Malware Analysis Report

2024-12-07 16:33

Sample ID 241113-31cgjs1gmg
Target lp
SHA256 d36ac2ba4e842fce623ab23c468502ea9a35da444e3e93491d5f1d614f8e6b51
Tags
defense_evasion discovery execution motw phishing spyware stealer
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

d36ac2ba4e842fce623ab23c468502ea9a35da444e3e93491d5f1d614f8e6b51

Threat Level: Likely malicious

The file lp was found to be: Likely malicious.

Malicious Activity Summary

defense_evasion discovery execution motw phishing spyware stealer

Downloads MZ/PE file

Loads dropped DLL

Reads user/profile data of web browsers

A potential corporate email address has been identified in the URL: =@L

Executes dropped EXE

Enumerates connected drives

Mark of the Web detected: This indicates that the page was originally saved or cloned.

Suspicious use of NtSetInformationThreadHideFromDebugger

Drops file in Windows directory

Subvert Trust Controls: Mark-of-the-Web Bypass

Command and Scripting Interpreter: JavaScript

System Location Discovery: System Language Discovery

Browser Information Discovery

Enumerates physical storage devices

Modifies registry class

Enumerates system info in registry

Suspicious use of WriteProcessMemory

Modifies data under HKEY_USERS

Suspicious use of SetWindowsHookEx

Suspicious use of SendNotifyMessage

Opens file in notepad (likely ransom note)

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

NTFS ADS

Suspicious behavior: EnumeratesProcesses

Suspicious use of AdjustPrivilegeToken

Modifies system certificate store

Suspicious use of FindShellTrayWindow

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-13 23:58

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-13 23:58

Reported

2024-11-14 00:02

Platform

win11-20241023-en

Max time kernel

210s

Max time network

215s

Command Line

wscript.exe C:\Users\Admin\AppData\Local\Temp\lp.js

Signatures

Downloads MZ/PE file

A potential corporate email address has been identified in the URL: =@L

phishing

Reads user/profile data of web browsers

spyware stealer

Enumerates connected drives

Description Indicator Process Target
File opened (read-only) \??\D: C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
File opened (read-only) \??\F: C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
File opened (read-only) \??\D: C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
File opened (read-only) \??\F: C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A

Mark of the Web detected: This indicates that the page was originally saved or cloned.

phishing motw
Description Indicator Process Target
N/A https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html N/A N/A

Suspicious use of NtSetInformationThreadHideFromDebugger

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Drops file in Windows directory

Description Indicator Process Target
File opened for modification C:\Windows\SystemTemp C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Subvert Trust Controls: Mark-of-the-Web Bypass

defense_evasion
Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\Bootstrapper 3.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Browser Information Discovery

discovery

Command and Scripting Interpreter: JavaScript

execution

Enumerates physical storage devices

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\OperaGX.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\PremierOpinion\ContentI3.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Windows\SysWOW64\NOTEPAD.EXE N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133760159280488445" C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a000000a000000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\LogicalViewMode = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1092616193" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\IconSize = "16" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1092616193" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByDirection = "4294967295" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\Mode = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\Opera GXStable C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByKey:PID = "0" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\NodeSlot = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\MRUListEx = ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\IconSize = "48" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupView = "0" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupView = "4294967295" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:PID = "14" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 = 14001f50e04fd020ea3a6910a2d808002b30309d0000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0000000001000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Opera GXStable C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 = 14002e8005398e082303024b98265d99428e115f0000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell\SniffedFolderType = "Downloads" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell\KnownFolderDerivedFolderType = "{885A186E-A440-4ADA-812B-DB871B942259}" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\LogicalViewMode = "3" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:FMTID = "{B725F130-47EF-101A-A5F1-02608C9EEBAC}" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \Registry\User\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\NotificationData C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0e000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 = 3a001f44471a0359723fa74489c55595fe6b30ee260001002600efbe10000000b6d5ec0b5625db018447ea605b25db019d0663532836db0114000000 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3} C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\NodeSlot = "2" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 00000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\MRUListEx = ffffffff C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByDirection = "1" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Mode = "4" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02 C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-21-4248760313-3670024077-2384670640-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies system certificate store

evasion spyware trojan
Description Indicator Process Target
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob = 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 C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474\Blob = 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 C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25 C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 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 C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Set value (data) \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\5FB7EE0633E259DBAD0C4C9AE6D38F1A61C7DC25\Blob = 5c000000010000000400000000080000190000000100000010000000ba4f3972e7aed9dccdc210db59da13c90300000001000000140000005fb7ee0633e259dbad0c4c9ae6d38f1a61c7dc251d00000001000000100000008f76b981d528ad4770088245e2031b630b0000000100000012000000440069006700690043006500720074000000140000000100000014000000b13ec36903f8bf4701d498261a0802ef63642bc36200000001000000200000007431e5f4c3c1ce4690774f0b61e05440883ba9a01ed00ba6abd7806ed3b118cf090000000100000034000000303206082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030106082b06010505070308530000000100000040000000303e301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c00f0000000100000014000000e35ef08d884f0a0ade2f75e96301ce6230f213a8040000000100000010000000d474de575c39b2d39c8583c5c065498a2000000001000000c9030000308203c5308202ada003020102021002ac5c266a0b409b8f0b79f2ae462577300d06092a864886f70d0101050500306c310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d312b30290603550403132244696769436572742048696768204173737572616e636520455620526f6f74204341301e170d3036313131303030303030305a170d3331313131303030303030305a306c310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d312b30290603550403132244696769436572742048696768204173737572616e636520455620526f6f7420434130820122300d06092a864886f70d01010105000382010f003082010a0282010100c6cce573e6fbd4bbe52d2d32a6dfe5813fc9cd2549b6712ac3d5943467a20a1cb05f69a640b1c4b7b28fd098a4a941593ad3dc94d63cdb7438a44acc4d2582f74aa5531238eef3496d71917e63b6aba65fc3a484f84f6251bef8c5ecdb3892e306e508910cc4284155fbcb5a89157e71e835bf4d72093dbe3a38505b77311b8db3c724459aa7ac6d00145a04b7ba13eb510a984141224e656187814150a6795c89de194a57d52ee65d1c532c7e98cd1a0616a46873d03404135ca171d35a7c55db5e64e13787305604e511b4298012f1793988a202117c2766b788b778f2ca0aa838ab0a64c2bf665d9584c1a1251e875d1a500b2012cc41bb6e0b5138b84bcb0203010001a3633061300e0603551d0f0101ff040403020186300f0603551d130101ff040530030101ff301d0603551d0e04160414b13ec36903f8bf4701d498261a0802ef63642bc3301f0603551d23041830168014b13ec36903f8bf4701d498261a0802ef63642bc3300d06092a864886f70d010105050003820101001c1a0697dcd79c9f3c886606085721db2147f82a67aabf183276401057c18af37ad911658e35fa9efc45b59ed94c314bb891e8432c8eb378cedbe3537971d6e5219401da55879a2464f68a66ccde9c37cda834b1699b23c89e78222b7043e35547316119ef58c5852f4e30f6a0311623c8e7e2651633cbbf1a1ba03df8ca5e8b318b6008892d0c065c52b7c4f90a98d1155f9f12be7c366338bd44a47fe4262b0ac497690de98ce2c01057b8c876129155f24869d8bc2a025b0f44d42031dbf4ba70265d90609ebc4b17092fb4cb1e4368c90727c1d25cf7ea21b968129c3c9cbf9efc805c9b63cdec47aa252767a037f300827d54d7a9f8e92e13a377e81f4a C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\D4DE20D05E66FC53FE1A50882C78DB2852CAE474 C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A
File opened for modification C:\Users\Admin\Downloads\Bootstrapper 3.exe:Zone.Identifier C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Opens file in notepad (likely ransom note)

ransomware
Description Indicator Process Target
N/A N/A C:\Windows\SysWOW64\NOTEPAD.EXE N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SetWindowsHookEx

Description Indicator Process Target
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\OperaGX.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe N/A
N/A N/A C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe N/A
N/A N/A C:\Users\Admin\AppData\Local\Temp\PremierOpinion\ContentI3.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4688 wrote to memory of 72 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 72 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 900 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 456 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 456 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 4688 wrote to memory of 952 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Processes

C:\Windows\system32\wscript.exe

wscript.exe C:\Users\Admin\AppData\Local\Temp\lp.js

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xfc,0x100,0x104,0xe4,0x108,0x7fff9064cc40,0x7fff9064cc4c,0x7fff9064cc58

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1948,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1936 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1768,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1972 /prefetch:3

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2232,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=1716 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3084,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3240 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3172,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3276 /prefetch:1

C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4404,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4448 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3572,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4736 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4548,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4816 /prefetch:8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4676,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4896,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4308 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=4320,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=4312 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=4844,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5204 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4516,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3564 /prefetch:8

C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe

"C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5128,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5136 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5180,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6092 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=3192,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5280 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6064,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6380 /prefetch:1

C:\Users\Admin\AppData\Local\OperaGX.exe

C:\Users\Admin\AppData\Local\OperaGX.exe --silent --allusers=0

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe --silent --allusers=0 --server-tracking-blob=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

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=114.0.5282.159 --initial-client-data=0x340,0x33c,0x344,0x310,0x348,0x70fa8c5c,0x70fa8c68,0x70fa8c74

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe

"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\setup.exe" --version

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe

"C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe" --backend --install --import-browser-data=0 --enable-stats=1 --enable-installer-stats=1 --consent-given=0 --general-interests=0 --general-location=0 --personalized-content=0 --personalized-ads=0 --vought_browser=0 --launchopera=1 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera GX" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --setdefaultbrowser=1 --pintotaskbar=1 --pintostartmenu=0 --run-at-startup=1 --server-tracking-data=server_tracking_data --initial-pid=3412 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_20241114000017" --session-guid=1c423ae5-d9e7-46ba-9b0a-12cd6132db38 --server-tracking-blob=NWY5MDRiOGE0YjE3ZDRhNWE0YjVjYTc4OTZkNjk1NmM2MzI3ZTgxZGY5MGVlNzA4ZGI1YTY0NjM1NzA3MGE2Nzp7ImNvdW50cnkiOiJHQiIsImVkaXRpb24iOiJzdGQtMiIsImluc3RhbGxlcl9uYW1lIjoiT3BlcmFHWFNldHVwLmV4ZSIsInByb2R1Y3QiOnsibmFtZSI6Im9wZXJhX2d4In0sInF1ZXJ5IjoiL29wZXJhX2d4L3N0YWJsZS9lZGl0aW9uL3N0ZC0yP3V0bV9zb3VyY2U9UFdOZ2FtZXMmdXRtX21lZGl1bT1wYSZ1dG1fY2FtcGFpZ249UFdOX0dCX1BCNV8zNTc1JnV0bV9pZD1iNDVkNzFiMmM0OWY0MjA5YmU5MmMwMzU2NjJkZjc0MSZ1dG1fY29udGVudD0zNTc1X0ZpbGVETSIsInN5c3RlbSI6eyJwbGF0Zm9ybSI6eyJhcmNoIjoieDg2XzY0Iiwib3BzeXMiOiJXaW5kb3dzIiwib3BzeXMtdmVyc2lvbiI6IjExIiwicGFja2FnZSI6IkVYRSJ9fSwidGltZXN0YW1wIjoiMTczMTU0MjQxMy45NjYwIiwidXNlcmFnZW50IjoiTW96aWxsYS80LjAgKGNvbXBhdGlibGU7IE1TSUUgNy4wOyBXaW5kb3dzIE5UIDYuMjsgV09XNjQ7IFRyaWRlbnQvNy4wOyAuTkVUNC4wQzsgLk5FVDQuMEU7IC5ORVQgQ0xSIDIuMC41MDcyNzsgLk5FVCBDTFIgMy4wLjMwNzI5OyAuTkVUIENMUiAzLjUuMzA3MjkpIiwidXRtIjp7ImNhbXBhaWduIjoiUFdOX0dCX1BCNV8zNTc1IiwiY29udGVudCI6IjM1NzVfRmlsZURNIiwiaWQiOiJiNDVkNzFiMmM0OWY0MjA5YmU5MmMwMzU2NjJkZjc0MSIsIm1lZGl1bSI6InBhIiwic291cmNlIjoiUFdOZ2FtZXMifSwidXVpZCI6IjFiOTgxMGZjLWZkM2QtNDFhYy04OWRjLWE5Y2Q1MWEzZTZhOCJ9 --silent --desktopshortcut=1 --wait-for-package --initial-proc-handle=FC05000000000000

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=114.0.5282.159 --initial-client-data=0x32c,0x330,0x334,0x308,0x338,0x70068c5c,0x70068c68,0x70068c74

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe

"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\Opera_GX_assistant_73.0.3856.382_Setup.exe_sfx.exe"

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe

"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe" --version

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe

"C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\crash_count.txt" --url=https://crashstats-collector.opera.com/collector/submit --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktopGX --annotation=ver=73.0.3856.382 --initial-client-data=0x2a4,0x2a8,0x2ac,0x280,0x2b0,0x1104f48,0x1104f58,0x1104f64

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1136,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6608 /prefetch:8

C:\Users\Admin\AppData\Local\Temp\PremierOpinion\ContentI3.exe

"C:\Users\Admin\AppData\Local\Temp\PremierOpinion\ContentI3.exe" -c:1538 -t:InstallUnion

C:\Windows\SysWOW64\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\AppData\Local\link.txt

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5964,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6644 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6592,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6600 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6464,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6212 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5124,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5892 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=2436,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=3528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6100,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5904 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6568,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6524 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6820,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6796 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6928,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6824 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6944,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7048 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6520,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6068 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=5976,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6420 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6020,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6132 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=3132,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6032 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=7296,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=5840 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=7420,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7400 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7460,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7444 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7288,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7700 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7588,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7852 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=8008,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=7452 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=8172,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8164 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8208,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8340 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=8348,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8512 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8568,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=6380 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8836,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8844 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8832,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9036 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=8560,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9156 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=8816,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9292 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=8848,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9312 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=8796,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9440 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=8768,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9668 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=8868,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9844 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=media.mojom.CdmServiceBroker --lang=en-US --service-sandbox-type=cdm --no-appcompat-clear --field-trial-handle=9700,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9320 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=9148,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8504 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=9284,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=11200 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=9932,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9924 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=9940,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9132 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=9948,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=11424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=10300,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10252 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=8852,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9316 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=10328,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=9292 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=10404,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10400 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=8436,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=11648 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=10432,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10424 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=10456,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=8196 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=10464,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=11980 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=10348,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=11988 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=10364,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10484 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=10528,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10504 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=10552,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10492 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=10560,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=12528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=10524,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=12656 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=10596,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=12776 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=10612,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=12676 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=10620,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13012 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=10628,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13036 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=10636,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=10644,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13280 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=10652,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13400 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=10716,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13524 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=10724,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13740 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=10592,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13876 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=10764,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14000 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=10720,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14124 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=10780,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14256 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=10788,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14380 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=10812,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14404 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=10840,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14528 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=10852,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=14652 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=10896,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10888 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=10656,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10876 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=10784,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10984 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --no-appcompat-clear --field-trial-handle=11044,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10856 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E4 0x00000000000004D4

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=13964,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10684 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=13568,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10936 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=15088,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13600 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=12284,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=12300 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=13384,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=10520 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=12240,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13304 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=13428,i,6289941175662817805,12434414978652450047,262144 --variations-seed-version=20241022-180310.361000 --mojo-platform-channel-handle=13464 /prefetch:1

Network

Country Destination Domain Proto
GB 216.58.201.100:443 www.google.com udp
GB 216.58.201.100:443 www.google.com tcp
US 8.8.8.8:53 35.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 100.201.58.216.in-addr.arpa udp
GB 216.58.204.78:443 clients2.google.com udp
N/A 224.0.0.251:5353 udp
GB 216.58.204.78:443 clients2.google.com tcp
US 104.21.60.113:443 filedm.com tcp
US 104.21.60.113:443 filedm.com tcp
US 104.21.60.113:443 filedm.com udp
DE 172.217.18.99:443 beacons.gcp.gvt2.com tcp
DE 172.217.18.99:443 beacons.gcp.gvt2.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 172.67.189.182:443 getfilenow.com tcp
US 172.67.189.182:443 getfilenow.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
US 172.67.189.182:443 getfilenow.com udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 216.58.201.100:443 www.google.com udp
US 35.190.60.70:443 www.dlsft.com tcp
GB 172.217.169.67:80 c.pki.goog tcp
GB 172.217.169.67:80 c.pki.goog tcp
GB 172.217.169.67:80 c.pki.goog tcp
US 52.33.207.7:443 files.io tcp
US 52.33.207.7:443 files.io tcp
US 35.190.60.70:443 www.dlsft.com tcp
US 35.190.60.70:443 www.dlsft.com tcp
US 54.208.234.241:443 introvert.com tcp
US 172.67.195.231:443 filedm.com tcp
FR 52.222.201.47:443 dpd.securestudies.com tcp
US 8.8.8.8:53 47.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 231.195.67.172.in-addr.arpa udp
US 104.21.27.152:443 use.fontawesome.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 165.193.78.234:80 post.securestudies.com tcp
US 104.21.96.72:443 www.ovardu.com tcp
US 165.193.78.234:80 post.securestudies.com tcp
NL 185.26.182.111:443 net.geo.opera.com tcp
US 8.8.8.8:53 90.193.84.52.in-addr.arpa udp
US 8.8.8.8:53 154.200.245.18.in-addr.arpa udp
US 8.8.8.8:53 72.96.21.104.in-addr.arpa udp
US 216.239.32.36:443 region1.analytics.google.com udp
NL 185.26.182.123:443 autoupdate.opera.com tcp
NL 185.26.182.124:443 autoupdate.opera.com tcp
NL 82.145.217.121:443 desktop-netinstaller-sub.osp.opera.software tcp
NL 82.145.216.16:443 features.opera-api2.com tcp
US 104.18.24.17:443 api.config.opr.gg tcp
NL 82.145.216.49:443 download.opera.com tcp
US 104.18.11.89:443 download5.operacdn.com tcp
US 8.8.8.8:53 17.24.18.104.in-addr.arpa udp
US 8.8.8.8:53 49.216.145.82.in-addr.arpa udp
NL 82.145.217.121:443 desktop-netinstaller-sub.osp.opera.software tcp
GB 95.101.143.176:443 download3.operacdn.com tcp
US 165.193.78.234:443 post.securestudies.com tcp
US 165.193.78.234:80 post.securestudies.com tcp
US 165.193.78.234:443 post.securestudies.com tcp
N/A 127.0.0.1:50216 tcp
US 165.193.78.234:443 post.securestudies.com tcp
N/A 127.0.0.1:50224 tcp
DE 167.235.218.62:80 a.directfiledl.com tcp
DE 167.235.218.62:80 a.directfiledl.com tcp
DE 172.217.18.99:443 beacons.gcp.gvt2.com udp
US 143.244.215.221:443 file.io tcp
US 143.244.215.221:443 file.io tcp
FR 3.165.113.125:443 www.file.io tcp
GB 79.127.237.132:443 hb.vntsm.com tcp
GB 79.127.237.132:443 hb.vntsm.com tcp
US 151.101.1.194:443 hb-vntsm-com.global.ssl.fastly.net tcp
US 172.67.36.131:443 hb.vntsm.io tcp
GB 79.127.237.132:443 hb.vntsm.com tcp
GB 173.194.76.156:443 stats.g.doubleclick.net tcp
GB 142.250.200.3:443 www.google.co.uk tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 216.239.32.36:443 region1.analytics.google.com tcp
FR 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 13.249.9.33:443 cdn.exelator.com tcp
GB 216.58.212.194:443 securepubads.g.doubleclick.net tcp
FR 18.245.194.122:443 c.amazon-adsystem.com tcp
GB 216.58.212.194:443 securepubads.g.doubleclick.net udp
IE 34.254.143.3:443 mydmp.exelator.com tcp
FR 52.84.174.6:443 config.aps.amazon-adsystem.com tcp
GB 216.58.212.238:443 fundingchoicesmessages.google.com tcp
US 8.8.8.8:53 analytics.twitter.com udp
US 8.8.8.8:53 secure.cdn.fastclick.net udp
US 8.8.8.8:53 cdn.hadronid.net udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 15.197.193.217:443 match.adsrvr.org tcp
US 52.71.201.70:443 onsite-tag-logs.apps.nielsen.com tcp
US 104.244.42.131:443 analytics.twitter.com tcp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
US 104.22.52.173:443 cdn.hadronid.net tcp
GB 104.78.175.230:443 secure.cdn.fastclick.net tcp
GB 104.78.175.230:443 secure.cdn.fastclick.net tcp
US 104.22.52.86:443 cdn.id5-sync.com tcp
FR 18.245.194.122:443 c.amazon-adsystem.com tcp
GB 172.217.169.66:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
US 8.8.8.8:53 122.194.245.18.in-addr.arpa udp
US 8.8.8.8:53 33.9.249.13.in-addr.arpa udp
US 8.8.8.8:53 194.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 3.143.254.34.in-addr.arpa udp
US 8.8.8.8:53 238.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 6.174.84.52.in-addr.arpa udp
US 172.67.23.234:443 a.ad.gt tcp
GB 216.58.212.238:443 fundingchoicesmessages.google.com udp
NL 64.158.223.146:443 proc.ad.cpe.dotomi.com tcp
GB 142.250.179.225:443 lh3.googleusercontent.com tcp
GB 216.58.212.238:443 fundingchoicesmessages.google.com udp
US 104.22.4.69:443 a.ad.gt tcp
US 8.8.8.8:53 234.23.67.172.in-addr.arpa udp
US 8.8.8.8:53 225.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 146.223.158.64.in-addr.arpa udp
US 8.8.8.8:53 69.4.22.104.in-addr.arpa udp
DE 141.95.33.120:443 id5-sync.com tcp
DE 162.19.138.116:443 id5-sync.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
US 104.18.35.167:443 cdn-ima.33across.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
FR 18.155.129.56:443 tags.crwdcntrl.net tcp
IE 52.31.82.166:443 p.cpx.to tcp
US 104.18.22.145:443 cadmus.script.ac tcp
US 104.18.166.224:443 pub.doubleverify.com tcp
DE 91.228.74.166:443 secure.quantserve.com tcp
US 104.18.166.224:443 pub.doubleverify.com udp
IE 52.48.168.123:443 bcp.crwdcntrl.net tcp
US 34.95.69.49:443 i.clean.gg tcp
NL 185.89.210.244:443 ib.adnxs.com tcp
FR 18.244.28.87:443 rules.quantcount.com tcp
FR 3.162.36.191:443 aax.amazon-adsystem.com tcp
IE 3.248.120.42:443 track.venatusmedia.com tcp
IE 54.171.28.155:443 rtb.gumgum.com tcp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 api.rlcdn.com udp
US 34.120.111.33:443 cdn.edkt.io tcp
US 8.8.8.8:53 ice.360yield.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
IE 52.212.38.184:443 p.cpx.to tcp
IE 52.213.90.221:443 ice.360yield.com tcp
US 34.95.69.49:443 i.clean.gg udp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
NL 46.228.164.13:443 d.turn.com tcp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 elb.the-ozone-project.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 apex.go.sonobi.com udp
US 8.8.8.8:53 prg.smartadserver.com udp
US 8.8.8.8:53 tlx.3lift.com udp
US 172.64.146.150:443 ex.ingage.tech tcp
FR 163.5.194.33:443 prebid.a-mo.net tcp
DE 3.72.78.234:443 btlr.sharethrough.com tcp
DE 3.72.78.234:443 btlr.sharethrough.com tcp
DE 3.72.78.234:443 btlr.sharethrough.com tcp
DE 3.72.78.234:443 btlr.sharethrough.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 api.edkt.io udp
DE 3.124.64.248:443 tlx.3lift.com tcp
US 69.166.1.9:443 apex.go.sonobi.com tcp
FR 185.255.84.150:443 hb-api.omnitagjs.com tcp
US 172.64.153.66:443 elb.the-ozone-project.com tcp
NL 89.149.192.240:443 prg.smartadserver.com tcp
NL 89.149.192.240:443 prg.smartadserver.com tcp
US 34.120.111.33:443 api.edkt.io tcp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
US 34.120.111.33:443 api.edkt.io udp
NL 178.250.1.9:443 dis.criteo.com tcp
US 172.64.146.150:443 ex.ingage.tech tcp
US 34.120.111.33:443 api.edkt.io tcp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 56.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 145.22.18.104.in-addr.arpa udp
US 8.8.8.8:53 224.166.18.104.in-addr.arpa udp
US 8.8.8.8:53 166.82.31.52.in-addr.arpa udp
US 8.8.8.8:53 166.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 123.168.48.52.in-addr.arpa udp
US 8.8.8.8:53 49.69.95.34.in-addr.arpa udp
US 8.8.8.8:53 244.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 87.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 191.36.162.3.in-addr.arpa udp
US 8.8.8.8:53 42.120.248.3.in-addr.arpa udp
US 8.8.8.8:53 155.28.171.54.in-addr.arpa udp
US 8.8.8.8:53 33.111.120.34.in-addr.arpa udp
US 8.8.8.8:53 55.133.120.34.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 184.38.212.52.in-addr.arpa udp
US 8.8.8.8:53 221.90.213.52.in-addr.arpa udp
US 8.8.8.8:53 205.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 13.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 150.146.64.172.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 33.194.5.163.in-addr.arpa udp
US 8.8.8.8:53 234.78.72.3.in-addr.arpa udp
US 8.8.8.8:53 66.153.64.172.in-addr.arpa udp
US 8.8.8.8:53 240.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 248.64.124.3.in-addr.arpa udp
US 8.8.8.8:53 22.125.95.52.in-addr.arpa udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 9.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 150.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 34.120.111.33:443 api.edkt.io udp
NL 69.173.156.149:443 token.rubiconproject.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
FR 54.36.150.182:443 cookie-matching.mediarithmics.com tcp
NL 35.214.168.80:443 trace-eu.mediago.io tcp
IE 54.77.246.156:443 ms-cookie-sync.presage.io tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
NL 178.250.1.57:443 ssp-sync.criteo.com tcp
FR 5.135.209.101:443 ssbsync.smartadserver.com tcp
US 20.33.55.12:443 sync.inmobi.com tcp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
DE 18.197.30.174:443 match.sharethrough.com tcp
NL 35.214.136.108:443 x.bidswitch.net tcp
GB 142.250.200.1:443 5166985857dfb04c31afd26b3b319db1.safeframe.googlesyndication.com tcp
GB 104.82.233.61:443 tg1.aniview.com tcp
US 172.66.43.201:443 io.narrative.io tcp
NL 35.214.136.108:443 x.bidswitch.net udp
US 8.8.8.8:53 track4.aniview.com udp
GB 2.18.108.192:443 ads.pubmatic.com tcp
GB 142.250.187.193:443 ep2.adtrafficquality.google tcp
US 172.240.45.75:443 track4.aniview.com tcp
GB 2.20.12.106:443 player.avplayer.com tcp
GB 95.101.143.233:443 feed.avplayer.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
US 172.66.43.201:443 io.narrative.io udp
NL 208.93.169.131:443 bh.contextweb.com tcp
GB 95.100.245.251:443 eus.rubiconproject.com tcp
GB 142.250.187.193:443 ep2.adtrafficquality.google tcp
GB 216.58.201.100:443 www.google.com tcp
US 8.8.8.8:53 182.150.36.54.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 80.168.214.35.in-addr.arpa udp
US 8.8.8.8:53 156.246.77.54.in-addr.arpa udp
US 8.8.8.8:53 57.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 101.209.135.5.in-addr.arpa udp
US 8.8.8.8:53 12.55.33.20.in-addr.arpa udp
US 8.8.8.8:53 174.30.197.18.in-addr.arpa udp
US 8.8.8.8:53 108.136.214.35.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 1.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 61.233.82.104.in-addr.arpa udp
US 8.8.8.8:53 201.43.66.172.in-addr.arpa udp
US 8.8.8.8:53 192.108.18.2.in-addr.arpa udp
US 8.8.8.8:53 193.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 106.12.20.2.in-addr.arpa udp
US 8.8.8.8:53 233.143.101.95.in-addr.arpa udp
US 8.8.8.8:53 75.45.240.172.in-addr.arpa udp
US 8.8.8.8:53 226.16.217.172.in-addr.arpa udp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
GB 172.217.169.66:443 cm.g.doubleclick.net tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net tcp
US 172.64.151.101:443 dsum-sec.casalemedia.com tcp
IE 52.208.141.202:443 cs-tam.yellowblue.io tcp
GB 2.20.12.106:443 player.aniview.com tcp
US 76.223.111.18:443 eb2.3lift.com tcp
GB 2.20.12.70:443 player.aniview.com tcp
GB 104.82.233.61:443 play.aniview.com tcp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 70.12.20.2.in-addr.arpa udp
NL 185.64.189.221:443 st.pubmatic.com tcp
NL 185.64.189.221:443 st.pubmatic.com tcp
GB 95.100.245.165:443 servedby.flashtalking.com tcp
GB 142.250.178.1:443 tpc.googlesyndication.com tcp
GB 142.250.187.230:443 s0.2mdn.net tcp
US 151.101.194.217:443 scripts.webcontentassessor.com tcp
GB 142.250.178.1:443 tpc.googlesyndication.com tcp
GB 142.250.187.230:443 s0.2mdn.net udp
GB 92.123.26.224:443 ajs-assets.ftstatic.com tcp
GB 142.250.187.194:443 googleads4.g.doubleclick.net tcp
DE 172.217.18.99:443 beacons.gcp.gvt2.com tcp
NL 198.47.127.19:443 image6.pubmatic.com tcp
FR 18.155.129.67:443 agen-assets.ftstatic.com tcp
GB 172.217.169.66:443 cm.g.doubleclick.net udp
US 15.197.193.217:443 match.adsrvr.org tcp
FR 54.38.113.2:443 pixel.onaudience.com tcp
DK 77.243.51.121:443 uipglob.semasio.net tcp
DK 37.157.6.232:443 c1.adform.net tcp
DK 37.157.6.232:443 c1.adform.net tcp
US 104.22.50.98:443 mwzeom.zeotap.com tcp
NL 34.91.165.80:443 um.simpli.fi tcp
NL 198.47.127.205:443 image2.pubmatic.com tcp
US 8.8.8.8:53 cdn.flashtalking.com udp
US 8.8.8.8:53 224.26.123.92.in-addr.arpa udp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
GB 185.64.191.210:443 simage2.pubmatic.com tcp
US 8.8.8.8:53 67.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 98.50.22.104.in-addr.arpa udp
FR 52.222.169.73:443 cdn.flashtalking.com tcp
FR 52.222.169.73:443 cdn.flashtalking.com tcp
FR 52.84.174.8:443 js.ad-score.com tcp
DE 3.120.214.218:443 ps.eyeota.net tcp
GB 18.170.252.3:443 ad-events.flashtalking.com tcp
US 130.211.115.4:443 data.ad-score.com tcp
NL 46.228.164.13:443 d.turn.com tcp
DE 18.197.30.174:443 match.sharethrough.com tcp
US 151.101.2.49:443 sync-tm.everesttech.net tcp
FR 163.5.194.33:443 sync.a-mo.net tcp
US 172.64.153.66:443 elb.the-ozone-project.com tcp
US 8.8.8.8:53 sync.mathtag.com udp
NL 185.89.210.244:443 ib.adnxs.com tcp
US 8.8.8.8:53 p.rfihub.com udp
NL 35.214.136.108:443 x.bidswitch.net tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 creativecdn.com udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
NL 193.0.160.130:443 p.rfihub.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
US 52.207.122.183:443 sync.srv.stackadapt.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
IE 54.72.104.142:443 ap.lijit.com tcp
US 216.200.232.253:443 sync.mathtag.com tcp
US 54.210.247.251:443 cs.ingage.tech tcp
US 54.210.247.251:443 cs.ingage.tech tcp
US 54.210.247.251:443 cs.ingage.tech tcp
US 34.98.64.218:443 u.openx.net tcp
GB 2.20.12.69:443 acdn.adnxs.com tcp
FR 163.5.194.36:443 sync.a-mo.net tcp
US 54.210.247.251:443 cs.ingage.tech tcp
US 34.98.64.218:443 u.openx.net udp
US 104.19.158.19:443 assets.a-mo.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
NL 35.214.136.108:443 x.bidswitch.net udp
US 8.8.8.8:53 secure.flashtalking.com udp
US 69.166.1.34:443 sync.go.sonobi.com tcp
US 69.166.1.34:443 sync.go.sonobi.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
US 69.166.1.34:443 sync.go.sonobi.com tcp
GB 2.20.12.70:443 player.aniview.com tcp
DE 148.251.40.113:443 sync.richaudience.com tcp
US 8.2.108.175:443 bc-sync.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
US 104.18.6.198:443 gum.aidemsrv.com tcp
US 8.8.8.8:53 69.12.20.2.in-addr.arpa udp
US 8.8.8.8:53 142.104.72.54.in-addr.arpa udp
US 8.8.8.8:53 36.194.5.163.in-addr.arpa udp
US 8.8.8.8:53 183.122.207.52.in-addr.arpa udp
US 8.8.8.8:53 153.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 251.247.210.54.in-addr.arpa udp
US 8.8.8.8:53 253.232.200.216.in-addr.arpa udp
US 8.8.8.8:53 19.158.19.104.in-addr.arpa udp
US 107.22.211.243:443 cs-server-s2s.yellowblue.io tcp
DE 51.38.120.206:443 onetag-sys.com tcp
US 50.17.90.156:443 api-2-0.spot.im tcp
NL 35.214.205.154:443 csync.loopme.me tcp
US 67.202.105.23:443 ssc-cms.33across.com tcp
US 50.31.142.63:443 b1sync.zemanta.com tcp
US 50.31.142.63:443 b1sync.zemanta.com tcp
GB 95.100.244.38:443 secure.flashtalking.com tcp
US 104.16.80.73:443 static.cloudflareinsights.com tcp
GB 23.215.239.190:443 secure-assets.rubiconproject.com tcp
US 8.2.108.175:443 bc-sync.com tcp
US 52.207.122.183:443 sync.srv.stackadapt.com tcp
US 52.207.122.183:443 sync.srv.stackadapt.com tcp
US 52.207.122.183:443 sync.srv.stackadapt.com tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
IE 34.251.118.136:443 pr-bh.ybp.yahoo.com tcp
NL 64.158.223.140:443 triplelift-match.dotomi.com tcp
DE 51.38.120.206:443 onetag-sys.com tcp
GB 23.215.239.190:443 secure-assets.rubiconproject.com tcp
US 69.166.1.34:443 sync.go.sonobi.com tcp
US 69.166.1.34:443 sync.go.sonobi.com tcp
US 69.166.1.34:443 sync.go.sonobi.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
NL 198.47.127.20:443 simage4.pubmatic.com tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
NL 79.127.227.46:443 id.a-mx.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
DK 37.157.3.20:443 cm.adform.net tcp
NL 81.17.55.122:443 ssbsync-global.smartadserver.com tcp
NL 188.42.191.196:443 ads.betweendigital.com tcp
US 104.18.36.155:443 ssum.casalemedia.com udp
US 52.207.122.183:443 sync.srv.stackadapt.com tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
GB 87.248.114.12:443 ups.analytics.yahoo.com tcp
US 204.62.12.209:443 sync-service.net tcp
US 35.186.253.211:443 rtb.openx.net udp
IE 54.171.224.40:443 jadserve.postrelease.com tcp
US 34.111.113.62:443 pixel.tapad.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 192.132.33.69:443 bttrack.com tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
DE 91.228.74.159:443 cms.quantserve.com tcp
US 8.8.8.8:53 34.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 206.120.38.51.in-addr.arpa udp
US 8.8.8.8:53 154.205.214.35.in-addr.arpa udp
US 8.8.8.8:53 38.244.100.95.in-addr.arpa udp
US 8.8.8.8:53 73.80.16.104.in-addr.arpa udp
US 8.8.8.8:53 243.211.22.107.in-addr.arpa udp
US 8.8.8.8:53 156.90.17.50.in-addr.arpa udp
US 8.8.8.8:53 23.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 63.142.31.50.in-addr.arpa udp
US 8.8.8.8:53 190.239.215.23.in-addr.arpa udp
US 8.8.8.8:53 14.42.107.13.in-addr.arpa udp
US 8.8.8.8:53 140.223.158.64.in-addr.arpa udp
US 8.8.8.8:53 136.118.251.34.in-addr.arpa udp
US 8.8.8.8:53 20.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 211.253.186.35.in-addr.arpa udp
US 8.8.8.8:53 46.227.127.79.in-addr.arpa udp
US 8.8.8.8:53 122.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 35.244.174.68:443 id.rlcdn.com tcp
NL 193.0.160.130:443 p.rfihub.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
NL 35.214.174.141:443 a.sportradarserving.com tcp
US 34.111.113.62:443 pixel.tapad.com udp
GB 185.64.190.81:443 image4.pubmatic.com tcp
GB 185.64.190.81:443 image4.pubmatic.com tcp
GB 185.64.190.81:443 image4.pubmatic.com tcp
GB 185.64.190.81:443 image4.pubmatic.com tcp
NL 35.214.174.141:443 a.sportradarserving.com udp
NL 185.89.208.11:443 prebid.adnxs.com tcp
GB 185.64.190.84:443 ow.pubmatic.com tcp
NL 79.127.227.46:443 id.rtb.mx tcp
NL 79.127.227.46:443 id.rtb.mx tcp
US 172.240.45.76:443 track1.avplayer.com tcp
US 8.8.8.8:53 84.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 11.208.89.185.in-addr.arpa udp
SE 192.229.221.95:80 cacerts.geotrust.com tcp
US 143.244.215.221:443 file.io tcp
US 35.186.194.101:443 ad.sxp.smartclip.net tcp
GB 2.18.109.192:443 ad.yieldlab.net tcp
IE 54.77.246.156:443 ms-cookie-sync.presage.io tcp
US 35.186.194.101:443 ad.sxp.smartclip.net udp
US 98.82.157.231:443 s.amazon-adsystem.com tcp
US 172.240.45.75:443 track4.aniview.com udp
US 172.240.45.81:443 go1.aniview.com tcp
IE 54.77.246.156:443 ms-cookie-sync.presage.io tcp
IE 54.77.246.156:443 ms-cookie-sync.presage.io tcp
NL 89.207.16.204:443 pubmatic-match.dotomi.com tcp
DE 51.38.120.206:443 onetag-sys.com udp
FR 18.164.52.46:443 s.ad.smaato.net tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
GB 2.20.12.70:443 player.aniview.com udp
US 80.77.87.216:443 cs.krushmedia.com tcp
US 8.8.8.8:53 delivery.redpineapplemedia.com udp
US 172.240.45.96:443 sync.aniview.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
US 172.240.45.70:443 s2s.aniview.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
IE 54.220.28.85:443 delivery.redpineapplemedia.com tcp
US 172.240.45.96:443 sync.aniview.com tcp
DE 185.59.220.199:443 cdn1.vntsm.com tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
DE 116.202.167.155:443 inv-nets.admixer.net tcp
US 172.240.45.96:443 sync.aniview.com tcp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 contextual.media.net udp
US 172.240.45.70:443 s2s.aniview.com tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk tcp
DE 185.59.220.199:443 cdn1.vntsm.com tcp
US 8.8.8.8:53 hb.yellowblue.io udp
US 8.8.8.8:53 prebid-server.rubiconproject.com udp
FR 18.244.28.105:443 hb.yellowblue.io tcp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
NL 35.214.205.154:443 csync.loopme.me tcp
US 8.8.8.8:53 dsp.360yield.com udp
US 8.8.8.8:53 ad.mrtnsvr.com udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 ipac.ctnsnet.com udp
US 8.8.8.8:53 core.iprom.net udp
DE 80.82.210.217:443 dsp-cookie.adfarm1.adition.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
NL 188.42.63.48:443 dsp-ap.eskimi.com tcp
IE 52.213.90.221:443 dsp.360yield.com tcp
US 35.186.193.173:443 ipac.ctnsnet.com tcp
IE 34.246.139.66:443 match.prod.bidr.io tcp
SI 195.5.165.20:443 core.iprom.net tcp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 matching.truffle.bid udp
IE 54.194.120.205:443 sync.crwdcntrl.net tcp
SE 13.53.196.230:443 d5p.de17a.com tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
FR 141.94.161.158:443 green.erne.co tcp
IE 52.215.155.11:443 cm.adgrx.com tcp
NL 35.214.132.90:443 u.ipw.metadsp.co.uk udp
US 8.8.8.8:53 216.87.77.80.in-addr.arpa udp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 8.8.8.8:53 85.28.220.54.in-addr.arpa udp
US 8.8.8.8:53 199.220.59.185.in-addr.arpa udp
DE 162.55.120.196:443 matching.truffle.bid tcp
US 104.18.37.193:443 s.tribalfusion.com tcp
US 8.8.8.8:53 155.167.202.116.in-addr.arpa udp
US 8.8.8.8:53 70.45.240.172.in-addr.arpa udp
US 8.8.8.8:53 150.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 105.28.244.18.in-addr.arpa udp
NL 46.228.164.11:443 ad.turn.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
NL 64.227.64.62:443 match.adsby.bidtheatre.com tcp
FR 51.255.68.171:443 dsp.nrich.ai tcp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
US 35.186.193.173:443 ipac.ctnsnet.com udp
US 34.102.163.6:443 ad.mrtnsvr.com tcp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
IE 34.246.139.66:443 match.prod.bidr.io tcp
GB 95.100.244.20:443 contextual.media.net tcp
FR 54.38.113.6:443 pixel-eu.onaudience.com tcp
SI 195.5.165.20:443 core.iprom.net tcp
GB 216.58.213.10:443 content-autofill.googleapis.com tcp
US 8.8.8.8:53 20.165.5.195.in-addr.arpa udp
US 8.8.8.8:53 205.120.194.54.in-addr.arpa udp
US 8.8.8.8:53 158.161.94.141.in-addr.arpa udp
US 8.8.8.8:53 f44d4fdf05025756f90f5b3a18eed210.safeframe.googlesyndication.com udp
US 8.8.8.8:53 11.155.215.52.in-addr.arpa udp
US 8.8.8.8:53 193.37.18.104.in-addr.arpa udp
US 8.8.8.8:53 230.196.53.13.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 196.120.55.162.in-addr.arpa udp
US 8.8.8.8:53 62.64.227.64.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 171.68.255.51.in-addr.arpa udp
US 8.8.8.8:53 20.244.100.95.in-addr.arpa udp
US 8.8.8.8:53 6.113.38.54.in-addr.arpa udp
GB 216.58.212.194:443 securepubads.g.doubleclick.net udp
FR 164.132.25.185:443 rtb-csync.smartadserver.com tcp
GB 216.58.213.10:443 content-autofill.googleapis.com tcp
GB 142.250.187.230:443 s0.2mdn.net udp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
IE 34.246.139.66:443 match.prod.bidr.io tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
DE 18.197.30.174:443 match.sharethrough.com tcp
NL 46.228.164.11:443 ad.turn.com tcp
FR 45.137.176.88:443 sync.adotmob.com tcp
FR 164.132.25.185:443 rtb-csync.smartadserver.com tcp
FR 164.132.25.185:443 rtb-csync.smartadserver.com tcp
GB 18.134.84.20:443 1f2e7.v.fwmrm.net tcp
FR 164.132.25.185:443 rtb-csync.smartadserver.com tcp
GB 216.58.213.10:443 content-autofill.googleapis.com udp
GB 142.250.178.1:443 tpc.googlesyndication.com udp
GB 216.58.201.100:443 www.google.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
DE 52.58.43.76:443 optimized-by.rubiconproject.com tcp
IE 34.251.118.136:443 pr-bh.ybp.yahoo.com tcp
NL 46.228.174.115:443 targeting.unrulymedia.com tcp
NL 46.228.174.115:443 targeting.unrulymedia.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
US 172.240.45.75:443 track1.aniview.com udp
FR 99.86.91.86:443 scripts.mf.webcontentassessor.com tcp
NL 185.89.210.244:443 ib.adnxs.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
IE 99.80.216.230:443 pm.w55c.net tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
GB 142.250.178.2:443 pubads.g.doubleclick.net tcp
US 130.211.115.4:443 data.ad-score.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com udp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
FR 154.54.250.80:443 ads.stickyadstv.com tcp
US 34.1.230.247:443 ads.creative-serving.com tcp
US 98.82.157.231:443 s.amazon-adsystem.com tcp
US 80.77.87.161:443 cs.admanmedia.com tcp
DE 51.38.120.206:443 onetag-sys.com tcp
US 34.1.230.247:443 ads.creative-serving.com udp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
US 8.8.8.8:53 csi.gstatic.com udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
US 34.96.71.22:443 s.company-target.com tcp
NL 142.250.179.163:443 csi.gstatic.com tcp
BE 74.125.71.157:443 bid.g.doubleclick.net tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
US 69.173.151.100:443 pixel-us-east.rubiconproject.com tcp
US 69.173.151.100:443 pixel-us-east.rubiconproject.com tcp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
NL 142.250.179.163:443 csi.gstatic.com udp
US 172.240.45.76:443 track1.avplayer.com udp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
NL 69.173.156.149:443 pixel-eu.rubiconproject.com tcp
US 34.149.184.224:443 cs10.connected-stories.com tcp
IE 34.246.139.66:443 match.prod.bidr.io tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
NL 46.228.174.117:443 sync.targeting.unrulymedia.com tcp
IE 52.215.155.11:443 cm.adgrx.com tcp
US 3.218.135.138:443 sync.ipredictive.com tcp
FR 141.94.161.158:443 green.erne.co tcp
DE 162.55.120.196:443 matching.truffle.bid tcp
US 104.18.37.193:443 s.tribalfusion.com udp
US 216.239.32.36:443 region1.analytics.google.com udp
IE 3.248.120.42:443 track.venatusmedia.com tcp
US 69.166.1.9:443 apex.go.sonobi.com tcp
IE 54.220.97.103:443 pixel.adsafeprotected.com tcp
FR 54.38.113.6:443 pixel-eu.onaudience.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 163.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 157.71.125.74.in-addr.arpa udp
US 8.8.8.8:53 100.151.173.69.in-addr.arpa udp
US 8.8.8.8:53 138.135.218.3.in-addr.arpa udp
US 8.8.8.8:53 103.97.220.54.in-addr.arpa udp
US 8.8.8.8:53 224.184.149.34.in-addr.arpa udp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
IE 52.214.174.232:443 ce.lijit.com tcp
US 151.101.131.52:443 cdn10.connected-stories.com tcp
FR 18.164.52.40:443 static.adsafeprotected.com tcp
US 34.149.184.224:443 cs10.connected-stories.com tcp
IE 34.246.139.66:443 match.prod.bidr.io tcp
US 151.101.131.52:443 cdn10.connected-stories.com udp
US 34.149.184.224:443 cs10.connected-stories.com udp
US 151.101.131.52:443 cdn10.connected-stories.com udp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
FR 52.222.201.51:443 live.primis.tech tcp
US 130.211.115.4:443 data.ad-score.com tcp
FR 3.165.136.96:443 sync-gdpr.intentiq.com tcp
GB 142.250.187.193:443 ep2.adtrafficquality.google udp
GB 142.250.180.2:443 ade.googlesyndication.com tcp
GB 142.250.180.2:443 ade.googlesyndication.com udp
GB 142.250.178.2:443 pubads.g.doubleclick.net udp
GB 216.58.213.10:443 content-autofill.googleapis.com udp
GB 142.250.178.1:443 tpc.googlesyndication.com udp
US 34.149.184.224:443 cs10.connected-stories.com udp
GB 142.250.187.194:443 www.googletagservices.com tcp
GB 142.250.180.2:443 ade.googlesyndication.com tcp
GB 142.250.180.2:443 ade.googlesyndication.com tcp
SG 35.186.154.107:443 cm-supply-web.gammaplatform.com tcp
IE 52.95.125.22:443 aax-eu.amazon-adsystem.com tcp
GB 142.250.180.2:443 ade.googlesyndication.com udp
IE 54.77.246.156:443 ms-cookie-sync.presage.io tcp
NL 185.89.210.244:443 ib.adnxs.com tcp
NL 89.149.192.240:443 prg.smartadserver.com tcp
US 69.166.1.9:443 apex.go.sonobi.com tcp
GB 216.58.212.194:443 securepubads.g.doubleclick.net udp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
GB 172.217.16.226:443 googleads.g.doubleclick.net udp
DE 172.217.18.99:443 beacons.gcp.gvt2.com udp
GB 172.217.169.66:443 cm.g.doubleclick.net udp
US 34.98.64.218:443 us-u.openx.net udp
US 35.190.80.1:443 a.nel.cloudflare.com udp
IE 54.220.97.103:443 pixel.adsafeprotected.com tcp

Files

\??\pipe\crashpad_4688_ADWJQGXZIWYSVHEB

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

MD5 58c4120d30c2e542d8fa0f71cc0e1613
SHA1 4b43db9d337ea2e8bcd59f38a1a7a2ec3b3906d1
SHA256 ed93b8365d3d6955970c5cd4ecefe0e49d357691a688314883aab8a3e0686e52
SHA512 e1a564f3476bc2fe751a48fa275c50832a4a88d1ba7f0ba4da7a061d67fe225b8f337fab8137168c01b2425efb9536924ed87bb3d8844f5b95b8a48a3813ed7d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 438950611ae7a98d8014fe4703bcb7f7
SHA1 f47c67babb688793f2ab63cef98616e622c95999
SHA256 469a2ae5b17bcb4fdf2dd9e3005899989253a3f239035fc0fb72d6f5232789aa
SHA512 10e46d7387fb192cb2000f4a3cc1766e5915f6b9d363b6df6e2aa25b83910b4ebff9c01f71cad37b29a290d576ef4693c8bc0138483fff92028274450a360a8c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 044d461b0261ec038a8b000392ddc3a8
SHA1 08fdd0fe81bf76636b4c3d0fe8c9595691978028
SHA256 bf9a5b5430d6c3bad4ee5d824c6018b6cf3623e943a1eadbc92524a62f371bed
SHA512 64e965deb6dc11a450e03015da04ec3958e69d3802feedd9ae2cb42c972cb47befd74f9777c6938d3108696d8b2fc0663cb235f9b36eac7749ecd899f0624ee1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 17142ccaa517b7f3fd559fc53713bc5c
SHA1 46b2e8445a866bdef62ecd6f6cc4115d37b0a77d
SHA256 fed680af0990056d7c5c80292d3ed630595e24f442ecbfb24902f09795fcf637
SHA512 ada33f5412b1ced9d79ddc0a7edf3f8a6b1fd5364f2678e83c5bc7362cc7e3ed267dcaf517bb019e2d9223f46c4341ae8379715e5673da9fa96f60f2eba830ab

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 d283ad8131b88c10d6c9fe75b2eda74b
SHA1 77abf6d7e14bc9e55daa15596322026fa7185917
SHA256 7efeec7e468e5c65971e9a5cb41cffa17db77a0313a66827099720086dae9233
SHA512 ddb861f14f5b60d061559f864b4686bf787121b7af3797156ce321379aa04f3b9bd24726c7cf13c3235c14ff38e06ad6d66b35bbe8675f5de3beb8bc5936756e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d4195621f1a27fc62571e44bc421b619
SHA1 1b1a41ce8e91dd321cc7812bd56ec7da025585a0
SHA256 8861647da4ce557e4f29aa13fdab23b995f9ee018d0ddc6945a61d6f592845ad
SHA512 343e66477ba8e5f39880f0ffa369b02416de60edece06b07ee4f6f4e5a70268ee8de6edf4f6de24b798b75bd49da28a1fbf05842c837eed5d610e56e7c87085d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 4ecb6f16b4f49ad38173e6f3ed576b76
SHA1 1e5efff1c6a73583ee5d6ef38760da6c28aa7429
SHA256 a2d003efff34f27ca65707d386133f735c2ee3deb9c659e6a3765feae62f79ec
SHA512 41eddaa7d148824a8ddf9be99a0c516e13b5babc5b3e5805af8391fe62f797c3c2b25f7fae0368232be15c64f97610a881437e6c84584c933b36fec9878a8ced

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 557cc65a37f4a597498c5f2509bb51a8
SHA1 1ade2952163b2ee3a7cd32ce9516654fe29eb3d8
SHA256 d943d7df96ff84c3de8755f21b219c895b06baee66e518a9597fb3b7d907dbf2
SHA512 34cbe393215713869f187a47e468ee837376e3508137be8877801e56640be311a96dfb80c59c1a006f8bbd42475d80946146ee3cf9f8eef10c7828f166d29670

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 8e8827267a479a35abd88cca58b2596a
SHA1 40e599c1282f26599ba4644b510b44c6b997ff73
SHA256 c39d3e1ca16ca45443cd8a87c26939dab51048b67ff6ab24933652f4b8c02bdb
SHA512 cb302e54f15ce417ffb913cc16bcd4b301f68659b4c086331e70e5c0ebc144d0f3798ec402977248755b95a999727e2dde9466e3eb7417dcec7f4d682d161cf5

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 36e4566f23d18f7713e30e4a6cf3797f
SHA1 10c061beb02bcddcc2a440b3d29c803708056b47
SHA256 0dea6bc1f9e6254477af104f538fdcb1109def25f984f7cbae2201e32013976f
SHA512 c4b35bb657ff5d0645004bad8f0b4b2084746a4ceba73e8b3a74bf2da32c55fbf1369445f327e243f5869c656cec8c52c3c83d48c5f457d8a8012347763f46a0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 b642962295c3e3ffe155b7f1d83fe5b7
SHA1 8a922e047767d2cb9565088cccb51d36d50855dc
SHA256 9e3ca8a76fc75a25a39cc629bc2ab732cba398f0c2a0ea3b349ff926fe5928ee
SHA512 51d4e28f6a0aa6132108fbeb65e9120108fe525de3d55e5604814fa92c703f323dd7d8ec0a8c615ae3be8eac38393c2e02a428547274dc14737cb95f9b6632b8

C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 9bc0aedcbd164267a5476f9d0f80fe71
SHA1 6a7fe1f22a329ee12becd62bb6913df7893b60ec
SHA256 5247b296a1254e36a50d352d4744e59b0117f5d8a5dd83a080c4b7dcfeb3fd85
SHA512 b62ad67dba8dd73055613f25e0c510442f25b1af9cecdce774ad4046a04c535e147e406a600d5916178f5cafbc1761e4c9f539646e9f837fd8effa3386e71a0b

C:\Users\Admin\Downloads\Solara New Bootstrapper_54238970.exe

MD5 15d1c495ff66bf7cea8a6d14bfdf0a20
SHA1 942814521fa406a225522f208ac67f90dbde0ae7
SHA256 61c2c4a5d7c14f77ee88871ded4cc7f1e49dae3e4ef209504c66fedf4d22de42
SHA512 063169f22108ac97a3ccb6f8e97380b1e48eef7a07b8fb20870b9bd5f03d7279d3fb10a69c09868beb4a1672ebe826198ae2d0ea81df4d29f9a288ea4f2b98d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 153281dacfb46b18932871ea6266b741
SHA1 9a301b6ffbdcc5592ce8760b3148387e55804513
SHA256 bacf66866ce21bef03cb41fe434634051adddb46f331e288e9172c5aa2340496
SHA512 79ad3009273a22e2c76aa09f9f237289da114a9ca8f38dbe49c592079865b7a04195a8a133660d006afe7e2942a882cbc17253a0e11b9bdb135cfbbf944e041f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9d0afe594e972f51c987a0d6cd1b2889
SHA1 f36c097ba9a42925609b4bc7c8d0cc3149736fb5
SHA256 f2fc94df93842ba91af350ab6c034b9853caa304ef7c629b9a4f820c27cd1f64
SHA512 20fedf8014b53cd496e76eaca80f65c2a0d3eef39eef5ccc0ae495210a4035c4d3861e2d4052927964b2995d48334b8f2ea34af39554a640edb44e0847588045

C:\Users\Admin\AppData\Local\OperaGX.exe

MD5 53bf37c8ba78dda107795ddccab5fba7
SHA1 d19b35ea5b0ce1019f9522c0d29a2f6cfe918a1d
SHA256 c2ba8088a507d5380f24d0716bd1b30ddbc191362d117560d926cd95bb232c34
SHA512 0063d0c53182177415b553f23128302c34cf7024f9e0868aa1bab2746480fbd392d088c3c03ec19b90fae9777c722ece8a0eebb5bb5e94cc6a9dea73bad0b49b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 edd9aba7ae110c35ec75cd2e0ab8af3e
SHA1 54703a614a69f718ffbe5d1459d3f01e60941050
SHA256 2a749b6fa1778a0ee69c32a598829b14d58f560f19ecb0eeca4e36704a5ba579
SHA512 f0821463705a028e1b3cdb96262258c09e5aaa9beb02fea29cc0f64569658b394273e131f8dba38cddc164f39c2e2b0e8cf3d234fc6312e5c3a34d954e1a9caf

C:\Users\Admin\AppData\Local\Temp\7zSCD104D79\setup.exe

MD5 dcc0d15e77a7872758e65deb0bfc6745
SHA1 1efb89e143bf5edd34d46ae8370ecc13d4c3339f
SHA256 87a168a04a254b1cf1adfe732e8b7b08d5c3e76ddca4e8b7fb4e58ebef85fe64
SHA512 9cb972bcd99fd03a924bbff79e8989a040d1202a77c9d8f62ea862cc6b1d258778410ad9a4de5f2aab43062f5e9fe17d7ab9baa000de98d22a47f1471d1de778

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 1efbf351a5e18836b3e498c9328c4cf4
SHA1 b2c2bc8ff5b3d3a3a5f85b2bc10c2937bd72c4fe
SHA256 836bddffb7e8083841f51b8d7d8c836c74600a19ae322cc457874f5fa716de5f
SHA512 f595a8adc96a1a671006a8260638f4237f3133fb25bad1979a35bfce977f0f7865755bd8f908ca09dd2c9d3fc8f08995d239872ad5cf326c71e8b6b9e57a80a3

C:\Users\Admin\AppData\Local\Temp\Opera_installer_2411140000152003412.dll

MD5 1b07ce60bc1c77f0cadf13c2e62b1383
SHA1 ca70d0ef99ae5d1ebf85880ee669ad1145e4d79d
SHA256 e48eb19ca0210f9063f4e77c2f14293ee940eeaef2ecb9efceac7f6336cc203f
SHA512 94c358b6dfef0fcb0012a3a43235292b18ebf897043baef0c110570e91cc73721b12f1f771df6d000b4097f3c0cc22dcc65330a9153c7a9643787d24da6108f0

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8B2B9A00839EED1DFDCCC3BFC2F5DF12

MD5 67e486b2f148a3fca863728242b6273e
SHA1 452a84c183d7ea5b7c015b597e94af8eef66d44a
SHA256 facaf1c3a4bf232abce19a2d534e495b0d3adc7dbe3797d336249aa6f70adcfb
SHA512 d3a37da3bb10a9736dc03e8b2b49baceef5d73c026e2077b8ebc1b786f2c9b2f807e0aa13a5866cf3b3cafd2bc506242ef139c423eaffb050bbb87773e53881e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8B2B9A00839EED1DFDCCC3BFC2F5DF12

MD5 538e018a0a1141fd0649cc5b4dc54ff7
SHA1 676d0174357a8ede99cccd602f5e0729bf5407bb
SHA256 185d29d00f740e92f6aeb06f62ef493702fe28e7e58f01da6ef83f902be127a4
SHA512 587940fbb12389ccbb87c7614a55e27467e91ee9b3fc5caced3b9838564311321592ee0fdf48ebc97d20c493279e5fb4f4a9daeaf8cf5ec368100b3a260995b6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B46811C17859FFB409CF0E904A4AA8F8

MD5 971c514f84bba0785f80aa1c23edfd79
SHA1 732acea710a87530c6b08ecdf32a110d254a54c8
SHA256 f157ed17fcaf8837fa82f8b69973848c9b10a02636848f995698212a08f31895
SHA512 43dc1425d80e170c645a3e3bb56da8c3acd31bd637329e9e37094ac346ac85434df4edcdbefc05ae00aea33a80a88e2af695997a495611217fe6706075a63c58

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B46811C17859FFB409CF0E904A4AA8F8

MD5 6bcf5c5277bd1fd970e3cdf6630171f9
SHA1 ded2438b859357aa46acfc82af0b17c96f726b79
SHA256 36d4f878873138aed00b036072a034335e8ea98bd7054661d3df3491eb800c6d
SHA512 b4835b4f5ac5ac6f21a154b500d88945f459d48afc787059b78806143e9ee64c22a18e74a77751e5042e3ad3be3b1a5fcec5269fe34ac6d4761db1e7f66bcb13

C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat

MD5 25bf4e9762988e0814ddd861d82ceae0
SHA1 ee6cdb2b153be76078d990f75825ec2c7215a349
SHA256 4c998940ac2424391a329de5f7fcb8bcbbc6f00e1d38eb8e68a40cd4f7001a98
SHA512 49907225ac8703c8d4fb2974bc0c0829dadcd7a614d6d8d7f4d54fcb8cfed7028bf0ab22575d1053839e822b17cdc5e2f6406dd9b8e4ee81103bc507d1a3fbf1

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 d517565d9bdf21f517cfd8054443c035
SHA1 54162d3cfee72fa3511510fd96a684c23eea60d4
SHA256 b488f5029e94d17a083f99bab78a3caadc337f1abd54f2d02a570a39b971f312
SHA512 0e9717d3268398913462337b47cab5259637e8586e68aa1acc5e6a02b7f01236cb3673f50c9e1ad5bce6590dae42223c8c05e231c50df87f6d58dd5308580b08

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 817aef1ba3d7af87c533320f1b349dea
SHA1 edc259291b6ade803e9b5168e963f00cd24fa787
SHA256 618fd687b1611cffb08e410763e7537d940a770d541bc96bf20c114a0b86f200
SHA512 fb92847508fea25c449e51e876313d77e3a43a03ca079fd3c63295748522c09c0d9077e300f8b63490fed207dbeec153e8d5b321b1d570546cd1d4ac1c021292

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\additional_file0.tmp

MD5 e9a2209b61f4be34f25069a6e54affea
SHA1 6368b0a81608c701b06b97aeff194ce88fd0e3c0
SHA256 e950f17f4181009eeafa9f5306e8a9dfd26d88ca63b1838f44ff0efc738e7d1f
SHA512 59e46277ca79a43ed8b0a25b24eff013e251a75f90587e013b9c12851e5dd7283b6172f7d48583982f6a32069457778ee440025c1c754bf7bb6ce8ae1d2c3fc5

C:\Users\Admin\AppData\Local\Temp\.opera\Opera GX Installer Temp\opera_package_202411140000171\assistant\assistant_installer.exe

MD5 4c8fbed0044da34ad25f781c3d117a66
SHA1 8dd93340e3d09de993c3bc12db82680a8e69d653
SHA256 afe569ce9e4f71c23ba5f6e8fd32be62ac9538e397cde8f2ecbe46faa721242a
SHA512 a04e6fd052d2d63a0737c83702c66a9af834f9df8423666508c42b3e1d8384300239c9ddacdc31c1e85140eb1193bcfac209f218750b40342492ffce6e9da481

C:\Users\Admin\AppData\Roaming\Opera Software\Opera GX Stable\Crash Reports\settings.dat

MD5 ba0edb4fb4867af9e94bbc5553a50d51
SHA1 915c6ab9d1a9d3497aa69341ed37b94f52202c78
SHA256 076b59e0fe2736a9151f59f1983d50255a48169b7b4af3b6cb26d7a78236395e
SHA512 425aceadf4de28a49609b1cf10bf21b4548e6a2ca20341b836008c5dc01a21917a920bfb89aec2bf998c918f9e2a6a8a0cc7e73522596a0e2374950aaebef4bf

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 cb694eb326e52b52ee8926781759f91c
SHA1 7555d921923fade6ef30bb5f87d562e8bc2e6d60
SHA256 eec2b7a02ca054d68ab755af70d8c3686d6e97f0d706e2a1cc3a3815e6c5d63f
SHA512 4cfba132613d6f33d3ffc45ac8f56e8603a242b1c4a1fd6dcdaef37bf9845b1a365eb803a1cf72573b7e98bfde89b19836934568ff47e5bfdec9f0e4c2d77466

C:\Users\Admin\AppData\Local\Temp\PremierOpinion\ContentI3.exe

MD5 bf6eed6cdc17a0130189a33a55ef5209
SHA1 e337f5a0931f69c464f162385f1330b4d27b372f
SHA256 ef2734657b11113a433abb7ebac962e2bf6bf685f05c5f672997f01875430168
SHA512 90d23fd84007343e85f9fc003cf826b112fd930216a24d8c1488468443ae2a4b0c3cc2426b91c81a8228e125050e922fce05672e010e65247709fc4a7b856f1d

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock

MD5 f49655f856acb8884cc0ace29216f511
SHA1 cb0f1f87ec0455ec349aaa950c600475ac7b7b6b
SHA256 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba
SHA512 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val

MD5 d222b77a61527f2c177b0869e7babc24
SHA1 3f23acb984307a4aeba41ebbb70439c97ad1f268
SHA256 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747
SHA512 d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff

C:\Users\Admin\AppData\Local\link.txt

MD5 bfc60e73f5f98910dc0a9ff6c82b5f83
SHA1 ddaf503fc7cf40cf4290ac752440e4ea7efd6201
SHA256 488ef9ff6ec937090cc358d9f161aea4532a704fd3244a39e46fabc044cb8970
SHA512 54b98b8ac58daafb73439baec318937f45099d5958fe5daf09096b24f7bbc4e01f07002a7d092d11ec1ec3c7da49d6359376ba43604095d38ab75003ffe47b67

C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx

MD5 b5ad5caaaee00cb8cf445427975ae66c
SHA1 dcde6527290a326e048f9c3a85280d3fa71e1e22
SHA256 b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8
SHA512 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 a9905db3b73f160443cc717c3d9b4ff2
SHA1 27775bcbfb18a53098e0b4db85a47103f939b288
SHA256 43e9711b790927d4ffb2c6c66d4a2d8542dd73fe32d90bae0f88e0af82bac9d7
SHA512 16fcbc91183c2130b729ad302e6b45138f496e5b2676ef98accf154b2e52924c9b3052380c58c8604947d55df858ffe2c901a0a35e5f8a3daa22cd883b3e9510

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 8af6d49a6618a72c842205d49277b878
SHA1 7d588419ab034d925f028bb28e92535ae9b9fbfd
SHA256 b9a9606a988c0a288a312ac76b6a95ad65fb393b25926b3a8e948c24b4c7f362
SHA512 a5e2b2d4a003c79fd28356dfe1e3702a80eac5e1a150be10e5f2be51285866bc9dbe857334bdb81693dde2067b736d19e1ac2fb6dbf440f4ecdbb81b111e9719

C:\Users\Admin\Downloads\Bootstrapper 3.exe:Zone.Identifier

MD5 19d3cf77d16fab83ef55d2717239359a
SHA1 fabd434b016d7412961e8c6a61a5844f9ae0b0c7
SHA256 d061c76f45c89322d6e738a679ae7e0b64e4e44e1dbe65f055063f6a9e19d7b3
SHA512 5c50df2ecbb8ab275201b26a19c501c47d38a9534215cc363cc2ed10f2d023096c0b4ba8b50fc507abdd743d9b648b91e1010674eea21beba7c61795959395d8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 be8ccef9ee0320cb5d47dd0c8ca9c954
SHA1 936b81a7e321a4cccde806b7492645fa194b91f6
SHA256 c4b3fd1408459114bf85355cce229c986148706ec103995da5d702cde014f345
SHA512 5376422b782f9ed70199e867dcffe6c8e1f4ab926a9a76994bce19cdfdc66832f895ad2bf8e3e9aaa1d478e685cb0759ebb4019d9a068e8036c22d6562d133a7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 6f60a491a555b2fef7bfaa3ae3d9ec84
SHA1 4d0aedaea28099e4a6c4ab7fb96604eb63199531
SHA256 870beaf478f1e15213b0b4cfb7bf24e711dc86b61c215ed14968fa53c12373d7
SHA512 3e256a1d1907e6d0e152ba10b2b39b1d9cb0f4bbe143f6c9a6760e2c2ced149c3aa42a141c392b0906931911d36aa0c2ece4e085f9c080937bc74fffb58a68a4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037

MD5 759eca8f89c3095a05a41b4d7cc21201
SHA1 059790e0a2dc509a18551b7f01acc239c5c4dbd0
SHA256 8550d22e182a409a3ac9227e221d2e1edfc5c0f0762cd2e9fb75528f8c3b8185
SHA512 f03cb2386404db4c3071b9b511e4c6c06f8886ad5aafab49d431031b13a5e47f2705b0967d9a7b47176fad45863f1eebbee9cd3e4af636d3b9dc375e27f47bb3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 8fa77886c3683f5506b5f3b98de05e31
SHA1 73eaad40c02dd93601699af1f96c88335528f147
SHA256 23f2d6264e5060d59b37fcc3f8538f63c5eb4fae41252839f34afb6280da5934
SHA512 ddde0e87388c228a5430f0adc34d1eb6189ccc1e6e807c6b2335b2417955295e77f4f544a55ecdd8619a9eab44a7d395bf828af779dae4006484fd8afafd3aa6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b

MD5 05cb4b9f101e025994f9686f3999fd43
SHA1 7450f129ea39792645b56de215eaab1d91182fbe
SHA256 07fba84e209fffc2a8eea1a88ec8c77cc92644c9050b7669b212bf1db30663b3
SHA512 9fbf0e99a1f19b362d9e7e31dc0b6f0d49177cea922d9d6acbc1b5a84d1bfce40c3a07e123b5b47ed9a531befc9a2372be3393502b5f00221d74ae23fe80efeb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031

MD5 2abd079be1223e68fdd6f520afe8fab7
SHA1 0f52ef825e632aa99b80724e2fc419fe1413ff39
SHA256 fc998bd9e644618ab3ece7ba644b58e43e6503e49b8ea2d19c6ee725c4676c75
SHA512 41d1bcc91961d70146f3434857c2265d2c1ec8cb81d388ddd187de5096e580bda69da20cf4ed56d72aac3d4e731f177b99daeec128e0ecd68dd37beedf4b3f70

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 c674e16f35e65323b7400632a20eeb6a
SHA1 3d345477623e98ddf6f0c45f9896e0ac53301029
SHA256 e77330c6ca1e46f1a68f4a42fb8dbb1a5f269a058840f84d05bd4e298c6469bd
SHA512 f1d25f6cae4bc1f2074e86af655dc460c9936ab7daa0344a070e6e0499bcd2a0dc29e1a87b0a120e3801f88f1d294d15c0cf145bfa4ae136f00ea273914e7f20

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 90c008920be1b36fc6692c50d1d6af26
SHA1 9b61e4cd65d0f6a140e34da08975875e032fc74d
SHA256 bc46b67b5f563975c7b2988c27aa40a86c29b44d1c92c54b4b5dcceeb54ea65a
SHA512 bb7f601231598166ec3bf75c5987ee3d7b90512ca5010d98b2eab9b5b7b9feac6491f2d040a7d64356fb60ecf9283abf5f5d2b7b66545d770d6b62191dbe9f99

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 a9eb1dc98e805d645b78f621f23ddff6
SHA1 4046ff49500f810f19743f3194aa3b094960d571
SHA256 2d341ae2f26aba3e01eeaeb1145da204df78d53ea8f3e292fd9846d9b53079e9
SHA512 84af286d3c2445fd5b93063a57e269b9618eb6323b51c3a7b4a3034045eb36540d4f218ad38bc2ebef9235fd3d4235dcf36c82c15ec131c82f90dcfc82667d4f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 4adfc5052a51e8c381d474a0c673c589
SHA1 f6ad2f88ec8dfa3517c67917b3e763877b7e8a5b
SHA256 f70d93eda6c1818e24709e208245a685419e2dec7dbf94820c0cc2d7aae35177
SHA512 8c8314ff2833bcb4c9d00a5a0215eb304f91598a95a20350999014a3b50ea985e307ce6a9f73652b120ce2b05af572405e899c8d32029741a5d88f80492bafd6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 f52d4bba5060fa4816ef2d6e8cb824b7
SHA1 b82713eba9bebe3a2442c18889b9f30d96485ba9
SHA256 15bd584ceb9e1d6cdb1b2efc1cacd6705f9c2a0fb57e73b65c506af13c83dfb5
SHA512 198e62801afda964931ee568d8d23ad9231110963adf777a568eb6c0b8a1c13b426fb7d0571cedd28f04f631c2a6d2346c5ba0200b3a8fe97e4387655821a476

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030

MD5 8b79fd04ba7702060a17622d22a8dce9
SHA1 d6dfb8ef9a4d7d6b6c3454d94405722be0619421
SHA256 0a7a02c929df2d7f23261c275677d9f744b55b505595d8bc4309e65d826f403b
SHA512 bb40155a691145076c84a5c5574556edf1efbed80db4535c179976665e04a8e7c83e8a6ed91f67591aab0682d88d2e602445518490e6343039395ae0f12979e9

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032

MD5 41e1de2061b5162671c94aaf53e51cc1
SHA1 2d46ee513332c26fc7fc99a7cf2e7bf48f65cda0
SHA256 04a4ec051482dbeac84bf68c61fe3abc1cd91a21d49527e14521723bd7606d94
SHA512 688e2cced220508a48a299fde4c1755720a228aa9853f949672f77b3bdc736188816084ba75bd0aaf41c11557e83a6d4de2d5d732ad4dededeb05632b4aa31bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000033

MD5 91d3243815d9a1a6bca90018ded5a906
SHA1 0a0f4e2d5ac5db2c02d88af459839facd49f8ef7
SHA256 968d6264dc419a41c2df1afee96f2b5e0fec3bc1d0eb881e7b6ee30b8cf3608a
SHA512 7c5ef41efa41304f2952e1a0b6df22c5fec792b477dc47df4db629fa636c660db04b8622bd2acef2ecc00484404532a52dc58715a03e17aee7bb6826c6c5f675

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035

MD5 1086ca4f523b3c0ba7871d9bc7b95737
SHA1 294baf7fe4a6b3c14d97cb24048789868feaf170
SHA256 7864bea5501f52e756fa7181a2fe4fbca08a7720d398e6a66acebe144b3cba8f
SHA512 dbad1e471e3fede266f582df93317a3345b5b8532b144271530b1b72a334703f243c16b584f15c3c88df15392418e7c2da5189585530204ab7b019f8dd146965