b83563fd883ab96b42fed5f8702a4f0569b8e9dafc49797eee96eb796383a34c0972666320ce693fb10e8151130a36e028c0ccfccccee254ea8a6c4d5093647 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | ae1bccd6831ebfe5ad03b482ee266e4f |
| SHA1 | 01f4179f48f1af383b275d7ee338dd160b6f558a |
| SHA256 | 1b11047e738f76c94c9d15ee981ec46b286a54def1a7852ca1ade7f908988649 |
| SHA512 | baf7ff6747f30e542c254f46a9678b9dbf42312933962c391b79eca6fcb615e4ba9283c00f554d6021e594f18c087899bc9b5362c41c0d6f862bba7fb9f83038 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe576a81.TMP
| MD5 | 5d038582660173524f1e8bdbbb8fb34f |
| SHA1 | 654509dd087e297f5044df0c1fba1765bb031133 |
| SHA256 | 5da692b33f76d4011a047fd0fcd7e81d150a7081ef16f0ffb9718f721dfc8202 |
| SHA512 | 8a4a854721304ec27e35f1154b9668190c49e9819b32d2fc4309a6c1fb8de7465fb234ea1e949c676e082a35586f54e7b445effe3ca792ead783d749db8720e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001
| MD5 | 045937268a2acced894a9996af39f816 |
| SHA1 | dfbdbd744565fdc5722a2e5a96a55c881b659ed4 |
| SHA256 | cc05f08525e5eaf762d1c1c66bef78dec5f3517cf6f7e86e89368c6d4a1ef0cf |
| SHA512 | 71a025a421384ed1e88d0c5ffadc6450a9e1efd827fe929f5ef447d2901cd87572fccf13dfa8b2706c9fab8160163e3a0c80bfe1ab49d63ffbbcb0e4e591a84f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | d36a279a33de96214071fd7f70c747d8 |
| SHA1 | ceac09f798320386352d961e3b8a1c557361c2eb |
| SHA256 | 1b07b593ad68e1a8a0d1b0e3ae27ef5c9d9512f6638bbef8555dd046580b92a7 |
| SHA512 | d58b0a54678ceed317222ba60eb1ed34c08e92a44839e83047640294bd79edbb2237962892be029110843de7c9c3bcf8ea6d5d9dabe687027669f27d5fc2ffa4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | d6f27248d0b338a5e9aa64b7969b301d |
| SHA1 | f222d3d95d3b6df50a66b19392501a90ad60c4dc |
| SHA256 | 677bede5209907bc7ebb241580d7e5b723477fab974cf86a96bfce1036816b74 |
| SHA512 | 787512056bd45957c202d13710ae382f3c55480a1c6fc28b1c4e4bbb62aeb2d072c27a1757bd0cbbb1eb185bea0bfd2173b8820ea64f3364072996ef768ad49b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 632250358a8fba466987c3ca896d704d |
| SHA1 | c499183020836a3b43528adfe6f2427bce91044e |
| SHA256 | bd35af36c1ae74a60ccd660fa049e135716c72a087d7ad13744184f02131bd7e |
| SHA512 | 52b896cb4c551ba4340ba56d5f7f2c4084cdbff763e84d31ec7520daf82f7da25e978704a03853bc7aceb2e0fcdb5328b4874c4d307489839a326eb8279dc19f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 1a53c8bd7ab48c546d7dab961a3200a7 |
| SHA1 | 7f9081ff469a0e18cca63246f60430f477f9af9c |
| SHA256 | 785f4067801dddef5a09803a9325a4e0bf06264976ab3df26601c9999aee6607 |
| SHA512 | f084e86a608a85d6632be7762a0577316dbca30acb7c81a76ab53cf005b60a392544ec7aadcfb166fba387c1edd611e74e0418835c27076560ff4f51145e5304 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 9e3a60497fb04df993c3ed413fe1bcfb |
| SHA1 | d694e3908507e2672187e9dab1440a3ed07339eb |
| SHA256 | 2d1f2c401e69a3cef633d168188f9752cda8307cec325ffc6f0b91c3d6c8ab0a |
| SHA512 | ee2320ab0ba835228b171c9776428f01050108d7519dda1834d8065391df5adb6d37e5731d791e37a338bc044877b77f5b93c771435d2a9240e53f502a1dcdd0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\000001.dbtmp
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a8b36394701a2f6c25ed42dc896cf4f0 |
| SHA1 | f309fe9ffaa7426b0678159719e57aca607bdf8d |
| SHA256 | a1d5cbbdfda5fb9fac0f4a4cdea0f346375057ee556e2670bd8bfb328f7e9556 |
| SHA512 | 635fa8a42c85f3b7db388dfcef80d252c9e7f61ad65b8fb3f0c0ebab6308267b9ae180edd9c335ac2e3a6685af94b786757b86c2cef9b514bd0ecd36a2027575 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b935783ce5334cdca05c7ab3c82ce4b3 |
| SHA1 | 7d763a5bb974bc247ba3443f26d041cc847d485b |
| SHA256 | 4625ccef70e8317c8f650f1cb77897c9925236716f5b2a1e816ea9206344886c |
| SHA512 | b8c7ae25f0df1b73221d159a8463325a12f4553611449f03eb28cd7e5b43edea68c02ee5519d005331dc0457e543e1a58b993fa7258790dbe88165de70a437c3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c1a3f0987107abf4791a0d9b3310f162 |
| SHA1 | 9990e95be27921d9622f254af18ed705220a84f7 |
| SHA256 | 40956a176a87fb53d0688a3abb0e81b80ab7efdd37c4763e08bc7a7bb58477ea |
| SHA512 | cbf071f3017331c111c1c942c059dd1985cc2599ba06670c3b61c13c07bd083dca192b6e17fa52811aef58027179da715f2a53fd8aa338a6560818dddd1e6aad |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c087366d3b3277b909c2506f9199f3e0 |
| SHA1 | ffd6d0ed1b27cf032db8a396bedbb03ff4286de2 |
| SHA256 | 477628162454892ee7a9bcb36b5d7c53b63ca11fb43871741e4207ff9b8d60bb |
| SHA512 | d798dbc4c725266db95d3651ed072410245022612cff4b055992bc9c1a9145428271d841431f21c433335c098ca2bf8d9b1a022b336b7d8f8f2afa46b1edc251 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4e739c9f59037c6ba31bc6ac5109ef4a |
| SHA1 | 68631f68776f36a3477f75553f017cc0bc5aa5be |
| SHA256 | 4839118b3369dc684cd9bdf4baa8ea4ed951c5bc8b0955b1de343638e52f8dd0 |
| SHA512 | 95031da69c0f2b1f29a8a97e7ddd353fc661e45d73003d3502fac6b6f23de9521b646bb2a920115c1b8868af48af127a997dd4d4988c3b3a5785d8962b0c99e6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | c4cc457815cfd74106d461e54723d01d |
| SHA1 | 79c4d925e021b7c99fbbffc54b580bc5cf97c186 |
| SHA256 | 7934305c0421cca278d1ed568e24828f3388b038b74a548f0683513edab174f6 |
| SHA512 | 7f10e0bab87cc6128d4850063667114c944b1a3842acf5a3da61bd9d8bf74d74a9ef5766ec9d4bc65943e945843da8246994a0bedf88f098005405a4d9657ee0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57d2f0.TMP
| MD5 | eed458a9cc8489516577f298a6afdfd8 |
| SHA1 | 7dfb14869cd4462f2d9532a82575a884183295d2 |
| SHA256 | b2ad009f98edbdf2736d52b8797a630f3cb8fcdd78dd5defa0cb542a2a5946be |
| SHA512 | 4a60fef3059bc661b622614e80b639a7587333196cd88c2f2636e81b940eb8eb3fbed3b9ea2cda12edc23b67aeefc022b308bab4375463000d52c0bc435345fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\dbf0b078-e82d-41d6-9eb7-d2d5ce8fbe90\index-dir\the-real-index~RFe57e03e.TMP
| MD5 | 304facc9cd095d7e85d394f34727d511 |
| SHA1 | be14324063c954aab1cc62c797a773fbf777190b |
| SHA256 | f95920ea9e71557c88accf67e6a2b34ac30be16ed087165aeef26d643c84cb32 |
| SHA512 | d6c0b631f8c284d12513f9621cf1a5195f1b0d34ee0c8e8884d4fd8c04cc726ee513b0f404b98096e9cb852e218a6869c7807d73009bc9b5ed932b826922a25f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\dbf0b078-e82d-41d6-9eb7-d2d5ce8fbe90\index-dir\the-real-index
| MD5 | 2514a91d439fae51471444217bd93fe0 |
| SHA1 | cda951d869ecfcd8647fd9e5ae754f9ad9b9cc08 |
| SHA256 | 788e9f8fe617041c549e8d07c9cc65be60ead4dd3366dc4d5b0593397e242519 |
| SHA512 | 4ad2d90355b0e63c51b12c3974b702bc2f2c6b91ebed3126452d3775947c0b0cc5bea539f9e68ac8af7d054c61bf8f94c83e437c475a7b0e164f0af3f0279c48 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 9738f373e5c29de334eb0012fedce33c |
| SHA1 | 19deb1f8010a5c7276e8e1b236a5c60fcac5f387 |
| SHA256 | 3523bafc11a7ed4771ca005c7ea847444238165821fd9b19503ee21ca362c5d1 |
| SHA512 | 65064f12760a90d1a769c11c98e0e4b106abc9b075871a5c06ba05ec7f1f639f4e96d5bb2e545dae7da9c20551c37807eea74c987b2206d3aa269923a10328f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 3e34b5e62cbd4b8dd4072c4a2d3d1881 |
| SHA1 | f1ec92f6d439a34847de330a00ce156ab1d81234 |
| SHA256 | 0d71afea55ac49649907b62ff4825e6e18f536dc9fc75b5f6b777085e8db5feb |
| SHA512 | cfca415181f2f7cd98616301f4b1001e41d564861d8dfe0aa705ccdca4688727eb151544b413c76ceb48a3a4f3c77b6db2c57d1baec82aa60ec83bf8128bf155 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe57e0da.TMP
| MD5 | 558c2931ee4eb7cb9412c481c8475663 |
| SHA1 | cfe2533486804090a4ec9090d06fca0b7a51ccb0 |
| SHA256 | ce7eea6838fe3e28ba38b1b4472aee66ebb4664393a4992feecbff4c47ce580c |
| SHA512 | d0b31dcfcea635d35f962b9d8f55775ca48afc9db7105935d398f7ac99f7e867bdbecfdf07a15f08bf1a6c3f2c065b3345e60625c57066ee24b61d8e77af267f |
C:\Users\Admin\Downloads\OperaGXSetup.exe
| MD5 | 47dd9b2e7be07cdfcf574c91c376ccf1 |
| SHA1 | ee5c6cac1ccb9d5363dfac01793739e9dc34c620 |
| SHA256 | 630e77bade00e1f55e1732b243b4802992945f004ff94ca286a665f299f35bf1 |
| SHA512 | 2ae8e18a7f8b2e90457ad6ff2eb0f4412d3bfad41fb7f26f63ea27031c16681ace59bb1bbe3a7b427a18577a7fce9884ec2b6886615180c843ac94149dcbb537 |
memory/6308-917-0x0000000000900000-0x0000000000EC0000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2404071739547866308.dll
| MD5 | 7c4c89e7a2b29a8fc7c24fd158761f5f |
| SHA1 | f05bddcb3df1811d104939192510d7afce5bf9b1 |
| SHA256 | b2b0b0372fea8c706860f531099234dd2e90a5648adba0e540cb1eeba6ea0d99 |
| SHA512 | 135bea3366b56f78d78d71969f8ae09fca130339e8989480c29b9970e35c9ed81bccb0a26e68fa572d254d2434f10c28e200baf2044248378724fd471483cd0c |
memory/6468-924-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/6560-935-0x00000000008B0000-0x0000000000E70000-memory.dmp
memory/6560-940-0x00000000008B0000-0x0000000000E70000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 784cd8845fa0bb884fd80a1d58aa84f2 |
| SHA1 | 43a4475d03b4ff1e188284827892a2370eee6757 |
| SHA256 | 444c01fe8414df6f0e6fd90c30536f81872db75b107ef5839e9f0c87b313ac79 |
| SHA512 | a6d9bc2f6e2fa9c7e17e99d429885d911bb537eadb6aecb9ec85cce4f7706e409d8e673a5051a4738e406ebf8ca5c2062f5f769975b666a0907881350f109f74 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 172d86c2f1d8bb8888a0045a05e71d04 |
| SHA1 | b999f838740294132dce3ee4f051696224101a9b |
| SHA256 | a246d6a0d360a6021d4989dd2eed2560ca4011f912fd0c1464c830f24d8b7738 |
| SHA512 | 3294c5e7f85fa177f9f6f58f4d131b174a9d8c4fc5d61d6c8d44874722e9f5d65de31877710947aa194eff0197eb425e06eeb48745e8ef187e382772c3062ca0 |
C:\Users\Admin\Downloads\PacketDupe.jar
| MD5 | f05d3128ae290c20615a98b131f65ebd |
| SHA1 | a6df568c3da53599d801e6c74f06ee4467c269cd |
| SHA256 | 1e5d399b60045d945b3a62d7dfd8378b745fab022961c84c2d7d95fd555adb83 |
| SHA512 | 4255faf2d36a85d3a572941965e048c3e76bd1f6310f9a4193bc9cccbdb32e7a7d233a0b3dd43f9da18213f9cd89917227e676275da1024d119982a4a9be1b55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b5560edb1bb21121c92023319654661f |
| SHA1 | e788401a255263b732adad6c0c72df142087f3d5 |
| SHA256 | 0e3adc1063786a00ca7841a9ccb322c8d02cc6781dfe3e93c88874bc0def8261 |
| SHA512 | df0ae1e284e5041d47cb40a1781527c3bdfb9edc1fb57b54196d55272a2f704f72de99ca4f667cc3c64796ce610adbb686eff0ee8969ea497a076827559e182a |
memory/6136-998-0x0000025643BC0000-0x0000025644BC0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c87cdf7f16d17c6a1895f9fea715574d |
| SHA1 | 1ffd92380cee84001456a73416885c20bfd1e438 |
| SHA256 | d364a777d483555baa94c52167769cd88775280e4827472961dd85831f470839 |
| SHA512 | 349d7f30ce92e9a64d640216557e1e5e9c349d675414a16e76bfdebe29acbb8ae56e75ef1d92c4175c317c8963f695dfcbe7c773e4c8f59dc2e1c847a4b635e4 |
memory/6308-1006-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/6136-1005-0x0000025642310000-0x0000025642311000-memory.dmp
memory/6468-1007-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/6920-1022-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/6948-1027-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/6964-1039-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/7132-1044-0x0000000000F10000-0x00000000014D0000-memory.dmp
memory/6276-1043-0x00000000008C0000-0x0000000000E80000-memory.dmp
memory/6976-1031-0x0000000000900000-0x0000000000EC0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 290035408911f89317e28a36f61df661 |
| SHA1 | 768452c1c8a9a16bdb528817d98de16ba4717575 |
| SHA256 | 943490f1b8f164ce384df0eb34fd460a667f156db3f60b6dbf3a8736e0e53725 |
| SHA512 | bc6c7aa02e438ed2909118cc071215876bfeadc99d97ca335b3c220508dddd5dcff0afaaee98984f154b65490b388215574896f79bac254343a4636879ca64db |
memory/6948-1057-0x0000000000900000-0x0000000000EC0000-memory.dmp
C:\ProgramData\Oracle\Java\.oracle_jre_usage\3903daac9bc4a3b7.timestamp
| MD5 | 6c78b4a5555862690202b88b5d0e6183 |
| SHA1 | 2cdf742f431b79b8762c1e4f935d6c19c495e0f2 |
| SHA256 | 3c13e0dfaff869516d82a19b05e567e793b97d8d455edab2ea90634f03e3bef0 |
| SHA512 | 0ed34b07c708f216a95b752a4d98b35c89b7487925c529e2425040038262848ec4aeb5ceb30ffb4348352b1f1abe78f0b29a441a64a7d859f09b28ea73320bee |
memory/6920-1059-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/5112-1076-0x0000000000900000-0x0000000000EC0000-memory.dmp
memory/5576-1083-0x0000000000900000-0x0000000000EC0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d927d1cd3011467b38baf5c388402c85 |
| SHA1 | e5a0bbfe458b26ada0e02fb81a2ecf1c670d3eba |
| SHA256 | c1384d22c567b2673c3dad21e5fc056e19ca52d73b3a8918a15815b07875ed1b |
| SHA512 | f2e98ce545be70f4c431a1d476d45fb17fcf2e22d18767bdd4b08e833ccb3ce6ce2257719b2ba19ed02389f86486c19c8350f4758bb59e1142337ac01792079e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | e3b7c1f55a368984a5ba8cba843ed6b7 |
| SHA1 | 3362755d9f77b6eb0801ea9b3301a24ee63fb22d |
| SHA256 | 7bd1a844aaf30cf44b61e3e9266a2db03f61dad8c851d78b170df9034ceecce5 |
| SHA512 | 64b0d6689a59da5bf40762169b925eb0dc0d47d0f60c8a83c3cb3696af2c036eba4fb7336e77b99509d9c80ec3b942649c62950c179185ebcbaa132804bb133c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5592ea720d9fc5cdcf84c7ccf9d79a2a |
| SHA1 | 5a2c9a087335a3334d4cb09a25b2abc6cb3162c8 |
| SHA256 | 712cac8ded74d78fc414c9aac9eb270b0384bbd281b48900ec5eadc4a623c391 |
| SHA512 | 74e387c37934b0b4d045e8372fe146d6b26e451e858bb55f521384848c10346e275fc592d8aba1056ee04a6f9221839e5e38d238564bc434f465d666d34ccddd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1fa558dcb7e22f27123d7f6a86632f9e |
| SHA1 | 32d4874269f983ac57d6e35edc7296ceb8082067 |
| SHA256 | f903816d406bb02808e83e5d5e780c158b0d641d000822f2f37fd3cd9ec71b3f |
| SHA512 | cfd2df9e1b722ef7edbfa10bee266fbf29cc54a01758724fecb4d4bab983c66b071895d4923399426ef4fe7b6c94e6728827931cdb08f4eddd6c229f92fe115b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | bf89ffc08dddb2e610f22e6f6482b59e |
| SHA1 | 0935a5b4037121a21ac415df3bc50ed650f2797e |
| SHA256 | 85605fbddc4e7adf25ea44dec486d0de703e606a92df9435807c63471505df6f |
| SHA512 | e3a5f57616c88e406e21e07745ca4f8b7bd11bbc0bc768303fc89e664ef6b40f754a56671c6f36bb629d5252c9b1ffd08cfea96274350e0622269c80c2989af9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | eaeb9c60d461979c1667ba6adfc74c69 |
| SHA1 | beac5272e486bc96e5ae15371297db9cebbb9fa2 |
| SHA256 | 0cb2d8df9498e647171bda1eacf1a1e505a228f6cf36813a49f3b60f9fc8b896 |
| SHA512 | 63ebc6f683f683cef6d6d2f69f79ef2a021fd38f8729725b9065c74c1208c5fdb522a08f1dc0ce48e9c28c8eb53b1ba096a78b804729aa37a8b186b9426126d0 |
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\opera_package
| MD5 | 51925d4ccf835cfc01fc4128e16aae03 |
| SHA1 | 2e29709468adb5399c91da7c65c2999ff1e136e9 |
| SHA256 | 4bc959418d2a311e7fe50db799145d65382a7697230f9d343f3ae23f6526a91d |
| SHA512 | a23cd3e8ddb059c898ccde02e3fb56f9767d989b96c207594d9a437964fd35a4f3ec7c68923ea669f206d3d13f9668b3970e9e6784e92e3a4beef10707267b32 |
C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202404071739551\additional_file0.tmp
| MD5 | e9a2209b61f4be34f25069a6e54affea |
| SHA1 | 6368b0a81608c701b06b97aeff194ce88fd0e3c0 |
| SHA256 | e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f |
| SHA512 | 59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6722801717aefccd855118117cda4ab8 |
| SHA1 | 68c2865d7b47261b3a88e08a0873125ef75e2fb9 |
| SHA256 | 1404893aef1ea1220374f60b4bdb13532f1c433330084ea21de126f052f2fa08 |
| SHA512 | 38fa11295b76056460f700712d73b35c6fe8b844cc967195fdbf0c087694ccf6337038826b14ce4249fee0da669f7e60f8ec9403b6767b711fa146f170fc4b65 |
memory/7132-1301-0x0000000000F10000-0x00000000014D0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ced4007a63b092778e860a57d6ddc7ab |
| SHA1 | 142e0befe1979c6d4c403becfaae043ba52b3603 |
| SHA256 | c0f84732db95551ad04e804b26d3093a95ecdf3dda3560a955bfacdaad8867a8 |
| SHA512 | 356c9de665abfc1d2732aaf012ebb8d8a85ad0fd45b26a87121c4a20e9031a1a46c13f3aef49c918e78fdb050e8f7890c4d891045483c67d3e23e1231161b3f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 990cd224dcbadee6253d7947e1cf3f24 |
| SHA1 | f1be2cb89fc1cb0a48ca20d89d97eedd6b2e144f |
| SHA256 | ca1b1cddd791777a6a93206b25c730d985362e2d9f46a9f6c18e49c1a1223d8b |
| SHA512 | 6ac9c127c5cbdf021c0033948dde3e322ca4a9626fe2b62edd434e076a6fed08e67404a6094cf9d6b0440c9c215d1c255fefdc1ac295c0d7a514252f9bdddfcd |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b0b5636891a0ffc89e9b85f1dfba2b02 |
| SHA1 | 2db9d21018f5ca4f1ad909f970e7f0be08b3cb8a |
| SHA256 | 375ebbb79a9f4214de48b0914b2ff8ade656ff529ca12b2094a3c6db070f5bf7 |
| SHA512 | da3bcb1bf7465cc295bdf4bcd1ad40b167463c7e03243f2fc1f9671afc810a157b6fc27b05ed11eff64447f8977db82db1ec6dcca5ea906f3021bc8b0bc75b85 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 6416d241780a74c91242bd80d159ba81 |
| SHA1 | a44365624b3440c47370cc7bf1b440846e7d5940 |
| SHA256 | b069d29407d73d3811d404f38213c25a0cf69794d36f175d62c399ad83c1f077 |
| SHA512 | 46017ab430e09a5680d9b814b6376ff79e1238fb0178f89d12ad599925c65eb228eebc4fcc998371b26715c9961ab84008994f35844d0c37c767816924d7b8fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | e6244094e1295f143e7c8b33f6780e03 |
| SHA1 | d0fdf4cceb2d14383c6e05ee91d64df68a3546d2 |
| SHA256 | 70f050078534feb6d02d6266d65741d290929f5bf18b85d0102f3f7f8d786213 |
| SHA512 | f61cd3b3166378f52ab16c10894d534adffb79e3c89e18f4d6544fc307d4ebc6cd0215a76cbc37c64994760bdffe100f26549411e42cb6f981c71f684f423500 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008b
| MD5 | ee3f0710890b7b3fd334319a591baaf5 |
| SHA1 | b058fc9b836f7b0ad220b27d655a01a40660b303 |
| SHA256 | 052622b187cdddb17176ee94f775f7b2beb9dfbcec66236e977cc637316de7ab |
| SHA512 | 464609b2b655cbe45b6b0f892f20216588023f59715a864c0d179972690be2e01d572de6f6c44cb360448d287c2e505e1fc1e3f7e1b21be3bb05425558e8b52b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 09f52580a3451b3aa6bad63ef1b4b334 |
| SHA1 | 8e97de277aeba26025942c6034548531de1573e5 |
| SHA256 | f0229ffa7b63c09872f0fd2289b3a815957aa19ba1f837dc2ebfac8453b062b9 |
| SHA512 | d1f6be5751441f4655563a6fa893d07551d81f7526285ee5c823cb0a80e0234f02de65c23d0d5fc0b19654a04b675a43a57683f468fab82a78504d726219ae2d |