Analysis Overview
Threat Level: No (potentially) malicious behavior was detected
The file https://google.com was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
Suspicious use of AdjustPrivilegeToken
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: LoadsDriver
Suspicious use of SendNotifyMessage
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Checks processor information in registry
Modifies registry class
Suspicious use of FindShellTrayWindow
Enumerates system info in registry
Modifies data under HKEY_USERS
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2023-09-19 16:03
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2023-09-19 16:03
Reported
2023-09-19 16:33
Platform
win10-20230831-en
Max time kernel
1800s
Max time network
1689s
Command Line
Signatures
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \Registry\Machine\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\Desktop\ProcessHacker.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Users\Admin\Desktop\ProcessHacker.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133396130382822959" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3540700546-2554825161-2349363825-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\ProcessHacker.exe | N/A |
Suspicious behavior: LoadsDriver
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://google.com
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffce8aa9758,0x7ffce8aa9768,0x7ffce8aa9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1856 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3016 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3008 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1760 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1600 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4340 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4836 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4344 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3260 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=4484 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5448 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5588 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5144 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4536 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5432 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5876 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6128 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=6344 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6348 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6364 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6272 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6568 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6572 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=6604 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7476 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7640 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7876 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7136 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5604 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7044 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6728 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6284 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=3232 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=5976 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=5468 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=6232 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=6516 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=3640 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=6328 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=6920 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=7932 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=8040 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=7908 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=7928 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=6800 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=8068 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=3192 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=7944 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=3164 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=7560 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Users\Admin\Desktop\ProcessHacker.exe
"C:\Users\Admin\Desktop\ProcessHacker.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=7924 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=3400 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=5972 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=6152 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=3460 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6868 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=6904 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=4988 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5240 --field-trial-handle=2116,i,11999695050996844350,14030458761534549339,131072 /prefetch:2
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | google.com | udp |
| NL | 142.250.179.142:443 | google.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| NL | 142.250.179.138:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | ogs.google.com | udp |
| US | 8.8.8.8:53 | 142.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| NL | 142.250.179.206:443 | ogs.google.com | tcp |
| DE | 172.217.23.206:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| DE | 172.217.23.195:443 | ssl.gstatic.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| NL | 142.251.36.14:443 | play.google.com | tcp |
| NL | 142.251.36.14:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 138.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.217.172.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| NL | 142.251.36.14:443 | encrypted-tbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | lh5.googleusercontent.com | udp |
| NL | 142.251.36.1:443 | lh5.googleusercontent.com | udp |
| US | 8.8.8.8:53 | 1.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| DE | 172.217.23.195:443 | id.google.com | tcp |
| DE | 172.217.23.195:443 | id.google.com | udp |
| US | 8.8.8.8:53 | processhacker.sourceforge.io | udp |
| US | 104.18.39.207:443 | processhacker.sourceforge.io | tcp |
| US | 104.18.39.207:443 | processhacker.sourceforge.io | tcp |
| US | 8.8.8.8:53 | 207.39.18.104.in-addr.arpa | udp |
| US | 104.18.39.207:443 | processhacker.sourceforge.io | udp |
| US | 8.8.8.8:53 | sourceforge.net | udp |
| US | 104.18.37.111:443 | sourceforge.net | tcp |
| US | 8.8.8.8:53 | 111.37.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| NL | 142.250.102.156:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 178.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.102.250.142.in-addr.arpa | udp |
| US | 104.18.37.111:443 | sourceforge.net | udp |
| US | 8.8.8.8:53 | a.fsdn.com | udp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | tcp |
| US | 104.18.40.209:443 | a.fsdn.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| NL | 216.52.2.86:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| NL | 213.19.162.41:443 | fastlane.rubiconproject.com | tcp |
| NL | 185.89.210.180:443 | ib.adnxs.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | analytics.slashdotmedia.com | udp |
| US | 8.8.8.8:53 | 209.40.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.165.158.18.in-addr.arpa | udp |
| US | 104.16.57.101:443 | static.cloudflareinsights.com | tcp |
| US | 172.67.70.134:443 | btloader.com | tcp |
| US | 216.105.38.9:443 | analytics.slashdotmedia.com | tcp |
| US | 8.8.8.8:53 | c.sf-syn.com | udp |
| US | 172.64.154.159:443 | c.sf-syn.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| US | 8.8.8.8:53 | snap.licdn.com | udp |
| US | 8.8.8.8:53 | ml314.com | udp |
| US | 8.8.8.8:53 | ads.pro-market.net | udp |
| US | 8.8.8.8:53 | tag.crsspxl.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 2.18.121.143:443 | ads.pro-market.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| NL | 142.250.179.138:443 | content-autofill.googleapis.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 34.232.140.51:443 | tag.crsspxl.com | tcp |
| US | 2.18.121.132:443 | snap.licdn.com | tcp |
| US | 2.18.121.132:80 | snap.licdn.com | tcp |
| US | 34.117.77.79:443 | ml314.com | tcp |
| US | 8.8.8.8:53 | 86.2.52.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.162.19.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.139.86.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.57.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.70.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.24.238.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.211.227.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.38.105.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.121.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.121.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.23.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.77.117.34.in-addr.arpa | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 34.117.77.79:443 | ml314.com | udp |
| US | 8.8.8.8:53 | cdn.linkedin.oribi.io | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 18.239.69.18:443 | cdn.linkedin.oribi.io | tcp |
| US | 8.8.8.8:53 | pbid.pro-market.net | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 107.178.240.89:443 | pbid.pro-market.net | tcp |
| US | 8.8.8.8:53 | c3f64589990fe5f7e67343ab456c6f18.safeframe.googlesyndication.com | udp |
| NL | 142.250.179.161:443 | c3f64589990fe5f7e67343ab456c6f18.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 51.140.232.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.69.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.240.178.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.15.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.linkedin.com | udp |
| NL | 142.250.179.142:443 | google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 172.217.164.35:443 | beacons.gcp.gvt2.com | tcp |
| NL | 142.250.179.161:443 | c3f64589990fe5f7e67343ab456c6f18.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.250.179.161:443 | cdn.ampproject.org | tcp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 35.164.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.208.58.216.in-addr.arpa | udp |
| NL | 142.251.36.1:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| NL | 185.29.134.244:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| NL | 104.80.228.197:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | downloads.sourceforge.net | udp |
| US | 204.68.111.105:443 | downloads.sourceforge.net | tcp |
| US | 204.68.111.105:443 | downloads.sourceforge.net | tcp |
| US | 8.8.8.8:53 | 98.208.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.134.29.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | tags.bluekai.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | dmp.truoptik.com | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 34.232.140.51:443 | tag.crsspxl.com | tcp |
| US | 34.232.140.51:443 | tag.crsspxl.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| IE | 34.247.108.36:443 | dpm.demdex.net | tcp |
| NL | 216.52.2.39:443 | ce.lijit.com | tcp |
| DE | 3.71.149.231:443 | cms.analytics.yahoo.com | tcp |
| US | 35.190.60.146:443 | idsync.rlcdn.com | tcp |
| JP | 23.207.96.112:443 | tags.bluekai.com | tcp |
| US | 104.17.219.204:443 | dmp.truoptik.com | tcp |
| US | 3.217.186.3:443 | sync.crwdcntrl.net | tcp |
| US | 34.232.140.51:443 | tag.crsspxl.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 34.98.64.218:443 | u.openx.net | tcp |
| US | 8.8.8.8:53 | rtd.tubemogul.com | udp |
| US | 151.101.2.49:443 | rtd.tubemogul.com | tcp |
| US | 35.190.60.146:443 | idsync.rlcdn.com | udp |
| US | 34.98.64.218:443 | u.openx.net | udp |
| US | 8.8.8.8:53 | rtd-tm.everesttech.net | udp |
| US | 151.101.2.49:443 | rtd-tm.everesttech.net | tcp |
| US | 34.232.140.51:443 | tag.crsspxl.com | tcp |
| US | 8.8.8.8:53 | versaweb.dl.sourceforge.net | udp |
| US | 162.251.232.173:443 | versaweb.dl.sourceforge.net | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | pippio.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 107.178.254.65:443 | pippio.com | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 192.184.69.252:443 | cms.quantserve.com | tcp |
| US | 8.8.8.8:53 | widget.us.criteo.com | udp |
| US | 74.119.119.150:443 | widget.us.criteo.com | tcp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 8.8.8.8:53 | 197.228.80.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 105.111.68.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.2.52.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.60.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.96.207.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.219.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | 36.108.247.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.186.217.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.232.251.162.in-addr.arpa | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.254.178.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 54.147.123.103:443 | a.audrte.com | tcp |
| US | 8.8.8.8:53 | 202.228.220.67.in-addr.arpa | udp |
| US | 104.36.113.107:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| DK | 37.157.2.234:443 | c1.adform.net | tcp |
| NL | 34.91.62.186:443 | um.simpli.fi | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 104.36.113.107:443 | image2.pubmatic.com | tcp |
| US | 104.36.113.107:443 | image2.pubmatic.com | tcp |
| US | 104.36.113.107:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.69.184.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.62.91.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.123.147.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.119.119.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.113.36.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| DK | 37.157.6.243:443 | dmp.adform.net | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.28.7.84:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 54.144.174.17:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| NL | 63.251.232.170:443 | cm.adgrx.com | tcp |
| US | 52.3.199.116:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| NL | 35.214.178.127:443 | csync.loopme.me | tcp |
| US | 104.22.24.87:443 | mwzeom.zeotap.com | tcp |
| FR | 141.94.171.213:443 | pixel.onaudience.com | tcp |
| DE | 18.158.212.148:443 | x.bidswitch.net | tcp |
| IE | 63.33.112.209:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 207.198.113.90:443 | pixel-sync.sitescout.com | tcp |
| NL | 64.158.223.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | uipus.semasio.net | udp |
| US | 50.57.31.206:443 | uipus.semasio.net | tcp |
| US | 8.8.8.8:53 | sync.bumlam.com | udp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DE | 31.172.81.158:443 | sync.bumlam.com | tcp |
| US | 8.8.8.8:53 | 84.7.28.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.174.144.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.232.251.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.24.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.178.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.212.158.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.199.3.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.112.33.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.113.198.207.in-addr.arpa | udp |
| US | 3.230.62.22:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | 206.31.57.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.81.172.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.62.230.3.in-addr.arpa | udp |
| NL | 216.52.2.86:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| NL | 185.89.210.180:443 | ib.adnxs.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| NL | 213.19.162.41:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 172.64.154.159:443 | c.sf-syn.com | udp |
| US | 216.105.38.9:443 | analytics.slashdotmedia.com | tcp |
| US | 8.8.8.8:53 | 413293f548b612fbb32780958f7bb1d0.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| NL | 142.250.179.162:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 162.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| DE | 35.157.117.145:443 | pm.w55c.net | tcp |
| NL | 142.250.179.162:443 | googleads.g.doubleclick.net | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| IE | 108.129.25.174:443 | aa.agkn.com | tcp |
| US | 8.8.8.8:53 | blip.bizrate.com | udp |
| US | 192.138.218.96:443 | blip.bizrate.com | tcp |
| US | 8.8.8.8:53 | pxl.connexity.net | udp |
| US | 64.19.224.208:443 | pxl.connexity.net | tcp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.117.157.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.25.129.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.218.138.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.224.19.64.in-addr.arpa | udp |
| US | 172.217.164.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| SE | 213.155.156.167:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.154.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| FR | 141.94.161.158:443 | green.erne.co | tcp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 141.94.171.216:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | ads.playground.xyz | udp |
| US | 199.127.204.171:443 | sync.1rx.io | tcp |
| US | 34.102.253.54:443 | ads.playground.xyz | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 158.161.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.253.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.204.127.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | wj32.org | udp |
| US | 162.243.25.33:443 | wj32.org | tcp |
| US | 104.16.57.101:443 | static.cloudflareinsights.com | tcp |
| NL | 213.19.162.41:443 | fastlane.rubiconproject.com | tcp |
| DE | 18.158.165.237:443 | btlr.sharethrough.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| FR | 185.86.139.58:443 | prg.smartadserver.com | tcp |
| NL | 216.52.2.86:443 | ce.lijit.com | tcp |
| US | 216.105.38.9:443 | analytics.slashdotmedia.com | tcp |
| US | 8.8.8.8:53 | 9.57.101.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61d18637efd38366ae5f4796cb0be1ce.safeframe.googlesyndication.com | udp |
| NL | 142.250.179.161:443 | 61d18637efd38366ae5f4796cb0be1ce.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | fw.adsafeprotected.com | udp |
| IE | 52.208.125.174:443 | fw.adsafeprotected.com | tcp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | tcp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | tcp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| US | 104.18.26.193:443 | dsum-sec.casalemedia.com | udp |
| US | 18.239.50.77:443 | static.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | 174.125.208.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.26.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.50.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | bid.g.doubleclick.net | udp |
| US | 18.205.223.236:443 | dt.adsafeprotected.com | tcp |
| US | 18.205.223.236:443 | dt.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ads.everesttech.net | udp |
| US | 34.192.43.77:443 | ads.everesttech.net | tcp |
| US | 8.8.8.8:53 | 236.223.205.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.43.192.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dco-assets.everestads.net | udp |
| GB | 96.16.109.130:443 | dco-assets.everestads.net | tcp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 8.8.8.8:53 | fksnk.com | udp |
| US | 35.170.131.1:443 | fksnk.com | tcp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | tcp | |
| US | 64.202.112.223:443 | tcp | |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.109.16.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.131.170.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.rfihub.com | udp |
| NL | 193.0.160.131:443 | a.rfihub.com | tcp |
| US | 8.8.8.8:53 | 251.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| GB | 96.16.109.130:443 | dco-assets.everestads.net | tcp |
| US | 8.8.8.8:53 | analyticspixel.microsoft.com | udp |
| US | 204.79.197.204:443 | analyticspixel.microsoft.com | tcp |
| US | 8.8.8.8:53 | 204.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | processhacker.sourceforge.net | udp |
| US | 172.64.150.145:80 | processhacker.sourceforge.net | tcp |
| US | 172.64.150.145:443 | processhacker.sourceforge.net | tcp |
| US | 8.8.8.8:53 | processhacker.sourceforge.io | udp |
| US | 172.64.148.49:443 | processhacker.sourceforge.io | tcp |
| US | 8.8.8.8:53 | 145.150.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.148.64.172.in-addr.arpa | udp |
| US | 172.217.164.35:443 | beacons.gcp.gvt2.com | udp |
| NL | 142.250.179.142:443 | google.com | udp |
| NL | 142.250.179.142:443 | google.com | tcp |
| US | 8.8.8.8:53 | 12.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 216.58.208.99:443 | beacons3.gvt2.com | tcp |
| US | 192.178.48.227:443 | beacons.gvt2.com | tcp |
| GB | 216.58.208.99:443 | beacons3.gvt2.com | udp |
| US | 172.217.164.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 227.48.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.208.58.216.in-addr.arpa | udp |
| US | 192.178.48.227:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| NL | 142.251.36.46:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 46.36.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| GB | 216.58.208.99:443 | beacons3.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| US | 142.251.176.94:443 | beacons2.gvt2.com | tcp |
| US | 142.251.176.94:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | 94.176.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 172.217.164.35:443 | beacons.gcp.gvt2.com | udp |
Files
\??\pipe\crashpad_4504_VUJMNVXUDMXPFZOS
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 45f6328cdb72ffd6faf10de4c4fe7da0 |
| SHA1 | 23dfe96022debea8d94d41f51633c512530d33b8 |
| SHA256 | dfcee240d9f7ffd47c1e593fe1c9c52a28b88af0aa7e4a124e9c2c9ea6ed3228 |
| SHA512 | 7facb656502642114e4ceae212265473d426230969e28c068d33dc8414e6f8bd334f92a8365ab5c7c65f47cb58a913e87f9a33b1714f226c86eac7e6abcd90eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2cd84f24a711c23929dd76e4a667b66c |
| SHA1 | 4dbb33f1dba4eb7b3bffe22b625bce711661fbf3 |
| SHA256 | 668aafbf8d5b29e1477128b0da1de58e41d75861f4661791d579bdbda3b6a8db |
| SHA512 | 0675a2693b23bbac7a8f346563bafe05caade1870f0c6feb35455d3572fe80a6a01af937f9e4440215d2aebcc035a3d3796ccd129da557c59ccede4152b7eddc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | acea2e859ce225e8410933dcd4114d5d |
| SHA1 | 3fadc012373515f81fd003bf5b8c097e40e7c468 |
| SHA256 | abe23a670c6835f47bc6e34ed725cb8a18c36ece4844cce31b5d8980993dde43 |
| SHA512 | fdaf966ddca9667ca1e29523e0326678570190ed3b9bc3acf5e6c965bf34908ff78cf556a54e9e72fe57a4bb0cfd121622bafdff123265d1fbdce7d2b6dd35c7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 9307261fd65afd8c4a9d3a6f17f8d82d |
| SHA1 | c8f5d87108660319a4ca676006a931857aabb373 |
| SHA256 | 76149585d15043679ad7fdf841427a6b039d1e2e9a516e24ac910701dde330e2 |
| SHA512 | 18a166dd836687dadc3930de8192f911d2b880af1c18101ee047151c74fc308cb886efe75bbf26bffd5c2d4cfd547df90ae530ba472aa7606c6dfed351adc7ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6a0b652bf7ae6b7f95c2d77a5d4b7b74 |
| SHA1 | 0d7e5675bd57a76181649de3eb24835d14b16677 |
| SHA256 | 798811e06e56bfedfe07270ba6d3d86837ce2602ed64f0843c5b011001667602 |
| SHA512 | d6874221f5420947231ad68e1a5e5a2202dfc4ada1d9eac1903fd19d718841311102163ba2a77db47775159ae6289c91e2ca6fa6ecc31cfc703637378e1e3ca7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 174dda98f61602a35a0a419b8ce3a094 |
| SHA1 | 79250a1cd5997e18eb36d2327edb8e93eeb217da |
| SHA256 | 85a80c04d61678ed3114a24826758fdfb142bd10df5f9c561191987f120a02a8 |
| SHA512 | 097ec0a5442de753167c538f4fddf40610d4c007fa9a28b5365904cbd676646834f8ea4761f9e81bde8fa18a3192ceac2d7b58e8a0d6321276948feb2510acdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 035ef6eaf7accadce25b54de51a58b43 |
| SHA1 | 6622e6858ee1349437d58c29fe821390c27cef41 |
| SHA256 | c29fd8d1af7a65a8ee253f331922fe84445b275926596fcefd3d2fcc02bf842a |
| SHA512 | d6a21d79e3f10a9c4ad0b1d0294922a90a8485170e514129b71eb0c287925d6a80b8c4d5e246faaf86964ffe4841aee78a8fb7a3b6c5d4f6fb0a82a73dfb69ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | d574939016c1b0511053c934958d9a25 |
| SHA1 | 1ebb35cd6af10fce71dcd4778c9bbcd9822ef999 |
| SHA256 | ad0ad0fb63aff674e004faa8c826d6523a79532133fc07eb9a2ee5a1d367ec66 |
| SHA512 | 48758079cd42e05da63126f5119d15a4f79520095d062b67490b637df8fc12d567eaa2ec9c083d747093fbefedc651fbb3a2bc4f2fbbab9b5a09379626a40ceb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 47590572865f2772a3bc01f6f0911a01 |
| SHA1 | 50909c31d0819ec107030d9e22263d5086346aae |
| SHA256 | 438a4da9a446cff46dcbe41618c61b8fac93cb8ba7ce12c5474c41b06592b619 |
| SHA512 | 59534e82208d67972dcc042051ee043454996de9792fc58ce0ce29ebcd37b42f0d7a13b9cbbd4a85c204c078cf7b92fa9a2902748bbc95e8c6fc6fec469be0a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9aa13392c32b03ad4edac45a435bab7e |
| SHA1 | 8fe8f7afd5ace055d233b2fdc256686ccfece9ca |
| SHA256 | eaa7c8ecfb6cb2c266f2ceea292fae5b573fa246b1c95700c005b217e28230ce |
| SHA512 | 153d2c9f7b9322eeb09ad3872e600dd9572a421887a83459b9493016e0b166c232e1b15df63bc4dc24f8d7f72e808391f073a10bac705bdcb9f1234e9dc092c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3165a415043ab9dbbc892d98781d7aae |
| SHA1 | c7f80679da2cc1e9fcc20c92d09c93df6bbff14e |
| SHA256 | d3dc61568cc6d31568759eeb0957898bfcaeb22983b2c09baceb457c3d7ded6e |
| SHA512 | fa31ea2e1f7f65718b02ae6154d49009499f59561973810078b6d1fc24004ddc2d3150f4687922cac085a0e2759420398cc54a19630d4fef98491b77c6eaa75f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6eb32b77640a24e931874859a16c91d6 |
| SHA1 | 4c8261487204c8c9b7d1e5af471c552b7dd33484 |
| SHA256 | 12479d677ee91d762513f078f8a516967ee03921231620db712e01e9bba4d48d |
| SHA512 | 6bef0fe2194d8c2d130ec42b84bf7a3fa6ec431ad409e0948b71816dab2ba0276936139cbcbe6574e2fe9dab699c98e164adf79f7551f33791f5c398d904c73e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 949b54fc5fd5e4af72fbeef7737a7c2a |
| SHA1 | 54239c3d655a97b227dd43100e7a835ccb34bfe6 |
| SHA256 | 9fcb820634d3c3816fa5d69e7156ed9ea87ed3c10f9bc81a22401890f29fc1d9 |
| SHA512 | 986ce02764c1e2ad50fc9c1792a630cbdde349295ca899c65978c66607d20242249c8c80c8b9984894e236820e877241dc554fbc313ffbf1caf1f974cbba6e3c |
C:\Users\Admin\Downloads\processhacker-2.39-bin.zip.crdownload
| MD5 | b444cf14642ce9b8d75e079166a5df0b |
| SHA1 | 8e8f8423d163d922242b8b7d85427664f77edc97 |
| SHA256 | 2afb5303e191dde688c5626c3ee545e32e52f09da3b35b20f5e0d29a418432f5 |
| SHA512 | 915b9f7c0b1374ce52fa9653ba1084741d15ff79dbb7c04d2a0f41eea8262b2f556d451bf9eefbd2d32831289908b6a1b39ce2cbcafbbfc4ae6e71d701b1aa81 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5991288ebc5231e3a6a7c85cff759555 |
| SHA1 | 59a8610f121eb6fc27ab3eb3e517320e3500c8c2 |
| SHA256 | e1d1e542d18d326c205893712d7bd37695a8cb058b60618cb91366092c41772f |
| SHA512 | 1c6f369ebd5c445f315a2973868791ea7f7bb65e5c5531f910dc9de1feedb5768ddb83472c28a6b0da59512bb0ccc8a8ad72fe772623f1a9a9ba00178c4c8dfc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ded39f2611b8a8f90c52cc16ce9ebf17 |
| SHA1 | 553edbbdbcb15e985bb32afba6cd4e45b03f9720 |
| SHA256 | ce94ca069c593ff18afb1bff1e83124d7b091bb412bde4969853d9e022d0af0d |
| SHA512 | 7385249526b0df21fab0d98fe71bc19cb2f0fe164cd65522aee4aa2809b722a31cdf4d909e43ee8253b961e60a5d76a2e8d8403fb9432bdd5bd41eaca39d0263 |
C:\Users\Admin\Downloads\processhacker-2.39-bin.zip
| MD5 | b444cf14642ce9b8d75e079166a5df0b |
| SHA1 | 8e8f8423d163d922242b8b7d85427664f77edc97 |
| SHA256 | 2afb5303e191dde688c5626c3ee545e32e52f09da3b35b20f5e0d29a418432f5 |
| SHA512 | 915b9f7c0b1374ce52fa9653ba1084741d15ff79dbb7c04d2a0f41eea8262b2f556d451bf9eefbd2d32831289908b6a1b39ce2cbcafbbfc4ae6e71d701b1aa81 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | 7ee2ea0d563d2d9ef45960a2c8b53380 |
| SHA1 | 442b1df826f8be92a859b6230c123cb2a1ba968f |
| SHA256 | 1f44b24f311ee1666c6c950d7db094a044796add137f6225d93be283b3d80ff7 |
| SHA512 | 0bcd922c8d8eb07d7e1bb2a0649b0d00671d82ae38d1dc45798bb1bc2c3e06a4be831a134e980d6b5b58530ab564357a47169938d3e335b8d9f0e1aa2e0346c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000027
| MD5 | 810be116ee36d00b3bbf33aa994c7dcd |
| SHA1 | 085da619365033eb9a01dc1c35b6d32dfff9e614 |
| SHA256 | aa9aac912cf5980e2500cd29190cacd6026746fa0d7dc2b15f3942bde732d2ce |
| SHA512 | e911307b708f9394ddfdf3c9166fe6e2f389568744c5871b8c938141d8b1269c44be153e88026b9f81965689163de5d522bf8607d4587b570f23bb74506d01e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000028
| MD5 | ee66c4b6726cae5bb0ec73a2a4163f16 |
| SHA1 | c6c7379913906407eb2de2e490030c75bfc80e8e |
| SHA256 | fe042321b5ff4450c96e3d6d7050a4d15b70b4cb52a370a32a19d66649b083a6 |
| SHA512 | 1d7678993355f8ff401856836ba45fdbbdc0c38a907ff00575804a0b3279573ca79e60767eecabb9f9d6ed5a4c95834d2ab89078f451f7851194f88f395387fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024
| MD5 | 5366c57b20a86f1956780da5e26aac90 |
| SHA1 | 927dca34817d3c42d9647a846854dad3cbcdb533 |
| SHA256 | f254eb93b015455a3c89aaf970631bc989fe2bd387f79e871b514992359651aa |
| SHA512 | 15d7127970436f2510344600f3acecc19c39a05f8e82c8a7950095386382b2e2da55883a5a9faa97b84452e67315b9ac1693b6592274c8c1c35c813dfeb543a2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | 344ee6eaad74df6b72dec90b1b888aab |
| SHA1 | 490e2d92c7f8f3934c14e6c467d8409194bb2c9a |
| SHA256 | a3cf4861c7d0c966f0ed6564f6aad6b28cbd3421a9ca4f60e2246848d249f196 |
| SHA512 | 2a9a9162d610376512a8fae2cf9eb7e5146cc44c8ebde7a12e9a3985da1718c62ae517c25b00de7c0269efab61b4850a0becfbf04382a25730dbe9cf59825a62 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\46b8a9a5-4e95-497d-ad19-d5fd32311ab2.tmp
| MD5 | d0dce20c5e05c4d3d4a4176e242996c3 |
| SHA1 | e6b643daff1cee3837310c947108110768e81e34 |
| SHA256 | 1cff21294ca9594853eeb3645218550288a62f2657c43785cdc92f63efa90f58 |
| SHA512 | 29f49411a53aa5a9bbb9fd5f50625404fe402fa83baf73d783728a49e272ef751dba26790f00a0fde3f5fe1339681a6905006f8c3bee42cbef66ea973521e94b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002d
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 912af767d13974f9bcefe142453e9df4 |
| SHA1 | e5a33a1b43a00465c1564ddf0919084948ab3a67 |
| SHA256 | fe8abc75aa26332550611ef941164889808a35720fdd0c444dc4e746f62c147a |
| SHA512 | b5fe5f81774757ea7ae89045643e42389e8689c5757fc6e167469cd71d09453b281168ff1e24594a2ef8c2b356de1dbb3d923936e0d66c931fb342c9bdb038a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58f8c3.TMP
| MD5 | fd9a864b26baa97022b8d9d515360e6c |
| SHA1 | c536d6659713df7f3b4e41166e065d0753c0f705 |
| SHA256 | 1f25419d09b5ec66986b02a20fd294dc40f172883e64b76d5b170d2e491a696c |
| SHA512 | 07f172d5d299228ceb39f3337cae4e967c28bfd36fe8ce25510a3a628ef57974e3a80ff94e2931f78bd3f23057c825c730d52b6aa88d259165af480810e48601 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bcf67192cab75363639df9e99ed92273 |
| SHA1 | 88050b786dffd977ba9ff285f8c53789ef3a0332 |
| SHA256 | 30adc1bea70d7c27882f4c3b2fcd20932f9520704ef0bb241b9cd9a3d07058ad |
| SHA512 | f2e5439d99cb464c6c2a6d484a2c5bea89cd13299d60c0c381bfcfb9e88971b456d714181811d156afd4c04800bed885bf0eb9f05b651c6dd485b97e6d67a514 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | aee91824138f9dbbec19518ca2a8a48e |
| SHA1 | 3fa90691538a729dfb43e99f60e99e6d3ff0d0a4 |
| SHA256 | c021b4ea42c73df663693ee1b8b674a4c67108fd858d82c45438c2b19033ac8d |
| SHA512 | da8a75d1d1d3f1c3a8883abaffade4bf7b249a04a991981527833db773799240f3883d7fa62679b8efbf20578fd019a1d2f7e3cd6ff6019c183e3660b4207432 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031
| MD5 | 34d5015941e4901485c7974667b85162 |
| SHA1 | cf032e42cf197dcc3022001a0bde9d74eb11ac15 |
| SHA256 | 5c166a5d40aeefd0679a14f95e47ff28824e66abba82adfa30be41803cc25632 |
| SHA512 | 42cef1d6847f535a6e8afc0469b9f5ef79ce4ab21512ac7eeda8ef9667d5f24bb33b30aba9a29824b3d853d41d4addf6bdee2042cf4fbd0a033b61657c671f0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e
| MD5 | 855222a396e632441f2501530e9009ad |
| SHA1 | de40702e042e8e9dcb380f5ca41436d4545b11a3 |
| SHA256 | 1b96a28c9fc7f82ff99da844351cc7d6a11c61ecf8c6b22bd9c21a4a0c41df77 |
| SHA512 | f906472a2a4df15600457d088983450ee30f7c3bc376c227ef3537df23290eed58f5a2d3764af064b1c28cc98fdb9e269e0b57fd83ad0ad5dfe59270cd66b7db |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002f
| MD5 | e6b7a2692ef1510eaebe65bbeb388a92 |
| SHA1 | ae67eccd1c6af0c18efcef4402d2a957956c842f |
| SHA256 | 9cdab2241d9837a44fa5beaa97caa50cee9da2e0b0d646aa46463f1f9f065d29 |
| SHA512 | 8f00fd51aecfd0adeaebf0c9d39f2e8478e6fc8ae98fd2f548e49aea96bc9bc20f2430ce536e113c58fa6b82e36ad16e771a95447be637984ae32ece58a675c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030
| MD5 | 97a860476b55a60ff5506a80593df54b |
| SHA1 | cb67db62ae8e9e2dd826a425f6cdef35a57cfd36 |
| SHA256 | 8b374f3c2cfc86a127d2872a2d68b2cc41c723f75732d462d7e6c93306e18e2d |
| SHA512 | e344c2dc00bcaef4ceaa1b938e61529208309babdbebb82f7ee87d6939c7c5d4540f38e4878c31c2377a7c4e9fbfdb923624546c6b974d1839d819bcaa75c276 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000032
| MD5 | 554706b0fb848dbdd58054e4c97f78bc |
| SHA1 | 2a5320021f3aecc50e41c2d2fbe460ec96958736 |
| SHA256 | 06f98bc7830a52ad61d6f2c4f9730008182cfe8a0fe2b4c1314b805c9f681f19 |
| SHA512 | 480c084c715f00224c4345970ece9c2a80f3d7d0645470b7e587617c84f5960bd6ef939449c57b4fc5ab44167c7beb6cc78f43a78f23a5729c13358692c3fbcb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 506e4deb5daf3087ba52026625f331f6 |
| SHA1 | 6bf2a3e47319b71c595169afcb467f74f0c4d7b1 |
| SHA256 | 4e89a6303b0a3d4cadb8444a8ab8a6cd3e4140fba377d7a063814dd1fab63afa |
| SHA512 | 7dd2a9acc3e5063563808bea00a0cd5a21626f1ae5f9209ef9a4edadbdd4c9dd85cf70efc21914062a7e157d21eb7fe5017d2a085b06865cd968a1f746beafc2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ad188848fd1fceadb0654b504c412df9 |
| SHA1 | dc357ed5e8a08e77b3e0772e9082d72d6a02d915 |
| SHA256 | 7597110d42be62bd74710a444e71144e6e1bfe4a11acc0dfd4bf4c276f3b473a |
| SHA512 | 09f1f068a7c61d2ea509aa5ed77d863dd981b00ecfc32e2fc1a775011c3310a90a28baf7102aa2642360c868c2cd3c23d43f0d58859135dcb3f2b8702277a4d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 095c1987a32f4f4f516ece9bc8dedbc8 |
| SHA1 | dfd19ee33305e3237bd4511ee13d20ca43185ced |
| SHA256 | fe259277664652209ea1621520756df0d0d8e0dec13311ce922e45db58989c9e |
| SHA512 | f539816d23880d6f06a7620be0764b3c440a3880e3ad39ee7d75340ed189555b0e022d03b762f242a41d24b965468a7c5778db8e0b372cfbd053c1f742a30c7d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 34fb5e8ba1f5cc01200fe15cdd7fec98 |
| SHA1 | 44a18eb43b45f73119bcf3b22ea656baba33b12e |
| SHA256 | 95fd41c5635ad13cb2d58d02e853737de42b644a59a46f4e6099d98d9cd94649 |
| SHA512 | c7736fa2a04ec6b54af235ab3b882bdc6531ca22eba4e7a0bbd7faae17639ae2a889765a5a6680c16a20d396cf65220bf690a37790861acbd557c31d6255d832 |