Analysis Overview
SHA256
64a0615c21f49fdf68e64d5325009273dadcf9b707c180d240275bfcd3c998b7
Threat Level: Likely malicious
The file kysjames (1).vbs was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Checks computer location settings
Executes dropped EXE
Reads user/profile data of web browsers
Loads dropped DLL
Event Triggered Execution: Component Object Model Hijacking
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Enumerates connected drives
Drops file in System32 directory
Launches sc.exe
Drops file in Windows directory
System Location Discovery: System Language Discovery
Enumerates physical storage devices
Browser Information Discovery
Uses Volume Shadow Copy service COM API
Suspicious use of WriteProcessMemory
Modifies Internet Explorer Phishing Filter
Modifies system certificate store
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of SendNotifyMessage
Uses Volume Shadow Copy WMI provider
Uses Task Scheduler COM API
Checks SCSI registry key(s)
Suspicious behavior: LoadsDriver
Checks processor information in registry
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of FindShellTrayWindow
Suspicious behavior: EnumeratesProcesses
Runs net.exe
Modifies data under HKEY_USERS
Enumerates system info in registry
Suspicious use of SetWindowsHookEx
Modifies Internet Explorer settings
Modifies registry class
MITRE ATT&CK
Enterprise Matrix V16
Analysis: static1
Detonation Overview
Reported
2025-07-04 11:52
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2025-07-04 11:52
Reported
2025-07-04 12:05
Platform
win10v2004-20250619-en
Max time kernel
770s
Max time network
771s
Command Line
Signatures
Downloads MZ/PE file
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\MinecraftInstaller.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
Loads dropped DLL
Reads user/profile data of web browsers
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\D: | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| File opened (read-only) | \??\F: | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| File opened (read-only) | \??\D: | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| File opened (read-only) | \??\F: | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Local\GamingServices\content.db-journal | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\CatRoot2\dberr.txt | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\system32\gamingservicesproxy_8.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\xvdd.cat | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\xvdd.sys | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_71ad808554cc22aa\xvdd.sys | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27} | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E7E.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8E.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4} | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\system32\gamelaunchhelper.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\xvdd.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AF6.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\gameflt.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.cat | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\system32\gameplatformservices.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File created | C:\Windows\system32\xgamecontrol.exe | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File created | C:\Windows\system32\xgamehelper.exe | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_71ad808554cc22aa\xvdd.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\gameflt.cat | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\drvstore.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\CatRoot2\dberr.txt | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\drvstore.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\system32\config\systemprofile\AppData\Local\GamingServices\content.db | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\system32\xgameruntime.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AF6.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_71ad808554cc22aa\xvdd.cat | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E7E.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.cat | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.sys | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AB5.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AB5.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\drvstore.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8E.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\gameflt.sys | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.sys | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5 | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AC6.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8F.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8F.tmp | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\system32\xgameruntime.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File created | C:\Windows\system32\gameconfighelper.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File created | C:\Windows\system32\gamingtcuihelpers.dll | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AC6.tmp | C:\Windows\system32\DrvInst.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\inf\oem3.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\inf\oem4.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\System32\pnputil.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\inf\oem4.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\svchost.exe | N/A |
| File opened for modification | C:\Windows\INF\setupapi.dev.log | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\inf\oem3.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File created | C:\Windows\inf\oem4.inf | C:\Windows\system32\DrvInst.exe | N/A |
| File opened for modification | C:\Windows\inf\oem4.pnf | C:\Windows\system32\DrvInst.exe | N/A |
Launches sc.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\sc.exe | N/A |
| N/A | N/A | C:\Windows\system32\sc.exe | N/A |
Browser Information Discovery
Enumerates physical storage devices
System Location Discovery: System Language Discovery
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005 | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0014 | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0014 | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\0009 | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\CompatibleIDs | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0014 | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005\ | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\0009 | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Phantom | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005 | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Windows\system32\svchost.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\0009 | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\ConfigFlags | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\CompatibleIDs | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\HardwareID | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Phantom | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Phantom | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005 | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005\ | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{83da6326-97a6-4088-9453-a1923f573b29}\0009 | C:\Windows\system32\svchost.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000002 | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Phantom | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_DADY&PROD_HL-DT-ST_DVD+-RW\4&215468A5&0&010000 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Phantom | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005\ | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\ConfigFlags | C:\Windows\system32\svchost.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\HardwareID | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_WDC&PROD_WDS100T2B0A\4&215468A5&0&000000 | C:\Windows\system32\DrvInst.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\HardwareID | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\HardwareID | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\CompatibleIDs | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Phantom | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000002\Properties\{a8b865dd-2e3d-4094-ad97-e593a70c75d6}\0005\ | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_DADY&PROD_HL-DT-ST_DVD+-RW\4&215468A5&0&010000 | C:\Windows\System32\pnputil.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Phantom | C:\Windows\System32\pnputil.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_MSFT&PROD_VIRTUAL_DVD-ROM\2&1F4ADFFE&0&000001 | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_DADY&Prod_HL-DT-ST_DVD+-RW\4&215468a5&0&010000\Phantom | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_DADY&PROD_HL-DT-ST_DVD+-RW\4&215468A5&0&010000 | C:\Windows\system32\DrvInst.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_Msft&Prod_Virtual_DVD-ROM\2&1f4adffe&0&000001\Phantom | C:\Windows\system32\DrvInst.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer Phishing Filter
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\PhishingFilter | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter\ClientSupported_MigrationTime = 25ba0ad155e1db01 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastCheckForUpdateLowDateTime = "2512953924" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\MINIE | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Main\DownloadWindowPlacement = 2c0000000000000000000000ffffffffffffffffffffffffffffffff100100003c000000900300001c020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Recovery\AdminActive\{C07F5658-58CD-11F0-B464-DADC9014D7F5} = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\VersionManager\LastCheckForUpdateHighDateTime = "31190234" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FullScreen = "no" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\GPU\AdapterInfo = "vendorId=\"0x10de\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.19041.546\"hypervisor=\"No Hypervisor (No SLAT)\"" | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\MINIE\TabBandWidth = "500" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\RepId | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\GPU | C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\SOFTWARE\Microsoft\Internet Explorer\RepId\PublicId = "{FC69D16D-2F99-4279-B8B0-1D30C73AD043}" | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\Main | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000\Software\Microsoft\Internet Explorer\VersionManager | C:\Program Files\Internet Explorer\iexplore.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Set value (str) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\IdentityCRL\Immersive\production\Token\{BAEE68FB-2B54-4DE3-BECC-4FF62E89ABAF}\DeviceId = "0018C012DC2CC089" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Windows\system32\DrvInst.exe | N/A |
| Set value (data) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\IdentityCRL\Immersive\production\Property\0018C012DC2CC089 = 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 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133961035593865692" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\Disallowed\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\SmartCardRoot\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\trust | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\CA\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Set value (data) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\IdentityCRL\Immersive\production\Token\{BAEE68FB-2B54-4DE3-BECC-4FF62E89ABAF}\DeviceTicket = 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 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Root | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\TrustedPeople\Certificates | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Policies\Microsoft\SystemCertificates\trust\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\IdentityCRL\Immersive\production\Property | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\CA\CRLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\Disallowed\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\SystemCertificates\TrustedPeople\CTLs | C:\Windows\system32\DrvInst.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WinTrust\Trust Providers\Software Publishing | C:\Windows\system32\DrvInst.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7DF268C-D6FE-465F-AB23-DDD1416E7C6D} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{919E5568-1083-4378-B679-F200AFEF8AC9} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A1DB77A7-71B0-41EE-8CC9-7B820260027E}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{B24C479C-35B5-4342-84AA-A05174A5EB2B}\ = "IPFXGameSaveUILockContentionCallback" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8ACEF8FC-F3F9-4F4D-A3BC-1D1E03358778}\ = "Gaming Services PSFactoryBuffer" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{A6593254-0EA2-4938-8D62-7B353395126A}\AppId = "{2964DB41-BAE4-4996-A0A0-D036BFFDC267}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4E3252D1-8C69-4595-B1B8-B20B48DD1812} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3E8C9ABE-9226-4609-BF5B-60288A391DEE} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D87D2D74-150C-4498-875F-3FA375B079AE}\ProxyStubClsid32\ = "{8ACEF8FC-F3F9-4F4D-A3BC-1D1E03358778}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{993efdcd-ddfc-4560-9463-72073ab45502}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{058c9229-cc28-483d-be29-287093102ae2} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7d4ec953-bee1-4b1b-9aa8-c3a12b4e04c6} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{244E7CF2-E51D-4548-8C47-B118642A4D0A}\LocalService = "GamingServices" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{82B0290F-C7F3-466C-BF99-49FD29CA5C92}\ = "IGameCorePackageServiceMonitor_V1" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20851EC4-DFB8-4708-A87D-E428532E583A} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20851EC4-DFB8-4708-A87D-E428532E583A}\ProxyStubClsid32\ = "{8ACEF8FC-F3F9-4F4D-A3BC-1D1E03358778}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A7329866-C529-4493-9FE8-CAAFE0EEDFFD}\ = "IXGameSaveInterruptHandler" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A54D7505-C0B4-4B6C-9060-41D7D67B40EB}\ = "IPackageLaunchIdentifier" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{f58e3884-1f75-4c66-9127-a66161818693}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3E96A283-B3E7-4040-8060-04AC250CF73E} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{C5CC7CF6-8DE0-4A10-A12E-66A21F3C3EFC}\LocalService = "GamingServices" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{710318A4-861A-4599-9DA2-50C84EE59ED8}\AppId = "{2964DB41-BAE4-4996-A0A0-D036BFFDC267}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{19BE86F3-3A39-4FB9-9B68-2C51ACB6509F}\ = "IEnumInstanceId" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4CDEE6B-7333-4CD1-BB77-8F2E520C36FB}\ProxyStubClsid32\ = "{8ACEF8FC-F3F9-4F4D-A3BC-1D1E03358778}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{4C8B9BA5-D030-44F8-819E-EA04BE3CC9C8} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F91D5C6A-FA6F-4F37-A6CF-B38C4C1ADDFC}\ = "IContentAccessClientRegistration" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4C1344D-55A0-453A-957E-83727B36CAC9} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{FD3F00EF-496F-43E0-B239-E8E9FBECF697} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{42A916AC-911D-47DB-8676-8862EC17CC54}\ = "GameWnfServer" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AEBF8959-5F3F-408B-9A60-436F5E97A46A}\ProxyStubClsid32\ = "{8ACEF8FC-F3F9-4F4D-A3BC-1D1E03358778}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3C573F62-4649-4424-9978-ADB20C1AAF14}\ = "IGameCorePackageService_V10" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E652A68A-88A2-45BF-8D2E-7404278C7F8A} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A6CC0AA5-4F71-45C0-A087-7CB156785C03}\ = "IPackageInstallRecipe" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7DF268C-D6FE-465F-AB23-DDD1416E7C6D}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1E8FC7F7-8C89-4C88-A589-43E77BDEC8DB}\ = "IPFXGameSaveUIOutOfLocalStorageCallback" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{8F48B00E-45A9-435B-B458-2FFC8FC3AF9E}\SynchronousInterface\ = "{AD6FF479-E54E-4786-AC2A-10D35C5B93A7}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{3E8C9ABE-9226-4609-BF5B-60288A391DEE}\AppId = "{2964DB41-BAE4-4996-A0A0-D036BFFDC267}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{090795DB-989B-4625-B397-083D85066042}\ = "IEnumGamePlatformStoreId" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{A5F83511-A886-49D0-9168-89D10432EAA2}\ = "IGamePlatformContentDbService" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{36366C1F-B5FF-42B3-A4E8-03DD891A56CC}\ = "IGamePlatformXRuntimeClient" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{c4ffeb73-c9fc-44f1-930b-ad0254e8270f}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{87044ed6-fa31-4be8-b8d5-b181c7210351}\ = "IUsersSkuSpecificServerConnection5" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{903de535-e51b-48d3-b30c-33f95f2bf1bc}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{B8040B92-21EA-48C3-882B-45B69FF04AF4} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4144907350-1836498122-2806216936-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{8A27D3CE-19F3-4CE7-8E51-CBBDC8DEE291} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AE51CF4F-D657-41C0-AC3B-7218A32CA524}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{8F48B00E-45A9-435B-B458-2FFC8FC3AF9E} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{8856634F-2E22-481D-B9CA-EE876CBB5D26}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5ae6bb57-7a69-5e73-8a8e-48f32b08cc3f} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1E8FC7F7-8C89-4C88-A589-43E77BDEC8DB}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{483DCCC8-BEF4-4268-9F88-82D758F22B62}\SynchronousInterface | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B5FB9AC1-AD68-45C5-B7EB-6F2498AEFAA7}\LocalService = "GamingServices" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{058c9229-cc28-483d-be29-287093102ae2}\ = "IResolveUserIssueResult2" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{2F3DD6FF-DA47-4AD4-860A-CBA6276C3EF7}\ = "IXGameSaveContainerSyncData" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9291ed54-b88c-556f-b870-49a901ac529d} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{6D7A7745-F359-4586-8F14-EE993A50163E} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1E8FC7F7-8C89-4C88-A589-43E77BDEC8DB} | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{E4C1344D-55A0-453A-957E-83727B36CAC9}\SynchronousInterface | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{AD6FF479-E54E-4786-AC2A-10D35C5B93A7}\AsynchronousInterface | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{C5CC7CF6-8DE0-4A10-A12E-66A21F3C3EFC}\ = "GamePlatformPackageService" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{B5FB9AC1-AD68-45C5-B7EB-6F2498AEFAA7}\AppId = "{2964DB41-BAE4-4996-A0A0-D036BFFDC267}" | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{41A2EE83-73B2-416D-88F4-4BC1B1FE996D}\ProxyStubClsid32 | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7685A31F-F733-4246-8547-3DF85BB717A2}\AsynchronousInterface | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 04000000010000001000000078f2fcaa601f2fb4ebc937ba532e7549030000000100000014000000ddfb16cd4931c973a2037d3fc83a4d7d775d05e41d0000000100000010000000a86dc6a233eb339610f3ed414927c559140000000100000014000000ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f620000000100000020000000552f7bdcf1a7af9e6ce672017f4f12abf77240c78e761ac203d1d9d20ac899880b00000001000000320000004400690067006900430065007200740020005400720075007300740065006400200052006f006f0074002000470034000000090000000100000034000000303206082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030106082b06010505070308530000000100000040000000303e301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c00f00000001000000300000004ea1b34b10b982a96a38915843507820ad632c6aad8343e337b34d660cd8366fa154544ae80668ae1fdf3931d57e19962000000001000000940500003082059030820378a0030201020210059b1b579e8e2132e23907bda777755c300d06092a864886f70d01010c05003062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f74204734301e170d3133303830313132303030305a170d3338303131353132303030305a3062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f7420473430820222300d06092a864886f70d01010105000382020f003082020a0282020100bfe6907368debbe45d4a3c3022306933ecc2a7252ec9213df28ad859c2e129a73d58ab769acdae7b1b840dc4301ff31ba43816eb56c6976d1dabb279f2ca11d2e45fd6053c520f521fc69e15a57ebe9fa95716595572af689370c2b2ba75996a733294d11044102edf82f30784e6743b6d71e22d0c1bee20d5c9201d63292dceec5e4ec893f821619b34eb05c65eec5b1abcebc9cfcdac34405fb17a66ee77c848a86657579f54588e0c2bb74fa730d956eeca7b5de3adc94f5ee535e731cbda935edc8e8f80dab69198409079c378c7b6b1c4b56a183803108dd8d437a42e057d88f5823e109170ab55824132d7db04732a6e91017c214cd4bcae1b03755d7866d93a31449a3340bf08d75a49a4c2e6a9a067dda427bca14f39b5115817f7245c468f64f7c169887698763d595d4276878997697a48f0e0a2121b669a74cade4b1ee70e63aee6d4ef92923a9e3ddc00e4452589b69a44192b7ec094b4d2616deb33d9c5df4b0400cc7d1c95c38ff721b2b211b7bb7ff2d58c702c4160aab1631844951a76627ef680b0fbe864a633d18907e1bdb7e643a418b8a67701e10f940c211db2542925896ce50e52514774be26acb64175de7aac5f8d3fc9bcd34111125be51050eb31c5ca72162209df7c4c753f63ec215fc420516b6fb1ab868b4fc2d6455f9d20fca11ec5c08fa2b17e0a2699f5e4692f981d2df5d9a9b21de51b0203010001a3423040300f0603551d130101ff040530030101ff300e0603551d0f0101ff040403020186301d0603551d0e04160414ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f300d06092a864886f70d01010c05000382020100bb61d97da96cbe17c4911bc3a1a2008de364680f56cf77ae70f9fd9a4a99b9c9785c0c0c5fe4e61429560b36495d4463e0ad9c9618661b230d3d79e96d6bd654f8d23cc14340ae1d50f552fc903bbb9899696bc7c1a7a868a427dc9df927ae3085b9f6674d3a3e8f5939225344ebc85d03caed507a7d62210a80c87366d1a005605fe8a5b4a7afa8f76d359c7c5a8ad6a23899f3788bf44dd2200bde04ee8c9b4781720dc01432ef30592eaee071f256e46a976f92506d968d687a9ab236147a06f224b9091150d708b1b8897a8423614229e5a3cda22041d7d19c64d9ea26a18b14d74c19b25041713d3f4d7023860c4adc81d2cc3294840d0809971c4fc0ee6b207430d2e03934108521150108e85532de7149d92817504de6be4dd175acd0cafb41b843a5aad3c305444f2c369be2fae245b823536c066f67557f46b54c3f6e285a7926d2a4a86297d21ee2ed4a8bbc1bfd474a0ddf67667eb25b41d03be4f43bf40463e9efc2540051a08a2ac9ce78ccd5ea870418b3ceaf4988aff39299b6b3e6610fd28500e7501ae41b959d19a1b99cb19bb1001eefd00f4f426cc90abcee43fa3a71a5c84d26a535fd895dbc85621d32d2a02b54ed9a57c1dbfa10cf19b78b4a1b8f01b6279553e8b6896d5bbc68d423e88b51a256f9f0a680a0d61eb3bc0f0f537529aaea1377e4de8c8121ad07104711ad873d07d175bccff3667e | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 190000000100000010000000ffac207997bb2cfe865570179ee037b90f00000001000000300000004ea1b34b10b982a96a38915843507820ad632c6aad8343e337b34d660cd8366fa154544ae80668ae1fdf3931d57e1996530000000100000040000000303e301f06096086480186fd6c020130123010060a2b0601040182373c0101030200c0301b060567810c010330123010060a2b0601040182373c0101030200c0090000000100000034000000303206082b0601050507030206082b0601050507030306082b0601050507030406082b0601050507030106082b060105050703080b00000001000000320000004400690067006900430065007200740020005400720075007300740065006400200052006f006f0074002000470034000000620000000100000020000000552f7bdcf1a7af9e6ce672017f4f12abf77240c78e761ac203d1d9d20ac89988140000000100000014000000ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f1d0000000100000010000000a86dc6a233eb339610f3ed414927c559030000000100000014000000ddfb16cd4931c973a2037d3fc83a4d7d775d05e404000000010000001000000078f2fcaa601f2fb4ebc937ba532e75492000000001000000940500003082059030820378a0030201020210059b1b579e8e2132e23907bda777755c300d06092a864886f70d01010c05003062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f74204734301e170d3133303830313132303030305a170d3338303131353132303030305a3062310b300906035504061302555331153013060355040a130c446967694365727420496e6331193017060355040b13107777772e64696769636572742e636f6d3121301f060355040313184469676943657274205472757374656420526f6f7420473430820222300d06092a864886f70d01010105000382020f003082020a0282020100bfe6907368debbe45d4a3c3022306933ecc2a7252ec9213df28ad859c2e129a73d58ab769acdae7b1b840dc4301ff31ba43816eb56c6976d1dabb279f2ca11d2e45fd6053c520f521fc69e15a57ebe9fa95716595572af689370c2b2ba75996a733294d11044102edf82f30784e6743b6d71e22d0c1bee20d5c9201d63292dceec5e4ec893f821619b34eb05c65eec5b1abcebc9cfcdac34405fb17a66ee77c848a86657579f54588e0c2bb74fa730d956eeca7b5de3adc94f5ee535e731cbda935edc8e8f80dab69198409079c378c7b6b1c4b56a183803108dd8d437a42e057d88f5823e109170ab55824132d7db04732a6e91017c214cd4bcae1b03755d7866d93a31449a3340bf08d75a49a4c2e6a9a067dda427bca14f39b5115817f7245c468f64f7c169887698763d595d4276878997697a48f0e0a2121b669a74cade4b1ee70e63aee6d4ef92923a9e3ddc00e4452589b69a44192b7ec094b4d2616deb33d9c5df4b0400cc7d1c95c38ff721b2b211b7bb7ff2d58c702c4160aab1631844951a76627ef680b0fbe864a633d18907e1bdb7e643a418b8a67701e10f940c211db2542925896ce50e52514774be26acb64175de7aac5f8d3fc9bcd34111125be51050eb31c5ca72162209df7c4c753f63ec215fc420516b6fb1ab868b4fc2d6455f9d20fca11ec5c08fa2b17e0a2699f5e4692f981d2df5d9a9b21de51b0203010001a3423040300f0603551d130101ff040530030101ff300e0603551d0f0101ff040403020186301d0603551d0e04160414ecd7e382d2715d644cdf2e673fe7ba98ae1c0f4f300d06092a864886f70d01010c05000382020100bb61d97da96cbe17c4911bc3a1a2008de364680f56cf77ae70f9fd9a4a99b9c9785c0c0c5fe4e61429560b36495d4463e0ad9c9618661b230d3d79e96d6bd654f8d23cc14340ae1d50f552fc903bbb9899696bc7c1a7a868a427dc9df927ae3085b9f6674d3a3e8f5939225344ebc85d03caed507a7d62210a80c87366d1a005605fe8a5b4a7afa8f76d359c7c5a8ad6a23899f3788bf44dd2200bde04ee8c9b4781720dc01432ef30592eaee071f256e46a976f92506d968d687a9ab236147a06f224b9091150d708b1b8897a8423614229e5a3cda22041d7d19c64d9ea26a18b14d74c19b25041713d3f4d7023860c4adc81d2cc3294840d0809971c4fc0ee6b207430d2e03934108521150108e85532de7149d92817504de6be4dd175acd0cafb41b843a5aad3c305444f2c369be2fae245b823536c066f67557f46b54c3f6e285a7926d2a4a86297d21ee2ed4a8bbc1bfd474a0ddf67667eb25b41d03be4f43bf40463e9efc2540051a08a2ac9ce78ccd5ea870418b3ceaf4988aff39299b6b3e6610fd28500e7501ae41b959d19a1b99cb19bb1001eefd00f4f426cc90abcee43fa3a71a5c84d26a535fd895dbc85621d32d2a02b54ed9a57c1dbfa10cf19b78b4a1b8f01b6279553e8b6896d5bbc68d423e88b51a256f9f0a680a0d61eb3bc0f0f537529aaea1377e4de8c8121ad07104711ad873d07d175bccff3667e | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DDFB16CD4931C973A2037D3FC83A4D7D775D05E4\Blob = 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 | C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe | N/A |
Runs net.exe
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Windows\System32\sdiagnhost.exe | N/A |
| N/A | N/A | C:\Windows\System32\sdiagnhost.exe | N/A |
| N/A | N/A | C:\Windows\System32\sdiagnhost.exe | N/A |
| N/A | N/A | C:\Windows\System32\sdiagnhost.exe | N/A |
| N/A | N/A | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
| N/A | N/A | C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe | N/A |
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
Suspicious behavior: LoadsDriver
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Uses Volume Shadow Copy WMI provider
Uses Volume Shadow Copy service COM API
Processes
C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\kysjames (1).vbs"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=133.0.6943.60 --initial-client-data=0xf8,0xfc,0x100,0xd8,0x104,0x7ffcc5b7dcf8,0x7ffcc5b7dd04,0x7ffcc5b7dd10
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --string-annotations --gpu-preferences=UAAAAAAAAADgAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAAACAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=2060,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=2044 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --string-annotations --field-trial-handle=1560,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=2284 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --string-annotations --field-trial-handle=2416,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=2276 /prefetch:8
C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\133.0.6943.60\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3168,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3256 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3176,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --extension-process --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4404,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4436 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4684,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4716 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=4868,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4872 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=4848,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3916 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5016,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5028 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5416,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5444 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5600,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5676 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=212,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5536 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=3472,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3276 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --message-loop-type-ui --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=3484,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3436 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=4456,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4568 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=3396,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=3280 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=3896,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=840,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=4540,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5692 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=3312,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5900 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5956,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6008 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=5984,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6008 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --string-annotations --gpu-preferences=UAAAAAAAAADoAAAEAAAAAAAAAAAAAAAAAABgAAEAAAAAAAAAAAAAAAAAAABCAAAAAAAAAAAAAAAAAAAAAAAAABAAAAAAAAAAEAAAAAAAAAAIAAAAAAAAAAgAAAAAAAAA --field-trial-handle=6024,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5940 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=3188,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5924 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\Downloads\StealthGuard.Msix
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4908 CREDAT:17410 /prefetch:2
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=on_device_model.mojom.OnDeviceModelService --lang=en-US --service-sandbox-type=on_device_model_execution --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=4564,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4568 /prefetch:8
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\Downloads\StealthGuard (3).Msix
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:4908 CREDAT:82948 /prefetch:2
C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\Downloads\StealthGuard (3).Msix
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=5576,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5520 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=6276,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6288 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=6596,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6632 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6556,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6664 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6840,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6828 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6564,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7004 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=7032,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7044 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6976,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=7452,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7464 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=7496,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7508 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=7512,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7592,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7604 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=8072,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=8284,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8232 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=8404,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8612,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8568 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8732,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8704 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8828,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8844 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=9000,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9004 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=9184,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=9360,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9336 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=9520,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9548 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=9164,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9516 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=9868,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=10016,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9992 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=10148,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10160 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=10296,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10316 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=10344,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10364 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=10400,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=10752,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10788 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=10964,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10388 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=11040,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11064 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=10812,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11196 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=9144,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11352 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=11556,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11344 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=11388,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11392 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=11788,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11860 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=11672,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6188 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=9888,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=8416,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=9872,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11192 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=9492,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7372 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=12100,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12112 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=12120,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12156 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=12416,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12428 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=12464,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12472 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=12760,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11520 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=12892,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=13044,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13060 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=13232,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13220 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=13276,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=13296,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=13728,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=13880,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13840 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=13456,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13228 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=14176,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14140 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=14312,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14188 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=14464,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14300 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=14628,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=9196,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9356 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=14840,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14824 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=13288,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14828 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=9828,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=8364,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8292 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=8456,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15100 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=15128,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15148 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=8644,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15192 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=9108,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9120 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=8516,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8508 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=11000,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11012 /prefetch:8
C:\Users\Admin\Downloads\MinecraftInstaller.exe
"C:\Users\Admin\Downloads\MinecraftInstaller.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=15112,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9288 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=14088,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15192 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=7392,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=6816,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9972 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=7652,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9532 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=6964,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9604 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=12436,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11392 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=14420,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14376 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=11704,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11736 /prefetch:1
C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe
"C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe" scenarioMinecraft
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=12696,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12664 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=9236,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12756 /prefetch:1
C:\Windows\system32\msdt.exe
"C:\Windows\system32\msdt.exe" /id WindowsUpdateDiagnostic /skip TRUE
C:\Windows\System32\sdiagnhost.exe
C:\Windows\System32\sdiagnhost.exe -Embedding
C:\Windows\System32\sdiagnhost.exe
C:\Windows\System32\sdiagnhost.exe -Embedding
C:\Windows\system32\sfc.exe
"C:\Windows\system32\sfc.exe" /scanfile=C:\Windows\system32\Qmgr.dll
C:\Windows\system32\sc.exe
"C:\Windows\system32\sc.exe" sdshow bits
C:\Windows\system32\bitsadmin.exe
"C:\Windows\system32\bitsadmin.exe" /reset /allusers
C:\Windows\system32\net.exe
"C:\Windows\system32\net.exe" start bits
C:\Windows\system32\net1.exe
C:\Windows\system32\net1 start bits
C:\Windows\system32\sfc.exe
"C:\Windows\system32\sfc.exe" /scanfile=C:\Windows\system32\Qmgr.dll
C:\Windows\system32\sc.exe
"C:\Windows\system32\sc.exe" sdshow bits
C:\Windows\system32\bitsadmin.exe
"C:\Windows\system32\bitsadmin.exe" /reset /allusers
C:\Windows\system32\net.exe
"C:\Windows\system32\net.exe" start bits
C:\Windows\system32\net1.exe
C:\Windows\system32\net1 start bits
C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe
"C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe" scenarioMinecraft
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=12964,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8636 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=8288,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12296 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=7028,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8268 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=14448,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8124 /prefetch:1
C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe
"C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe" scenarioMinecraft
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --field-trial-handle=6372,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=6300,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=14412,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --field-trial-handle=12240,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --field-trial-handle=12156,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12744 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=10288,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14236 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=12148,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --field-trial-handle=8400,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=10992,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --field-trial-handle=6520,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7156 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --field-trial-handle=12356,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7016 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --field-trial-handle=12376,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15220 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --field-trial-handle=14168,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12664 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --field-trial-handle=8524,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14392 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --field-trial-handle=7972,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15164 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --field-trial-handle=11780,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13020 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --field-trial-handle=9352,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14980 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --field-trial-handle=7120,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13812 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --field-trial-handle=6848,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11720 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --field-trial-handle=9264,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14924 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=133 --field-trial-handle=13532,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10960 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --field-trial-handle=12236,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11020 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --field-trial-handle=13540,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14296 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --field-trial-handle=12124,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6504 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --field-trial-handle=13752,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --field-trial-handle=12856,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13816 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --field-trial-handle=9376,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9708 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=140 --field-trial-handle=9812,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=141 --field-trial-handle=8996,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=142 --field-trial-handle=12408,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12380 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=143 --field-trial-handle=14240,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13332 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=144 --field-trial-handle=7232,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6328 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=145 --field-trial-handle=9040,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=146 --field-trial-handle=12548,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13448 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=147 --field-trial-handle=6332,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=148 --field-trial-handle=12628,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=15256 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=149 --field-trial-handle=9972,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14104 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=150 --field-trial-handle=8244,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=151 --field-trial-handle=9800,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11336 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=152 --field-trial-handle=8660,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11684 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=153 --field-trial-handle=11412,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8104 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=154 --field-trial-handle=11424,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11568 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=155 --field-trial-handle=11636,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11612 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=156 --field-trial-handle=12616,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11528 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=157 --field-trial-handle=14712,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14688 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=158 --field-trial-handle=11884,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10776 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=159 --field-trial-handle=7636,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=160 --field-trial-handle=11804,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9084 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=161 --field-trial-handle=8480,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8444 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=162 --field-trial-handle=13136,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=163 --field-trial-handle=12284,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12928 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=164 --field-trial-handle=10304,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11808 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=165 --field-trial-handle=12048,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12060 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=166 --field-trial-handle=8120,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11496 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=167 --field-trial-handle=10976,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14836 /prefetch:1
C:\Windows\system32\svchost.exe
"svchost.exe"
C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe
"C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServices.exe"
C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
"C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe"
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch -p -s DeviceInstall
C:\Windows\system32\DrvInst.exe
DrvInst.exe "4" "0" "C:\Windows\TEMP\{d0dbb255-501f-5b42-b159-b829bbef6e85}\xvdd.inf" "9" "45bc47eb3" "0000000000000148" "Service-0x0-3e7$\Default" "0000000000000158" "208" "C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\drivers"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=168 --field-trial-handle=13176,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10792 /prefetch:1
C:\Windows\system32\DrvInst.exe
DrvInst.exe "1" "0" "SWD\XvddEnum\XvddRootDevice_Instance" "" "" "48fe919b3" "0000000000000000"
C:\Windows\system32\DrvInst.exe
DrvInst.exe "4" "0" "C:\Windows\TEMP\{05832cfb-86fe-4f4f-af19-8f523d83a081}\gameflt.inf" "9" "42ac61ebf" "000000000000015C" "Service-0x0-3e7$\Default" "0000000000000160" "208" "C:\Program Files\WindowsApps\Microsoft.GamingServices_29.102.17001.0_x64__8wekyb3d8bbwe\drivers"
C:\Windows\system32\DrvInst.exe
DrvInst.exe "8" "4" "C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.inf" "0" "42ac61ebf" "0000000000000160" "Service-0x0-3e7$\Default"
C:\Windows\System32\pnputil.exe
C:\Windows\System32\pnputil.exe /enum-drivers
C:\Windows\System32\pnputil.exe
C:\Windows\System32\pnputil.exe /delete-driver oem4.inf /force
C:\Windows\system32\DrvInst.exe
DrvInst.exe "5" "2" "C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_152b7ad8bf20bdc5\gameflt.inf" "0" "4b9547ee7" "0000000000000170" "Service-0x0-3e7$\Default"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=169 --field-trial-handle=11260,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=11240,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11236 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=171 --field-trial-handle=15224,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10420 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6952,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5880 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=173 --field-trial-handle=8096,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11252 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=174 --field-trial-handle=6664,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=12336 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=175 --field-trial-handle=14688,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=11320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=176 --field-trial-handle=10496,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=14076 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=177 --field-trial-handle=10864,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13396 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=178 --field-trial-handle=12064,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=13416 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=179 --field-trial-handle=8604,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8936 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=180 --field-trial-handle=9420,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10944 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=8956,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8892 /prefetch:8
C:\Users\Admin\Downloads\OperaSetup.exe
"C:\Users\Admin\Downloads\OperaSetup.exe"
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe --server-tracking-blob=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
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktop --annotation=ver=120.0.5543.38 --initial-client-data=0x270,0x274,0x278,0x240,0x280,0x7ffcc720acc8,0x7ffcc720acd4,0x7ffcc720ace0
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\setup.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\setup.exe" --version
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe
"C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe" --backend --install --import-browser-data=0 --enable-crash-reporting=1 --enable-stats=1 --enable-installer-stats=1 --consent-given=1 --general-interests=1 --general-location=1 --personalized-content=1 --personalized-ads=1 --launchopera=1 --showunbox=0 --installfolder="C:\Users\Admin\AppData\Local\Programs\Opera" --profile-folder --language=en --singleprofile=0 --copyonly=0 --allusers=0 --pintotaskbar=1 --pintostartmenu=1 --run-at-startup=1 --show-intro-overlay --server-tracking-data=server_tracking_data --initial-pid=6396 --package-dir-prefix="C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_20250704080329" --session-guid=e6d9bfcd-9548-454f-a4f8-64db96660a6a --server-tracking-blob="NzYxZTBiY2UxZGYxNTc4OWU5MTkxYjkwMmY3MzRjOWU2YTBmMzA4MGFiNmUwZjFhNTYxNzQyNWZmMGEwY2E1YTp7ImNvdW50cnkiOiJVUyIsImh0dHBfcmVmZXJyZXIiOiJodHRwczovL2Rvd25sb2FkLmNuZXQuY29tLyIsImluc3RhbGxlcl9uYW1lIjoiT3BlcmFTZXR1cC5leGUiLCJwcm9kdWN0Ijp7Im5hbWUiOiJvcGVyYSJ9LCJxdWVyeSI6Ii9vcGVyYS9zdGFibGUvd2luZG93cz91dG1fc291cmNlPXNvZnRvbmljJnV0bV9jb250ZW50PU1ERl9QQiZ1dG1fbWVkaXVtPWFwYiZ1dG1fY2FtcGFpZ249Q1BJX1dJTl9ETCIsInN5c3RlbSI6eyJwbGF0Zm9ybSI6eyJhcmNoIjoieDg2XzY0Iiwib3BzeXMiOiJXaW5kb3dzIiwib3BzeXMtdmVyc2lvbiI6IjEwIiwicGFja2FnZSI6IkVYRSJ9fSwidGltZXN0YW1wIjoiMTc1MTYzMDYwMy44MDQ0IiwidXNlcmFnZW50IjoiTW96aWxsYS81LjAgKFdpbmRvd3MgTlQgMTAuMDsgV2luNjQ7IHg2NCkgQXBwbGVXZWJLaXQvNTM3LjM2IChLSFRNTCwgbGlrZSBHZWNrbykgQ2hyb21lLzEzMy4wLjAuMCBTYWZhcmkvNTM3LjM2IiwidXRtIjp7ImNhbXBhaWduIjoiQ1BJX1dJTl9ETCIsImNvbnRlbnQiOiJNREZfUEIiLCJtZWRpdW0iOiJhcGIiLCJzb3VyY2UiOiJzb2Z0b25pYyJ9LCJ1dWlkIjoiMTVlOGQwNTctNWMwYy00YmNmLTlhNjAtYjEzYjkwMThkNTIwIn0= " --desktopshortcut=1 --wait-for-package --initial-proc-handle=CC08000000000000
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe
C:\Users\Admin\AppData\Local\Temp\7zS425C4C21\setup.exe --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win64 --annotation=prod=OperaDesktop --annotation=ver=120.0.5543.38 --initial-client-data=0x27c,0x280,0x284,0x24c,0x288,0x7ffcc190acc8,0x7ffcc190acd4,0x7ffcc190ace0
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=182 --field-trial-handle=6224,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9876 /prefetch:1
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\Assistant_118.0.5461.41_Setup.exe_sfx.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\Assistant_118.0.5461.41_Setup.exe_sfx.exe"
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\assistant_installer.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\assistant_installer.exe" --version
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\assistant_installer.exe
"C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\assistant\assistant_installer.exe" --type=crashpad-handler /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\Crash Reports" "--crash-count-file=C:\Users\Admin\AppData\Roaming\Opera Software\Opera Stable\crash_count.txt" --url=https://crashstats-collector-2.opera.com/ --annotation=channel=Stable --annotation=plat=Win32 --annotation=prod=OperaDesktop --annotation=ver=118.0.5461.41 --initial-client-data=0x220,0x224,0x228,0x1fc,0x22c,0x5f103c,0x5f1048,0x5f1054
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=183 --field-trial-handle=7772,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9956 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=184 --field-trial-handle=6812,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=10796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=185 --field-trial-handle=10160,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=6832 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=186 --field-trial-handle=10584,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=9848 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=8940,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8908 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x300 0x4a0
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=188 --field-trial-handle=13108,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=8948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=189 --field-trial-handle=13388,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=7140 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=190 --field-trial-handle=5536,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=4636 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --string-annotations --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=191 --field-trial-handle=6472,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5684 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --video-capture-use-gpu-memory-buffer --string-annotations --field-trial-handle=6176,i,10597853490739444788,10326981235795382922,262144 --variations-seed-version=20250618-180047.684000 --mojo-platform-channel-handle=5832 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 23.44.201.33:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| CA | 142.250.69.138:443 | ogads-pa.clients6.google.com | udp |
| CA | 142.250.69.138:443 | ogads-pa.clients6.google.com | tcp |
| CA | 142.250.69.138:443 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| CA | 142.250.69.110:443 | play.google.com | tcp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | dns-tunnel-check.googlezip.net | udp |
| US | 8.8.8.8:53 | tunnel.googlezip.net | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.138:443 | ogads-pa.clients6.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.138:443 | ogads-pa.clients6.google.com | udp |
| CA | 142.250.69.110:443 | play.google.com | tcp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 140.82.114.3:443 | github.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| CA | 142.250.69.138:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| CA | 142.250.69.138:443 | content-autofill.googleapis.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.5:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | c.pki.goog | udp |
| CA | 142.250.69.67:80 | c.pki.goog | tcp |
| US | 8.8.8.8:53 | youareanidiot.org | udp |
| US | 172.237.146.8:80 | youareanidiot.org | tcp |
| US | 172.237.146.8:80 | youareanidiot.org | tcp |
| US | 172.237.146.8:443 | youareanidiot.org | tcp |
| US | 8.8.8.8:53 | router.parklogic.com | udp |
| US | 172.234.216.100:443 | router.parklogic.com | tcp |
| US | 8.8.8.8:53 | qanonasp.com | udp |
| US | 172.67.160.49:443 | qanonasp.com | tcp |
| US | 172.67.160.49:443 | qanonasp.com | tcp |
| US | 8.8.8.8:53 | cint.rapidoguardian.online | udp |
| US | 206.189.225.178:443 | cint.rapidoguardian.online | tcp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 8.8.8.8:53 | impr.rapidoguardian.online | udp |
| US | 35.71.131.46:443 | impr.rapidoguardian.online | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | mc.yandex.ru | udp |
| US | 8.8.8.8:53 | cdn.mxpnl.com | udp |
| US | 8.8.8.8:53 | euob.esnchocco.com | udp |
| US | 8.8.8.8:53 | 7proof.com | udp |
| RU | 87.250.250.119:443 | mc.yandex.ru | tcp |
| US | 130.211.5.208:443 | cdn.mxpnl.com | tcp |
| US | 130.211.5.208:443 | cdn.mxpnl.com | tcp |
| US | 52.116.53.155:443 | 7proof.com | tcp |
| US | 18.239.183.125:443 | euob.esnchocco.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | obseu.esnchocco.com | udp |
| CA | 142.250.69.138:443 | content-autofill.googleapis.com | tcp |
| IE | 3.248.162.96:443 | obseu.esnchocco.com | tcp |
| US | 8.8.8.8:53 | mc.yandex.com | udp |
| RU | 87.250.250.119:443 | mc.yandex.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | red.rapidoguardian.online | udp |
| US | 13.248.241.119:443 | red.rapidoguardian.online | tcp |
| US | 8.8.8.8:53 | file.rapidoguardian.online | udp |
| US | 18.161.34.71:443 | file.rapidoguardian.online | tcp |
| US | 8.8.8.8:53 | api-js.mixpanel.com | udp |
| US | 35.186.241.51:443 | api-js.mixpanel.com | tcp |
| US | 35.186.241.51:443 | api-js.mixpanel.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | tcp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | tcp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | tcp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| CA | 142.250.69.110:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| CA | 142.250.69.150:443 | i.ytimg.com | tcp |
| CA | 142.250.69.150:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| CA | 142.250.69.134:443 | static.doubleclick.net | tcp |
| CA | 142.250.69.110:443 | www.youtube.com | tcp |
| CA | 142.250.69.110:443 | www.youtube.com | tcp |
| CA | 142.250.69.110:443 | www.youtube.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | www.techspot.com | udp |
| US | 104.22.78.92:443 | www.techspot.com | tcp |
| US | 104.22.78.92:443 | www.techspot.com | tcp |
| US | 104.22.78.92:443 | www.techspot.com | udp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | 6093eccf-6734-4877-ac8b-83d6d0e27b46.edge.permutive.app | udp |
| US | 8.8.8.8:53 | freyr.futurecdn.net | udp |
| US | 8.8.8.8:53 | bordeaux.futurecdn.net | udp |
| US | 8.8.8.8:53 | img.youtube.com | udp |
| US | 8.8.8.8:53 | static.chartbeat.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.18.35.13:443 | 6093eccf-6734-4877-ac8b-83d6d0e27b46.edge.permutive.app | tcp |
| US | 18.239.168.2:443 | cmp.inmobi.com | tcp |
| US | 65.8.19.126:443 | bordeaux.futurecdn.net | tcp |
| US | 18.239.183.106:443 | freyr.futurecdn.net | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 18.239.162.69:443 | static.chartbeat.com | tcp |
| US | 8.8.8.8:53 | eventsproxy.gargantuan.futureplc.com | udp |
| IE | 54.77.126.78:443 | eventsproxy.gargantuan.futureplc.com | tcp |
| US | 8.8.8.8:53 | ping.chartbeat.net | udp |
| US | 8.8.8.8:53 | api.permutive.com | udp |
| US | 8.8.8.8:53 | www3.doubleclick.net | udp |
| US | 34.236.59.118:443 | ping.chartbeat.net | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 34.107.254.252:443 | api.permutive.com | tcp |
| US | 18.239.168.2:443 | cmp.inmobi.com | tcp |
| CA | 142.250.69.78:443 | www3.doubleclick.net | tcp |
| CA | 142.250.69.106:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | marketingplatform.google.com | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 6093eccf-6734-4877-ac8b-83d6d0e27b46.prmutv.co | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 34.107.254.252:443 | api.permutive.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn.permutive.com | udp |
| US | 216.239.36.181:443 | analytics.google.com | tcp |
| US | 142.251.16.157:443 | stats.g.doubleclick.net | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 35.241.9.51:443 | 6093eccf-6734-4877-ac8b-83d6d0e27b46.prmutv.co | tcp |
| US | 104.17.108.19:443 | cdn.permutive.com | tcp |
| US | 8.8.8.8:53 | ads.servebom.com | udp |
| US | 8.8.8.8:53 | sommelier.futurehybrid.tech | udp |
| US | 13.216.184.49:443 | sommelier.futurehybrid.tech | tcp |
| US | 18.239.183.65:443 | ads.servebom.com | tcp |
| US | 34.107.254.252:443 | api.permutive.com | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | c.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | pub.doubleverify.com | udp |
| US | 8.8.8.8:53 | cdn.prod.euid.eu | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ats-wrapper.privacymanager.io | udp |
| US | 8.8.8.8:53 | scripts.webcontentassessor.com | udp |
| US | 8.8.8.8:53 | cdn.pbxai.com | udp |
| US | 8.8.8.8:53 | floor.pbxai.com | udp |
| US | 151.101.66.217:443 | scripts.webcontentassessor.com | tcp |
| US | 104.18.32.146:443 | pub.doubleverify.com | tcp |
| US | 18.239.163.210:443 | cdn.prod.euid.eu | tcp |
| US | 79.127.243.187:443 | cdn.pbxai.com | tcp |
| US | 34.226.128.151:443 | floor.pbxai.com | tcp |
| US | 18.239.168.73:443 | c.aps.amazon-adsystem.com | tcp |
| US | 18.239.168.38:443 | ats-wrapper.privacymanager.io | tcp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | api.rlcdn.com | udp |
| US | 8.8.8.8:53 | idx.liadm.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 44.218.2.127:443 | idx.liadm.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 34.107.165.188:443 | api.rlcdn.com | tcp |
| US | 104.18.32.146:443 | pub.doubleverify.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | geo.privacymanager.io | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 65.8.19.101:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 35.211.202.130:443 | x.bidswitch.net | tcp |
| US | 35.212.27.211:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 23.201.191.176:443 | secure-assets.rubiconproject.com | tcp |
| US | 23.51.57.13:443 | ads.pubmatic.com | tcp |
| US | 98.82.202.89:443 | match.sharethrough.com | tcp |
| US | 69.147.92.12:443 | ups.analytics.yahoo.com | tcp |
| US | 35.212.18.61:443 | visitor.omnitagjs.com | tcp |
| US | 104.18.27.193:443 | ssum-sec.casalemedia.com | tcp |
| US | 18.161.34.122:443 | geo.privacymanager.io | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | rp.liadm.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | grid-bidder.criteo.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | direct.adsrvr.org | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| US | 18.239.161.133:443 | aax.amazon-adsystem.com | tcp |
| US | 35.169.78.84:443 | rp.liadm.com | tcp |
| US | 125.253.89.186:443 | prebid.a-mo.net | tcp |
| US | 3.219.212.225:443 | ap.lijit.com | tcp |
| US | 207.65.37.179:443 | hbopenbid.pubmatic.com | tcp |
| US | 74.119.117.12:443 | grid-bidder.criteo.com | tcp |
| US | 104.18.26.193:443 | htlb.casalemedia.com | tcp |
| US | 52.223.22.214:443 | eb2.3lift.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | tcp |
| US | 8.8.8.8:53 | pixel.servebom.com | udp |
| US | 8.8.8.8:53 | vtrk.doubleverify.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 34.192.42.219:443 | tlx.3lift.com | tcp |
| US | 104.18.28.101:443 | cdn-ima.33across.com | tcp |
| US | 18.161.34.38:443 | tags.crwdcntrl.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 104.18.42.239:443 | vtrk.doubleverify.com | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 104.18.27.193:443 | htlb.casalemedia.com | udp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 23.47.170.102:443 | eus.rubiconproject.com | tcp |
| CA | 142.250.69.106:443 | content-autofill.googleapis.com | udp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 65.8.19.55:443 | pixel.servebom.com | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 3.231.40.73:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 8.8.8.8:53 | api.pbxai.com | udp |
| US | 8.8.8.8:53 | 8ffd165cda1c7406f219ca7fed734500.safeframe.googlesyndication.com | udp |
| CA | 142.250.69.65:443 | 8ffd165cda1c7406f219ca7fed734500.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | udp |
| US | 79.127.243.187:443 | api.pbxai.com | tcp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lbs.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 3.219.212.225:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 57.129.95.139:443 | lbs.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 207.65.32.82:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| US | 69.173.146.5:443 | token.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | token.rubiconproject.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 69.194.240.13:443 | sync.1rx.io | tcp |
| US | 52.55.67.121:443 | ads.yieldmo.com | tcp |
| US | 23.199.48.23:443 | hbx.media.net | tcp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | tcp |
| US | 23.219.161.146:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | tmn-d.openx.net | udp |
| US | 8.8.8.8:53 | use3-sync.a-mo.net | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 52.223.22.214:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.28.7.81:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| CA | 142.250.69.65:443 | 8ffd165cda1c7406f219ca7fed734500.safeframe.googlesyndication.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | warp.media.net | udp |
| US | 8.8.8.8:53 | hblg.media.net | udp |
| US | 174.137.133.32:443 | sync.adkernel.com | tcp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| US | 151.101.193.108:443 | acdn.adnxs.com | tcp |
| US | 125.253.89.180:443 | use3-sync.a-mo.net | tcp |
| US | 34.98.64.218:443 | tmn-d.openx.net | tcp |
| US | 104.18.25.18:443 | js-sec.indexww.com | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 13.219.16.120:443 | dpm.demdex.net | tcp |
| US | 8.8.8.8:53 | cdn.doubleverify.com | udp |
| US | 8.8.8.8:53 | cs.lkqd.net | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 23.210.92.154:443 | cdn.doubleverify.com | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ittpx.eskimi.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 50.19.101.63:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| DE | 188.40.16.220:443 | ittpx.eskimi.com | tcp |
| US | 8.8.8.8:53 | check.analytics.rlcdn.com | udp |
| US | 23.210.92.154:443 | cdn.doubleverify.com | tcp |
| US | 216.22.16.4:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 18.239.168.78:443 | check.analytics.rlcdn.com | tcp |
| US | 23.47.168.66:443 | contextual.media.net | tcp |
| US | 216.22.16.4:443 | ssbsync.smartadserver.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | aep.mxptint.net | udp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | a.c.appier.net | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 38.98.69.175:443 | aep.mxptint.net | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| JP | 172.105.235.90:443 | a.c.appier.net | tcp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | ius.ctnsnet.com | udp |
| US | 8.8.8.8:53 | www.temu.com | udp |
| US | 8.8.8.8:53 | rtb0.doubleverify.com | udp |
| JP | 172.105.235.90:443 | a.c.appier.net | tcp |
| US | 35.186.193.173:443 | ius.ctnsnet.com | tcp |
| US | 74.214.194.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| US | 8.8.8.8:53 | r.bidswitch.net | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 20.33.69.37:443 | www.temu.com | tcp |
| US | 8.8.8.8:53 | navvy.media.net | udp |
| US | 74.214.194.131:443 | bh.contextweb.com | tcp |
| US | 35.211.118.13:443 | r.bidswitch.net | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| IE | 54.77.126.78:443 | eventsproxy.gargantuan.futureplc.com | tcp |
| US | 216.239.36.181:443 | analytics.google.com | udp |
| US | 104.18.42.239:443 | vtrk.doubleverify.com | udp |
| US | 34.160.55.127:443 | navvy.media.net | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| CA | 142.250.69.78:443 | www3.doubleclick.net | udp |
| US | 157.240.245.35:443 | www.facebook.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | static.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | scontent-bos5-1.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 69.194.240.13:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | hb.trustedstack.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 68.67.181.103:443 | secure.adnxs.com | tcp |
| US | 68.67.181.103:443 | secure.adnxs.com | tcp |
| US | 68.67.181.103:443 | secure.adnxs.com | tcp |
| DE | 162.55.233.28:443 | sync.richaudience.com | tcp |
| NL | 35.214.190.220:443 | csync.loopme.me | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | tcp |
| US | 3.215.89.222:443 | sync.srv.stackadapt.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 18.161.34.111:443 | api-ssp.spot.im | tcp |
| US | 23.219.36.107:443 | hb.trustedstack.com | tcp |
| US | 8.8.8.8:53 | sync.contextualadv.com | udp |
| US | 8.8.8.8:53 | usync.smxconv.com | udp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | e55d9b51501e48860ee103606d4bbd0c.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 80.77.84.209:443 | usync.smxconv.com | tcp |
| US | 98.82.157.231:443 | s.amazon-adsystem.com | tcp |
| CA | 142.250.69.129:443 | e55d9b51501e48860ee103606d4bbd0c.safeframe.googlesyndication.com | tcp |
| US | 35.173.176.57:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | csync.copper6.com | udp |
| US | 8.8.8.8:53 | rtb.bid.com | udp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | beacon.lynx.cognitivlabs.com | udp |
| US | 8.8.8.8:53 | a.rfihub.com | udp |
| US | 35.244.154.8:443 | id.rlcdn.com | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 157.240.245.8:443 | scontent-bos5-1.xx.fbcdn.net | udp |
| US | 23.20.196.76:443 | beacon.lynx.cognitivlabs.com | tcp |
| US | 199.38.167.131:443 | a.rfihub.com | tcp |
| US | 34.150.170.96:443 | um.simpli.fi | tcp |
| US | 192.184.68.254:443 | cms.quantserve.com | tcp |
| US | 64.38.119.44:443 | bttrack.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| CA | 142.250.69.129:443 | e55d9b51501e48860ee103606d4bbd0c.safeframe.googlesyndication.com | udp |
| US | 34.98.64.218:443 | u.openx.net | udp |
| US | 125.253.89.186:443 | use3-sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | sync.teads.tv | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 23.47.168.66:443 | contextual.media.net | udp |
| US | 151.101.2.132:443 | sync.teads.tv | tcp |
| US | 20.33.69.37:443 | www.temu.com | udp |
| US | 151.101.2.132:443 | sync.teads.tv | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 8.28.7.83:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| US | 8.8.8.8:53 | cdn.undertone.com | udp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| US | 8.8.8.8:53 | ssbsync-us.smartadserver.com | udp |
| US | 44.237.234.201:443 | rtb.gumgum.com | tcp |
| US | 3.208.132.83:443 | ms-cookie-sync.presage.io | tcp |
| US | 23.105.12.142:443 | ssbsync-us.smartadserver.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| US | 65.8.19.25:443 | cdn.undertone.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 23.200.88.81:443 | servedby.flashtalking.com | tcp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| US | 68.67.181.103:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | sync-amz.ads.yieldmo.com | udp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| US | 8.8.8.8:53 | crb.kargo.com | udp |
| US | 3.85.180.60:443 | sync-amz.ads.yieldmo.com | tcp |
| US | 34.160.55.127:443 | navvy.media.net | udp |
| US | 8.8.8.8:53 | tps-dn-ue1.doubleverify.com | udp |
| US | 34.195.74.4:443 | crb.kargo.com | tcp |
| US | 35.211.246.180:443 | tps-dn-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | cs-tam.yellowblue.io | udp |
| US | 35.212.27.211:443 | cs-tam.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | ajs-assets.ftstatic.com | udp |
| US | 52.2.73.206:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 23.200.88.53:443 | ajs-assets.ftstatic.com | tcp |
| US | 8.8.8.8:53 | ssp-sync.criteo.com | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 18.239.183.26:443 | aa.agkn.com | tcp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | sync.clearnview.com | udp |
| US | 204.62.12.186:443 | sync.clearnview.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | d.agkn.com | udp |
| US | 185.167.164.38:443 | c1.adform.net | tcp |
| US | 204.62.12.186:443 | sync.clearnview.com | tcp |
| US | 18.239.168.67:443 | d.agkn.com | tcp |
| US | 18.239.168.81:443 | agen-assets.ftstatic.com | tcp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| JP | 124.146.153.165:443 | tg.socdm.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 185.167.164.38:443 | c1.adform.net | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 35.244.154.8:443 | id.rlcdn.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| US | 3.215.89.222:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | idpix.media6degrees.com | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 8.8.8.8:53 | bpi.rtactivate.com | udp |
| US | 18.239.183.26:443 | aa.agkn.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 74.119.117.16:443 | dis.criteo.com | tcp |
| US | 69.194.242.12:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | match.deepintent.com | udp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 69.194.242.12:443 | ad.turn.com | tcp |
| US | 98.82.157.231:443 | s.amazon-adsystem.com | tcp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| US | 98.82.157.231:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 34.197.234.122:443 | sync.ipredictive.com | tcp |
| US | 54.84.80.172:443 | i.liadm.com | tcp |
| US | 54.84.80.172:443 | i.liadm.com | tcp |
| US | 54.84.80.172:443 | i.liadm.com | tcp |
| US | 44.221.3.66:443 | bpi.rtactivate.com | tcp |
| US | 104.18.41.39:443 | idpix.media6degrees.com | tcp |
| US | 35.207.24.140:443 | rtb.mfadsrvr.com | tcp |
| US | 169.197.150.7:443 | match.deepintent.com | tcp |
| JP | 124.146.153.165:443 | tg.socdm.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 98.82.157.231:443 | s.amazon-adsystem.com | tcp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | live.primis.tech | udp |
| US | 52.2.174.149:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 104.18.41.104:443 | capi.connatix.com | tcp |
| US | 8.8.8.8:53 | cdn.flashtalking.com | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| US | 18.161.34.83:443 | live.primis.tech | tcp |
| US | 54.221.249.26:443 | ad-events.flashtalking.com | tcp |
| US | 18.161.21.5:443 | cdn.flashtalking.com | tcp |
| US | 8.8.8.8:53 | sync.cootlogix.com | udp |
| US | 8.8.8.8:53 | usr.undertone.com | udp |
| US | 52.2.174.149:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 34.197.234.122:443 | sync.ipredictive.com | tcp |
| US | 169.197.150.7:443 | match.deepintent.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 23.199.48.23:443 | hblg.media.net | udp |
| US | 34.149.50.64:443 | s.seedtag.com | udp |
| US | 159.223.145.220:443 | sync.cootlogix.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 216.22.16.41:443 | sync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | i6.liadm.com | udp |
| US | 8.8.8.8:53 | cs.minutemedia-prebid.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| US | 8.8.8.8:53 | b1sync.outbrain.com | udp |
| US | 52.73.22.71:443 | i6.liadm.com | tcp |
| NL | 35.214.190.220:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 18.161.34.63:443 | usr.undertone.com | tcp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| US | 52.1.176.129:443 | cs.minutemedia-prebid.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 54.209.98.101:443 | sonata-notifications.taptapnetworks.com | tcp |
| US | 8.8.8.8:53 | tpsc-ue1.doubleverify.com | udp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| US | 35.212.38.52:443 | s.ad.smaato.net | tcp |
| US | 35.207.24.140:443 | rtb.mfadsrvr.com | udp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | odr.mookie1.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | live.rezync.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 34.117.228.201:443 | tpsc-ue1.doubleverify.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 35.190.90.30:443 | odr.mookie1.com | tcp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | gw-iad-bid.ymmobi.com | udp |
| US | 54.87.127.173:443 | usersync.gumgum.com | tcp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 18.161.34.3:443 | live.rezync.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | sync.intentiq.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | pool.admedo.com | udp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 47.253.61.56:443 | gw-iad-bid.ymmobi.com | tcp |
| US | 15.204.189.249:443 | rtb-csync.smartadserver.com | tcp |
| US | 18.239.168.122:443 | sync.intentiq.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| BE | 35.206.140.87:443 | pool.admedo.com | tcp |
| US | 8.8.8.8:53 | a.amxrtb.com | udp |
| US | 35.211.202.130:443 | x.bidswitch.net | tcp |
| US | 69.194.242.12:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 104.18.13.250:443 | a.amxrtb.com | tcp |
| US | 8.8.8.8:53 | rtbc-ue1.doubleverify.com | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 15.204.189.249:443 | rtb-csync.smartadserver.com | tcp |
| US | 15.204.189.249:443 | rtb-csync.smartadserver.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 18.161.34.3:443 | live.rezync.com | tcp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 54.83.204.141:443 | sync.crwdcntrl.net | tcp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 35.190.90.30:443 | odr.mookie1.com | tcp |
| US | 69.10.32.226:443 | inv-nets.admixer.net | tcp |
| US | 8.8.8.8:53 | syncv4.intentiq.com | udp |
| US | 199.38.167.130:443 | p.rfihub.com | tcp |
| US | 199.38.167.130:443 | p.rfihub.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| DK | 37.157.2.229:443 | cm.adform.net | tcp |
| US | 121.127.42.98:443 | id.a-mx.com | tcp |
| BE | 35.206.140.87:443 | pool.admedo.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | fdz.flashtalking.com | udp |
| US | 44.199.4.120:443 | fdz.flashtalking.com | tcp |
| US | 125.253.89.181:443 | sync.a-mo.net | tcp |
| US | 54.84.80.172:443 | i.liadm.com | tcp |
| US | 125.253.89.181:443 | sync.a-mo.net | tcp |
| US | 54.84.80.172:443 | i.liadm.com | tcp |
| US | 8.8.8.8:53 | pippio.com | udp |
| US | 8.8.8.8:53 | img.flashtalking.com | udp |
| US | 107.178.254.65:443 | pippio.com | tcp |
| US | 107.178.254.65:443 | pippio.com | tcp |
| US | 18.161.34.126:443 | img.flashtalking.com | tcp |
| US | 18.161.34.126:443 | img.flashtalking.com | tcp |
| US | 18.161.34.126:443 | img.flashtalking.com | tcp |
| US | 18.161.34.126:443 | img.flashtalking.com | tcp |
| US | 18.161.34.126:443 | img.flashtalking.com | tcp |
| US | 121.127.42.98:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | prebid.adnxs.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| US | 8.28.7.105:443 | ow.pubmatic.com | tcp |
| US | 68.67.153.61:443 | prebid.adnxs.com | tcp |
| US | 138.199.41.120:443 | id.rtb.mx | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 18.239.168.73:443 | c.aps.amazon-adsystem.com | udp |
| US | 104.18.32.146:443 | pub.doubleverify.com | udp |
| US | 18.239.163.210:443 | cdn.prod.euid.eu | tcp |
| US | 18.161.34.38:443 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | launcher.mojang.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 204.62.12.186:443 | sync.clearnview.com | tcp |
| US | 157.240.245.35:443 | www.facebook.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 74.119.117.12:443 | grid-bidder.criteo.com | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| US | 20.42.182.106:443 | b7b52.playfabapi.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | partners.tremorhub.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | dsp.adkernel.com | udp |
| US | 23.20.196.76:443 | beacon.lynx.cognitivlabs.com | tcp |
| US | 174.137.133.49:443 | dsp.adkernel.com | tcp |
| US | 35.168.92.154:443 | partners.tremorhub.com | tcp |
| US | 172.64.150.63:443 | a.tribalfusion.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 18.239.163.210:443 | cdn.prod.euid.eu | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 104.18.42.239:443 | vtrk.doubleverify.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| CA | 142.250.69.78:443 | www3.doubleclick.net | udp |
| US | 104.18.32.146:443 | pub.doubleverify.com | udp |
| CA | 142.250.69.106:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | da40effc5f3df0d363c398cbcb413d51.safeframe.googlesyndication.com | udp |
| US | 98.82.157.231:443 | s.amazon-adsystem.com | tcp |
| CA | 142.250.69.97:443 | da40effc5f3df0d363c398cbcb413d51.safeframe.googlesyndication.com | tcp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 151.101.193.108:443 | acdn.adnxs.com | tcp |
| CA | 142.250.69.97:443 | da40effc5f3df0d363c398cbcb413d51.safeframe.googlesyndication.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | su.addthis.com | udp |
| US | 34.192.42.219:443 | tlx.3lift.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 35.190.90.30:443 | odr.mookie1.com | udp |
| US | 199.38.167.130:443 | p.rfihub.com | tcp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | i.w55c.net | udp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | udp |
| US | 67.72.99.172:443 | openx2-match.dotomi.com | tcp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | gtracenep.admaster.cc | udp |
| US | 35.212.33.9:443 | i.w55c.net | tcp |
| US | 204.2.226.29:443 | oxp.mxptint.net | tcp |
| US | 35.208.249.213:443 | gtracenep.admaster.cc | tcp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 68.67.181.103:443 | secure.adnxs.com | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | udp |
| US | 107.21.166.147:443 | dpm.demdex.net | tcp |
| US | 35.190.90.30:443 | odr.mookie1.com | udp |
| US | 8.8.8.8:53 | d9.flashtalking.com | udp |
| US | 8.8.8.8:53 | js.ad-score.com | udp |
| US | 54.85.189.15:443 | d9.flashtalking.com | tcp |
| US | 65.8.19.56:443 | js.ad-score.com | tcp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | dsp-cookie.adfarm1.adition.com | udp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | rubicon-match.dotomi.com | udp |
| US | 44.221.2.112:443 | cm.adgrx.com | tcp |
| US | 216.34.207.108:443 | rubicon-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | ads2.servebom.com | udp |
| US | 8.8.8.8:53 | ads.mountain.com | udp |
| US | 8.8.8.8:53 | a412.casalemedia.com | udp |
| US | 8.8.8.8:53 | k8s1-event-tracker-va.lb.indexww.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | us-east-1.event.prod.bidr.io | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | exchange.mediavine.com | udp |
| US | 8.8.8.8:53 | s2s.t13.io | udp |
| US | 8.8.8.8:53 | cookies.nextmillmedia.com | udp |
| US | 8.8.8.8:53 | sync.outbrain.com | udp |
| US | 34.160.55.127:443 | navvy.media.net | udp |
| US | 209.204.228.127:443 | k8s1-event-tracker-va.lb.indexww.com | tcp |
| US | 3.229.157.41:443 | us-east-1.event.prod.bidr.io | tcp |
| US | 44.239.168.247:443 | ads.mountain.com | tcp |
| CA | 209.204.239.122:443 | a412.casalemedia.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 3.216.181.68:443 | ads2.servebom.com | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | tcp |
| US | 135.148.55.236:443 | cookies.nextmillmedia.com | tcp |
| US | 70.42.32.127:443 | sync.outbrain.com | tcp |
| US | 52.201.28.221:443 | exchange.mediavine.com | tcp |
| US | 35.211.246.180:443 | tps-dn-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | data.ad-score.com | udp |
| US | 8.8.8.8:53 | beacons5.gvt3.com | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| CA | 142.251.41.67:443 | beacons5.gvt3.com | tcp |
| US | 8.8.8.8:53 | gs.mountain.com | udp |
| US | 52.12.117.226:443 | gs.mountain.com | tcp |
| US | 159.127.42.204:443 | dclk-match.dotomi.com | tcp |
| US | 52.55.67.121:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | pbs.nextmillmedia.com | udp |
| US | 15.204.241.81:443 | pbs.nextmillmedia.com | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| US | 8.8.8.8:53 | rtb.adentifi.com | udp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | loadus.exelator.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 52.22.224.107:443 | rtb.adentifi.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 34.229.3.43:443 | loadus.exelator.com | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| US | 3.231.143.24:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | events.mountain.com | udp |
| US | 8.8.8.8:53 | c.mountain.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.216.59.51:443 | events.mountain.com | tcp |
| US | 18.239.168.100:443 | c.mountain.com | tcp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 8.8.8.8:53 | t.mountain.com | udp |
| US | 65.8.19.77:443 | t.mountain.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 74.119.117.12:443 | grid-bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | ads.servebom.com | udp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | api.pbxai.com | udp |
| US | 8.8.8.8:53 | hblg.media.net | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | tags.bluekai.com | udp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 35.208.249.213:443 | gtracenep.admaster.cc | udp |
| US | 3.208.111.72:443 | match.prod.bidr.io | tcp |
| US | 64.202.112.31:443 | b1sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | eventsproxy.gargantuan.futureplc.com | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | ping.chartbeat.net | udp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 34.117.228.201:443 | rtbc-ue1.doubleverify.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 74.119.117.12:443 | grid-bidder.criteo.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| CA | 142.250.69.97:443 | da40effc5f3df0d363c398cbcb413d51.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 15.204.189.249:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | ads.travelaudience.com | udp |
| US | 74.119.117.16:443 | dis.criteo.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | udp |
| US | 23.47.168.66:443 | contextual.media.net | udp |
| US | 8.8.8.8:53 | x.dlx.addthis.com | udp |
| US | 3.216.195.187:443 | sync.ipredictive.com | tcp |
| US | 8.8.8.8:53 | agen-assets.ftstatic.com | udp |
| US | 35.190.0.66:443 | ads.travelaudience.com | tcp |
| US | 8.8.8.8:53 | cdn.flashtalking.com | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 104.22.78.92:443 | www.techspot.com | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 34.107.254.252:443 | api.permutive.com | udp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | freyr.futurecdn.net | udp |
| US | 8.8.8.8:53 | bordeaux.futurecdn.net | udp |
| US | 104.18.42.239:443 | vtrk.doubleverify.com | udp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| US | 34.117.228.201:443 | tps.doubleverify.com | tcp |
| IE | 34.249.167.60:443 | eventsproxy.gargantuan.futureplc.com | tcp |
| CA | 142.250.69.78:443 | www3.doubleclick.net | udp |
| US | 8.8.8.8:53 | sommelier.futurehybrid.tech | udp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 52.3.169.224:443 | sommelier.futurehybrid.tech | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | cdn.pbxai.com | udp |
| US | 8.8.8.8:53 | floor.pbxai.com | udp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | idx.liadm.com | udp |
| US | 34.226.128.151:443 | floor.pbxai.com | tcp |
| US | 44.218.2.127:443 | idx.liadm.com | tcp |
| US | 8.8.8.8:53 | rp.liadm.com | udp |
| US | 107.23.22.90:443 | rp.liadm.com | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 74.119.117.12:443 | grid-bidder.criteo.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 199.250.166.129:443 | direct.adsrvr.org | tcp |
| US | 69.173.146.10:443 | fastlane.rubiconproject.com | tcp |
| US | 34.206.91.202:443 | tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | e1a0c9c8a2811b91f70727fc2120a097.safeframe.googlesyndication.com | udp |
| US | 74.119.117.39:443 | ssp-sync.criteo.com | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | tcp |
| CA | 142.250.69.33:443 | e1a0c9c8a2811b91f70727fc2120a097.safeframe.googlesyndication.com | tcp |
| US | 35.190.90.30:443 | odr.mookie1.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| US | 8.8.8.8:53 | e2c30.gcp.gvt2.com | udp |
| US | 34.125.80.210:443 | e2c30.gcp.gvt2.com | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | llaun-ch.webpkgcache.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| CA | 142.250.69.129:443 | llaun-ch.webpkgcache.com | tcp |
| CA | 142.250.69.110:443 | encrypted-tbn0.gstatic.com | udp |
| CA | 142.250.69.129:443 | llaun-ch.webpkgcache.com | udp |
| CA | 142.250.69.129:443 | llaun-ch.webpkgcache.com | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.150:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| CA | 142.250.69.129:443 | llaun-ch.webpkgcache.com | udp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | tlauncher.en.softonic.com | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 151.101.65.91:443 | tlauncher.en.softonic.com | tcp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | assets.sftcdn.net | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 151.101.193.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.193.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.193.91:443 | assets.sftcdn.net | tcp |
| US | 150.171.27.10:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 18.161.21.47:443 | sdk.privacy-center.org | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| CA | 142.250.69.106:443 | content-autofill.googleapis.com | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.65.91:443 | assets.sftcdn.net | tcp |
| US | 151.101.193.91:443 | assets.sftcdn.net | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 151.101.193.91:443 | assets.sftcdn.net | udp |
| US | 18.161.21.47:443 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| US | 151.101.65.91:443 | assets.sftcdn.net | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | dynamic.criteo.com | udp |
| US | 8.8.8.8:53 | cdn.debugbear.com | udp |
| US | 34.203.144.49:443 | id.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 207.65.37.179:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 74.119.117.6:443 | dynamic.criteo.com | tcp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 104.22.62.145:443 | cdn.debugbear.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 104.18.29.101:443 | cdn-ima.33across.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| US | 18.161.34.117:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | ag.dns-finder.com | udp |
| US | 18.161.37.118:443 | aax.amazon-adsystem.com | tcp |
| US | 38.248.91.143:443 | shb.richaudience.com | tcp |
| US | 38.248.91.143:443 | shb.richaudience.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| US | 35.212.18.61:443 | hb-api.omnitagjs.com | tcp |
| US | 104.18.27.193:443 | htlb.casalemedia.com | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| US | 3.223.101.97:443 | ap.lijit.com | tcp |
| US | 34.36.200.111:443 | ag.dns-finder.com | tcp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| US | 65.8.19.16:443 | config.aps.amazon-adsystem.com | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 142.251.16.157:443 | stats.g.doubleclick.net | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | sslwidget.criteo.com | udp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 74.119.117.16:443 | sslwidget.criteo.com | tcp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.22.20.109:443 | cdn.btmessage.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | measurement-api.criteo.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| FR | 57.129.95.139:443 | lbs.eu-1-id5-sync.com | tcp |
| US | 74.119.117.37:443 | measurement-api.criteo.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| US | 104.22.20.109:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| US | 34.218.42.21:443 | rtb.gumgum.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| DE | 162.55.233.28:443 | sync.richaudience.com | tcp |
| US | 23.216.5.138:443 | acdn.adnxs.com | tcp |
| US | 104.18.24.18:443 | js-sec.indexww.com | tcp |
| US | 35.212.18.61:443 | visitor.omnitagjs.com | tcp |
| FR | 178.250.7.11:443 | dis.eu.criteo.com | tcp |
| US | 23.51.57.13:443 | ads.pubmatic.com | tcp |
| US | 23.200.196.24:443 | contextual.media.net | tcp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| US | 151.101.193.91:443 | en.softonic.com | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 104.18.27.193:443 | htlb.casalemedia.com | udp |
| US | 34.36.200.111:443 | ag.dns-finder.com | udp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | exchange.mediavine.com | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| US | 23.200.196.24:443 | contextual.media.net | tcp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| US | 34.160.55.127:443 | navvy.media.net | tcp |
| US | 54.163.97.94:443 | i.liadm.com | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | tcp |
| US | 18.207.44.248:443 | partner.mediawallahscript.com | tcp |
| US | 54.81.142.139:443 | exchange.mediavine.com | tcp |
| US | 3.234.91.78:443 | ad.360yield.com | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 35.173.176.57:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 207.65.32.82:443 | image8.pubmatic.com | tcp |
| US | 54.208.102.234:443 | dpm.demdex.net | tcp |
| US | 70.42.32.127:443 | sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | trends.revcontent.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.28.7.83:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | sync-t1.taboola.com | udp |
| US | 34.204.164.197:443 | trends.revcontent.com | tcp |
| US | 8.8.8.8:53 | thrtle.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 23.105.12.136:443 | rtb-csync.smartadserver.com | tcp |
| US | 141.226.224.48:443 | sync-t1.taboola.com | tcp |
| US | 8.8.8.8:53 | tapestry.tapad.com | udp |
| US | 54.209.162.118:443 | thrtle.com | tcp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | criteo-sync.teads.tv | udp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 34.111.113.62:443 | tapestry.tapad.com | tcp |
| US | 8.8.8.8:53 | criteo-partners.tremorhub.com | udp |
| US | 8.8.8.8:53 | ade.clmbtech.com | udp |
| US | 151.101.130.132:443 | criteo-sync.teads.tv | tcp |
| US | 8.8.8.8:53 | ad.tpmn.co.kr | udp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 3.217.69.234:443 | criteo-partners.tremorhub.com | tcp |
| US | 23.33.40.209:443 | ade.clmbtech.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | ssl.cdne.cpmstar.com | udp |
| US | 34.102.166.132:443 | ad.tpmn.co.kr | tcp |
| US | 52.223.22.214:443 | eb2.3lift.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| US | 18.239.183.26:443 | aa.agkn.com | tcp |
| US | 92.38.168.14:443 | ssl.cdne.cpmstar.com | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 69.194.242.12:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | server.cpmstar.com | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | ad.tpmn.io | udp |
| US | 198.24.167.171:443 | server.cpmstar.com | tcp |
| US | 8.28.7.81:443 | image6.pubmatic.com | tcp |
| US | 34.102.166.132:443 | ad.tpmn.io | tcp |
| US | 8.8.8.8:53 | obgpm76tt0a0sgogzhdfe.redinuid.imrworldwide.com | udp |
| US | 34.205.145.37:443 | obgpm76tt0a0sgogzhdfe.redinuid.imrworldwide.com | tcp |
| CA | 142.250.69.33:443 | e2e5da78255107782a9d1e34786b0d14.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| US | 23.33.42.74:443 | servedby.flashtalking.com | tcp |
| US | 23.216.5.138:443 | acdn.adnxs.com | tcp |
| US | 23.200.196.24:443 | contextual.media.net | udp |
| US | 34.160.55.127:443 | navvy.media.net | udp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| CA | 51.222.39.184:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 23.201.191.176:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 23.200.198.128:443 | eus.rubiconproject.com | tcp |
| US | 35.212.27.211:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 216.22.16.69:443 | ssbsync.smartadserver.com | tcp |
| US | 174.137.133.32:443 | sync.adkernel.com | tcp |
| US | 23.200.0.38:443 | player.aniview.com | tcp |
| US | 23.200.198.128:443 | eus.rubiconproject.com | tcp |
| DE | 188.40.16.220:443 | ittpx.eskimi.com | tcp |
| US | 174.137.133.32:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 199.38.167.131:443 | p.rfihub.com | tcp |
| US | 23.51.57.13:443 | ads.pubmatic.com | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 35.212.18.61:443 | visitor.omnitagjs.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 207.65.32.82:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 35.207.24.140:443 | rtb.mfadsrvr.com | tcp |
| US | 8.2.109.251:443 | cs.admanmedia.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | api-ssp.spot.im | udp |
| DE | 162.55.233.28:443 | sync.richaudience.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| NL | 35.214.190.220:443 | csync.loopme.me | tcp |
| CA | 51.222.39.184:443 | onetag-sys.com | tcp |
| US | 50.31.142.191:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | pxl.iqm.com | udp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 74.214.194.131:443 | bh.contextweb.com | tcp |
| US | 18.161.34.47:443 | api-ssp.spot.im | tcp |
| US | 3.229.202.201:443 | pxl.iqm.com | tcp |
| US | 23.199.48.23:443 | hbx.media.net | tcp |
| US | 8.8.8.8:53 | visitor.us-east4.gcp.omnitagjs.com | udp |
| US | 8.18.45.73:443 | medianet-match.dotomi.com | tcp |
| US | 23.200.196.24:443 | cs.media.net | tcp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| US | 52.223.22.214:443 | eb2.3lift.com | tcp |
| US | 34.229.50.108:443 | match.sharethrough.com | tcp |
| US | 34.229.50.108:443 | match.sharethrough.com | tcp |
| US | 35.212.18.61:443 | visitor.us-east4.gcp.omnitagjs.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | prebid-match.dotomi.com | udp |
| US | 3.208.132.83:443 | ms-cookie-sync.presage.io | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 35.173.176.57:443 | jadserve.postrelease.com | tcp |
| US | 3.223.101.97:443 | ap.lijit.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 23.219.36.101:443 | hb.trustedstack.com | tcp |
| US | 34.198.193.227:443 | sync.srv.stackadapt.com | tcp |
| US | 216.34.207.172:443 | prebid-match.dotomi.com | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 35.207.24.140:443 | rtb.mfadsrvr.com | udp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 3.208.132.83:443 | ms-cookie-sync.presage.io | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | udp |
| US | 23.199.48.23:443 | hbx.media.net | udp |
| US | 8.8.8.8:53 | www.temu.com | udp |
| US | 8.8.8.8:53 | ads.creative-serving.com | udp |
| US | 3.223.101.97:443 | ap.lijit.com | tcp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 23.200.196.24:443 | cs.media.net | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | sync.contextualadv.com | udp |
| US | 3.223.101.97:443 | ap.lijit.com | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | tcp |
| US | 20.33.69.37:443 | www.temu.com | tcp |
| US | 35.211.148.126:443 | ads.creative-serving.com | tcp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | rtb.bid.com | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 80.77.84.209:443 | usync.smxconv.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 34.111.113.62:443 | tapestry.tapad.com | tcp |
| US | 23.200.196.24:443 | cs.media.net | tcp |
| US | 64.38.119.44:443 | bttrack.com | tcp |
| IE | 67.220.228.200:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 3.232.184.179:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | wt.rqtrk.eu | udp |
| US | 150.171.22.12:443 | px.ads.linkedin.com | tcp |
| US | 23.200.196.24:443 | cs.media.net | tcp |
| US | 104.18.26.193:443 | r.casalemedia.com | tcp |
| US | 98.82.154.76:443 | s.amazon-adsystem.com | tcp |
| US | 3.229.195.248:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | sync.bfmio.com | udp |
| US | 8.8.8.8:53 | partners.tremorhub.com | udp |
| US | 125.253.89.186:443 | use3-sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| CA | 51.222.241.106:443 | wt.rqtrk.eu | tcp |
| US | 125.253.89.186:443 | use3-sync.a-mo.net | tcp |
| US | 104.18.27.193:443 | r.casalemedia.com | tcp |
| US | 34.225.40.28:443 | sync.bfmio.com | tcp |
| US | 23.105.12.136:443 | rtb-csync.smartadserver.com | tcp |
| US | 52.3.141.249:443 | partners.tremorhub.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 70.42.32.127:443 | sync.outbrain.com | tcp |
| US | 107.23.216.106:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | sync.screencore.io | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| US | 54.208.102.234:443 | dpm.demdex.net | tcp |
| US | 35.211.148.126:443 | ads.creative-serving.com | udp |
| US | 8.8.8.8:53 | live.primis.tech | udp |
| US | 34.111.113.62:443 | tapestry.tapad.com | udp |
| US | 8.8.8.8:53 | pbs.yahoo.com | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 80.77.81.74:443 | sync.screencore.io | tcp |
| US | 34.203.144.49:443 | sync.crwdcntrl.net | tcp |
| US | 3.229.202.201:443 | pxl.iqm.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.taboola.com | udp |
| US | 35.244.154.8:443 | idsync.rlcdn.com | tcp |
| US | 69.147.92.12:443 | pbs.yahoo.com | tcp |
| US | 3.211.46.206:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 18.161.34.107:443 | live.primis.tech | tcp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 207.65.37.181:443 | image6.pubmatic.com | tcp |
| US | 35.212.38.52:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | bpi.rtactivate.com | udp |
| US | 141.226.224.48:443 | sync.taboola.com | tcp |
| US | 35.244.154.8:443 | id.rlcdn.com | tcp |
| US | 52.1.70.245:443 | bpi.rtactivate.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 107.178.254.65:443 | pippio.com | tcp |
| US | 8.8.8.8:53 | sync.intentiq.com | udp |
| US | 18.239.168.122:443 | sync.intentiq.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | gta-v.en.softonic.com | udp |
| US | 151.101.65.91:443 | gta-v.en.softonic.com | tcp |
| US | 151.101.65.91:443 | gta-v.en.softonic.com | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 150.171.27.10:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | wct.softonic.com | udp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| US | 8.8.8.8:53 | a148f0354661a866a0e424880884b62f.safeframe.googlesyndication.com | udp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| US | 18.161.37.118:443 | aax.amazon-adsystem.com | tcp |
| US | 74.119.117.16:443 | sslwidget.criteo.com | tcp |
| CA | 142.250.69.33:443 | a148f0354661a866a0e424880884b62f.safeframe.googlesyndication.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 207.65.37.179:443 | hbopenbid.pubmatic.com | tcp |
| US | 38.248.91.143:443 | shb.richaudience.com | tcp |
| US | 3.223.101.97:443 | ap.lijit.com | tcp |
| US | 35.212.18.61:443 | visitor.us-east4.gcp.omnitagjs.com | tcp |
| US | 104.22.20.109:443 | api.btmessage.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 74.119.117.37:443 | measurement-api.criteo.com | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| US | 104.22.20.109:443 | api.btmessage.com | tcp |
| FR | 57.129.95.139:443 | lbs.eu-1-id5-sync.com | tcp |
| US | 35.211.202.130:443 | x.bidswitch.net | udp |
| US | 18.207.44.248:443 | partner.mediawallahscript.com | tcp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| US | 35.173.176.57:443 | jadserve.postrelease.com | tcp |
| US | 8.28.7.83:443 | simage2.pubmatic.com | tcp |
| US | 34.204.164.197:443 | trends.revcontent.com | tcp |
| US | 23.200.196.24:443 | cs.media.net | udp |
| US | 69.173.146.5:443 | pixel.rubiconproject.com | tcp |
| US | 23.105.12.136:443 | rtb-csync.smartadserver.com | tcp |
| US | 151.101.130.132:443 | criteo-sync.teads.tv | tcp |
| US | 52.223.22.214:443 | eb2.3lift.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 38.134.110.231:443 | ads.stickyadstv.com | tcp |
| US | 3.234.91.78:443 | ad.360yield.com | tcp |
| US | 54.163.97.94:443 | i.liadm.com | tcp |
| US | 54.81.142.139:443 | exchange.mediavine.com | tcp |
| US | 70.42.32.127:443 | sync.outbrain.com | tcp |
| US | 141.226.224.48:443 | sync.taboola.com | tcp |
| US | 3.217.69.234:443 | criteo-partners.tremorhub.com | tcp |
| US | 23.33.40.209:443 | ade.clmbtech.com | tcp |
| US | 34.111.113.62:443 | tapestry.tapad.com | udp |
| US | 34.102.166.132:443 | ad.tpmn.io | udp |
| US | 35.211.202.130:443 | x.bidswitch.net | tcp |
| US | 54.208.102.234:443 | dpm.demdex.net | tcp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 207.65.32.82:443 | image8.pubmatic.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 34.102.166.132:443 | ad.tpmn.io | udp |
| US | 18.239.183.26:443 | aa.agkn.com | tcp |
| US | 34.203.144.49:443 | sync.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | i6.liadm.com | udp |
| US | 3.211.46.206:443 | ce.lijit.com | tcp |
| US | 52.20.189.204:443 | i6.liadm.com | tcp |
| US | 8.28.7.81:443 | image6.pubmatic.com | tcp |
| US | 34.205.145.37:443 | obgpm76tt0a0sgogzhdfe.redinuid.imrworldwide.com | tcp |
| US | 23.216.5.138:443 | acdn.adnxs.com | tcp |
| US | 104.18.24.18:443 | js-sec.indexww.com | tcp |
| US | 68.67.160.75:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 68.67.161.208:443 | secure.adnxs.com | tcp |
| US | 23.200.0.38:443 | player.aniview.com | udp |
| US | 8.8.8.8:53 | audienceexposure.com | udp |
| US | 216.22.16.69:443 | ssbsync-global.smartadserver.com | tcp |
| US | 69.194.240.13:443 | sync.targeting.unrulymedia.com | tcp |
| US | 34.229.50.108:443 | match.sharethrough.com | tcp |
| NL | 35.214.190.220:443 | csync.loopme.me | tcp |
| US | 35.212.33.9:443 | pm.w55c.net | tcp |
| DE | 188.40.16.220:443 | ittpx.eskimi.com | tcp |
| US | 192.184.68.254:443 | cms.quantserve.com | tcp |
| US | 34.198.193.227:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | rtb.bid.com | udp |
| US | 34.98.64.218:443 | eu-u.openx.net | udp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 80.77.81.74:443 | sync.screencore.io | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 104.18.27.193:443 | r.casalemedia.com | udp |
| US | 35.244.154.8:443 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 34.198.193.227:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 74.119.117.16:443 | sslwidget.criteo.com | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 3.216.195.187:443 | sync.ipredictive.com | tcp |
| US | 69.194.242.12:443 | ad.turn.com | tcp |
| US | 185.167.164.52:443 | c1.adform.net | tcp |
| US | 54.163.97.94:443 | i.liadm.com | tcp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 172.64.146.152:443 | capi.connatix.com | tcp |
| US | 125.253.89.184:443 | sync.a-mo.net | tcp |
| US | 135.148.55.236:443 | cookies.nextmillmedia.com | tcp |
| US | 8.8.8.8:53 | cs.minutemedia-prebid.com | udp |
| US | 3.211.248.126:443 | cs.minutemedia-prebid.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 8.8.8.8:53 | intadx.com | udp |
| US | 52.116.53.150:443 | intadx.com | tcp |
| US | 8.8.8.8:53 | b7b52.playfabapi.com | udp |
| US | 20.42.182.106:443 | b7b52.playfabapi.com | tcp |
| US | 20.42.182.106:443 | b7b52.playfabapi.com | tcp |
| US | 80.77.84.96:443 | csync.copper6.com | tcp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | rtb.privacyguardhub.com | udp |
| US | 104.21.96.1:443 | rtb.privacyguardhub.com | tcp |
| US | 8.8.8.8:53 | get.privacyguardhub.com | udp |
| US | 104.21.80.1:443 | get.privacyguardhub.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 8.8.8.8:53 | js.sentry-cdn.com | udp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| US | 151.101.130.217:443 | js.sentry-cdn.com | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | udp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 204.62.12.186:443 | sync.contextualadv.com | tcp |
| US | 8.8.8.8:53 | chromewebstore.google.com | udp |
| CA | 142.250.69.110:443 | chromewebstore.google.com | tcp |
| CA | 142.250.69.110:443 | chromewebstore.google.com | tcp |
| CA | 142.250.69.110:443 | chromewebstore.google.com | udp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| CA | 142.250.69.106:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| CA | 142.250.69.106:443 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| CA | 142.250.69.110:443 | play.google.com | udp |
| CA | 142.250.69.106:443 | ogads-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | feedback-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| CA | 142.250.69.65:443 | 7ae0f0a13d07f30ea7947f2761d4915f.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | sync.lemmatechnologies.com | udp |
| US | 64.38.119.44:443 | bttrack.com | tcp |
| US | 174.34.132.76:443 | sync.lemmatechnologies.com | tcp |
| US | 23.200.196.24:443 | cs.media.net | udp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c6.gcp.gvt2.com | udp |
| IN | 34.93.91.7:443 | e2c6.gcp.gvt2.com | tcp |
| IN | 34.93.91.7:443 | e2c6.gcp.gvt2.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 104.18.27.193:443 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 68.67.161.208:443 | ib.adnxs.com | tcp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 34.160.55.127:443 | navvy.media.net | udp |
| CA | 142.251.41.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 104.21.80.1:443 | get.privacyguardhub.com | udp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c19.gcp.gvt2.com | udp |
| CH | 34.65.65.90:443 | e2c19.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 142.251.176.94:443 | beacons.gvt2.com | tcp |
| US | 104.21.80.1:443 | get.privacyguardhub.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | prodesigntools-com.webpkgcache.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.129:443 | prodesigntools-com.webpkgcache.com | tcp |
| CA | 142.250.69.129:443 | prodesigntools-com.webpkgcache.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | www.reddit.com | udp |
| US | 8.8.8.8:53 | www.redditstatic.com | udp |
| US | 8.8.8.8:53 | emoji.redditmedia.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 151.101.129.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.129.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 151.101.1.140:443 | emoji.redditmedia.com | tcp |
| US | 35.244.154.8:443 | id.rlcdn.com | tcp |
| US | 151.101.193.140:443 | emoji.redditmedia.com | tcp |
| US | 8.8.8.8:53 | styles.redditmedia.com | udp |
| US | 8.8.8.8:53 | alb.reddit.com | udp |
| US | 151.101.129.140:443 | alb.reddit.com | tcp |
| US | 8.8.8.8:53 | w3-reporting.reddit.com | udp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | appleid.cdn-apple.com | udp |
| US | 172.253.115.84:443 | accounts.google.com | tcp |
| US | 23.52.198.71:443 | appleid.cdn-apple.com | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 172.253.115.84:443 | accounts.google.com | udp |
| US | 172.253.115.84:443 | accounts.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 8.8.8.8:53 | i.redd.it | udp |
| US | 8.8.8.8:53 | e2c67.gcp.gvt2.com | udp |
| US | 151.101.65.140:443 | i.redd.it | tcp |
| US | 151.101.65.140:443 | i.redd.it | tcp |
| US | 151.101.65.140:443 | i.redd.it | tcp |
| US | 8.8.8.8:53 | w3-reporting-nel.reddit.com | udp |
| DE | 34.32.10.90:443 | e2c67.gcp.gvt2.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 142.251.176.94:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| CA | 142.250.69.110:443 | www.youtube.com | tcp |
| CA | 142.250.69.110:443 | www.youtube.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | img.youtube.com | udp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.54:443 | i.ytimg.com | udp |
| CA | 142.250.69.54:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| CA | 142.250.69.110:443 | img.youtube.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | minekeep-net.webpkgcache.com | udp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| CA | 142.250.69.129:443 | minekeep-net.webpkgcache.com | udp |
| CA | 142.250.69.129:443 | minekeep-net.webpkgcache.com | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 172.253.115.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | w3-reporting-nel.reddit.com | udp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 216.239.34.157:443 | tunnel.googlezip.net | tcp |
| US | 8.8.8.8:53 | download.cnet.com | udp |
| US | 151.101.1.91:443 | download.cnet.com | tcp |
| US | 151.101.1.91:443 | download.cnet.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | images.dwncdn.net | udp |
| US | 8.8.8.8:53 | assets.dwncdn.net | udp |
| US | 151.101.1.91:443 | assets.dwncdn.net | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 150.171.27.10:443 | bat.bing.com | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 18.161.20.135:443 | c.amazon-adsystem.com | tcp |
| US | 151.101.1.91:443 | assets.dwncdn.net | udp |
| US | 151.101.129.91:443 | assets.dwncdn.net | tcp |
| US | 151.101.129.91:443 | assets.dwncdn.net | udp |
| US | 151.101.129.91:443 | assets.dwncdn.net | udp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 104.18.32.137:443 | geolocation.onetrust.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 178.63.248.56:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| US | 34.36.200.111:443 | ag.dns-finder.com | tcp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| US | 104.22.4.65:443 | ad-delivery.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | d0353e4ea958e21cf3fca95ce75eaf13.safeframe.googlesyndication.com | udp |
| US | 74.119.117.47:443 | static.criteo.net | tcp |
| CA | 142.250.69.65:443 | d0353e4ea958e21cf3fca95ce75eaf13.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 104.18.29.101:443 | cdn-ima.33across.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 23.51.57.13:443 | ads.pubmatic.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| US | 74.119.117.17:443 | gum.criteo.com | tcp |
| DE | 157.90.33.121:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | esp.rtbhouse.com | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| US | 35.190.39.111:443 | esp.rtbhouse.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | tpc.googlesyndication.com | tcp |
| DE | 157.90.33.121:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | udp |
| DE | 178.63.248.56:443 | uidsync.net | tcp |
| US | 151.101.1.91:443 | di-images.sftcdn.net | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | net.geo.opera.com | udp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 107.167.96.30:443 | net.geo.opera.com | tcp |
| US | 107.167.96.30:443 | net.geo.opera.com | tcp |
| US | 8.8.8.8:53 | desktop-netinstaller-sub.osp.opera.software | udp |
| US | 107.167.125.189:443 | desktop-netinstaller-sub.osp.opera.software | tcp |
| US | 8.8.8.8:53 | autoupdate.opera.com | udp |
| US | 107.167.96.38:443 | autoupdate.opera.com | tcp |
| US | 107.167.96.38:443 | autoupdate.opera.com | tcp |
| US | 8.8.8.8:53 | features.opera-api2.com | udp |
| US | 107.167.110.216:443 | features.opera-api2.com | tcp |
| US | 8.8.8.8:53 | api.config.opr.gg | udp |
| US | 104.18.24.17:443 | api.config.opr.gg | tcp |
| US | 8.8.8.8:53 | c.pki.goog | udp |
| CA | 142.250.69.67:80 | c.pki.goog | tcp |
| US | 8.8.8.8:53 | download.opera.com | udp |
| US | 107.167.96.36:443 | download.opera.com | tcp |
| US | 8.8.8.8:53 | download5.operacdn.com | udp |
| US | 104.18.11.89:443 | download5.operacdn.com | tcp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| US | 107.167.125.189:443 | desktop-netinstaller-sub.osp.opera.software | tcp |
| US | 8.8.8.8:53 | 76a765192e93baa13491e1b5a3f8ee35.safeframe.googlesyndication.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| CA | 142.250.69.97:443 | 76a765192e93baa13491e1b5a3f8ee35.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.97:443 | 76a765192e93baa13491e1b5a3f8ee35.safeframe.googlesyndication.com | udp |
| US | 52.116.53.150:443 | intadx.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| CA | 142.250.69.33:443 | ep2.adtrafficquality.google | tcp |
| DE | 178.63.248.56:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | 9437326e2c7f7eab49957a3de533fae6.safeframe.googlesyndication.com | udp |
| CA | 142.250.69.65:443 | 9437326e2c7f7eab49957a3de533fae6.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | udp |
| DE | 178.63.248.56:443 | uidsync.net | tcp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | udp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| US | 8.8.8.8:53 | eb9f976d7ef67937b120d7f66fabebfc.safeframe.googlesyndication.com | udp |
| DE | 178.63.248.56:443 | uidsync.net | tcp |
| CA | 142.250.69.97:443 | eb9f976d7ef67937b120d7f66fabebfc.safeframe.googlesyndication.com | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 172.253.115.84:443 | accounts.google.com | udp |
| DE | 178.63.248.56:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | commonsearches.net | udp |
| US | 35.82.203.25:443 | commonsearches.net | tcp |
| US | 8.8.8.8:53 | maxcdn.bootstrapcdn.com | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | tcp |
| US | 8.8.8.8:53 | d2g4kcs2g0r8f3.cloudfront.net | udp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 8.8.8.8:53 | s.yimg.com | udp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 8.8.8.8:53 | ws.contobox.com | udp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 18.239.176.146:443 | d2g4kcs2g0r8f3.cloudfront.net | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 66.218.84.137:443 | xmlp.search.yahoo.com | tcp |
| US | 69.147.92.12:443 | s.yimg.com | tcp |
| US | 54.242.252.107:443 | ws.contobox.com | tcp |
| US | 66.218.84.137:443 | xmlp.search.yahoo.com | tcp |
| US | 8.8.8.8:53 | msadsscale.microsoft.com | udp |
| US | 8.8.8.8:53 | cbdp.contobox.com | udp |
| US | 18.161.34.112:443 | cbdp.contobox.com | tcp |
| US | 18.161.34.112:443 | cbdp.contobox.com | tcp |
| US | 104.18.11.207:443 | maxcdn.bootstrapcdn.com | udp |
| US | 66.218.84.137:443 | xmlp.search.yahoo.com | tcp |
| US | 69.147.92.12:443 | s.yimg.com | tcp |
| US | 69.147.92.12:443 | s.yimg.com | tcp |
| US | 69.147.92.12:443 | s.yimg.com | tcp |
| US | 69.147.92.12:443 | s.yimg.com | tcp |
| US | 8.8.8.8:53 | gsght.com | udp |
| US | 8.8.8.8:53 | r.search.yahoo.com | udp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 150.171.28.10:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | reviewed.app | udp |
| US | 8.8.8.8:53 | www.appisfree.com | udp |
| US | 23.33.40.139:443 | www.bing.com | tcp |
| US | 172.67.10.209:443 | reviewed.app | tcp |
| US | 172.67.10.209:443 | reviewed.app | udp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 104.18.14.17:443 | www.appisfree.com | tcp |
| US | 104.18.14.17:443 | www.appisfree.com | tcp |
| US | 23.33.40.139:443 | www.bing.com | tcp |
| US | 104.18.14.17:443 | www.appisfree.com | tcp |
| US | 104.18.14.17:443 | www.appisfree.com | udp |
| US | 8.8.8.8:53 | cdn.appisfree.com | udp |
| US | 8.8.8.8:53 | play-lh.googleusercontent.com | udp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | tcp |
| CA | 142.250.69.54:443 | play-lh.googleusercontent.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 104.18.14.17:443 | cdn.appisfree.com | udp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 150.171.27.10:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | tcp |
| US | 142.251.16.156:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | td.doubleclick.net | udp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.132:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | v.clarity.ms | udp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 52.116.53.150:443 | intadx.com | tcp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| CA | 142.250.69.33:443 | b3c0ab2b2ba3ea77e8b7e648a099474c.safeframe.googlesyndication.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| CA | 142.250.69.132:443 | www.google.com | udp |
| US | 150.171.27.10:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | rtb.searchsavvyweb.com | udp |
| US | 172.67.172.173:443 | rtb.searchsavvyweb.com | tcp |
| US | 8.8.8.8:53 | get.searchsavvyweb.com | udp |
| US | 172.67.172.173:443 | get.searchsavvyweb.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 8.8.8.8:53 | js.sentry-cdn.com | udp |
| CA | 142.250.69.155:443 | storage.googleapis.com | tcp |
| US | 151.101.130.217:443 | js.sentry-cdn.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | udp |
| US | 157.240.245.35:443 | www.facebook.com | tcp |
| US | 172.253.115.84:443 | accounts.google.com | tcp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 172.253.115.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | www.amazon.com | udp |
| US | 18.239.182.177:443 | www.amazon.com | tcp |
| CA | 142.250.69.65:443 | 9437326e2c7f7eab49957a3de533fae6.safeframe.googlesyndication.com | udp |
| CA | 142.250.69.106:443 | jnn-pa.googleapis.com | udp |
| CA | 142.250.69.65:443 | 9437326e2c7f7eab49957a3de533fae6.safeframe.googlesyndication.com | udp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | tcp |
| US | 52.242.103.142:443 | v.clarity.ms | tcp |
| US | 74.125.129.94:443 | beacons.gcp.gvt2.com | udp |
Files
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 11cb47637afadb9e65c2cddcd154b6ef |
| SHA1 | 7151a3ec844b0db89b8e951cf3a325d8a0af9b98 |
| SHA256 | 7962cfaed2092d883eabf8fa404e75d394f7eda853f300686628ff167ae584d8 |
| SHA512 | c46d9ad3c673ed1d5e5712ec7e39dd1a77ba2759a84243029c9f2c01385e9be3e4277db94606f3a614e9eac5b90a3cddb0195a97cbd1345d4963d26167a7637a |
\??\pipe\crashpad_4896_PUUGAPVBDDHFMRSS
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 4e28e5d560d7ef80e8d9e96dc5ca5f11 |
| SHA1 | 27d309e4dde1fb3cc61ad960dcc802d02a4dd387 |
| SHA256 | 5f54b0c54fc872988221364f0d2881835da40c2d1e58c7aa39b12b03f4f1fc21 |
| SHA512 | ec7576d626a62010534bc3f48afc3a35983da093fd3cc1cf495ab3e638b9b17bfcb660c83093986d9f038ead9e5b991808324d9094a60a0437920a44c25d296d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | aeb8b8249617e32f4440252ad4fb903c |
| SHA1 | 81d4d560085987acd9b6d260ab051a44f1f8df45 |
| SHA256 | 84b9e44aa7a9a0fe4ff31f8141d41d1eff7209d68a79c4ee08a9b0c44182e167 |
| SHA512 | d0c1aa0dc699544633c1f652a52c7d5ce3854c500d4997d02a123a038cf1a484d7cf970ea7bb4878204f3bcb84e2220ee5b8f5a8f1b3d0858b3bca0e55438901 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 91fc004cbda5c69706c1eb425341afad |
| SHA1 | a0fdbbfa9e51018fad345f3e9c956700cab9bd7d |
| SHA256 | 062b566db6621ac7973b1da7c597bfe6a28b505afcb0c22d7bafd6505b62e5a9 |
| SHA512 | c8ddf6fbc6cbac42e79522c5e22bc188d0ebb7f3bd72b057f3f7f3406bcb9bd4e200eb435e441834b233b4e078d7463e2151aaff902815ab859d4c81b9c6628d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 547c4946d35fe9ad93923f2bb016bc0d |
| SHA1 | 260982c49d7507517759ab1e68e3eabef2b4a3ea |
| SHA256 | 4fdd731d0cb9fb86443c3cd8ac51bac5109ef6be519133ae40b2c2317a9842fa |
| SHA512 | 0bd3fbc5fb5320141d8838979a9e4c53ad37312d0b7474110cf9011529b0725722b32c1e407e3087992a78ef2b5e8a089f7e47dd08a60b25048ad7a79c3ba35d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe57d949.TMP
| MD5 | 3d2b49cdb155faea6f3f707437fede02 |
| SHA1 | 492206f389f9c89dd6bbc62496e53c3d8a8f9a3f |
| SHA256 | 3fad93ac7e2c859e2f07e988a7cdd1bb5eeaaf404cee1ed086e30defd22bcfd8 |
| SHA512 | 724d16bf9ef52c26b2e3d539ea9b44737ad3c809a216420d6cb8f752836f78245f536dc51dcd36bc94706b4622889265131d1c7bbfd347920f9638d31a9f9d39 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\temp-index
| MD5 | ecc832c72f8e7ffdbf203ea3d51ecc48 |
| SHA1 | 45d876dcd0db9c4153f9fc48e067d5a9e057a07b |
| SHA256 | 9c1cfb4c58872be3fcf56b5313ade45c2b766e37546975441187bc7b13493ef4 |
| SHA512 | 6511264de8cff9715b967e948284ff3f48d51dc0283684ac94440d29ecc387c2d4d6f0726a208766c52d862efc37142d0c39405186d89cc06d7174392bbdeea1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d8fb20f1d8e7036e57bf9b44596d6422 |
| SHA1 | ceab4b8765d8063f315a3c1df80b1d6b7de49a80 |
| SHA256 | 1beb045a3ac13b3a4e2b1290fe16a6ce0a2e9579b497134c31682778932ee3ec |
| SHA512 | c52c08b3a37396b6e8a5dc7fc1072f339992376d207da882cb3392ddd9275993e1fce6979162e838508080d5a8133ec3c41cf2dc2e6edba433ee8c960ae7b8bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 95454723aaa2b6aac74673bee79f18f0 |
| SHA1 | dbb8303fda57aa3463d55653a31153cb98474e36 |
| SHA256 | fc9a5e7559f44582cf2b9a18953c3ffe854d7ec02a20570596609fc0894f8af9 |
| SHA512 | 66524674e48129e1118b64d90428543e94aa0dd519b92b5e9cb90b8544b6e87ac7edceea96a10fb6dd641bd1e2e99fa9639e804e6eb022955f177e361e3d1cb5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 155e7899b3cc48168f53b0bad73d4561 |
| SHA1 | 2708995edffef3cf1db094d8be5e2d35422ecfd1 |
| SHA256 | a8fd91b116b1bb4acf973dd6a59a91e739a149b71064df2c9e2eb38472003bb8 |
| SHA512 | 61b3107503425bdf12e365a624e4b5958599630aeae6e72f7dac80726fb5a275167b80a1942cb08e5458246ad3668e929f467291b0ef5a5ecd23e2973037c7f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\the-real-index
| MD5 | 7d2c33ab74d329b16d2c464065959367 |
| SHA1 | c3386b065614e41521a7662c1fa6470420477939 |
| SHA256 | 90e14d4e7407fe7e4753f0293d26b11a5706841de39c11c080c3cc040099cede |
| SHA512 | 6bbd2dba443540d61c06d12ce872dca19e72edd3a0cff4c7c03f3e0afb8f24c9ad10ccdb52e2fc1ffe69d7fa9de5ef26a95b1df9ada07f7240a307f2e6a33fbf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d2a4ed9b564419843c4db76ec24c9d02 |
| SHA1 | faf1dff3be453ed2ea040530577c3e657b6d76aa |
| SHA256 | dc0abb035bb8eff413f271d1ae425b4e7b31e49192561d5cefab4f3e5b203c6c |
| SHA512 | 7f816d9b37f1f5c4f9c9826378a5faca3e5f15196020406ee1acd04c054bada801f4ca6a880d91c388aa28ee028674655ae4fcb89668db70f71e3a7dd094fb6d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 3ba52f45f384e59d4f86f665e15d7b63 |
| SHA1 | 53a9b24681e1195f6d32424a566d07c146383eba |
| SHA256 | 15cb2dcc6a76b4a1d7b3d74b13a04eb3c51344eece50ca38f7faa52787fd2f3f |
| SHA512 | 5779dc17e72b29d497f46cf2580ba06eccf0532b6d2c063d07942fd5f40e0114ed8e4653cea4b28115a2799550860ea60dc8570c3a384eab527c37c525947337 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c2e8bfe8af7895a2ec96afe3869e4dd4 |
| SHA1 | b94a00ef34431aacf1784f1d485bab9aeadbba6d |
| SHA256 | ce13189e110ac4e3c1331b0b0d1b5b6da4ceaafa62b01029e4c4d552526cf39f |
| SHA512 | 05873bc43a68f32727be9405890d84af621a81df3c4fbfa3567a58bf65fe72099df5ce5e4e9b6d5048b4b521b3edd164d22af410bf2d421592ec826f298ae8d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a
| MD5 | 9b3efab1e563612f7e5d9639e64bd88a |
| SHA1 | 5abe06a4e422daacbe9c2170ff0b12f32abde21a |
| SHA256 | 9844e34e363b0e81e9c9fd8b5875c2127308627d8051c5a7d310b0b054385370 |
| SHA512 | fc276d9cc2fb6f1fefbfb4bbd7a989342e0a2aa6707158a441db50df527b02e7dcc5317ff9bf811ecaa7eb22ec1780648afc3ed3d10720da822ec0764c88fb2d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 61bb7e1e8e10ae5d2b25ad8042627b9e |
| SHA1 | 250ddb5d60fd8d7ad96923e48660f88cd9dcf46a |
| SHA256 | a03d9a19d65fad3f20a4f48bf2b3f58801c7e2d24aa3bcdad0f1d2fc587f7da1 |
| SHA512 | 9c2ad7ccf83b4533f5d3015d36ddf13ea5e54e9f0ca90bdfc1d1909f3e73686afca177af92ebc7f18958369da418dbc0ab2d491d340aa22d04b543d8c5ae03ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ea388bc4f623e448480ac63373cd35d7 |
| SHA1 | e56ef55abc71426010febf493e02153a512bc52c |
| SHA256 | e6054e728bf89fdf05a494286c962f3a123d0a5e78f82fe916d3ac20136f3a09 |
| SHA512 | 8dbead8a7fb7289fdcba18531dd1f15f6dfc2e3ee9fdbb07811edd0752e6fb37bf25239a07bd9f5c9f7b40fe54c9601053b98461fa52d45cb3478b7517b55427 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c612d02e72bd82bd89ecc77ef36ad9ae |
| SHA1 | bac7a9e073f1a042fd5b37efcc9442280b53f539 |
| SHA256 | 29adf13412df4680f1a4cc47755a8c09097752c6fe59f79503bb0a4323521120 |
| SHA512 | 985f7e0b640d75810f8ca080a63b280f5979d3fcf59d731a1f577fa66240d5dd5d714d8ec7c428d13f4b7373b3059d14e4d64e6b2bb697c27d8d7720a79319c4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 99af12b81d31792ab858036291a1f521 |
| SHA1 | 75815cffae6b703fb2d90868b6c095737c9c35fd |
| SHA256 | 5dee295443b7c03e6932c73e6b2a96135381edbdb598c1d47fbfb4946d3186f4 |
| SHA512 | 131b86b2c0221c0915ffee4a11d6194c78052430985e8767a2d56baf9125703e170397abe349b9ffc936346c9c256fe3ff23c4461be671a7b28d982df105dba9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a66244e5128c4804b118026d1f85e8bb |
| SHA1 | fcc3561e51c431ce342e0ac44808ac298b2d3f3a |
| SHA256 | 284cdcc8df5a44639232916132084b9dd6b40beec3c2f7923867ead662e9f7ae |
| SHA512 | a27b092ef33fba247a8e115263e887b0d9ebb42bb215ccda76e46b8c21a404f8b72b850df18c3c38828ad696218cd24a6f7f62ebdbeffa6b190b5a35448404f7 |
C:\Users\Admin\AppData\Local\Temp\~DFBDDFD49989195C6B.TMP
| MD5 | e009598b5cef91ae9bc7b1d8894f11d0 |
| SHA1 | 13bb30af1ff93ce0aebf10f2b26f08c5b01c41bc |
| SHA256 | aa13d21e696e8c53e7bb45eff566cfc3e2326a5bd0e3ff582eecca0af122f976 |
| SHA512 | 8d7a5e400676d850cf4de949a15c8304ddee08c603a03e5e5d6ca8bb8bf25f88718a0b5ab905518b8fb8125124471d2edc7936a2a31465c13ff5e8c19c94abb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 071a2e190b6658dbd920b6fe3d2532a0 |
| SHA1 | cea444a9ecf26f561ead1b32950f36328b788a87 |
| SHA256 | 3c0e4803d56d19819603f18edf160d89d41e6920175301f6f94db9a323a91bb3 |
| SHA512 | f318d8a0575ea2fc422cc38ca8a76ef1552ea2ac79de2ed643ddc0f07c44e87d6acab5dbf26f426455e62a1bd322ac69b9f7f1e2487a97c5cea11a4559e29120 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | 46cb7641be727eb4f17aff2342ae9017 |
| SHA1 | 683a8d93c63cfa0ccbf444a20b42ae06e2c4b54d |
| SHA256 | 944fff1dd6764143550534f747243ef7d84fdac0642c94135ab40f584520f63e |
| SHA512 | dc1b5f363e90abff5c1663a82764296922c842820d2819805e87da6da1081f1b5f2d8debc83ac34a26ce289b7b22588b022433686b19b039074ae184968b9fda |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt~RFe5b0e83.TMP
| MD5 | 9e87f23ff47dd81b833798e13738e2c5 |
| SHA1 | 2b1905c6e05eb47166ff13cb56bcc0152759c6e0 |
| SHA256 | 51482cc24c579b182f502907c4b202efe547cc49471b92973a006e71ac2625e9 |
| SHA512 | 21fc7670ea7b9037c5b485a94109dd51bc4357a959ca8924ea7a9924dd723d6522d045a53c369f1004ac2cf28ec270a5785ccde661d5bb1fe230c924f6668d22 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 29f1d4902c452060e5c8cb401df00aba |
| SHA1 | b5f96c900634bec36ea5dadff602b6233e7abba0 |
| SHA256 | 2958e2ed0deef7fa0f0bd7d18f046cd5361b457bfcbf0ce668be73539057fe25 |
| SHA512 | bb8f22ed9972a0ef800e6859cd9f00866d2943a41e07557efa56d34fbf31083e1b165973d1221a126d9ad89b326d4ccdb90014f8bcbcd467c8dc4d7dce9116a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | 77c3e06f2506d40ba9fbde47a2caa007 |
| SHA1 | c679bd83906e58ae2578dd339068628715f84062 |
| SHA256 | 82db591d25a7686cabafc61c8442f57137987f73df794334a45ab8913fb43a1a |
| SHA512 | e5f8d7cf3cac0dd1ffd5c07eaf372009147cf31268aef08a0bca21f54e4713f48a706797c2b5db7c59842294945811ea07322ea0f9dfaf14772a4a39bfe9b20a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 69981cb1d7c297b16a43741a58e008b1 |
| SHA1 | ea9b1d55d6a601ff109c3d3624e143825b1bda69 |
| SHA256 | cea36fb2d036b8d24f543070a998ea45cd2e0de2da296d7fe9d90e22716d5cd4 |
| SHA512 | 46ce8da7636fdc865a3421589785a410a82ccd47f246a17c1f155e2ca527858f895180c11cf17cf5e04fd1524eda70d62baf6de4d18de4074eda9e2c484307e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000068
| MD5 | 60edbfa4a3794b2ed47caa02e9070e33 |
| SHA1 | 9980e5f907cd2398eef883130f764f6a000e1d8a |
| SHA256 | 24504c554caacbdd167b088b9e222d269fe119764a93571c0a0b73800cd7eede |
| SHA512 | 1715b432df67bc21d5fbb993d71fd8fb75cca6a2ea2dd88aa27928dbe90222cdbae2a99c2a650fd7031c2520fc56d472f1a2ccab2eb0eb28cd1eab9048762930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000061
| MD5 | da8b8c239de585f1a1034987b9724459 |
| SHA1 | 6f081e7566658b76591abf4833e2b6b9c2304022 |
| SHA256 | 71a6ca40dc40598bb737af269c788bf9abb917e0d0eb3f722e93121f8ddb25ae |
| SHA512 | 9a740a5ed7e13faca43c5db469f2dece7259619679a0b68c6ba670219e5d4efb0e0c2b8268fb5abc1cc58986b332675582c3327af5bc12ff0eac3d1f700b00f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 314ef7c87c09254b6b913916d0eda817 |
| SHA1 | ed26df9350280ec1414bda31c1e19ff7c07db980 |
| SHA256 | 99be390ec8e61f15bf058ddb30aa3d7392d04ace33abaf6dfca103694fcc11dc |
| SHA512 | 169e2293c4ff6eaeabba77c2ca69ff35dabebb4528933feb2448244054929a84120c1d67b8b9c9878d4f01dff09c992cc0899c07553e5627462dd3922cc72ffd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\the-real-index
| MD5 | a45880287df80bb5e668963282fe206f |
| SHA1 | 9fac9d74cde7b36da65138862235acd3292c7056 |
| SHA256 | 23d9aee356183592b39f88f4f6d0d17570dc38170d4f1875ccf32bb147b0e715 |
| SHA512 | 043e813f3550efdeaddf93eb48b037d9eb40b2577cc41c385a704137fbb89afa2b0ca7e08136b93bf4d05c420ed718051603d45591a0b0d11668caebce2ce795 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2a08fc40c14485eaa5928dfb6c3b9d4a |
| SHA1 | 7231951b242d95b9fbc461b24704c4e469b629aa |
| SHA256 | 13613a31d3e2bfd33178950e213675b66a78e988301b451b1b918facd23ab992 |
| SHA512 | a08c5742063f70cefc948ab9046538af4a90216151512787b44ba8d5d64fca8b7584c472a9dec1c66f8f6878a12066c8165b979488a3e4746f9b90e746b914f4 |
C:\Users\Admin\Downloads\MinecraftInstaller.exe
| MD5 | afc010d82c412d72c66f51768671a976 |
| SHA1 | 5069c9d61d180af0ed8924cb951423fc4ca74511 |
| SHA256 | 0fc1ded9a9459789b76104275682e603868181a0e1928ec0681810e7c8e2bf17 |
| SHA512 | dac5da0f57c4156fa042aa34e7b65af457052343def137f4497d66eae4c755ed592e83c7546af04d6457851fde77cb4b19c3ab9b2316bd48620e68ab287ff020 |
memory/4640-1433-0x00000000002D0000-0x000000000232A000-memory.dmp
memory/4640-1434-0x0000000006F30000-0x00000000070F2000-memory.dmp
memory/4640-1436-0x0000000007B90000-0x0000000007B98000-memory.dmp
memory/4640-1439-0x000000000A960000-0x000000000A968000-memory.dmp
memory/4640-1440-0x000000000B010000-0x000000000B048000-memory.dmp
memory/4640-1441-0x000000000AFE0000-0x000000000AFEE000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1e70354b4d86fddb71cedea6fc875d87 |
| SHA1 | f7d4459a9bbb3d23af44cec7131892b10c219d54 |
| SHA256 | 6ee39ac93af7a3e4b79027346725ec7f89c0674ab3511613ed83dd641b798df3 |
| SHA512 | dffe9af1f8a3b6fd45b48753985059d1e3c86ef719c70e9933f083cd79b7e2d25515b0b26e180fefd24e24271a3e64069f796fb49f94f074403312b3d0bf8a66 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047
| MD5 | b614bf890d3524d3e6d48c24e609ca58 |
| SHA1 | 1d706c72b243523ff266bbe3be4e2afe76f1b016 |
| SHA256 | ab08dff6cb101ddae4f03888763bcf1b1d0d40d089a67422f9046be29ae6ff4b |
| SHA512 | 6c28be55926c986ebcd98a4fe693fa5e2bf20060b809a5b30d087482d6c153610220ecc3edfd15df1759337737e17e1cc91307017212c5468ec3640fee69519d |
memory/4640-1519-0x0000000007770000-0x000000000777A000-memory.dmp
memory/4640-1520-0x000000000D410000-0x000000000D436000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000050
| MD5 | d37969d67bb21efdfbbf44387651d68d |
| SHA1 | b5fbd15eca66a44c7c05a661607dccc3f03875f5 |
| SHA256 | 63275cb1ebc3c72a15af16e5230a316dcfa36c1e5bd7cd7709b0f35c60ec954c |
| SHA512 | e4d73caeee1fe7a7ac692a1bd94d22e897bab129d5301737230e761ebed42ba75f5339688567a861f4e321ab416c4edc0a2f6f4645232e3f1b7ec988319d9319 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000058
| MD5 | 1bf4ca63d97a7667eb3528ed2ccbd71a |
| SHA1 | 8cbfff0227b1e1d53ebc1e338bd3c85418051747 |
| SHA256 | a5305b0e370b4177bfd5f11abe9eb20eef7f65f52b23f7a89edb9a04d4158889 |
| SHA512 | 202b3411bf32e6548c1f5352ecae00fd8c5c6aae5b6144b22c86b308986dc16b6f0c9828f740a488f70e07653187814d971685eb5ed6d05516e3dccca63d381b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\2ec13a4f2e0a15e1_0
| MD5 | def636009e6a333c14423777ac43284a |
| SHA1 | e39ce6e49069f0f64c4141133b43aa896b9cd70a |
| SHA256 | 45136e1117b8c207fd8bfd552f9b475364ffe6435a6ee1d7b884750c43556de9 |
| SHA512 | 96af65040950ab4d9921c20c965e8961c3b4f205719d6091c514d0f340dbab0ea7679cffbc26db609444c8f2aa4d100cc0dd41f8414d8f1e5caec95e8c6d99d2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006d
| MD5 | 185c20b01e0294206d1a7de0d830f1f6 |
| SHA1 | 80dff910431843342cfffb039eb75eb8e1db892b |
| SHA256 | d0bce31c6cd1ed4c0a1e259ad29d0764bb6a11456c297b00df09ba42dfb3ff47 |
| SHA512 | f4eac9fd451ee7ed31e8f578c88348b45c45752a904631b462959743ebbf1f2b6ad698d0fe5137752716187e14d54711b25df1c20f6e97f279c73fd95bb3e8a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000063
| MD5 | 9c6b5ce6b3452e98573e6409c34dd73c |
| SHA1 | de607fadef62e36945a409a838eb8fc36d819b42 |
| SHA256 | cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc |
| SHA512 | 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000062
| MD5 | 29cfea1aa6929951a9279f0cc62006be |
| SHA1 | 953b008b411bbf77f4df496d861093e5dcce9180 |
| SHA256 | 3ab04f54a7aa923b284bb02784047d1458fff35cfbe718955c987f959a986741 |
| SHA512 | 97c47c4de602f5a41cd10bb89849e23fa9d6c715a75a19e13040a09a08f6993aa1304655c6b2b3357d23418774b2710c1c34296f3f1b894312e891aa375cf965 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c
| MD5 | d161cd2797e0aa59f82b89a010a5b17b |
| SHA1 | 8cc18164d40c34859408468809598588ab8b704a |
| SHA256 | bc8185d72ff6c073b95043102dfbbe05249f033903da958cb346aa01c3984476 |
| SHA512 | c3dfacfd6293a54874ebed6d7caca3b83522ab248bd19218f70dd6c06d05df928d13b17919d45d45c4b2c8ac841162b7709c19c39fd8780aae4b89698672d2af |
C:\Users\Admin\AppData\Local\Temp\GamingRepair.exe
| MD5 | 934d1cfb2330920f5ca9033a3a93eda3 |
| SHA1 | 4b78508cb8197e1369aa87ad6c07388bbc382e72 |
| SHA256 | 5730682b87bf48c341a14779a20602cdfbf0bcd916901a0837cfa40041fe9963 |
| SHA512 | c0af09ffca0c42bd0f9f8edbd3158dcc80a834f1bcfdadec93fed8656d2741870f08976c89f63446c223ef424a5f80c8135511dc58c82dc5e57a4315ad52f22e |
C:\Windows\Temp\SDIAG_285aba5d-1aac-4952-892f-23af2061b622\en-US\DiagPackage.dll.mui
| MD5 | 84d58b706a4a16e582a140f72110b7f5 |
| SHA1 | bb7a3f254dde61f948417eabdc5a0883d102d873 |
| SHA256 | 4b012aeaa40324691c6af926d5bb27409232fe8c484fd295d64925fc36f31060 |
| SHA512 | 9f520c9d00586d9fb8a87b904d75616ca18b6dc3badd1db71ee85236a6bba459d56eee6ba29ae8cd2139fda8e5df961b232ad87a17fb4dbe61dd4422d804c508 |
C:\Windows\Temp\SDIAG_285aba5d-1aac-4952-892f-23af2061b622\DiagPackage.dll
| MD5 | 458bc0d439cb0d955120ae319c6ed91b |
| SHA1 | b8899daffcbf912462d7e089d126d664c1a40216 |
| SHA256 | 9454ec899ff78ff14c4c5137ba23d99dfaba079c629afd790640d0f07724201c |
| SHA512 | fda4a2641db70fabc10d73dc28dc13f3b85140a382e032fa7a46abd5eb72e076f96794ccbc0f344a0cc88222fe27ee527a3587eed286e3e3db338824950369c0 |
C:\Windows\Temp\SDIAG_1da73365-3cee-4332-8630-07b00d3e2d52\en-US\DiagPackage.dll.mui
| MD5 | 2ad9d1abe41ad048186f196b58fd8e9a |
| SHA1 | d9c66f6ef89ad126ef2bbb36e0bcf6fc8a0e34af |
| SHA256 | 9b9acb69e01f79160d368cdcd8a4dc81f18da6398f920b6f663938171f5f718c |
| SHA512 | 4c4e1e5bbe173dfd37c65fff64a029883b2f719a360a9f5ee0772b304a518839605528b97b1ac0319b79a6d7f284767ad6c04b3b769559e2b14600c467947d61 |
C:\Windows\Temp\SDIAG_1da73365-3cee-4332-8630-07b00d3e2d52\DiagPackage.dll
| MD5 | fc7504df42668c2918657d1b9a3102c9 |
| SHA1 | 5f9a70a31678e2e8b9a10849ea8657702d0cb53d |
| SHA256 | 159c4d4621f4ce1f4da14246401d85a00b40c0090fd0b2640446a896127ac646 |
| SHA512 | c844f9e5ba72eddc6aca73e09214bf8372ee5676124077983b78b10b9830a5e5eabd9c9fff2650858836f995ea79b1f0502609a428797b838ac7cda3f627c0da |
C:\Windows\Temp\SDIAG_578e84cf-6386-4fa0-8e95-e9158257d43d\DiagPackage.dll
| MD5 | 580dc3658fa3fe42c41c99c52a9ce6b0 |
| SHA1 | 3c4be12c6e3679a6c2267f88363bbd0e6e00cac5 |
| SHA256 | 5b7aa413e4a64679c550c77e6599a1c940ee947cbdf77d310e142a07a237aad2 |
| SHA512 | 68c52cd7b762b8f5d2f546092ed9c4316924fa04bd3ab748ab99541a8b4e7d9aec70acf5c9594d1457ad3a2f207d0c189ec58421d4352ddbc7eae453324d13f2 |
C:\Windows\Temp\SDIAG_578e84cf-6386-4fa0-8e95-e9158257d43d\en-US\DiagPackage.dll.mui
| MD5 | 44c4385447d4fa46b407fc47c8a467d0 |
| SHA1 | 41e4e0e83b74943f5c41648f263b832419c05256 |
| SHA256 | 8be175e8fbdae0dade54830fece6c6980d1345dbeb4a06c07f7efdb1152743f4 |
| SHA512 | 191cd534e85323a4cd9649a1fc372312ed4a600f6252dffc4435793650f9dd40d0c0e615ba5eb9aa437a58af334146aac7c0ba08e0a1bf24ec4837a40f966005 |
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_z0rfe305.moh.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/5004-2200-0x00000172B2300000-0x00000172B2322000-memory.dmp
C:\Users\Admin\AppData\Local\MinecraftInstaller\deviceId.txt
| MD5 | 678f4cbbde3c4d7685d4a4dec7680f20 |
| SHA1 | 142c2a46fbd8f57db3faca391d8e583ec664faa1 |
| SHA256 | 1ee263e9e6f7692f2b27524623c35ddd20db222d5d513a1bc401f806d6bfbab3 |
| SHA512 | 41540226163b3118088c4135de7af260f5ad33f060ef434a9a250ee53b25c90b7a928dbc1257f8853a6001aad8f5c8547c5fc6e0285aa0c0cb79ce51b02f2c08 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | def1189d98a3d0828245b629cf0b2471 |
| SHA1 | 05663fcbe8eb9f687d5f5cd221bda7150016ab88 |
| SHA256 | 506cc84b041e4899f77401708281d5954fa4da5520a916612f51015f19360434 |
| SHA512 | 6db207413cdddd625d46a65b8233b39a6f2be7a337344719a5b25c772e05904c308a00093a5e4f568f048c9733b027fa2ebcdd163c816250c373bba097d31ca5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.techspot.com_0.indexeddb.leveldb\LOG
| MD5 | 1dad998b11e27f86156770bbf1545aac |
| SHA1 | e94f1026dc81d94dbc90c21722c3a009f95c5b5a |
| SHA256 | 5e442a0ccb8a59e59d21591128cfdb94931996da01201db69f7d9450942565c5 |
| SHA512 | dc3e1550aebd9a52d69360e1a7de9ddfe0990123fdabd191e9b939171ae0153adcb1f176438f556cbd29c9a9295f301374f786dcdb45b967797cd6064b88a898 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.techspot.com_0.indexeddb.leveldb\000003.log
| MD5 | 69b2cb85f84905f61ecef84d4a00fac5 |
| SHA1 | b4109c8adc4752f9d6098e1425d90e46dc10e93c |
| SHA256 | 4e9e95dd53e748a3cc36f9199aff1c693009dfd3958d9902de6fe15b99632692 |
| SHA512 | 001409a616779c18ee0ef5cc5789b80d14cc9071597f0ca60b2e6e31c9af7409afd9b838a5a7f720fa419ec8d837c7cda4fb6447104db54c1e73e11e775d9f09 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000064
| MD5 | c26ad11757547cd5b46db74c274d65d4 |
| SHA1 | 9667d3b4f4c462372c161fc2de06902d8ec260e6 |
| SHA256 | 75252c4049b344ea15ce809ea54ab5bde96001da22710d21f5d5470aed52be39 |
| SHA512 | bc9b7560b4e44741e37d44d26c9cf08a2eea2974bdcea232a0aaa184f2dc6073fae44c2512e049070563956df5f4444a722b15bdb597c9ae1306a62bf2c2fbf2 |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\ResultReport.xml
| MD5 | 9a51a4f4fb34e8a50eaaab6b07e7830a |
| SHA1 | 25c0304997c57270415c0a6910f4dbf2e4698cce |
| SHA256 | db02087ab2c48b708b1b12ad22141db02247e06693256ec14873dc4407aae629 |
| SHA512 | 587f6b167e2d41ca3d9d046840fc8cf943ad6e9180b003680f4762a2975dbd7f758eab4063f2755d646c0ea6ed67eb9610a035b101489fad4059fc58ceffb79a |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\WindowsUpdateDiagnostic.debugreport.xml
| MD5 | 1966a23dcd5a42b838147b50255eb392 |
| SHA1 | 020ee322a22c54b5a3cc199350040cb220a1b7b0 |
| SHA256 | d000403880d5fe92f95d5aa52b25b977c7da2cecd4b43449e244e3244fc6e569 |
| SHA512 | 6dac369e1e0c0e2f68fcdbfe330fc65e0f375d3f53221be9720637c12a354f6b730a9996dea536b444a1d025b88bce571c639053cedaf7b9354d543df9e2d729 |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\results.xsl
| MD5 | 310e1da2344ba6ca96666fb639840ea9 |
| SHA1 | e8694edf9ee68782aa1de05470b884cc1a0e1ded |
| SHA256 | 67401342192babc27e62d4c1e0940409cc3f2bd28f77399e71d245eae8d3f63c |
| SHA512 | 62ab361ffea1f0b6ff1cc76c74b8e20c2499d72f3eb0c010d47dba7e6d723f9948dba3397ea26241a1a995cffce2a68cd0aaa1bb8d917dd8f4c8f3729fa6d244 |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\BITSDiagnostic.debugreport.xml
| MD5 | bd389cdf7b2f1b811f28c7f935948c89 |
| SHA1 | fe0a4a3853916cfa8859b26784a8369aa8a9bfd0 |
| SHA256 | c72756b1c739ebe58c2332797d140dc3736b52c044c46127c4c3a055d7086564 |
| SHA512 | 60f414768cc73436a4c27944f5968862c6ca8c62acaf9fec8b32d3366c714ed70320fb70f394142137297e9cebfafe5ed3686b7368142378d402e209b412da33 |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\ResultReport.xml
| MD5 | 664edb383a5cc9efdc3f7b535eadcedc |
| SHA1 | 75e622512a814e4b1831c533d96e456903d99481 |
| SHA256 | 58129a70fc62bef4a5a08e92e824d9cabfbba6eb0388bf1a43fd012a48cb28a2 |
| SHA512 | 8fda1f6d7b5ec1e559377bfcf66c559d09fb9cdbd95a9b1be6ed6ea1d6711258b362fca6b65048acca9faf7b30a902bc152e1a44fc83322d9dcb8f9b516b39c3 |
C:\Users\Admin\AppData\Local\ElevatedDiagnostics\2560293460\2025070411.000\NetworkDiagnostics.debugreport.xml
| MD5 | 5af813b1e79fb47fd362cabdd262b906 |
| SHA1 | 2c01ffc652e42b23b13e07f41f07272591238bd8 |
| SHA256 | 3a79cbb3472a6603fd26a1d77a35d304811e1eed98349b0e906131dacb40efc5 |
| SHA512 | e1071bbf336223986381f8419de8db830447887aee29bd3fb26a6b6dce261f423e64064cb8e1806b36e25120beb7080a7828e138397baae4ccdcc55c9dff5b15 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e1e7ec7d6351dd7829a6ca0a38f5b6e3 |
| SHA1 | a6a255af458a8cb28a3e266ed77bc246950d1e3b |
| SHA256 | 4d276a9790d01dcc2e650c16c723c79380d7393ea05490ae5949cfd69ded6a19 |
| SHA512 | 75b7433258eea0fd30da80f0eb0bb11f1d9f7309c6dc3cc35622e0d7c5b51accd987e438942fc15403a1af0c35a28927facfa0efb80357310dcb08a02fb88d21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040
| MD5 | a645dc223ed0ac91de6febcb720c24d4 |
| SHA1 | 8b35130d7347526a42b2e6bebd69f2c24601da16 |
| SHA256 | 69b07064c729c536d7566950499149f97b4d72657680538d34bdd7baaf006b5d |
| SHA512 | 4c6c093234a8e4398b44810b401c0a54bdcdbc4cca7ec1de0fc7b3e5a1c1e34d8198557217e074a15344352c82609f86cc6786b3e170376610b64aad01bd74cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a2f13bd1a09491217aa1ca94161dcde7 |
| SHA1 | ec6a1d6072df57b3d98a77d328e809c85acf1750 |
| SHA256 | 136188ac2b075accaa42d5443cd5cc33b4440808dc6ee45128138c65f22b651f |
| SHA512 | 90f1857c9ae41d242220c123611b0b8b3b9c4510ccf26484775cd49b323e6e21c2ed35b2881ab7cb318c7608ac195a1397bea1f3ed348c4c7827bfd8f1c2d846 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | 73027ab744525c5bd683f142a99fa5b1 |
| SHA1 | 5bb764eeccb18b939066d2abb800030dca930132 |
| SHA256 | cb514a605609a53de6347028bdb972d9b0f1dd241aaf9a5fc7674065c55171c7 |
| SHA512 | 34759ba5c29a31634d3d823d2b4bd6c8e4fc28a6fffc5c00636f249f0b34365f438c154431d61af5657357fc56973c733573328382fc2e7f9cd9c7b629c93cd3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5353cfad79640a4d9b5bd67fcc60b14d |
| SHA1 | 613452fd7c787d658344249549950628766635d6 |
| SHA256 | 9eaa2ea1b5356abb9526d03d5ef36b94e5fe451156e52efb8dfc40bf7674e11b |
| SHA512 | 633982ad45c6b8629c45886d5b75ea58ba807e4fab02fc9258ceebca12a09c67e04ea45836520f6c6b2dc8a480b11d450b439fc33fff61faccdccb7fff533e2f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | 029c0000b248f8ce003c60bf82085814 |
| SHA1 | ebde73d5a5dea1a26122124ff75942dfdce6a85c |
| SHA256 | 9f71348a59426cf4ae903c0996dd07e3a88e4a95b9651d1d24e4a7c0bf6c68b6 |
| SHA512 | c0b678d49002623072c39e438aa57e8ae60dcdb2f640b0f29c964a8bf5482317b4a536945ef7098795bbd2ba618d5678292ce41f879fc34125d8fab8d977ea3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8d5ad509b77c5cc64be9ed3299b42360 |
| SHA1 | eff92337cb53a0e7ae1f66b86cea2a7e47d021ee |
| SHA256 | 11befd5df3499a35d2d478434c501a645d1e335535ffef79564deb447e8785a6 |
| SHA512 | 24f44fbbad5ddb1b8e2173ac844c293fc981463dc89a92fa7ba12644637f554180b169c5aa616735df33f8252763000fb5621c26d9f22cdc0090724497cf22d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\27f0231945134e1c_0
| MD5 | 7ddc8e5f656b8df040120d87eb6659c7 |
| SHA1 | 89cf78f85fb04d9a5ae918b0c76e067f42b876e6 |
| SHA256 | 0a6a354fd5db6e80292c2958e30cf6537ae6045a61c916149d256b256139a66e |
| SHA512 | 73155b6de44a47a9d2d25ae0459d4eab282c528b6e57307acf0a1510c8c649dc5e4eb44f9756908c0d15a074c1488cd2cea1418def13800c232539a8e6726ca4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\3f687305080cc2fb_0
| MD5 | 0bb15f5c97a56dfd3a21c8c68f4e0894 |
| SHA1 | 44a2dd65add23f82b92bb0a2085c89cc03b92056 |
| SHA256 | b46bd56c912ce92d9985eb07ca31e474233663f0d9b7461c285557c13bd7be5a |
| SHA512 | d4f682cea4d84ff97e75ceff467b219f24652decd0b6b64e7d6ab36f709e883665a0a9717e9206f2dde4c0752b7868aceda8c9623c9cb45c8c096d9a5a770dc9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fe8b7ca011cc9644_0
| MD5 | 85dce095d66424acb4fdee1cc712f165 |
| SHA1 | b020c3c8be0aa46d97b907ed59099ba953f88b3b |
| SHA256 | 904e502f424287803df7e1e547ec94c237ef453ebcdc5752fd5013198e558fb7 |
| SHA512 | 8e70db9764889f05910fd9edf6eb07127ea4240ae99c805e35e7ae1d56c77fdc09349b116a2035773783123888d3d1a8a3ca459ae4b458dd2c4f2a73e9d0d802 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9de2d51948a539678ed65f62995766e0 |
| SHA1 | 6430c0e7187757fd687d325332d78f72a7667192 |
| SHA256 | 8eb7389c7ee4df87da2c5dc9395b7e0595a3d30d5300e04e38d56f34b7f39437 |
| SHA512 | 1748e5aa6d28dc94c0ae9670728427ce98ece1a9a95e361bcacaa0374a26dc979d1f1fd65da2318b4c18db5b5ba3d91fef9c1b8ce6704c2e7e6bd62a240c3f2d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b4
| MD5 | baa47ddcc38857104f9c019772ab1070 |
| SHA1 | fc238ebf028e4082940e514cce1fc96fad19cdbd |
| SHA256 | 6538b3f749d2a9ad7cc22cf5fd89d8f3602f74084ddd0faa34c00404cb9a2f40 |
| SHA512 | 05bad35e414251e5ba536de3e0243cba5ade896e7dcb1f429f4966a198488d2cf51de37538451a7d83904231535db62f6b2bc1dda301a740290fc1fe56cac5d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bf
| MD5 | 76c9b66927ce87209c22e2755da66b87 |
| SHA1 | cdbec59b112656e0fad99ce200bd139cc9738a6d |
| SHA256 | 9afa9bc0fffd7ef59a11982be0fcb5426247f08736cd87a74a97c210347fcfa2 |
| SHA512 | cfbf418c58212c07ff7057ecb402ac0cbc7a29f5dc3bd6ed88e7077a12f3a1a2cb5baad0a00c6f6ddcb445b62f70d4c04240b320281f1a2fc5a30d32e7b3f610 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\33c2499faf71df24_0
| MD5 | 621657dcbcca96dc963f958753f46a32 |
| SHA1 | 85e99ab38e5acc2365715fc9c1e6c7463b3355c6 |
| SHA256 | da3e01ee2075b093939d68f9af204740f8f7235607f547df4942119ca7ef0713 |
| SHA512 | 1c6b4028147c485e5a8a9dd00e97915dd9febe93ab913e59c8e4e790385689d81d077ae00e8499570c8e86f5762d820a0e643baa49692c3ac3e319b27d9a1cd6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\135a9e73b7a29232_0
| MD5 | b3adb4b9ab8cdeab739a951ceeedc522 |
| SHA1 | 067241155f299f88a31463e4f8490f2f731b1a8f |
| SHA256 | 8bbec3c2652da811ba19434bc52b64407dd3040c9ebfcc8c7d98548c34bdf306 |
| SHA512 | a5fc2d87adf1fcf31aaaee95dd88862c47ed4fd4a3f98aa9429b1364bf9100d73dc0b04c5e17e5eaa6aaf9d3317346316c8f1ae6d4847fac70a522376cb0ff0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b0
| MD5 | f601a0a31a8c619f26d8540662c86322 |
| SHA1 | 51a9832535c3abc3ff9db2bd196ed68c920dc664 |
| SHA256 | 718d05a871ff4a016b093da81e0a7e0a632132905eda402801dc5b8e6cdff8d0 |
| SHA512 | cc2af0fe4e7e325f310f3d5cdfc139a9536fea9ed788512963be777f351878e992962393a8f962672f9e133111f4906719eb335ea36df6c3911df7c9c3f7301f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ac
| MD5 | 61bfa5dc404663db8c199182d540bf00 |
| SHA1 | b381b2e1b2a970d996b669ce342d2e2c6b95ea6b |
| SHA256 | deeb349b114dc2ed54a4fc96be223b35492ec2da777880d942f4440a84552d50 |
| SHA512 | 07595e229518e9c54568f1467d96f6cfd75d307a9141953f568f2ac0143700c982cb94fb4fec59fc1877a5c88bb8f9bf49f141562bfddd8f2a6af200d414f057 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ae
| MD5 | 1a8d2e6c071e6ebd41e2f8851dd4d912 |
| SHA1 | c12e0c8de14b218dac205bedec4500436238a31a |
| SHA256 | def8db3d0393b41c222c29e372c8ce57f9696a7afd5e93ccbcb225e4277e6b96 |
| SHA512 | 4a304a05b7fc18c93ddfc3aa2a4473b7145163c756bcba010ec8549dce90993722841f41c465a1c0d717774a6e394322a949d78706c423a0a9ac87fdff175fe7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000af
| MD5 | 2d73404268c3157c887688c0a2e72d38 |
| SHA1 | dafa0670ac90c0108cf2a6a6c174d3318771396a |
| SHA256 | 40639b93cbeaf38df3fa161ed5a98ac5dc6d6e309f611f7c8791e3d348020cf5 |
| SHA512 | 3509a0858e6f7103b478d7739ec966c1314d5050cb54fa0a18351b8476fd64df52f5520e18c2f08c9523905bbe6555539677b446871a6aa41ecf33c105081ea3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ab
| MD5 | 68c477c4c76baab3a8d1ef6a55aa986f |
| SHA1 | 4af50379e13514558dd53d123db8ea101ec5e24c |
| SHA256 | 0364d368abf457d4e70dbc7a7a360f3486eaea2837b194915b23d4398bee91ac |
| SHA512 | 92b34fe3b7f82f10cf6de8027ac08f4a5b8764fb4e0b31c93da6e3d5bd08e0bc83b79fd70b8207a1066b689583e0b6976fa3c885b0c067ea343e6f2031d55d25 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b1
| MD5 | 38c1aa28ddeb3a687954475438dbd19a |
| SHA1 | 70629cc4ad7624e426ebf8c52c774a6df1416da4 |
| SHA256 | d956f966cde5a8f2b639cf5984e89b2a92ffad788680874255ecf6c93f0e4b49 |
| SHA512 | b76be962af319f8e2f542e8d273278d90de23ebe5773afcd972850520f9a026101aa36e0423fb34b3fa2ed9e28b4ef0176f61320286f6401d54b39baf75646b2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b5
| MD5 | de97cbc002c1b78f777a0c567cc3700a |
| SHA1 | f7996e54c8801deff5a43ad9828d25a7a4f8a097 |
| SHA256 | df3f37434f76ebf92acbec3824734988bd32beccd1d11c9475945b9ada22746c |
| SHA512 | 69751fdeb96cffc0a22170c7a4e5c2237684c3bff028098fbcadae90285e03f701807edabe23b7f5943a083a7a50c15e7b88d42883a5752cf6e839f037406f38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b2
| MD5 | e15baffe4c6774926d8edb70c6462dd7 |
| SHA1 | 3abcae5dc4dc62e34c7c6159e1061b6fe39df1bc |
| SHA256 | 761f2f6f1c703497879dcacf22cb4e9b535922130705926a8e0d837b921f8ff7 |
| SHA512 | 6d483d58644df8a1e42de30e7c7a351baa3a82f85386b13d0546858e54b96ea2e7c53728f6aba136ea0218fa815b75435647592a074f91d9b0da7842a5db72e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3
| MD5 | bbb6123487575d0a299fa9abd7c47779 |
| SHA1 | 7f5024eafd7431df0bdd464fec20f2d46a2028a9 |
| SHA256 | 673dcc289d097d9de4c84322c84301f812c8310a213f3f751ac4e16a4eaf7a6e |
| SHA512 | c0cab1cf4f05c4a100a07d5018f6e0cee41b570629ab33a8104a1838a995a996038ba8dd6d121ccb43e7c0269094f022292c92d83b16b462ecb923cc7239012d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d1
| MD5 | 214d62ec365492f0f183dbd59bad1fc6 |
| SHA1 | 0f493cd1f70a1a3f44f558abddfd01edd96fb0fe |
| SHA256 | cea593d905539843f4a1797b5e07276167140ed5da6dc84bfdd8c5ab0a99fddd |
| SHA512 | e3d48a4e0d97decff0724e28742fce95af1f3111d1a04c3f53e46d295ea807fc73df090ee302e1367057047b713f5c02185669f17f465f7ff0346aa3b60ad0d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b7
| MD5 | bc9d2e9faae72cbe94a9c846416f9495 |
| SHA1 | 8f0b0cc079ed2e98744d115922b2c0f388f3fe30 |
| SHA256 | d9ab76292e9cb8bfa5cc516c01c582f160f4e704968784507b43d97cd94a2dd4 |
| SHA512 | a8ba2a188a203da8313df778da36c0a2c9e69ed759d898dadd933b53105b0c089879118bf263b8bd17bfcd3e559d98006479a51f27af301a4a3f1b719d8a8168 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b9
| MD5 | 237200f90f9c62a57c8990ec93cd079c |
| SHA1 | 8e3640ce40836cb7ad10c43580056d465f94f9c7 |
| SHA256 | 30837226525a07f1e652ec126810af4f1793fb8853833c8d697eefd0ff59c3f8 |
| SHA512 | 55777b1646d51dd216b6c9bf54523f185c4f403835be1d1564b41041f837312690b40f445dbff6cb4d4684dc3098b8a2e896fb8f179e2d41e38bbc4ada711a76 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ba
| MD5 | 5bab74339097bea111ffd65d1c140781 |
| SHA1 | 72f45aa7788d8eb52794854f67ad167190d46219 |
| SHA256 | b04b78f27f742a27385e7ed61df695d93ac68c87d9f5fd13d8eac4e15f901e0b |
| SHA512 | 4b0a08ef74747694446658b1de2ba8a2f4f644966238cce723b86f5bf192fffcc619abee02ca9344c809c65ee1075ef05ae1edb681b6abb5878b77c84997fa11 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bd
| MD5 | 44eaf31ad21a74a31ee922c7cbd94906 |
| SHA1 | b21f749c96cd38546cbf78fd5297de90ca45f886 |
| SHA256 | 71f69c43f7a0017e4a4dcd1f67e1f80d00f33fc99ef7e441b072b21402042ab0 |
| SHA512 | a1b0fd1d2d4e38e71aed85eff9fdd19849048e16c84a099834939a2bedba5af399df4fdbc380cc9963f2095833658ba2f7315edbfd0525822b00f3507b1606b1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\the-real-index
| MD5 | 2d14fe5590f1566eac5520fca869fcd9 |
| SHA1 | 05dda742897ade87470997f54c56f138f0d280e5 |
| SHA256 | ccc054b81b31d7f010adc6ff430bb97e00e142bba1024c8dbba63734d633d0d5 |
| SHA512 | 4acc274169bb91f7e69ad6f9673db979733a09c5c99310ccd92c361407f28717e87b6141dcabd9af49a72f0f4d52874dd5dbc1cc6545a93ae2f2c592a6217a01 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bc
| MD5 | 6c34fa754d99206a2db21a713940a213 |
| SHA1 | 34a69a7087e583ffd7a4e30ef5393e71ed9afc3e |
| SHA256 | 4ba45562199b00536f3bf801b00364b3604dfa98162fc7e5419d77f821e9b734 |
| SHA512 | ebacf7647e4b0a03efe027a16834ace825add1c7d3fee7ddb3f1583c83486be2091affefffd1c4794d86a61df3f447d5bee870df432b734d8b544b879e6c46e7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000be
| MD5 | 5a1d6ed92c946144742fe23d8dfb0bcd |
| SHA1 | 5ec8fe70ea54089a41eb2d3bdc81866e0a0a9ccc |
| SHA256 | d9e04a7fc0d0929ac57fdd05270b1c0c3fd271f0e5556566b8f012b54d791996 |
| SHA512 | c5273bf42b6c829b3be377459720fec01be5a6e3b8a15b48f2c0888f4eb7771fc0338a18cafbc2260bb6c5b72b6e5dee188d534b8593e078c07725a54edc6ce6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c1
| MD5 | 4dfa018dd1e73c839561b9962166610f |
| SHA1 | 783e8e7e0015c23466716bb9d5a78c8916e68d46 |
| SHA256 | 5d2a31b898896983d7dc13638287a42cf81e4e60fdcbe57d5860cd525b97c99f |
| SHA512 | 5150c5544417f80c9ef14d71bf53bb895c4298e29280faf985ee0f6a5a100a647806c92a70f628d5cec4ef106e1cb33854558edc739b8ed17ec778bbe383a7a9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c7
| MD5 | b07da7aa3e4f363c5cdbc11312239e8c |
| SHA1 | 47bf5b2f24ea4a4caafccc89b9d2a6677ef9e3b8 |
| SHA256 | e44c11f4834bdd4d6b6da7b8ee5eaebc8acb41250cd6bce5cc82ea8262140eaa |
| SHA512 | 420729406b315d8af34b62b78f39e763f5cf33cbf94467457b393fde0573dd7ffc6a23f25680988f9b82a4a3b719876ff76f3e1db047ce82615f544fc3a82532 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0160c22aab94c71c075eab61c318dffc |
| SHA1 | ede6808e475ae8a1dc394444fb2e8c27a9a63912 |
| SHA256 | da82a8bbfe915bc39a52504555d83ffadf55a173ad323c9ab4719608e8864398 |
| SHA512 | aff0437c93a0ac3f634924b24e30236fca699c1a85dcd5ff10f96977d1757fdd625ca9833dddc6267f9a7883175926e8b62169c040c13e852fe86acf109db0b8 |
C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AB5.tmp
| MD5 | 6ffe99d9009fcd3048c68dba5198da0d |
| SHA1 | 1e41e47cfa4ab1e26b3c5b9744d819c1ecc00b9c |
| SHA256 | cf0cbd2aca16cdbffcf6a80f4e4213707147a3110249c06afa0ed8b21be420d6 |
| SHA512 | b46be2bf4173cad127f9eebbcb15b8fd126554b4450f89df5a4d1cf5a2c7d9d62978eef51cd132ce175a88dfd42ee281c057a11c5e8bd8dd3c514388a33c19df |
C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AF6.tmp
| MD5 | 4135f3c8ea53582003c7eb2348e25223 |
| SHA1 | 11a5336208ace2b3d43cc96c337c8d728da657dc |
| SHA256 | be6dfd465fd2b32ccac544653f50201a8b8c99b3ca3fd6b7bf67fd30162d42dd |
| SHA512 | 789655693f7a6c5a076db5828b906d604cae52efb29e98c2d33453e19a5505acf4ddf3541d9c4fa277a8c48ae07fac53ecb66375b1ddb652f34231a47f0c9076 |
C:\Windows\System32\DriverStore\Temp\{7db2d1a7-63d8-fe4a-8f51-9b3fe454ce27}\SET3AC6.tmp
| MD5 | 28010cf148e2ff3e3a6c8feee8961186 |
| SHA1 | 9cc288ccd3fc0476a52d9b41a8e94d05e4bba169 |
| SHA256 | bfd87493165aa9f7e6b252eefcc0b3f5802946da7155636fd17b5d12d44a8bad |
| SHA512 | 6a58c13bc8d31a674652ccafd4c00f5002109415262b869a98b36d7d0376442467e1e1bc7c5cd5a4975df07940cf4874b7fcbac555eacfbffdc70b65cd7ef08d |
C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E7E.tmp
| MD5 | 3e5f7bfca0c5481f2163a7a6266f1151 |
| SHA1 | 7fd25ee54cbd676ae328f2c876fa8cfe0d74e72e |
| SHA256 | 7cb8a25cfc80ff5af4f92a12002d1d205cbd72b02687d79df49c9e4ff6b0fc40 |
| SHA512 | 520c997d280e20fe843ea95d727f8e5f36273bc229af97b95b06111aa7e2528f63d1abe092eca44d3a9ed1da218eb9ab96862b40cbd46c40bff35b39abe0a480 |
C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8E.tmp
| MD5 | 24299170ddea41ab932913594afba03e |
| SHA1 | 3067da5552dade50c622864c485ac40937e464f7 |
| SHA256 | 2bcc53f73d3efc31f278cb4fdbb988a5930bf182b238b6266d66177d2f773805 |
| SHA512 | 23b7d0dcfd1681d2f8ceb63c459ad6f4c224e6b1bde502d3a2fbc316a1e3cf034b13b4de10f0552aa7825f9c87380f9ecfed0800f6cafbe51bcf83d70d0641cd |
C:\Windows\System32\DriverStore\Temp\{87aa0b84-494f-b24d-95f0-1b0c2eef8ce4}\SET3E8F.tmp
| MD5 | da1ffeb1868c97814b03968554a4b521 |
| SHA1 | a5d856b759ea24086fc124774e6a55fc0f213ce7 |
| SHA256 | 4223c7f9a03a581f66efcf2f8d356ec1ca8d1e14fd4d60a33dc97029f2d1e92c |
| SHA512 | f66e03fb53356c2d115b86ce77121b85da45c7180ea5cb2038a2fa4a505f65fea52ca250a72fe4344d20ff8db30b4ae39d4e8f0b7a94f34a4db51c0a69cb4d95 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | faf8789069fe479a1e0cc39a7870a8ca |
| SHA1 | 0909ad90475f18659c6e0cc0c2d458f50137674a |
| SHA256 | d0330b6e4f9c7bec0acecd1ead66ce2d16916eede36c166b5253c044596c4ca7 |
| SHA512 | ccae0d2b9b504157a84e33049579cab17ca0c028b0df6bf38fd3a1d0691616c274b9ddcd23074503f9c383ce94c32811daa816636ac0989774dc10db98848b39 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\the-real-index
| MD5 | 7d63a21673c87ec3897555256e61176e |
| SHA1 | 41e4cb56d24be07aa088e8194350423d514351f9 |
| SHA256 | 03947bf7358d04b2b3d54c9051a798ee39ffae614460c5bc167aff3e97617942 |
| SHA512 | 5f6d4dfbd61b7f5c66fe653df15735f2ba71a63e4b5bddf7233b290abf36d4dc7b1f6eb4cf26590aece665171ba98a746f5c3867f0d28e31e6d7efadc70d5c3d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | fd8dd9bfa111c75c722df1a9e15c9ae1 |
| SHA1 | dad8ab7d99f61d4a88e2892d5b7bf26e1ed30644 |
| SHA256 | 08c57867800eb92752ea051f55186e1361def8e5545df223a332684e806d52b9 |
| SHA512 | a324c939fcf4e46e00f70f96f43557aa21d0952a72893f36ef1cdf545f94ce9b1239f22866cfe24cdb28eb8a48bf6513579d5e56ce625b16e9e8d5f56438ea55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 98c1639ceec35bd83859bc85c8c81315 |
| SHA1 | cce31606296441118d518514a26fb37d71ea072c |
| SHA256 | dae9bf9ed3ebe8f0c1cc7a2045f0cee7bc6e13cb3bfdb3b517e65aa701910e35 |
| SHA512 | 8454e29e59cba408f1440d9d136fe955be99dd5172cdc600529a2fc3b145142cc5135eb8ae8ffa08fb744bba3eaed0def735c56666c829fa37d2aa9e7414714e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d5eea8174d85e32f20030026db927aed |
| SHA1 | 2a3457627bb18b9ca46678548f7ba61ffe82a09a |
| SHA256 | 753db824c3caf3221be963a263e9e33e3f032b966c49a961876f80d108d87b57 |
| SHA512 | 6868dc9ecf97f43abffc3e17645865ae61dbd43dfb363d60c3eb14479b011a0292a5d115c95f013f5accbb2981c6e0aedfb3a9606c167be875373c685ff60369 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a74f4e99d37ca2ebdab376b193706da5 |
| SHA1 | 9fce342c56023ba9ba9257869f2da229a008c8b6 |
| SHA256 | 01e5285c330c2813562d1848edf1aeb8cd8904147717fcec084f26bb67001564 |
| SHA512 | ec82684b050f77b39369f2fcd754508c47ae11018b9dd32edba66078650f7610a79900283b88c32d93fd52a2b701f486990cc3e80cc0e4ce283526e28ef316af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 0d78d23640f164250284284f7085ee0d |
| SHA1 | d30287615a37be807e1aa6fc02e3d531f3d986fb |
| SHA256 | 92753fdd9ab27f46fd7cb20904fc85aa8d141e0353614f1fe7b0a8168e66fa86 |
| SHA512 | 08f6eac5d34dbf8db3fa75d2fe552280fa66f94f6cf742735419ea9f771280cad7ed4251f2e80ee44501e71f759738b3d55d18c7f144e5929fef5c91992cb823 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f3
| MD5 | ed81ae6e321fbfbc6cb3dff94779e4be |
| SHA1 | 1f0c0cae6cf9366424323db0b0739facd69afdfb |
| SHA256 | d22632c84b8b935a2451ed89ef446356ab024bb761c52cf8ace17068a655be0a |
| SHA512 | 60dde1068dca1305c488fb5bc43bcd77d8da22ca0b7d61515c777510cae0045d054094b5c52e27b7d9f2b536342f18e9358b806e9bd67f15ca4da0702b3b985f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 29dcbef6b7197699e4cafacb977acbe0 |
| SHA1 | 8795e5917037c05516776e2d25bc2f1d4c9cd6e5 |
| SHA256 | afcad57d16873abac974b547e2a316d597b3885a91bc01998a3ace69c2634686 |
| SHA512 | 2a096840a174cd49185ab1a761e51bc7f15f3e9c180476a56efca09f3220cd4e0d76375b39fa27695b491c6ab96c5b132770e192b0baa324a9291d02ec67641c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f0ada969c566dfd8073e743de9adfb85 |
| SHA1 | 78cb31976e6cd9535b46e38e2d842e814875c3b6 |
| SHA256 | 287f4f7e377114960b65cea4dd5972fed38985863ca04de9da8ecc86ddea5803 |
| SHA512 | f4e0647a6915885b772991f4506617cf6afe7b6c8d6b02ec1c98bea79e6f74d097270cbd0bc15d10d664dc17b7a317b106d36511644e8dbae8d9810ee410ece0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 888fe0a415a2d539d7f3c867676fc3ac |
| SHA1 | c7e5e04bac6282c04002a4d0b8dd22b496f3a762 |
| SHA256 | d90829fec4a612789af0b1502d6a672e3c588caab8753543a8120371517efa75 |
| SHA512 | 4192de445b3dc73d04af34202de91cdc55fc6985a7607c44fb0a2828a3a946e024cb710e9c0377b784b9ca80688285e29d01c9e424e721e8d280d7dc56a03657 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 83b7855cfa4a74f261d3763b73141e37 |
| SHA1 | 306f4e4a8b4635711d0933147ce79f37416fdb8a |
| SHA256 | e2e45af9cd69dfd5425ba5ca0b5f5bc1494808e5db081bc94fbae965a7a21a79 |
| SHA512 | 29c580b51f25148683e46f0f7b154b4a4a56057d27d3b7f796acae8331050a5f853c0d957daddfd4d57226ff8bc5e632304b0c4a9a92afa1169f6c18c92bd2da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f
| MD5 | 0a8f8a8c5beb8bf06f4608b3c12329ee |
| SHA1 | 75b98652fd00f80f95e2aafa4d63a8243c8f9ef1 |
| SHA256 | c0ca3432e1ae4f971cee7faba45b459c7ee05609addcf78eda0065c1a39fb5df |
| SHA512 | d6d02e67320657e74401097831ec962224372e002983078710c5e6941c3bea2a17c58dc1bee270251451f068364fd95e2d2e1c9a94e971e329c83845143738ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 39310b12bf4476fc49444485a959ad5f |
| SHA1 | 3b04f7433d626088f38e2b7408d5b7362dcd283d |
| SHA256 | bc02bf58d240ab0baf5726e3d6234d614faf2b00b98a8b97d10f8d6d5447fbce |
| SHA512 | 6229bfb22c4bec1d512cb44ab32997ec8a040701380bfb970305b2493675f70d0f87c8f2668a6efefa9fc6996152241829b9e03c5b248bc01b82357bc2f91fa5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e8ba16eb5710997c27330bdad925b765 |
| SHA1 | 5efec93008f2d0c60aab201753d18689948d202b |
| SHA256 | dff9bd89e2954c8aeb944cff085baf1b953651f89e9cca58d52aa071236c5f08 |
| SHA512 | a96bec9dbacb13599c23f876499374b9a5b04523b2d4f2a83f5459faa81a0687e9729a2be3efccf43f96d125a8849f05c3e0875102eb6733338e4105b8dccfdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000104
| MD5 | f61f0d4d0f968d5bba39a84c76277e1a |
| SHA1 | aa3693ea140eca418b4b2a30f6a68f6f43b4beb2 |
| SHA256 | 57147f08949ababe7deef611435ae418475a693e3823769a25c2a39b6ead9ccc |
| SHA512 | 6c3bd90f709bcf9151c9ed9ffea55c4f6883e7fda2a4e26bf018c83fe1cfbe4f4aa0db080d6d024070d53b2257472c399c8ac44eefd38b9445640efa85d5c487 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8f2cec773be0982ae683db19ff02b438 |
| SHA1 | 18440e8c0cb07e17ee060f52beb110fe5ff75956 |
| SHA256 | 82ef890be4dac1528424396f66951fcd29b5a509801f066b493a748697f5aa7e |
| SHA512 | e094d2e0d7a063951e14594f2ff6d23747639c13f11995e37a9c6d0c9704b68037c476f4481c0f82a7aa5d371d8d4eabdd48507382869b1c2a924b788364f834 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ef14acce359be2a37b5ba87a8a07732b |
| SHA1 | ca7ed153ff3803f6e97f93d40bf621fe556a0024 |
| SHA256 | 7abdbb1357cdba0cc255c7f971e386a9f6da3a97261acc88984476a7560e7113 |
| SHA512 | 79a79b4a0bd8d8fc6619ac2af5450f8af6660ab7b2c8e462b4a03d933831b3371fd9ee0649bc03411046fb3c775873d43e9752a022bfdb50e32f047862dd5412 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 9436affc97843765a966b3568fa7e5ec |
| SHA1 | 7bfda74bb30589c75d718fbc997f18c6d5cc4a0b |
| SHA256 | 7165713d3e1a610399471a5e93d5677508f62ef072c1151e72273bf4bd54f916 |
| SHA512 | 473ec3a843c33e18d6d194651fe11353fcd03a7959225faeabf8c77484155ea6a7bccb72dbaf2093ed53c408faa3be9f6fc907f7a5ddf8223375f9d09b504456 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7166374db920020467b6b4e2d5e1e343 |
| SHA1 | c14cfd2274ea7d6bf0528441c918a061baaa2151 |
| SHA256 | 768e4de34d048d524ea5fa1bb1a2b149fdc7f182d74c0282637295f2e0052810 |
| SHA512 | 3a0366286e152bdc00e9be7694dd30cdcaf0db309b5d3a44bfc8aa0ca3d87653678491b88a68f9dc5e2307964f8b6a04b81a845c1825733e8a2ecb0329d551fa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036
| MD5 | 5a4a3f087756bcc70d1b5ba3071b18bd |
| SHA1 | 0af45720626ff6fc20825426b801a07105fd2814 |
| SHA256 | a47c4a48c14c849d7aae7768f7ac571ba7c55d3efa70283e0c7528dc6221e878 |
| SHA512 | dc3cf82c4c1cf7c1e10bf5825a6f3c6d8e6308ead565ba8333e2887e383600bc4c5315e183c6c052523d1244edd638df98360b3c753d00dfaeaf36c9800384e9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\82cdfc70-7acd-459c-8ee6-2ee39b007404\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | 8cd3dbf0014c5b1534b511b897666b66 |
| SHA1 | 75219d323a9ae798a3c29f0091de3375848b1710 |
| SHA256 | e9ea261f6ece525004a0ddbf5fe836d3da84c85c764764c2f9544e3849e8aa45 |
| SHA512 | 0f304d8c23473e585af3261bf7a7ab41724bb9de50e31c4d0aa73d86692c3db739750dcb28eed2e939a9df00f86e0b32c075e9e90c426b520753773c53ebe80e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ab34984abe48460effec6f50cc453daa |
| SHA1 | 70adf7afe86de5a006f506038067be86e70b2839 |
| SHA256 | ab8032596391a06f6e3116445973aa442df1315368d7942ab89da360ab86ac6b |
| SHA512 | 2832fdd5dc74fdd2d9c0f0b20cea66fa999def89a2b731e02a119cdd9037a2cc921e2538962cf3fe96052b3a4df71e28240b888258a49452a16006d0327847ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eabd5274fa78304e0152d96e0339e0b1 |
| SHA1 | c4f5a6c3e1a8d93d7fdddab8d4e32a59a8e84625 |
| SHA256 | 9cd99e2561c4969107b290ababdecad7b2b8736fd43ec2b3fba47a884431e93a |
| SHA512 | 69462bb2c0b99066151ee40a46a365ccb20ec8083e48a9421668aa643cdf4374744dce12669617ed09adee94ea85683e9d37a709ff22272358147b5b87e7382a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | a9706d988d36fd74078dedd0917f021b |
| SHA1 | 6a7c2084e30f8a9b59bbf7e1db907ffd41f8c452 |
| SHA256 | ece05500626ecd9dc85bd1f16f6f9829f42863749e111c956e829ab60d34f84e |
| SHA512 | c32d2a6991a1a884922463ac5eaf9f908c48e8df895c2b1005ece23705e26a69e7970f899cb49da53030fda29bf33285fe93c5bbcf41dfd9e6726ded09a8b49e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | d5e3b17bf07d5ec29c896fcba2eb5641 |
| SHA1 | c78445ff5b99be5192f349210ad5a954112d9460 |
| SHA256 | ccd76368f123e3d2ab34cb932e73db67edbd6bd0b6199f864e740c8b016d13ab |
| SHA512 | 2fadc84aef3b0fa8c14cdc51435dbec362cf28b10530ec894b0a5b0d60e59971f18f26a454ae9d55135c242db607d0e505af8cc1d4dc5e8db594f7616e195cff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 186b0a911656541a685ea49706c08909 |
| SHA1 | 24c5cde981018427406a0893917f874bf6557ddc |
| SHA256 | c49c4b1ad8326d6d8b98dc7ea869b57469044746476e11c2b2d41e2164c7cf6c |
| SHA512 | 2eb48115f75abe6c66586338b5e06bca69f2f5bcfbb42f8ca97b14935768143b1a1c98fab29c926b340846a864926df19f0d2e519cac79fe38ac808d8cbadaf9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\CacheStorage\index.txt
| MD5 | cc5c8aabc47b97dfd18ead56be6786bc |
| SHA1 | 13ab069e9abfc4541e5d5321a5faea279fe29907 |
| SHA256 | e15002346b626bd3c2f26c4e8c5949558d4eb01c4a86d349b28bfd74299f6e8b |
| SHA512 | 7bdbc8acbe9320efc2e7143baefad823ab1c2cac22862f47096937f3466281920d176ff04ac7840e9978eb208d46497c7006e395d75880b6067598e9aa950a01 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000139
| MD5 | e3b1a3d523c5ba9e88b766837a307be7 |
| SHA1 | 4e8ad3cd2cab44e5b492a5b7840998025ff04be0 |
| SHA256 | 63079b1142f08bd11e08a7d41384da1052f7b75ea677fccd4282f00398ce1377 |
| SHA512 | 91495ded886c218e8a8f3e35b1d1b5fd2e9b50bc64f40a79f9e0182b55f942c09c9c570780b97ef2053fd7ac24fa4e5fe844e05820d1deabce8c7418d381a67e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d3fa4fb87b404c69dd4051241850d09c |
| SHA1 | 957313ea0161d70e779b8ee1fdc64fd9b0003bef |
| SHA256 | c5409b48f103475577e2d7d91febda54f1d05e12d6cd6a20d00a9ec57ef4228d |
| SHA512 | 6a041bf47b4f375feb176dc5966eacd5c6c67a4d5dcf4557d08e4167968ef82362d47e2624e3a672ccb7614cc3d3c36c762b78432df21672e1393b2794ce84a5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00013e
| MD5 | 0069e424bb3eb0432aa2f2e2606aab20 |
| SHA1 | cac1ae317dc1535bae08f61045a8edb0939b1574 |
| SHA256 | aa602449e6eeaf78eaf8f21f411701ab6c68e9a6358834bdee74adce88727084 |
| SHA512 | ef218d7d3cab32184e1b1cb4b9b7cc8902e04668fd8c09735309d7ad93d5c8abd45a8451736922237c135d28a4726316d0c29a618b3a3169bd575c68eb5060c2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ba96c347a81cbf0_0
| MD5 | 339466c4bed0e4ab1ab4b12753d51117 |
| SHA1 | 43f37ca9ea6187e8c279f38072a12cf222ea9b8f |
| SHA256 | b6b76429eb905b523b399c4bd7077527aafab128e13855a8c0945633bd0376c3 |
| SHA512 | 5b612ed290f06285b8582d5aa8307378a2c6b510d8ffd898b2709a626fd67b8db5dd6e90c331653aaee1a9b83b98892614b4498f834250aa3c84a9d9e39ab925 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5e17d636a1203cdd2ed7c4be52079ed2 |
| SHA1 | ea983bbc6c17c0f89d33446a26c7f9f1884d1f75 |
| SHA256 | 0263d2fdde8da39c5405630626813a57bc30af7b7326d1264bdc426db64ad3f7 |
| SHA512 | 5e079e99af738b76b23c4dc87de3f44ee22f654a1f343b0bafd3a8f92ddae50709d9d3a130317e0eeced6802bd3b9aab02cad4bc1a36063d945dd615bbd88524 |
C:\Users\Admin\Downloads\OperaSetup.exe
| MD5 | 6a5e81bef0b9e2c2d1152fa9ad307671 |
| SHA1 | 8b00bb63b29a4cc334901d12fe91067c796880a7 |
| SHA256 | 886b84c60516314827bb0587e94a1ca9fee62a3f85df6ca761befb0bf594555d |
| SHA512 | 82cbaaf56d5f7cb0c545cb59be1d16c2a8e7247a9c13f148e5fc6666bdd7052ebf9a5cadce23b64f2286f897f7b8f8339d95786494559a10dac4f0e8c17beac1 |
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\setup.exe
| MD5 | 5aa3b05f75e59cef0ad11c2a91a00c4f |
| SHA1 | ff061125a854ec3e3ec81e0bdfb6dfba9591ee88 |
| SHA256 | 3e6a2e38a7efdd97b9e1d11eaa8ae7dfc38d53246c067553f8e349708dd4c18d |
| SHA512 | 92c9a97c08aac5e862946f54c429cf3e5341e09a0c26f91caab74d9e5598aecf35c93fafce56381c0c5d05ab5b34ec9808454a536dd19f20336ff0641d7298bf |
C:\Users\Admin\AppData\Local\Temp\Opera_installer_2507041203296347600.dll
| MD5 | d2607250e2382325859c6a3abe7fdbe1 |
| SHA1 | 5f9fc893fe2fb45970980d501b47e0b5e206b3b4 |
| SHA256 | f358970157c32b572f69215adb47d0b4d3ca2ef8c81eaea7d4b4a3a34bd6db5c |
| SHA512 | f47ae1737e140278d495810d49e9ac7d3735167683fb3455b161ca158536903d0266fcffc9979d7b8c610a53f5d07a9b554f56f97f76451c2a34834a9cd24be0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\index-dir\temp-index
| MD5 | 2ba8f79fe55c2c4d8f594459371eafff |
| SHA1 | 34643885e2117df5d4fcfc636b074b664286e2de |
| SHA256 | b36b485c7344d8ef660769d5f220c181d683401691cb33df3d3705ae2e1c53eb |
| SHA512 | 10db561c5da6501d77b96eca47e043da4c1e8b374c81e5b22ca56259dcfada49572f7dbd2f0f2c9c534d0724e15409ce516d2f108921f05f9e532654b5fe768f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | d61a7a7767569ac6d2706e521a47a61c |
| SHA1 | e5c86ad26e90140b735394d79ddc2e226be1a412 |
| SHA256 | fcd464161da712c3261efb469382358f630fee2e8b862381bea9a98ebd93f28b |
| SHA512 | 49d7a57fc97b1210816d36809103903b23fa1dfcecafeec34903bdf37748d93117debf474b065ba2963c583c3b473d8415f109d0dfe8b001118a768851cc294a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5eb0e596d50c8f69ffe83250a697d055 |
| SHA1 | 3936fea5b4c395421ce3b5fa541d3a78ee584b03 |
| SHA256 | 6a58dd0aec8a86c447ced5df74c848b6e5bb8dcbfcbbf3222dd56551eac9e6ea |
| SHA512 | d999085d3e93f61bcc9d7f39fdbc7ce12893005c65c65578588822c78594f3db6f91e6439f8532068f5fabfa59aee21c07251bf9d1aa073995787b729ca05cb8 |
C:\Users\Admin\AppData\Local\Temp\.opera\16e5c43b-0296-4cd2-90e6-6ed6ae26fcf5 Opera Installer Temp\opera_package_202507040803291\additional_file0.tmp
| MD5 | 4125c9a1d68d6f095316d878dce498c3 |
| SHA1 | d5a9de9d1d21dfbc6de97f2e7c34629f165f139a |
| SHA256 | 1faa84af9c9ee61d4550dc8a279434c3f0c9ebea44e6af27c5743af7c59e9ec3 |
| SHA512 | 5dedc6658d786e572438a39a6aa2845881b0469620d2ffa1c228a2fed5b98aa25070bf9e263c25859519427371f7aff7c43705148e11c3f0b54832015813e1f9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00012a
| MD5 | e4f9e944b9ee2e76dd1c8d7b14040fea |
| SHA1 | c69faeb0c4a80e3c0d6688c7b05b978d4304384f |
| SHA256 | 9a749eab5ac93b7f52e39285bc372a53232063b36e0419669e913452c49cc7c8 |
| SHA512 | 3b156804363a44fa7d4ba7376cec49b7722df6d4e92d628086401e8eedfb3def00e9bab5978bcb4eca1291785c6a29c92b2aa3f5ec8b919bd827da7ff901caa5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Shared Dictionary\cache\de9ea0562eff57aa_0
| MD5 | 3b632bf6c823569b61639171b007a74b |
| SHA1 | 58fc35748de850da96cce8beb19fab54353f8616 |
| SHA256 | 06865669a586b485720c37dc61bc55f18849db13ac31a56c296326f7d3b30920 |
| SHA512 | 34c4a284e8496a4f088201a6e9c7493216827b154c6a8713e15d1699d63f201e696428588d4c1101584477ae2a6c55eb0a5d1674b6df17e5d992de70742127bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5da8798df036ac982acbcb7543692b92 |
| SHA1 | d6657c56055b64cd76617e55ca5c410d0f0abede |
| SHA256 | 70a97c03d861d7e5204b80c3df8163b9536db2b75ebc8ac497a79803c08b9e51 |
| SHA512 | 05234548a9f36d82b6749e25b25bec7f0d8be78c6e3841a42a1094a42be88e6c11386a9de520ff7d21872b38aa0310be494554bb06f08b98796948549686b2f7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5d994ae0642d9e8350ceec1fff4d8f8f |
| SHA1 | 5455aca496352fea1e62f2e1e582e4a4da803311 |
| SHA256 | b8befd9465c0ee868dc9ffca38d4589ca5cb8bdcdbbc82d6d4d4508588e2128b |
| SHA512 | f9c290641dee8405933208675e707049d2e7230c3ea739c1dc9a4dba82d3ee1222e6f0f99605a2a48f156e9bea3c53783bdafb09ceafa6ef9a366479d68325c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00014b
| MD5 | 55b11462b5fdff743e178c0365c10cdf |
| SHA1 | 503049bb24ac8e6a53336f2c95a7697e4a3722ae |
| SHA256 | a9c63ee50602cb08aa79af50169907a4282e08c45a4ac8535139ac33312c5bf1 |
| SHA512 | 6f670473a5d01b4cd7cf2bace3aef18363bd92d0690cb569d616e4264d84091f14d3c72002d2afca3138865e5d962e83d61d4a8fd577c9b866fe2062fd15293a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\7b4fd8111178d5b1_0
| MD5 | f60034ceec234cd184dd370ffaa35c19 |
| SHA1 | 69828f2ed5e97c9cf0849f3a1bdf4ed9c3590de9 |
| SHA256 | 55388bd76476bfa7f7e17d8f8a38fd1ab0878676d6b9bc9d4cc3664fbd8f9edc |
| SHA512 | 12166a8066f722edad288452f0ba0954207a880158152001e0cf580f315f1586f9f2681f70fc269d70ff6d0948869f5af41499e977486fea397f8f0ced2fd78f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\d0757ff92c7cde0a_0
| MD5 | de5e1c43783ae4201bd68c7468c356c9 |
| SHA1 | 55ec3961ec13fd79ea22bbe17ce5fd4aaf06629f |
| SHA256 | c25940094be459cf2388c56d750d7bd12ea9079b411195ec80b7fc5cac2b2e63 |
| SHA512 | f3ff6a935b66dc9570017ffcb2e185c33ba3f6e31cfb5b4558ddb5376a07320b3ab0fd8384c670622db38d877da1870d2a0dccf814a1ef0e941e26ae569f0d30 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\7b4fd8111178d5b1_1
| MD5 | c944b1f404589a288e79f142610d4eda |
| SHA1 | 8d37791f9e66f0af09dd7ebfd63d397f14dc21c8 |
| SHA256 | 426462203b9058906445539df19bb9cb7422d4cf93d79dc7ea3e652fe8a513f5 |
| SHA512 | 7b928d4dd290738126daeb2beee6378565105b40d6d85325dc8b5feae5f2a84831e111ad36d36745c138a339ebe0685ff391d3cbfda6a0b08c9120c7c9d6e1a5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a76c410e2ae6fdea3cb9416397c5f7ff |
| SHA1 | 2a97cfd7276271367fc88dcffb42450305769d30 |
| SHA256 | 615505d7759532cbed32e0089665f617b1983d0ec44bd17f9be726c0f9521ddd |
| SHA512 | 1476908ea7b73ec0223cab1d8e1cedb3ce649ed59756ecfaf1af1a6cc7ddd56603de2b9de3d00f421de4329d696d5437742920d19c36abf12e1fd8eecb224082 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000172
| MD5 | a57851aa193acb3eb6b41995bc3d1e69 |
| SHA1 | d0761ac7d251b42e3ba5aa834a9647fc7e983940 |
| SHA256 | f61f79bb4c2cd60db8bf835d3ac93c90b6070a8bb353c4d368455faccfe6cac6 |
| SHA512 | 160552b4921ac7d5d4d9d4b653d002557b116baeb72fb478194c2a2322852538bade543588a9695edce23959bcfd6824aa7446e618ec26d43c993ab211d62f4f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ca65d1052ed4c507e64de01222af5d9d |
| SHA1 | 7a0d43250ae9c2d4964db34163bfb43b82ed09de |
| SHA256 | becdc442701115167c6f7c5bdfd6141d5f9dfd7966da952711a6a003efe6a919 |
| SHA512 | 6d266be10d1eebd7c175d1fa7eac847d7f0de46c60ece538bac22a40e6eade554e33f7067ce61967244178911ec101b4d542b60ce1259ef05bc7ec1480f61606 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\WebStorage\3\IndexedDB\indexeddb.leveldb\000003.log
| MD5 | 72421b63b1d13f510dfe4f1461167f3d |
| SHA1 | 30b04948c98ee152c3add718743f886e163eb4b6 |
| SHA256 | 3967aaef00bdfb348f8042d605ffafe73433054b8e4155dffd3ff38ceff74329 |
| SHA512 | 04ca28ff4d029536e8017c6b2e3b44408bf6aac37caa7d82075de76208fa87c530f1c0de87540a602513100eb5dd59122bd70c6b827679a07d7aace1195fae47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000de
| MD5 | 0f4a2150c1e0f33f2202ac52bd2af5e2 |
| SHA1 | 23d82791565760e4bc15667f9522cef2c2593390 |
| SHA256 | 9e6d4f794d71e06a80b29861debdbcd0e75ef05c71805791c9f82d2a1dd481bc |
| SHA512 | c5bd0251954f95dfc63b24405961324e589d2d8ca10b085e84aba2255b261c7ddd5033cf5a012528ab7275a49ee666f24a5b7d51f601155e861ba63937098609 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e0
| MD5 | eb11bfb369775ff0739dabb3a5f379cc |
| SHA1 | 2eebaea2f7080c0b256fbfc70ab91473243af0f8 |
| SHA256 | 2e0bdc192134bb3950a1ba4c1148901e39ebd8d2d01f64ef23106e90a9f771b0 |
| SHA512 | 59e89752e932aade54d5b2b940e09f3c8b12a836f1c5eb515e82036a97492f42e12a4fb3dc156cb8d969d6cb4e8fd8f18b358715f972e12d4596ad390430cb21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000df
| MD5 | a2edb5c7eb3c7ef98d0eb329c6fb268f |
| SHA1 | 5f3037dc517afd44b644c712c5966bfe3289354c |
| SHA256 | ba191bf3b5c39a50676e4ecae47adff7f404f9481890530cdbf64252fbb1a57e |
| SHA512 | cc5644caf32302521ca5d6fd3c8cc81a6bbf0c44a56c00f0a19996610d65cf40d5bae6446610f05a601f63dea343a9000e76f93a0680cfbf1e4cf15a3563a62c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000eb
| MD5 | 64eed0bf4d204ead5c86a6713d811da0 |
| SHA1 | eaa166c5fedb906b0aa05ab39ffa3092c7482101 |
| SHA256 | f0f9b260762037c933da1c0af9104b7698664887b33c6f63626679fb41a9205a |
| SHA512 | 6c6960a1e5e2f0328bc6e489894ea8780596bc67b08b6ced782addb51b83dac596489b5516f71bc8d26d19edd9e00acca487d8640568651eddb81ec10d44e466 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e8
| MD5 | 61942bfa7c9b4263616e70b04bdb7537 |
| SHA1 | 4ee1af37a0028d1e588ebe1385c8d826a6829bc4 |
| SHA256 | 20c03b5390496cd1f596cacf340b271f8658675477e97b525d5576c7eb94de24 |
| SHA512 | 1580ea6f3cae7ff016ba265a0a3095584f5facd9612c9dca5db1daac1d16f44c4fa73a60b9011a073c0bb24cac5a2214be18ccda02355d072d9156c2d5cda91d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e5
| MD5 | fc27115d6e3e13d5d8af90d71ce55c15 |
| SHA1 | 049ed03aebaddb504a7529d27bee1caf0c2af957 |
| SHA256 | 61f6574153e5862638dc96dd5654bbe08ee1e192da44468393483fc0a6753cff |
| SHA512 | da05e8b459c1c5287dcf47f3d8df1a9c94aa35ff8143bb410b4f33b1a804b7f70c0243c41c5204588027ee9138f5055854c821fcc019b1a73ddda8ba788d94b2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e9
| MD5 | 845b78379543107df9d4d14d88acd628 |
| SHA1 | 757a8cc66be0abeb61624903c9efb0ffde21a572 |
| SHA256 | 1854a7f8872c27a2845a98e2d6a0f2361c23a374f3d1688c42c88458b9317d39 |
| SHA512 | 3329b223874fad84f0cf8afa8aa6b23ddf9adf46af056362e3dd53ce0c19dd649c8fbaa5f8cecc8c20fe0a955d0f6cf2d781e010d7bc56db804318de7d659a55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e6
| MD5 | 6a2340dde8e5517b614d166d2e9e1f81 |
| SHA1 | 504833c2d896eccea8103a1c518a36e8a5e06239 |
| SHA256 | f05d57952cf90e72aa2bccac1779e607b845d3b46dc1a4ae784a3e761ee7ae7c |
| SHA512 | a02560e4503440a1ecdb4419a1e9ed4e4a24232693a9d1e2a9deeef2f6623da3d6d5e836d51e2d2ff0f19af2b0fcaa340d7bfea2af8c1f066f62a95f3c56b09c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ec
| MD5 | 70fbfdd5b41f29e657af36ee3b7850d1 |
| SHA1 | 677b0eaa95ab3d3fd2758c8ca90522693b31247e |
| SHA256 | a7d5fd6e514ef981d097f1c98c78756fc40d02abd8d58daad3caa8104700b7e4 |
| SHA512 | 3cb86f735e23ab66e1a9d1bf2bec2320b2632ff2e3b54625d09de886c9b3d2f35cd237c03eb98fe1ed8f8bb5437cc42c94a94ef7a3ddd85b7c7b996e5aee8585 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e4
| MD5 | 50de50fd7d06eba2df306ea77e556f16 |
| SHA1 | f9a0373f86e47a9e9a750f3a27a4feec10425c81 |
| SHA256 | a4325664824b948d02f31aa53aebfe736e1b0b87a60249c5c3d79545177e947c |
| SHA512 | 6013bbdd929981edba210635979cd7bec08b44e5c4d772a7c7cad8ce1bcf7d0c734b45ea7ece3a39ef56d3a0fc0a1ce922ab6430ebab53d7fdd42ffad555b6bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ee
| MD5 | 3f896ae15e5ccd21bdf16e01373a7049 |
| SHA1 | bda8414ba68399b5d316692d7e78f241a33f3093 |
| SHA256 | 58fd7984a6a845f4b4b82602383e3444d2dd49972a03dbabeb26f331eaad86fd |
| SHA512 | 29355d54cd4fd0835705ffa0c8b9b3c1ad5caad9feb630d4e2704da98fee5fc33ff0095a30dbc7112a052da16c396fe35ebbb6f5eb9dbfaeba35dcb9c8d5ee5d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e7
| MD5 | 770ab8b09417ac306663a712f9a1fa2a |
| SHA1 | e13ec3075c624591c093cf670bb0d4a7baacdf93 |
| SHA256 | 8979115ab2f3a5019539da50ab95f5a92af8a005df4a19cbdcc6a26e224e08bb |
| SHA512 | 87b3170ad1257cd61c500d7c7070c262b872c18992c7d955f7d642b0db1dd81614a455d73d026c9b06d6ad3881efcdcb5c8951ce8a8f084664b0d8e7b0d8c1ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ed
| MD5 | aac92a708249c5eae6f8705d71b80ecc |
| SHA1 | 9f4695390eb2afde5f87279a711c209924fc353c |
| SHA256 | 38e06af0b7465191a2c7253c20b7ab981f3d1ed9c0039db42ca78c04524b2efb |
| SHA512 | a0aa35e54120d3913c83617e9488939909a256c104485755ad788d2ff0e307942b34607fb124177ecb0cda8fddfaac0b484e9154e85488e35883983bd19dc97b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f6
| MD5 | 73b22fac671204bfac9467a63c23200c |
| SHA1 | 2c87560c6a2a7425d3be3354d7ef69fe3de7bdd4 |
| SHA256 | 586f68cd6dfe3d502b4f1f70f0c67f3eebd59a5896b21f14441fa9c1fdadd4d9 |
| SHA512 | 94eeee5553b31807d16a9b44bf070c2de572e1a85859d4970fbef7203c2672d92c338e0b18b7fd57ffffe686eb551cae867256ae1317beb18b0278fda0890fdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ef
| MD5 | a9856d6f546d9cb6d692f858ed2ad71f |
| SHA1 | 7f0817c83109f017a52f419519ab43ce12e54e4f |
| SHA256 | 6ac995ecde891d4fff09b788c1d3537ce0791af6ea6cf7ce7f6aa05b83163f09 |
| SHA512 | ada782724f6483ea481d3557c84d455a4201002a9d6fd3d8f26e63fe798f20ce9e9d7be7e763b717162ff454d3d715a7dc07bbddfaca71c4913603ccd7c8e2f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ea
| MD5 | 44e210f1a630b89aeca667f467317b68 |
| SHA1 | e4b8788ada8050d52b0cff355f123ac1f60df268 |
| SHA256 | 296f633eca093fef4be918dfbc97e845ab56a4f18a985e4b6304a71eb3f4d1a3 |
| SHA512 | 46afffde72339ddadcd78644bc7a115a6f5a20c0e716ee06dcf17aa012259e37010ede17aa2f2908557ecb0731efed99880105aab5e59237d664693ea3856de7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000e2
| MD5 | 87bcca66c3b126c0b7489d9cc545a42f |
| SHA1 | 2c16b9d7c29b4624d1941ffd5abb938bf28739f6 |
| SHA256 | fe475911f71fd40519f80426050f19b641701eba0c1e9695f1744c9b33053906 |
| SHA512 | 75de1766a83461ff93b7fdeadd0e26f833bb06653c635546e4c6e11e8717b4c8777dc65829c62c067ef8fe4d0671c82b749d631587f33f63db04b5c9d7aa9478 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000f5
| MD5 | bf0f2ffe9098a52b289fd6059aa3e7c8 |
| SHA1 | b98a641cdb1e52e29cf523aeb9cd8bbdd75ea9d5 |
| SHA256 | 98efba60c3ea0c6f1e003eafbf1945ed094f125dff35e73ce7d0f8fb881050ee |
| SHA512 | 4efc8563cb2541062b402042539c81f40776d16f14e136883f2c283d207682d0c249ef46083ba1849a1015b8ab28bf455483b7e8d9cc70d24400562b348e4594 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4094e795a8962363edbb1840e357f647 |
| SHA1 | 3e6771d5ae0a34f14200e2cdb00d9c4abe7407e5 |
| SHA256 | c8d6abfd6a7e43281e20bc8f24512d29f79bf40c6aa6563cdf014a711eb3359f |
| SHA512 | 9c7fb61f17e899594b6f8417d3731c510cd468bb5eeb28e19d9718ad8c62ce03eb73bb47f06c6357731e4fcfc1371ed62df16d18e25c28d18420f03f8f320e9a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 6d5215534166a1c8e210c7ee5a677186 |
| SHA1 | e4ea10dc38d89ab4139cd67b8185648eae7d7109 |
| SHA256 | 9ab84be5c80cee1ae8e73011a582aeb592a53949de4fcba2114cad183e321b70 |
| SHA512 | bdcee6f516ba7e6cde898014809011848af37616d96f3f485b4fb54e962164469e0d822def805bed8f0b5012a7763ac4c375d0a4489cdd62c6a11d0ec3ce42ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9cd21c7fb099abe3597224d3a24fe73d |
| SHA1 | 6dc6b55e0b16130e5c3d4d7f9ccf9bd7f2e6e9da |
| SHA256 | 319eb5fefdf9fd66bb16d479d56ce41efefac284bb0d7aebf8a2802760471e83 |
| SHA512 | 2f72b0a20771a6cf368360523139014683d151552a283d16e2ccdbfd694c0a6316c2d242e6fbf2b4f145d7a34856f13811f483c00578dfc7b749d34cc7996902 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 4b3898f0f2be94fa15783e89cf3be400 |
| SHA1 | 8b55f18741dcf8151858a474f332bf858345d9bc |
| SHA256 | 2d00bb4ec85469a305ab6f6097fe1a0961bb80909c3be27e89dd1c11ea88a41c |
| SHA512 | 92b6e15330d0125a3d4bbf4d2fdce02432db0494479ea453741b78fd06aee722a6e1000ff3f9af267f67fd54aa895db1149b29da4e83d19354382b411c4f1f15 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | df03e59395195641fe03a527546464f8 |
| SHA1 | 42e080a37d7d7b34ba3d5c3df82d21f9af215e99 |
| SHA256 | 4b81532a959a453bb9e745fce791136a3925822432f2edb71e53798df6ee9a9b |
| SHA512 | 10c9166879e13719565d319d7590e1d51bcdb22878f9e5a574da412521877c7d697e23c62989f187ce679241e949de73dfe2fba7aec6a5278ac0c6d9f1d683f9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7f60d39c06f95de4a01be195dace7755 |
| SHA1 | cd3c9b2c6e3641475d3e5d5333e898cd140befcb |
| SHA256 | e0f9d9de13979ca54523090a2d7cb28de09528abf784fc70e9c7027880a70bc2 |
| SHA512 | 7b96b4dadd95ae529e24a704b1bcdf025ee15d5e5a19be848f8ea0e850c7d9707ab9a59e5dc1dad0de0eaac43ccdfc21a5eda7806c80677d81f8748d0e5c54a3 |
Analysis: behavioral2
Detonation Overview
Submitted
2025-07-04 11:52
Reported
2025-07-04 12:07
Platform
win11-20250619-en
Max time kernel
446s
Max time network
448s
Command Line
Signatures
Processes
C:\Windows\System32\WScript.exe
"C:\Windows\System32\WScript.exe" "C:\Users\Admin\AppData\Local\Temp\kysjames (1).vbs"