Malware Analysis Report

2024-11-16 13:07

Sample ID 240327-y3emgabb86
Target https://github.com/moom825/Discord-RAT-2.0/releases/download/2.0/release.zip
Tags
discordrat persistence rat rootkit stealer
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

Threat Level: Known bad

The file https://github.com/moom825/Discord-RAT-2.0/releases/download/2.0/release.zip was found to be: Known bad.

Malicious Activity Summary

discordrat persistence rat rootkit stealer

Discord RAT

Loads dropped DLL

Executes dropped EXE

Modifies data under HKEY_USERS

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

Checks processor information in registry

Enumerates system info in registry

Modifies registry class

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Checks SCSI registry key(s)

Suspicious behavior: GetForegroundWindowSpam

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

Uses Task Scheduler COM API

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-03-27 20:18

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-03-27 20:18

Reported

2024-03-27 20:28

Platform

win10v2004-20240319-en

Max time kernel

612s

Max time network

618s

Command Line

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/moom825/Discord-RAT-2.0/releases/download/2.0/release.zip

Signatures

Discord RAT

stealer rootkit rat persistence discordrat

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A

Checks processor information in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision C:\Program Files\Mozilla Firefox\firefox.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies data under HKEY_USERS

Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133560443142898925" C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Key created \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Modifies registry class

Description Indicator Process Target
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\MRUListEx = ffffffff C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\NodeSlot = "4" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell\SniffedFolderType = "Generic" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\MRUListEx = 00000000ffffffff C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1 = 14002e803accbfb42cdb4c42b0297fe99a87c6410000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\NodeSlot = "3" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\MRUListEx = ffffffff C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 0202 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 0100000000000000ffffffff C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616193" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0 = 54003100000000007b58e4a21000736c6f626f7a00003e0009000400efbe7b5855a27b58e4a22e0000002633020000000900000000000000000000000000000051fd3a0073006c006f0062006f007a00000016000000 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell\SniffedFolderType = "Generic" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0000000001000000ffffffff C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0 C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616193" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU C:\Program Files\Mozilla Firefox\firefox.exe N/A
Key created \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3 C:\Program Files\Mozilla Firefox\firefox.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeShutdownPrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Google\Chrome\Application\chrome.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A
N/A N/A C:\Program Files\Mozilla Firefox\firefox.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 2280 wrote to memory of 2460 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2460 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2412 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2776 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 2776 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe
PID 2280 wrote to memory of 3672 N/A C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe

Uses Task Scheduler COM API

persistence

Processes

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/moom825/Discord-RAT-2.0/releases/download/2.0/release.zip

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbe6ee9758,0x7ffbe6ee9768,0x7ffbe6ee9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1668 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2128 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2264 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2988 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5416 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5504 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5356 --field-trial-handle=1900,i,10043342130338428546,729907658273153740,131072 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Desktop\sloboz\builder.exe

"C:\Users\Admin\Desktop\sloboz\builder.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffbe6ee9758,0x7ffbe6ee9768,0x7ffbe6ee9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1660 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2076 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2272 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2992 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3000 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4036 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5168 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5228 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe" --reenable-autoupdates --system-level

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5360 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0x254,0x258,0x25c,0x230,0x260,0x7ff741e07688,0x7ff741e07698,0x7ff741e076a8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=2308 --field-trial-handle=2808,i,4621512294509789388,1545966267740426092,262144 --variations-seed-version /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5356 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5180 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=2516 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5300 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=3016 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5584 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4624 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5788 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5912 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=1716 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5112 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5600 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=3152 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6404 --field-trial-handle=1944,i,4342159154455019186,18435860197428334501,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffbe6ee9758,0x7ffbe6ee9768,0x7ffbe6ee9778

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1740 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:2

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2148 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2164 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2968 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2976 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe

"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4620 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5052 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5236 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5224 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5264 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2972 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3304 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:8

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5340 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4568 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5720 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Google\Chrome\Application\chrome.exe

"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5980 --field-trial-handle=1828,i,16691414697126926279,7616366037001171208,131072 /prefetch:1

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.0.1703327627\2043939537" -parentBuildID 20221007134813 -prefsHandle 1896 -prefMapHandle 1888 -prefsLen 20671 -prefMapSize 233414 -appDir "C:\Program Files\Mozilla Firefox\browser" - {eec4f901-d255-454c-be3f-652797a887fd} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 1976 1fa4b9eae58 gpu

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.1.756417158\1272819867" -parentBuildID 20221007134813 -prefsHandle 2348 -prefMapHandle 2336 -prefsLen 20707 -prefMapSize 233414 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9669e592-0713-4209-8de9-2797d9fa281d} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 2376 1fa4b4ee258 socket

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.2.1633422241\1434196237" -childID 1 -isForBrowser -prefsHandle 2968 -prefMapHandle 3092 -prefsLen 20810 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9d7074e8-2796-4bff-9053-7deb4ce06a8f} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 2936 1fa4f7bc158 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.3.1222941186\410694886" -childID 2 -isForBrowser -prefsHandle 3560 -prefMapHandle 1016 -prefsLen 25988 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0279162a-7542-4e09-95e0-98057720641b} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 3252 1fa4df7e058 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.4.184519455\495935988" -childID 3 -isForBrowser -prefsHandle 4144 -prefMapHandle 4140 -prefsLen 26047 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {cf427224-6bdf-4429-b39c-e99e49a59c04} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 4156 1fa50d32058 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.5.1870510566\394200011" -childID 4 -isForBrowser -prefsHandle 1712 -prefMapHandle 5140 -prefsLen 26047 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9618d9a8-bd1c-49c4-902e-5ba248aa66c3} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5144 1fa4b9ed558 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.6.543578555\467653852" -childID 5 -isForBrowser -prefsHandle 5228 -prefMapHandle 5232 -prefsLen 26047 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7bd08f8-6694-436d-98e5-f5bcabeeb929} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5216 1fa3ed2e458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.7.542489774\838738031" -childID 6 -isForBrowser -prefsHandle 5244 -prefMapHandle 5304 -prefsLen 26047 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4600a190-b293-43a5-9a88-5b1a6420c0c4} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5292 1fa4f77d858 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.8.1350842048\1860725717" -childID 7 -isForBrowser -prefsHandle 5304 -prefMapHandle 5256 -prefsLen 26047 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {65cc3213-1ca8-4894-a3c4-2127393d01cf} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5952 1fa53b65e58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.9.491119584\115442487" -childID 8 -isForBrowser -prefsHandle 2864 -prefMapHandle 3444 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {640285db-1065-4b61-8d94-1eb2247a8089} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 2872 1fa528b9258 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.10.577353694\1602652081" -childID 9 -isForBrowser -prefsHandle 3828 -prefMapHandle 4312 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0fb315fd-2281-4770-858c-f89d6a9dbd73} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 4352 1fa52857d58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.11.1993499079\1100634507" -childID 10 -isForBrowser -prefsHandle 6300 -prefMapHandle 4176 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {67fcb74f-f077-4d13-a5d1-0665d12a4ef8} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 6316 1fa4cdbd458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.12.60114820\1132945928" -childID 11 -isForBrowser -prefsHandle 6336 -prefMapHandle 6332 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {56cd30ce-d199-483e-854c-685987c35c7f} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 6320 1fa4cdc1458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.13.378879032\270619191" -childID 12 -isForBrowser -prefsHandle 5500 -prefMapHandle 1592 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2ac37ce5-58bd-4e92-9562-318eb16119f2} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5984 1fa53216b58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.14.989259722\883682400" -childID 13 -isForBrowser -prefsHandle 6764 -prefMapHandle 5552 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c4a32b01-f575-4283-acd0-fa630e5f6f6a} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 5228 1fa52858f58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.15.312058481\1367127526" -parentBuildID 20221007134813 -prefsHandle 7904 -prefMapHandle 7908 -prefsLen 26566 -prefMapSize 233414 -appDir "C:\Program Files\Mozilla Firefox\browser" - {27510628-465f-46bd-92a3-99873ab77aba} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 7896 1fa567adc58 rdd

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.16.1128545436\2070626400" -childID 14 -isForBrowser -prefsHandle 5412 -prefMapHandle 6404 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d06d90ea-8c3c-49b5-b8cb-269f1087f5de} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 6408 1fa53b2df58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.17.988723173\1917193844" -childID 15 -isForBrowser -prefsHandle 7620 -prefMapHandle 7624 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {530353b1-f44d-4edf-8f1d-b0282f05cfd6} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 4860 1fa57026458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.18.1247955799\206611516" -childID 16 -isForBrowser -prefsHandle 10456 -prefMapHandle 10388 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c38a4f31-abd3-4fbf-9c98-9d27cc9e60bd} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 10464 1fa57025558 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.19.1094829995\585580540" -childID 17 -isForBrowser -prefsHandle 10224 -prefMapHandle 10220 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d2b8aefb-0039-4416-9416-14844c3b1c16} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 10212 1fa572ad558 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.20.964309149\2132725875" -childID 18 -isForBrowser -prefsHandle 10076 -prefMapHandle 10072 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c2fe0d63-ae86-4852-80b3-512266415bbe} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 10084 1fa572ae758 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.21.1680145593\1137162902" -childID 19 -isForBrowser -prefsHandle 9884 -prefMapHandle 9880 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {aea6c516-bbd2-4c47-ac52-b8a5171d1e18} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 9896 1fa572aed58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.22.669793110\1895349795" -childID 20 -isForBrowser -prefsHandle 7512 -prefMapHandle 7508 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3e7fe0c6-2092-4f7c-a007-43aa48ba9c98} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 7520 1fa4f77e758 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.23.1224119938\1179578660" -childID 21 -isForBrowser -prefsHandle 7312 -prefMapHandle 7308 -prefsLen 26566 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9cb80d17-4c0f-4334-8738-ab251ab56bdd} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 7320 1fa4f77f358 tab

C:\Program Files\7-Zip\7zG.exe

"C:\Program Files\7-Zip\7zG.exe" a -i#7zMap1418:96:7zEvent25713 -ad -saa -- "C:\Users\Admin\Desktop\sloboz\Client-built"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.24.2261960\1086557855" -childID 22 -isForBrowser -prefsHandle 9356 -prefMapHandle 5036 -prefsLen 26575 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {09b8dee3-c1bd-48ec-9fc4-1c28cf62b065} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 8704 1fa534aa858 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.25.612802455\1733513356" -childID 23 -isForBrowser -prefsHandle 8592 -prefMapHandle 8572 -prefsLen 26575 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9e3b2135-a28e-4d31-a0d1-b46f6ff9247e} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 8756 1fa56713258 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.26.1228102240\407085346" -childID 24 -isForBrowser -prefsHandle 8508 -prefMapHandle 8412 -prefsLen 26575 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {25775c10-497e-4d9c-804c-a7477e17cd92} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 8516 1fa3ed5f858 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.27.1598654771\538724557" -childID 25 -isForBrowser -prefsHandle 7528 -prefMapHandle 7384 -prefsLen 26575 -prefMapSize 233414 -jsInitHandle 1332 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3fa7c05e-f137-46e1-8979-2a53e47fcebb} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 7416 1fa573a0158 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="2788.28.915668296\1432734141" -parentBuildID 20221007134813 -sandboxingKind 1 -prefsHandle 7188 -prefMapHandle 7192 -prefsLen 26575 -prefMapSize 233414 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ee1df6ef-0625-458a-804a-d298663a7df8} 2788 "\\.\pipe\gecko-crash-server-pipe.2788" 7216 1fa50e5f858 utility

C:\Users\Admin\Desktop\sloboz\Client-built.exe

"C:\Users\Admin\Desktop\sloboz\Client-built.exe"

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /0

C:\Users\Admin\Desktop\sloboz\Client-built.exe

"C:\Users\Admin\Desktop\sloboz\Client-built.exe"

C:\Users\Admin\Desktop\sloboz\Client-built.exe

"C:\Users\Admin\Desktop\sloboz\Client-built.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=5668 --field-trial-handle=2808,i,4621512294509789388,1545966267740426092,262144 --variations-seed-version /prefetch:8

C:\Users\Admin\Desktop\sloboz\builder.exe

"C:\Users\Admin\Desktop\sloboz\builder.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.0.765874052\1954497757" -parentBuildID 20221007134813 -prefsHandle 1696 -prefMapHandle 1688 -prefsLen 21069 -prefMapSize 233553 -appDir "C:\Program Files\Mozilla Firefox\browser" - {7f5c2dac-3925-4cc1-8d78-aff3877154f8} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 1792 2e397ded458 gpu

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.1.1383187497\50919326" -parentBuildID 20221007134813 -prefsHandle 2184 -prefMapHandle 2180 -prefsLen 21069 -prefMapSize 233553 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {576193eb-f9b2-433f-b3b4-a3f99279bfec} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 2196 2e38b6f4758 socket

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.2.1698572852\643332451" -childID 1 -isForBrowser -prefsHandle 2844 -prefMapHandle 3140 -prefsLen 21530 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {1774e8fd-1652-48bf-88fc-49d73ce7593c} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 3112 2e39bb2d458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.3.1507292453\1126168512" -childID 2 -isForBrowser -prefsHandle 3552 -prefMapHandle 1052 -prefsLen 26708 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2b8fed3c-290d-416f-9cfd-4a8e49bd9c76} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 3544 2e39caa6658 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.4.522898609\357153319" -childID 3 -isForBrowser -prefsHandle 3960 -prefMapHandle 3956 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {9b9cb9fa-6b0e-4385-873a-9eb72324a7fa} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 3964 2e39d129158 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.5.950801945\1965914295" -childID 4 -isForBrowser -prefsHandle 5088 -prefMapHandle 5104 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {835f9201-d01d-40e6-b31a-368dc8c51034} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 5108 2e39e38fe58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.6.1449210510\86260249" -childID 5 -isForBrowser -prefsHandle 5616 -prefMapHandle 5612 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e3eec27d-a548-4a3e-9348-84f746106826} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 5588 2e39e962258 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.7.864088961\1555877970" -childID 6 -isForBrowser -prefsHandle 5632 -prefMapHandle 5624 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {567460ff-28ff-4dad-af48-75329088ef17} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 5656 2e39f9cd458 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.8.238820137\1518933754" -childID 7 -isForBrowser -prefsHandle 6028 -prefMapHandle 6024 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0b20cc84-5b55-48fb-83fa-ed7a9f67f1fc} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 6040 2e39f9cce58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.9.410345005\2070114786" -childID 8 -isForBrowser -prefsHandle 6208 -prefMapHandle 6152 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3bb761b0-7856-430f-a7b4-be4bfdc07273} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 6200 2e39fc64d58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.10.691921647\892100655" -childID 9 -isForBrowser -prefsHandle 10368 -prefMapHandle 10252 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {efb3c861-f602-410b-8271-6f2b0ab0629d} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 10360 2e3a0851158 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.11.865106648\546034359" -childID 10 -isForBrowser -prefsHandle 10108 -prefMapHandle 10104 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {40310a27-3555-46d7-96b2-97b87ddda538} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 10116 2e3a0851d58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.12.1843065104\1776224637" -childID 11 -isForBrowser -prefsHandle 10348 -prefMapHandle 10036 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {c9360415-6b98-4b30-a4af-26eb24fe39ac} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 10044 2e39aff7358 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.13.703259753\709713625" -parentBuildID 20221007134813 -prefsHandle 9448 -prefMapHandle 9840 -prefsLen 26767 -prefMapSize 233553 -appDir "C:\Program Files\Mozilla Firefox\browser" - {1cce3d16-da81-4cd0-bec6-18477e9ef447} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 9500 2e3a25fd858 rdd

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.14.164824029\1128932028" -childID 12 -isForBrowser -prefsHandle 9356 -prefMapHandle 9348 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {df584aad-6b2a-4c4c-9427-f4588ffeca4e} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 9336 2e3a2756358 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.15.1867704585\1474150798" -parentBuildID 20221007134813 -sandboxingKind 1 -prefsHandle 8804 -prefMapHandle 8808 -prefsLen 26767 -prefMapSize 233553 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5684d840-0a3a-4c34-ac60-c007fbb4a20e} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 8796 2e39e73a158 utility

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.16.110413737\630294118" -childID 13 -isForBrowser -prefsHandle 3984 -prefMapHandle 9348 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5a46acb4-5f5f-4fd4-9e2a-2fb7549ec54c} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 8932 2e3a0a35958 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.17.241470853\206307146" -childID 14 -isForBrowser -prefsHandle 4708 -prefMapHandle 2448 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7cbd54b5-2b31-40be-85b9-b6c0c47eb944} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 10260 2e3a0b2be58 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.18.323979653\1641138042" -childID 15 -isForBrowser -prefsHandle 8524 -prefMapHandle 8520 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7cc256e2-002a-4c80-8cc0-3889ebfd0ce5} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 8852 2e3a0c18958 tab

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.19.1372469548\773313315" -childID 16 -isForBrowser -prefsHandle 6204 -prefMapHandle 9324 -prefsLen 26767 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {20a9e150-7717-4da8-b33f-bd3a6be74f8e} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 9140 2e38b665358 tab

C:\Users\Admin\Desktop\sloboz\Client-built.exe

"C:\Users\Admin\Desktop\sloboz\Client-built.exe"

C:\Program Files\Mozilla Firefox\firefox.exe

"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="3488.20.187114446\1072920920" -childID 17 -isForBrowser -prefsHandle 9144 -prefMapHandle 9152 -prefsLen 26776 -prefMapSize 233553 -jsInitHandle 1116 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {698455ac-0a85-4fa0-a332-97eb397ee9ab} 3488 "\\.\pipe\gecko-crash-server-pipe.3488" 10048 2e39e38f558 tab

Network

Country Destination Domain Proto
US 13.107.246.64:443 tcp
US 8.8.8.8:53 github.com udp
US 8.8.8.8:53 133.32.126.40.in-addr.arpa udp
US 8.8.8.8:53 106.201.58.216.in-addr.arpa udp
DE 140.82.121.4:443 github.com tcp
DE 140.82.121.4:443 github.com tcp
US 8.8.8.8:53 objects.githubusercontent.com udp
US 185.199.108.133:443 objects.githubusercontent.com tcp
US 8.8.8.8:53 59.134.221.88.in-addr.arpa udp
US 8.8.8.8:53 4.121.82.140.in-addr.arpa udp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
US 8.8.8.8:53 9.228.82.20.in-addr.arpa udp
US 8.8.8.8:53 97.17.167.52.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 41.110.16.96.in-addr.arpa udp
US 8.8.8.8:53 57.169.31.20.in-addr.arpa udp
US 8.8.8.8:53 133.211.185.52.in-addr.arpa udp
US 8.8.8.8:53 209.205.72.20.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 67.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 4.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 clients2.google.com udp
GB 142.250.200.46:443 clients2.google.com udp
GB 142.250.200.46:443 clients2.google.com tcp
US 8.8.8.8:53 26.165.165.52.in-addr.arpa udp
US 8.8.8.8:53 56.126.166.20.in-addr.arpa udp
US 8.8.8.8:53 www.microsoft.com udp
GB 104.78.177.227:80 www.microsoft.com tcp
US 8.8.8.8:53 227.177.78.104.in-addr.arpa udp
GB 104.78.177.227:80 www.microsoft.com tcp
US 8.8.8.8:53 140.71.91.104.in-addr.arpa udp
US 13.107.246.64:443 tcp
US 8.8.8.8:53 yopmail.com udp
FR 87.98.250.141:80 yopmail.com tcp
FR 87.98.250.141:80 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
US 8.8.8.8:53 141.250.98.87.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 10.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 227.179.250.142.in-addr.arpa udp
FR 87.98.250.141:443 yopmail.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 content-autofill.googleapis.com udp
GB 142.250.187.202:443 content-autofill.googleapis.com tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
GB 216.58.201.98:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.14:443 fundingchoicesmessages.google.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
GB 142.250.178.2:443 cm.g.doubleclick.net tcp
US 104.18.36.155:443 dsum-sec.casalemedia.com tcp
US 8.8.8.8:53 193.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
GB 142.250.178.2:443 cm.g.doubleclick.net tcp
US 8.8.8.8:53 ib.adnxs.com udp
GB 142.250.178.14:443 fundingchoicesmessages.google.com udp
DE 37.252.171.52:443 ib.adnxs.com tcp
US 8.8.8.8:53 imasdk.googleapis.com udp
US 104.18.36.155:443 dsum-sec.casalemedia.com udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
US 8.8.8.8:53 fw.adsafeprotected.com udp
US 8.8.8.8:53 s0.2mdn.net udp
IE 52.31.63.125:443 fw.adsafeprotected.com tcp
GB 142.250.179.230:443 s0.2mdn.net tcp
GB 142.250.178.2:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 csi.gstatic.com udp
GB 142.250.179.230:443 s0.2mdn.net udp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
IE 74.125.193.120:443 csi.gstatic.com tcp
IE 74.125.193.120:443 csi.gstatic.com tcp
GB 216.58.212.194:443 googleads4.g.doubleclick.net tcp
BE 142.251.168.156:443 bid.g.doubleclick.net tcp
GB 142.250.178.14:443 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 19.134.221.88.in-addr.arpa udp
US 8.8.8.8:53 52.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 125.63.31.52.in-addr.arpa udp
US 8.8.8.8:53 120.193.125.74.in-addr.arpa udp
US 8.8.8.8:53 230.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 194.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 156.168.251.142.in-addr.arpa udp
US 8.8.8.8:53 89.189.138.108.in-addr.arpa udp
IE 74.125.193.120:443 csi.gstatic.com udp
US 8.8.8.8:53 unified.adsafeprotected.com udp
IE 54.246.157.139:443 unified.adsafeprotected.com tcp
US 8.8.8.8:53 static.adsafeprotected.com udp
US 8.8.8.8:53 dt.adsafeprotected.com udp
IT 18.66.196.26:443 static.adsafeprotected.com tcp
IT 18.66.196.26:443 static.adsafeprotected.com tcp
US 35.165.230.130:443 dt.adsafeprotected.com tcp
US 35.165.230.130:443 dt.adsafeprotected.com tcp
US 35.165.230.130:443 dt.adsafeprotected.com tcp
US 35.165.230.130:443 dt.adsafeprotected.com tcp
US 8.8.8.8:53 gcdn.2mdn.net udp
GB 142.250.187.202:443 imasdk.googleapis.com udp
GB 216.58.212.238:443 gcdn.2mdn.net tcp
GB 216.58.212.194:443 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 www.googletagservices.com udp
US 8.8.8.8:53 r1---sn-5hneknes.c.2mdn.net udp
NL 74.125.8.198:443 r1---sn-5hneknes.c.2mdn.net tcp
US 8.8.8.8:53 139.157.246.54.in-addr.arpa udp
US 8.8.8.8:53 26.196.66.18.in-addr.arpa udp
US 8.8.8.8:53 130.230.165.35.in-addr.arpa udp
US 8.8.8.8:53 238.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 198.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
NL 74.125.8.198:443 r1---sn-5hneknes.c.2mdn.net udp
GB 216.58.201.98:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 ade.googlesyndication.com udp
GB 142.250.187.226:443 ade.googlesyndication.com tcp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
GB 142.250.179.230:443 s0.2mdn.net udp
US 8.8.8.8:53 d.agkn.com udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 d5p.de17a.com udp
US 8.8.8.8:53 odr.mookie1.com udp
US 8.8.8.8:53 rtb2-useast.e-volution.ai udp
US 8.8.8.8:53 ads.avads.net udp
US 8.8.8.8:53 gtrace.mediago.io udp
IE 54.72.77.89:443 pr-bh.ybp.yahoo.com tcp
DE 3.68.134.198:443 d.agkn.com tcp
NL 35.214.168.80:443 gtrace.mediago.io tcp
US 174.137.133.49:443 rtb2-useast.e-volution.ai tcp
US 34.128.133.112:443 ads.avads.net tcp
SE 213.155.156.164:443 d5p.de17a.com tcp
US 34.160.236.64:443 odr.mookie1.com tcp
US 8.8.8.8:53 89.77.72.54.in-addr.arpa udp
US 8.8.8.8:53 112.133.128.34.in-addr.arpa udp
US 8.8.8.8:53 80.168.214.35.in-addr.arpa udp
US 8.8.8.8:53 198.134.68.3.in-addr.arpa udp
US 8.8.8.8:53 64.236.160.34.in-addr.arpa udp
US 8.8.8.8:53 164.156.155.213.in-addr.arpa udp
US 8.8.8.8:53 49.133.137.174.in-addr.arpa udp
US 34.128.133.112:443 ads.avads.net udp
GB 142.250.187.226:443 ade.googlesyndication.com udp
US 8.8.8.8:53 19.229.111.52.in-addr.arpa udp
US 8.8.8.8:53 beacons.gcp.gvt2.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.200.46:443 clients2.google.com udp
GB 142.250.200.46:443 clients2.google.com tcp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 200.197.79.204.in-addr.arpa udp
GB 142.250.187.202:443 imasdk.googleapis.com udp
US 8.8.8.8:53 91.16.208.104.in-addr.arpa udp
US 8.8.8.8:53 mega.nz udp
LU 31.216.144.5:443 mega.nz tcp
LU 31.216.144.5:443 mega.nz tcp
US 8.8.8.8:53 mega.io udp
LU 89.44.169.132:443 mega.io tcp
LU 89.44.169.132:443 mega.io tcp
LU 31.216.144.5:443 mega.nz tcp
US 8.8.8.8:53 5.144.216.31.in-addr.arpa udp
US 8.8.8.8:53 g.api.mega.co.nz udp
GB 142.250.187.202:443 imasdk.googleapis.com udp
US 8.8.8.8:53 132.169.44.89.in-addr.arpa udp
LU 66.203.125.11:443 g.api.mega.co.nz tcp
US 8.8.8.8:53 eu.static.mega.co.nz udp
US 8.8.8.8:53 11.125.203.66.in-addr.arpa udp
LU 66.203.124.37:443 eu.static.mega.co.nz tcp
LU 66.203.124.37:443 eu.static.mega.co.nz tcp
US 8.8.8.8:53 37.124.203.66.in-addr.arpa udp
LU 66.203.124.37:443 eu.static.mega.co.nz tcp
N/A 127.0.0.1:51064 tcp
US 8.8.8.8:53 shavar.services.mozilla.com udp
US 8.8.8.8:53 push.services.mozilla.com udp
US 8.8.8.8:53 content-signature-2.cdn.mozilla.net udp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 firefox.settings.services.mozilla.com udp
US 34.160.144.191:443 content-signature-2.cdn.mozilla.net tcp
US 8.8.8.8:53 prod.content-signature-chains.prod.webservices.mozgcp.net udp
US 34.149.100.209:443 firefox.settings.services.mozilla.com tcp
US 8.8.8.8:53 prod.remote-settings.prod.webservices.mozgcp.net udp
US 34.117.237.239:443 contile.services.mozilla.com tcp
US 52.25.97.240:443 shavar.services.mozilla.com tcp
US 8.8.8.8:53 autopush.prod.mozaws.net udp
US 8.8.8.8:53 prod.content-signature-chains.prod.webservices.mozgcp.net udp
US 8.8.8.8:53 prod.remote-settings.prod.webservices.mozgcp.net udp
US 8.8.8.8:53 autopush.prod.mozaws.net udp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 shavar.prod.mozaws.net udp
US 34.107.243.93:443 autopush.prod.mozaws.net tcp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 shavar.prod.mozaws.net udp
US 8.8.8.8:53 240.97.25.52.in-addr.arpa udp
US 8.8.8.8:53 tracking-protection.cdn.mozilla.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 tracking-protection.prod.mozaws.net udp
US 8.8.8.8:53 tracking-protection.prod.mozaws.net udp
US 8.8.8.8:53 tracking-protection.cdn.mozilla.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 www.google.com udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
GB 142.250.178.4:443 www.google.com udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.149.100.209:443 prod.remote-settings.prod.webservices.mozgcp.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
N/A 127.0.0.1:51070 tcp
US 8.8.8.8:53 filebin.net udp
DE 88.99.137.18:80 filebin.net tcp
DE 88.99.137.18:80 filebin.net tcp
US 8.8.8.8:53 filebin.net udp
US 8.8.8.8:53 filebin.net udp
DE 88.99.137.18:443 filebin.net tcp
DE 88.99.137.18:443 filebin.net tcp
DE 88.99.137.18:443 filebin.net tcp
DE 88.99.137.18:443 filebin.net tcp
DE 88.99.137.18:443 filebin.net tcp
DE 88.99.137.18:443 filebin.net tcp
US 8.8.8.8:53 18.137.99.88.in-addr.arpa udp
US 8.8.8.8:53 226.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 226.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 8.8.8.8:53 www3.l.google.com udp
GB 142.250.178.14:443 www3.l.google.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 www3.l.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.14:443 www3.l.google.com udp
US 8.8.8.8:53 filestack.com udp
US 151.101.66.133:80 filestack.com tcp
US 151.101.66.133:80 filestack.com tcp
US 8.8.8.8:53 filestack.com udp
US 8.8.8.8:53 filestack.com udp
US 151.101.66.133:443 filestack.com tcp
US 8.8.8.8:53 www.filestack.com udp
US 151.101.2.133:443 www.filestack.com tcp
US 8.8.8.8:53 d.sni.global.fastly.net udp
US 8.8.8.8:53 d.sni.global.fastly.net udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 8.8.8.8:53 static.filestackapi.com udp
US 8.8.8.8:53 cdn.polyfill.io udp
US 8.8.8.8:53 www.googleoptimize.com udp
US 8.8.8.8:53 script.crazyegg.com udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 8.8.8.8:53 jsdelivr.map.fastly.net udp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 151.101.2.133:443 static.filestackapi.com tcp
US 8.8.8.8:53 www.googleoptimize.com udp
GB 216.58.213.14:443 www.googleoptimize.com tcp
US 104.19.147.8:443 script.crazyegg.com tcp
US 8.8.8.8:53 jsdelivr.map.fastly.net udp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 8.8.8.8:53 www.googleoptimize.com udp
US 8.8.8.8:53 script.crazyegg.com.cdn.cloudflare.net udp
US 8.8.8.8:53 133.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 133.66.101.151.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 14.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 8.147.19.104.in-addr.arpa udp
US 8.8.8.8:53 14.25.17.104.in-addr.arpa udp
US 8.8.8.8:53 script.crazyegg.com.cdn.cloudflare.net udp
US 104.17.25.14:443 cdnjs.cloudflare.com udp
US 8.8.8.8:53 cdn.polyfill.io.cdn.cloudflare.net udp
US 104.18.53.237:443 cdn.polyfill.io.cdn.cloudflare.net tcp
US 151.101.1.229:443 jsdelivr.map.fastly.net udp
GB 216.58.213.14:443 www.googleoptimize.com udp
US 8.8.8.8:53 cdn.polyfill.io.cdn.cloudflare.net udp
US 8.8.8.8:53 cdn.segment.com udp
US 8.8.8.8:53 embed.tawk.to udp
US 8.8.8.8:53 a.omappapi.com udp
US 104.22.24.131:443 embed.tawk.to tcp
US 8.8.8.8:53 embed.tawk.to udp
IT 108.138.203.175:443 cdn.segment.com tcp
US 8.8.8.8:53 d296je7bbdd650.cloudfront.net udp
GB 143.244.38.136:443 a.omappapi.com tcp
US 104.19.147.8:443 script.crazyegg.com.cdn.cloudflare.net tcp
US 8.8.8.8:53 embed.tawk.to udp
US 8.8.8.8:53 d296je7bbdd650.cloudfront.net udp
US 8.8.8.8:53 omapp.b-cdn.net udp
US 8.8.8.8:53 omapp.b-cdn.net udp
US 151.101.2.133:443 static.filestackapi.com tcp
US 8.8.8.8:53 api.omappapi.com udp
US 172.66.42.248:443 api.omappapi.com tcp
US 8.8.8.8:53 api.omappapi.com udp
US 8.8.8.8:53 api.omappapi.com udp
US 8.8.8.8:53 geo.cookie-script.com udp
US 8.8.8.8:53 snap.licdn.com udp
US 8.8.8.8:53 static.ads-twitter.com udp
US 8.8.8.8:53 bat.bing.com udp
US 8.8.8.8:53 connect.facebook.net udp
US 8.8.8.8:53 geo.cookie-script.com udp
US 8.8.8.8:53 dual-a-0001.a-msedge.net udp
US 8.8.8.8:53 platform.twitter.map.fastly.net udp
NL 185.14.184.154:443 geo.cookie-script.com tcp
GB 88.221.134.89:443 snap.licdn.com tcp
GB 199.232.56.157:443 platform.twitter.map.fastly.net tcp
US 204.79.197.200:443 dual-a-0001.a-msedge.net tcp
IT 108.138.203.175:443 d296je7bbdd650.cloudfront.net tcp
GB 163.70.147.23:443 connect.facebook.net tcp
US 8.8.8.8:53 geo.cookie-script.com udp
US 8.8.8.8:53 dual-a-0001.a-msedge.net udp
US 8.8.8.8:53 platform.twitter.map.fastly.net udp
US 104.22.24.131:443 embed.tawk.to udp
US 8.8.8.8:53 a1916.dscg2.akamai.net udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 237.53.18.104.in-addr.arpa udp
US 8.8.8.8:53 232.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 131.24.22.104.in-addr.arpa udp
US 8.8.8.8:53 136.38.244.143.in-addr.arpa udp
US 8.8.8.8:53 175.203.138.108.in-addr.arpa udp
US 8.8.8.8:53 248.42.66.172.in-addr.arpa udp
US 8.8.8.8:53 157.56.232.199.in-addr.arpa udp
US 8.8.8.8:53 23.147.70.163.in-addr.arpa udp
US 8.8.8.8:53 154.184.14.185.in-addr.arpa udp
US 8.8.8.8:53 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 a1916.dscg2.akamai.net udp
GB 163.70.147.23:443 scontent.xx.fbcdn.net udp
US 8.8.8.8:53 t.co udp
US 8.8.8.8:53 analytics.twitter.com udp
US 104.244.42.195:443 analytics.twitter.com tcp
US 8.8.8.8:53 s.twitter.com udp
US 104.244.42.133:443 t.co tcp
US 8.8.8.8:53 t.co udp
US 8.8.8.8:53 s.twitter.com udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 8.8.8.8:53 t.co udp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 8.8.8.8:53 l-0005.l-msedge.net udp
US 8.8.8.8:53 l-0005.l-msedge.net udp
US 8.8.8.8:53 upload.filestackapi.com udp
US 8.8.8.8:53 pagestates-tracking.crazyegg.com udp
US 8.8.8.8:53 assets-tracking.crazyegg.com udp
IE 54.216.51.180:443 upload.filestackapi.com tcp
US 8.8.8.8:53 upload.filestackapi.com udp
IT 108.138.199.20:443 pagestates-tracking.crazyegg.com tcp
US 8.8.8.8:53 pagestates-tracking.crazyegg.com udp
IT 3.160.212.39:443 assets-tracking.crazyegg.com tcp
US 8.8.8.8:53 assets-tracking.crazyegg.com udp
US 8.8.8.8:53 upload.filestackapi.com udp
US 8.8.8.8:53 pagestates-tracking.crazyegg.com udp
US 8.8.8.8:53 assets-tracking.crazyegg.com udp
IE 54.216.51.180:443 upload.filestackapi.com tcp
US 8.8.8.8:53 www.clarity.ms udp
US 8.8.8.8:53 www.facebook.com udp
US 8.8.8.8:53 part-0036.t-0009.t-msedge.net udp
US 13.107.246.64:443 part-0036.t-0009.t-msedge.net tcp
GB 157.240.221.35:443 www.facebook.com tcp
US 8.8.8.8:53 star-mini.c10r.facebook.com udp
US 8.8.8.8:53 part-0036.t-0009.t-msedge.net udp
US 8.8.8.8:53 star-mini.c10r.facebook.com udp
US 8.8.8.8:53 89.134.221.88.in-addr.arpa udp
US 8.8.8.8:53 195.42.244.104.in-addr.arpa udp
US 8.8.8.8:53 133.42.244.104.in-addr.arpa udp
US 8.8.8.8:53 14.42.107.13.in-addr.arpa udp
US 8.8.8.8:53 180.51.216.54.in-addr.arpa udp
US 8.8.8.8:53 20.199.138.108.in-addr.arpa udp
US 8.8.8.8:53 39.212.160.3.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 35.221.240.157.in-addr.arpa udp
GB 157.240.221.35:443 www.facebook.com udp
US 8.8.8.8:53 api.segment.io udp
US 8.8.8.8:53 tracking.crazyegg.com udp
US 8.8.8.8:53 api.segment.io udp
US 35.81.90.104:443 api.segment.io tcp
IE 54.171.167.100:443 tracking.crazyegg.com tcp
US 8.8.8.8:53 tracking.crazyegg.com udp
US 8.8.8.8:53 cloud.filestackapi.com udp
US 3.221.131.72:443 cloud.filestackapi.com tcp
US 8.8.8.8:53 cloud.filestackapi.com udp
US 8.8.8.8:53 api.segment.io udp
US 8.8.8.8:53 tracking.crazyegg.com udp
US 8.8.8.8:53 www.linkedin.com udp
US 3.221.131.72:443 cloud.filestackapi.com tcp
US 13.107.42.14:443 www.linkedin.com tcp
US 8.8.8.8:53 js.hs-analytics.net udp
US 8.8.8.8:53 img.en25.com udp
US 8.8.8.8:53 cdn.pendo.io udp
US 104.16.76.186:443 js.hs-analytics.net tcp
US 8.8.8.8:53 js.hs-analytics.net udp
US 8.8.8.8:53 cdn.pendo.io udp
US 34.36.213.229:443 cdn.pendo.io tcp
US 8.8.8.8:53 js.hs-analytics.net udp
GB 23.59.67.49:443 img.en25.com tcp
US 8.8.8.8:53 e5763.x.akamaiedge.net udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 cdn.pendo.io udp
US 8.8.8.8:53 e5763.x.akamaiedge.net udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
BE 64.233.184.156:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 h.clarity.ms udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 52.224.31.34:443 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com tcp
US 8.8.8.8:53 z.omappapi.com udp
US 34.36.213.229:443 cdn.pendo.io udp
US 172.66.42.248:443 z.omappapi.com tcp
US 8.8.8.8:53 z.omappapi.com udp
BE 64.233.184.156:443 stats.g.doubleclick.net udp
US 8.8.8.8:53 z.omappapi.com udp
US 8.8.8.8:53 100.167.171.54.in-addr.arpa udp
US 8.8.8.8:53 72.131.221.3.in-addr.arpa udp
US 8.8.8.8:53 104.90.81.35.in-addr.arpa udp
US 8.8.8.8:53 186.76.16.104.in-addr.arpa udp
US 8.8.8.8:53 229.213.36.34.in-addr.arpa udp
US 8.8.8.8:53 49.67.59.23.in-addr.arpa udp
US 8.8.8.8:53 156.184.233.64.in-addr.arpa udp
US 8.8.8.8:53 34.31.224.52.in-addr.arpa udp
US 104.22.24.131:443 embed.tawk.to udp
US 8.8.8.8:53 c.clarity.ms udp
IE 68.219.88.97:443 c.clarity.ms tcp
US 8.8.8.8:53 c-msn-com-nsatc.trafficmanager.net udp
US 8.8.8.8:53 js-na1.hs-scripts.com udp
US 8.8.8.8:53 c-msn-com-nsatc.trafficmanager.net udp
US 8.8.8.8:53 consent.cookie-script.com udp
US 8.8.8.8:53 js-na1.hs-scripts.com udp
US 8.8.8.8:53 data.pendo.io udp
US 104.16.190.89:443 js-na1.hs-scripts.com tcp
GB 142.250.178.4:443 www.google.com tcp
DE 116.203.90.127:443 consent.cookie-script.com tcp
US 8.8.8.8:53 consent.cookie-script.com udp
US 8.8.8.8:53 js-na1.hs-scripts.com udp
US 34.107.204.85:443 data.pendo.io tcp
US 8.8.8.8:53 data.pendo.io udp
US 34.107.204.85:443 data.pendo.io tcp
US 34.107.204.85:443 data.pendo.io tcp
US 8.8.8.8:53 data.pendo.io udp
US 8.8.8.8:53 consent.cookie-script.com udp
US 8.8.8.8:53 va.tawk.to udp
US 8.8.8.8:53 c.bing.com udp
US 204.79.197.200:443 c.bing.com tcp
GB 142.250.178.4:443 www.google.com udp
US 104.22.25.131:443 va.tawk.to tcp
US 8.8.8.8:53 va.tawk.to udp
US 104.22.25.131:443 va.tawk.to tcp
US 104.22.25.131:443 va.tawk.to tcp
US 8.8.8.8:53 js.hsleadflows.net udp
US 8.8.8.8:53 va.tawk.to udp
US 8.8.8.8:53 js.hubspot.com udp
US 8.8.8.8:53 js.hsadspixel.net udp
US 8.8.8.8:53 js.hs-banner.com udp
US 8.8.8.8:53 js.usemessages.com udp
US 8.8.8.8:53 js.hsleadflows.net udp
US 104.18.122.12:443 js.hsleadflows.net tcp
US 8.8.8.8:53 js.hubspot.com udp
US 8.8.8.8:53 js.hs-banner.com udp
US 104.19.155.83:443 js.hubspot.com tcp
US 172.64.153.27:443 js.hs-banner.com tcp
US 104.17.230.163:443 js.hsadspixel.net tcp
US 8.8.8.8:53 js.hsleadflows.net udp
US 104.17.249.168:443 js.usemessages.com tcp
US 8.8.8.8:53 js.hubspot.com udp
US 8.8.8.8:53 js.hs-banner.com udp
US 104.22.25.131:443 va.tawk.to udp
US 8.8.8.8:53 js.hsadspixel.net udp
US 8.8.8.8:53 js.usemessages.com udp
US 8.8.8.8:53 js.hsadspixel.net udp
US 8.8.8.8:53 js.usemessages.com udp
US 8.8.8.8:53 97.88.219.68.in-addr.arpa udp
US 8.8.8.8:53 89.190.16.104.in-addr.arpa udp
US 8.8.8.8:53 85.204.107.34.in-addr.arpa udp
US 8.8.8.8:53 127.90.203.116.in-addr.arpa udp
US 8.8.8.8:53 131.25.22.104.in-addr.arpa udp
US 8.8.8.8:53 12.122.18.104.in-addr.arpa udp
US 8.8.8.8:53 83.155.19.104.in-addr.arpa udp
US 8.8.8.8:53 27.153.64.172.in-addr.arpa udp
US 8.8.8.8:53 163.230.17.104.in-addr.arpa udp
US 8.8.8.8:53 168.249.17.104.in-addr.arpa udp
US 8.8.8.8:53 api.hubspot.com udp
US 8.8.8.8:53 cta-service-cms2.hubspot.com udp
US 104.19.154.83:443 cta-service-cms2.hubspot.com tcp
US 104.19.154.83:443 cta-service-cms2.hubspot.com tcp
US 8.8.8.8:53 api.hubspot.com udp
US 8.8.8.8:53 cta-service-cms2.hubspot.com udp
US 104.19.154.83:443 cta-service-cms2.hubspot.com tcp
US 8.8.8.8:53 api.hubspot.com udp
US 8.8.8.8:53 cta-service-cms2.hubspot.com udp
US 8.8.8.8:53 perf-na1.hsforms.com udp
US 8.8.8.8:53 perf-na1.hsforms.com udp
US 104.17.207.249:443 perf-na1.hsforms.com tcp
US 8.8.8.8:53 perf-na1.hsforms.com udp
US 104.17.207.249:443 perf-na1.hsforms.com udp
US 8.8.8.8:53 api.hubapi.com udp
US 104.17.204.204:443 api.hubapi.com tcp
US 8.8.8.8:53 api.hubapi.com udp
US 8.8.8.8:53 forms.hubspot.com udp
US 8.8.8.8:53 api.hubapi.com udp
US 8.8.8.8:53 forms.hubspot.com udp
US 104.19.155.83:443 forms.hubspot.com tcp
US 8.8.8.8:53 forms.hubspot.com udp
US 8.8.8.8:53 83.154.19.104.in-addr.arpa udp
US 8.8.8.8:53 249.207.17.104.in-addr.arpa udp
US 8.8.8.8:53 204.204.17.104.in-addr.arpa udp
US 8.8.8.8:53 vsa9.tawk.to udp
US 8.8.8.8:53 vsa9.tawk.to udp
US 104.22.24.131:443 vsa9.tawk.to tcp
US 8.8.8.8:53 vsa9.tawk.to udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 8.8.8.8:53 fastupload.io udp
US 104.26.9.249:80 fastupload.io tcp
US 104.26.9.249:80 fastupload.io tcp
US 8.8.8.8:53 fastupload.io udp
US 8.8.8.8:53 fastupload.io udp
US 104.26.9.249:443 fastupload.io tcp
US 8.8.8.8:53 vsa98.tawk.to udp
US 104.22.24.131:443 vsa98.tawk.to tcp
US 8.8.8.8:53 vsa98.tawk.to udp
US 104.26.9.249:443 fastupload.io udp
US 8.8.8.8:53 249.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 cmp.setupcmp.com udp
US 8.8.8.8:53 cdn.jsdelivr.net udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 stpd.cloud udp
US 8.8.8.8:53 www.statcounter.com udp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
US 8.8.8.8:53 cmp.setupcmp.com udp
US 104.26.5.6:443 cmp.setupcmp.com tcp
US 8.8.8.8:53 jsdelivr.map.fastly.net udp
US 104.26.5.6:443 cmp.setupcmp.com tcp
US 8.8.8.8:53 www.statcounter.com udp
US 104.20.94.138:443 www.statcounter.com tcp
GB 172.217.169.34:443 securepubads.g.doubleclick.net tcp
US 104.18.30.49:443 stpd.cloud tcp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 8.8.8.8:53 securepubads46.g.doubleclick.net udp
US 8.8.8.8:53 cmp.setupcmp.com udp
US 8.8.8.8:53 www.statcounter.com udp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 8.8.8.8:53 securepubads46.g.doubleclick.net udp
US 8.8.8.8:53 stpd.cloud udp
US 8.8.8.8:53 dual-a-0001.a-msedge.net udp
US 8.8.8.8:53 h.clarity.ms udp
US 8.8.8.8:53 stpd.cloud udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
GB 172.217.169.34:443 securepubads46.g.doubleclick.net udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 8.8.8.8:53 6.5.26.104.in-addr.arpa udp
US 8.8.8.8:53 138.94.20.104.in-addr.arpa udp
US 8.8.8.8:53 34.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 49.30.18.104.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 8.8.8.8:53 vmss-clarity-ingest-eus-c.eastus.cloudapp.azure.com udp
US 8.8.8.8:53 c.statcounter.com udp
US 8.8.8.8:53 c.statcounter.com udp
US 104.20.95.138:443 c.statcounter.com tcp
US 8.8.8.8:53 c.statcounter.com udp
US 151.101.1.229:443 cdn.jsdelivr.net udp
US 8.8.8.8:53 138.95.20.104.in-addr.arpa udp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 script.4dex.io udp
US 8.8.8.8:53 oa.openxcdn.net udp
US 8.8.8.8:53 connectid.analytics.yahoo.com udp
US 8.8.8.8:53 cdn.id5-sync.com udp
DE 162.19.138.118:443 id5-sync.com tcp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 invstatic101.creativecdn.com udp
US 8.8.8.8:53 static.criteo.net udp
NL 178.250.1.11:443 gum.criteo.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 cdn.prod.uidapi.com udp
US 104.26.9.169:443 script.4dex.io tcp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 cdn-ima.33across.com udp
IT 99.86.159.38:443 connectid.analytics.yahoo.com tcp
US 8.8.8.8:53 gum.nl3.vip.prod.criteo.com udp
US 34.96.70.87:443 invstatic101.creativecdn.com tcp
US 34.102.146.192:443 oa.openxcdn.net tcp
US 8.8.8.8:53 id5-sync.com udp
NL 178.250.1.3:443 static.criteo.net tcp
US 104.22.52.86:443 cdn.id5-sync.com tcp
US 8.8.8.8:53 script.4dex.io udp
US 8.8.8.8:53 prebid-stag.setupad.net udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 ib.adnxs.com udp
IT 99.86.159.232:443 cdn.prod.uidapi.com tcp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 8.8.8.8:53 gum.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 prebid-eu.creativecdn.com udp
US 8.8.8.8:53 adx.adform.net udp
US 8.8.8.8:53 script.4dex.io udp
IT 108.139.243.72:443 tags.crwdcntrl.net tcp
US 8.8.8.8:53 prebid.a-mo.net udp
US 104.18.35.167:443 cdn-ima.33across.com tcp
US 104.26.9.178:443 prebid-stag.setupad.net tcp
US 104.26.9.178:443 prebid-stag.setupad.net tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
US 8.8.8.8:53 mp.4dex.io udp
DE 37.252.171.53:443 ib.adnxs.com tcp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 d1402xccwihzsp.cloudfront.net udp
US 8.8.8.8:53 invstatic101.creativecdn.com udp
US 8.8.8.8:53 oa.openxcdn.net udp
DK 37.157.6.232:443 adx.adform.net tcp
NL 185.184.8.90:443 prebid-eu.creativecdn.com tcp
NL 213.19.162.21:443 fastlane.rubiconproject.com tcp
NL 145.40.97.67:443 prebid.a-mo.net tcp
US 8.8.8.8:53 d1402xccwihzsp.cloudfront.net udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 oa.openxcdn.net udp
US 172.64.153.78:443 mp.4dex.io tcp
DE 18.157.230.4:443 tlx.3lift.com tcp
US 8.8.8.8:53 static.nl3.vip.prod.criteo.net udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 d2avimlm6gq3h9.cloudfront.net udp
US 8.8.8.8:53 static.nl3.vip.prod.criteo.net udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 prebid-stag.setupad.net udp
US 8.8.8.8:53 cdn-ima.33across.com.cdn.cloudflare.net udp
US 8.8.8.8:53 169.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 118.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 87.70.96.34.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
US 8.8.8.8:53 192.146.102.34.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 86.52.22.104.in-addr.arpa udp
US 8.8.8.8:53 38.159.86.99.in-addr.arpa udp
US 8.8.8.8:53 232.159.86.99.in-addr.arpa udp
US 8.8.8.8:53 72.243.139.108.in-addr.arpa udp
US 8.8.8.8:53 167.35.18.104.in-addr.arpa udp
US 8.8.8.8:53 178.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 53.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 67.97.40.145.in-addr.arpa udp
US 8.8.8.8:53 232.6.157.37.in-addr.arpa udp
US 8.8.8.8:53 21.162.19.213.in-addr.arpa udp
US 8.8.8.8:53 78.153.64.172.in-addr.arpa udp
US 8.8.8.8:53 4.230.157.18.in-addr.arpa udp
US 8.8.8.8:53 cdn-ima.33across.com.cdn.cloudflare.net udp
US 8.8.8.8:53 prebid-stag.setupad.net udp
US 8.8.8.8:53 cadmus.script.ac udp
DE 162.19.138.119:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 bidder.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 ib.anycast.adnxs.com udp
US 8.8.8.8:53 track-eu.adformnet.akadns.net udp
US 104.26.9.169:443 script.4dex.io tcp
US 8.8.8.8:53 bidder.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 ib.anycast.adnxs.com udp
US 8.8.8.8:53 track-eu.adformnet.akadns.net udp
US 8.8.8.8:53 prebid-eu.creativecdn.com udp
US 8.8.8.8:53 tagged-by.rubiconproject.net.akadns.net udp
US 8.8.8.8:53 am6-prebid.a-mx.net udp
US 8.8.8.8:53 prebid-eu.creativecdn.com udp
US 8.8.8.8:53 tagged-by.rubiconproject.net.akadns.net udp
US 104.18.22.145:443 cadmus.script.ac tcp
US 34.96.70.87:443 invstatic101.creativecdn.com udp
US 34.102.146.192:443 oa.openxcdn.net udp
US 8.8.8.8:53 am6-prebid.a-mx.net udp
US 8.8.8.8:53 mp.4dex.io udp
US 8.8.8.8:53 oajs.openx.net udp
US 8.8.8.8:53 eu-tlx.3lift.com udp
US 8.8.8.8:53 mp.4dex.io udp
US 8.8.8.8:53 eu-tlx.3lift.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 cadmus.script.ac udp
US 8.8.8.8:53 oajs.openx.net udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
US 8.8.8.8:53 cadmus.script.ac udp
US 8.8.8.8:53 oajs.openx.net udp
US 8.8.8.8:53 ups.analytics.yahoo.com udp
US 34.120.107.143:443 oajs.openx.net tcp
NL 178.250.1.11:443 gum.nl3.vip.prod.criteo.com tcp
US 8.8.8.8:53 dnacdn.net udp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
US 8.8.8.8:53 ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 8.8.8.8:53 ats-eks.eu-central-1.dcs-online-targeting-prd.aws.oath.cloud udp
US 8.8.8.8:53 dnacdn.net udp
US 8.8.8.8:53 1x1.a-mo.net udp
IE 52.50.52.56:443 bcp.crwdcntrl.net tcp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 3.231.245.47:443 1x1.a-mo.net tcp
US 8.8.8.8:53 1x1.a-mo.net udp
US 8.8.8.8:53 ag.gbc.criteo.com udp
US 8.8.8.8:53 gem.gbc.criteo.com udp
US 8.8.8.8:53 c28edd1ed8c39e8ff3004c0f9c5017be.safeframe.googlesyndication.com udp
US 8.8.8.8:53 cm.adform.net udp
US 8.8.8.8:53 1x1.a-mo.net udp
US 8.8.8.8:53 gbc4.nl3.eu.criteo.com udp
NL 185.235.87.124:443 gbc4.nl3.eu.criteo.com tcp
GB 216.58.204.65:443 c28edd1ed8c39e8ff3004c0f9c5017be.safeframe.googlesyndication.com tcp
US 34.120.107.143:443 oajs.openx.net udp
US 8.8.8.8:53 pagead-googlehosted.l.google.com udp
FR 185.235.86.90:443 gem.gbc.criteo.com tcp
US 8.8.8.8:53 google-bidout-d.openx.net udp
DK 37.157.6.237:443 cm.adform.net tcp
US 8.8.8.8:53 gbc3.fr3.eu.criteo.com udp
US 8.8.8.8:53 gbc4.nl3.eu.criteo.com udp
US 8.8.8.8:53 pagead-googlehosted.l.google.com udp
US 34.98.64.218:443 google-bidout-d.openx.net tcp
US 8.8.8.8:53 google-bidout-d.openx.net udp
US 8.8.8.8:53 gbc3.fr3.eu.criteo.com udp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 google-bidout-d.openx.net udp
GB 216.58.204.65:443 pagead-googlehosted.l.google.com udp
US 34.98.64.218:443 google-bidout-d.openx.net udp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 119.138.19.162.in-addr.arpa udp
US 8.8.8.8:53 145.22.18.104.in-addr.arpa udp
US 8.8.8.8:53 143.107.120.34.in-addr.arpa udp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 124.87.235.185.in-addr.arpa udp
US 8.8.8.8:53 56.52.50.52.in-addr.arpa udp
US 8.8.8.8:53 47.245.231.3.in-addr.arpa udp
US 8.8.8.8:53 65.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 90.86.235.185.in-addr.arpa udp
US 8.8.8.8:53 237.6.157.37.in-addr.arpa udp
US 8.8.8.8:53 218.64.98.34.in-addr.arpa udp
GB 142.250.178.4:443 www.google.com tcp
US 76.223.111.18:443 eb2.3lift.com tcp
US 8.8.8.8:53 eu-eb2.3lift.com udp
US 8.8.8.8:53 eu-eb2.3lift.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 dis.criteo.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
US 8.8.8.8:53 widget.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 match.adsrvr.org udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 178.250.1.9:443 widget.nl3.vip.prod.criteo.com tcp
US 52.223.40.198:443 match.adsrvr.org tcp
US 13.107.42.14:443 px.ads.linkedin.com tcp
IE 54.247.191.105:443 pr-bh.ybp.yahoo.com tcp
US 8.8.8.8:53 pixel.rubiconproject.com udp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 widget.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 user-data-eu.bidswitch.net udp
US 8.8.8.8:53 ds-pr-bh.ybp.gysm.yahoodns.net udp
NL 213.19.162.90:443 pixel.rubiconproject.com tcp
US 8.8.8.8:53 pixel.rubiconproject.net.akadns.net udp
US 8.8.8.8:53 pixel.rubiconproject.net.akadns.net udp
US 8.8.8.8:53 ds-pr-bh.ybp.gysm.yahoodns.net udp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 105.191.247.54.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 90.162.19.213.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 eus.rubiconproject.com udp
GB 104.78.177.67:443 eus.rubiconproject.com tcp
US 8.8.8.8:53 e8960.b.akamaiedge.net udp
US 8.8.8.8:53 assets.a-mo.net udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 triplelift-match.dotomi.com udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 um.simpli.fi udp
US 8.8.8.8:53 e8960.b.akamaiedge.net udp
US 8.8.8.8:53 b1sync.zemanta.com udp
US 104.19.158.19:443 assets.a-mo.net tcp
US 54.145.45.250:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 assets.a-mo.net.cdn.cloudflare.net udp
US 54.145.45.250:443 sync.srv.stackadapt.com tcp
US 54.145.45.250:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
IE 34.255.58.76:443 match.prod.bidr.io tcp
US 52.46.130.91:443 s.amazon-adsystem.com tcp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
NL 64.158.223.137:443 triplelift-match.dotomi.com tcp
NL 35.204.74.118:443 um.simpli.fi tcp
US 64.202.112.63:443 b1sync.zemanta.com tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 assets.a-mo.net.cdn.cloudflare.net udp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 bfp.global.dual.dotomi.weighted.com.akadns.net udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 bfp.global.dual.dotomi.weighted.com.akadns.net udp
US 8.8.8.8:53 s.amazon-adsystem.com udp
US 8.8.8.8:53 um.simpli.fi udp
US 8.8.8.8:53 um.simpli.fi udp
US 8.8.8.8:53 nydc1.outbrain.org udp
US 8.8.8.8:53 nydc1.outbrain.org udp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 67.177.78.104.in-addr.arpa udp
US 8.8.8.8:53 19.158.19.104.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 76.58.255.34.in-addr.arpa udp
US 8.8.8.8:53 118.74.204.35.in-addr.arpa udp
US 8.8.8.8:53 91.130.46.52.in-addr.arpa udp
US 8.8.8.8:53 63.112.202.64.in-addr.arpa udp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 qvdt3feo.com udp
US 8.8.8.8:53 qvdt3feo.com udp
US 54.87.83.227:443 qvdt3feo.com tcp
US 54.87.83.227:443 qvdt3feo.com tcp
US 54.87.83.227:443 qvdt3feo.com tcp
US 8.8.8.8:53 token.rubiconproject.com udp
IE 34.248.72.127:443 sync.crwdcntrl.net tcp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 qvdt3feo.com udp
NL 213.19.162.80:443 token.rubiconproject.com tcp
US 8.8.8.8:53 sync.crwdcntrl.net udp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
NL 213.19.162.80:443 token.rubiconproject.com tcp
NL 213.19.162.80:443 token.rubiconproject.com tcp
NL 213.19.162.90:443 token.rubiconproject.com tcp
NL 213.19.162.90:443 token.rubiconproject.com tcp
NL 213.19.162.90:443 token.rubiconproject.com tcp
NL 213.19.162.80:443 token.rubiconproject.com tcp
NL 213.19.162.90:443 token.rubiconproject.com tcp
NL 213.19.162.90:443 token.rubiconproject.com tcp
US 8.8.8.8:53 aax-eu.amazon-adsystem.com udp
IE 67.220.228.200:443 aax-eu.amazon-adsystem.com tcp
US 8.8.8.8:53 127.72.248.34.in-addr.arpa udp
US 8.8.8.8:53 80.162.19.213.in-addr.arpa udp
US 8.8.8.8:53 200.228.220.67.in-addr.arpa udp
US 8.8.8.8:53 227.83.87.54.in-addr.arpa udp
US 8.8.8.8:53 hb.yahoo.net udp
US 8.8.8.8:53 live.primis.tech udp
US 8.8.8.8:53 capi.connatix.com udp
GB 104.91.71.141:443 hb.yahoo.net tcp
US 8.8.8.8:53 hb.yahoo.net udp
US 8.8.8.8:53 match.sharethrough.com udp
IT 108.138.199.90:443 live.primis.tech tcp
US 8.8.8.8:53 d2wcz8sc48ztgm.cloudfront.net udp
US 8.8.8.8:53 capi.connatix.com.cdn.cloudflare.net udp
US 104.18.41.104:443 capi.connatix.com.cdn.cloudflare.net tcp
US 8.8.8.8:53 hb.yahoo.net udp
DE 18.197.6.219:443 match.sharethrough.com tcp
US 8.8.8.8:53 d2wcz8sc48ztgm.cloudfront.net udp
US 8.8.8.8:53 match-eu-central-1-ecs.sharethrough.com udp
US 8.8.8.8:53 capi.connatix.com.cdn.cloudflare.net udp
US 8.8.8.8:53 match-eu-central-1-ecs.sharethrough.com udp
US 104.18.41.104:443 capi.connatix.com.cdn.cloudflare.net udp
IT 108.138.199.90:443 d2wcz8sc48ztgm.cloudfront.net udp
US 8.8.8.8:53 141.71.91.104.in-addr.arpa udp
US 8.8.8.8:53 104.41.18.104.in-addr.arpa udp
US 8.8.8.8:53 90.199.138.108.in-addr.arpa udp
US 8.8.8.8:53 219.6.197.18.in-addr.arpa udp
US 104.26.9.249:443 fastupload.io udp
US 8.8.8.8:53 chromewebstore.googleapis.com udp
US 8.8.8.8:53 chromewebstore.googleapis.com udp
GB 142.250.200.10:443 chromewebstore.googleapis.com tcp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 yopmail.com udp
FR 87.98.250.141:80 yopmail.com tcp
US 8.8.8.8:53 yopmail.com udp
FR 87.98.250.141:80 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
GB 142.250.178.14:443 www3.l.google.com tcp
GB 142.250.178.14:443 www3.l.google.com udp
US 8.8.8.8:53 p4-fwhj7jzg5vguy-wjch53iwoa3xzptx-if-v6exp3-v4.metric.gstatic.com udp
GB 172.217.16.227:443 p4-fwhj7jzg5vguy-wjch53iwoa3xzptx-if-v6exp3-v4.metric.gstatic.com tcp
US 8.8.8.8:53 p4-fwhj7jzg5vguy-wjch53iwoa3xzptx-if-v6exp3-v4.metric.gstatic.com udp
US 8.8.8.8:53 p4-fwhj7jzg5vguy-wjch53iwoa3xzptx-if-v6exp3-v4.metric.gstatic.com udp
GB 172.217.16.227:443 p4-fwhj7jzg5vguy-wjch53iwoa3xzptx-if-v6exp3-v4.metric.gstatic.com udp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 227.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 s0.2mdn.net udp
GB 142.250.179.230:443 s0.2mdn.net tcp
US 8.8.8.8:53 s0.2mdn.net udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 imasdk.googleapis.com udp
GB 142.250.179.230:443 s0.2mdn.net udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
US 8.8.8.8:53 imasdk.googleapis.com udp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
GB 142.250.187.202:443 imasdk.googleapis.com udp
US 8.8.8.8:53 pm.w55c.net udp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 sync-tm.everesttech.net udp
US 8.8.8.8:53 px.ads.linkedin.com udp
US 64.202.112.63:443 b1sync.zemanta.com tcp
US 8.8.8.8:53 nydc1.outbrain.org udp
US 8.8.8.8:53 sync-dmp.aura-dsp.com udp
US 8.8.8.8:53 sync.gonet-ads.com udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
US 8.8.8.8:53 nydc1.outbrain.org udp
NL 188.42.105.220:443 sync.gonet-ads.com tcp
US 8.8.8.8:53 sync.gonet-ads.com udp
IE 52.16.107.84:443 pm.w55c.net tcp
US 104.18.25.173:443 a.tribalfusion.com tcp
US 8.8.8.8:53 cdn.w55c.net udp
US 13.107.42.14:443 px.ads.linkedin.com tcp
US 151.101.2.49:443 sync-tm.everesttech.net tcp
US 8.8.8.8:53 cdn.w55c.net udp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 sync.gonet-ads.com udp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 a.tribalfusion.com udp
US 8.8.8.8:53 l-0005.l-msedge.net udp
US 8.8.8.8:53 h2.shared.global.fastly.net udp
US 8.8.8.8:53 220.105.42.188.in-addr.arpa udp
US 8.8.8.8:53 173.25.18.104.in-addr.arpa udp
US 8.8.8.8:53 84.107.16.52.in-addr.arpa udp
US 8.8.8.8:53 49.2.101.151.in-addr.arpa udp
GB 142.250.179.230:443 s0.2mdn.net udp
US 104.18.25.173:443 a.tribalfusion.com udp
GB 142.250.179.230:443 s0.2mdn.net tcp
US 8.8.8.8:53 l-0005.l-msedge.net udp
US 8.8.8.8:53 h2.shared.global.fastly.net udp
US 8.8.8.8:53 csi.gstatic.com udp
US 8.8.8.8:53 mweb.ck.inmobi.com udp
US 142.251.112.120:443 csi.gstatic.com tcp
US 8.8.8.8:53 csi.gstatic.com udp
US 104.18.25.173:443 a.tribalfusion.com tcp
US 8.8.8.8:53 dsp-cookie.trafficmanager.net udp
US 20.253.86.149:443 dsp-cookie.trafficmanager.net tcp
US 8.8.8.8:53 user-data-eu.bidswitch.net udp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 178.250.1.9:443 widget.nl3.vip.prod.criteo.com tcp
US 8.8.8.8:53 s.tribalfusion.com udp
US 8.8.8.8:53 dsp-cookie.trafficmanager.net udp
US 8.8.8.8:53 c1.adform.net udp
US 8.8.8.8:53 rtb2-useast.e-volution.ai udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
US 142.251.112.120:443 csi.gstatic.com tcp
US 142.251.112.120:443 csi.gstatic.com tcp
US 142.251.112.120:443 csi.gstatic.com tcp
BE 142.251.168.154:443 bid.g.doubleclick.net tcp
BE 142.251.168.154:443 bid.g.doubleclick.net tcp
US 104.18.25.173:443 a.tribalfusion.com udp
US 174.137.133.49:443 rtb2-useast.e-volution.ai tcp
US 8.8.8.8:53 widget.nl3.vip.prod.criteo.com udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
US 8.8.8.8:53 e-volution.rtb-as-useast.ak-is2.net udp
DK 37.157.5.133:443 c1.adform.net tcp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
DE 37.252.171.53:443 ib.adnxs.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 178.250.1.9:443 widget.nl3.vip.prod.criteo.com tcp
US 8.8.8.8:53 e-volution.rtb-as-useast.ak-is2.net udp
US 8.8.8.8:53 track.adformnet.akadns.net udp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
GB 142.250.178.2:443 googleads4.g.doubleclick.net tcp
US 172.64.151.101:443 dsum-sec.casalemedia.com tcp
US 8.8.8.8:53 ib.anycast.adnxs.com udp
US 8.8.8.8:53 track.adformnet.akadns.net udp
US 172.64.151.101:443 dsum-sec.casalemedia.com tcp
DE 37.252.171.53:443 ib.adnxs.com tcp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 142.251.112.120:443 csi.gstatic.com udp
US 8.8.8.8:53 dsum-sec.casalemedia.com udp
US 172.64.151.101:443 dsum-sec.casalemedia.com udp
GB 142.250.178.2:443 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 ade.googlesyndication.com udp
US 8.8.8.8:53 ade.googlesyndication.com udp
US 8.8.8.8:53 120.112.251.142.in-addr.arpa udp
US 8.8.8.8:53 149.86.253.20.in-addr.arpa udp
US 8.8.8.8:53 154.168.251.142.in-addr.arpa udp
US 8.8.8.8:53 133.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
BE 142.251.168.154:443 bid.g.doubleclick.net udp
US 8.8.8.8:53 yopmail.com udp
US 162.159.134.234:443 gateway.discord.gg tcp
US 8.8.8.8:53 234.134.159.162.in-addr.arpa udp
US 162.159.134.234:443 gateway.discord.gg tcp
US 162.159.134.234:443 gateway.discord.gg tcp
US 8.8.8.8:53 99.242.123.52.in-addr.arpa udp
NL 52.142.223.178:80 tcp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 content-signature-2.cdn.mozilla.net udp
US 8.8.8.8:53 contile.services.mozilla.com udp
US 8.8.8.8:53 shavar.services.mozilla.com udp
US 34.160.144.191:443 content-signature-2.cdn.mozilla.net tcp
US 8.8.8.8:53 prod.content-signature-chains.prod.webservices.mozgcp.net udp
US 44.239.148.246:443 shavar.services.mozilla.com tcp
US 8.8.8.8:53 shavar.prod.mozaws.net udp
US 8.8.8.8:53 prod.content-signature-chains.prod.webservices.mozgcp.net udp
US 8.8.8.8:53 push.services.mozilla.com udp
US 8.8.8.8:53 shavar.prod.mozaws.net udp
US 8.8.8.8:53 firefox.settings.services.mozilla.com udp
US 8.8.8.8:53 autopush.prod.mozaws.net udp
FR 87.98.250.141:443 yopmail.com tcp
US 34.149.100.209:443 firefox.settings.services.mozilla.com tcp
US 8.8.8.8:53 prod.remote-settings.prod.webservices.mozgcp.net udp
US 8.8.8.8:53 autopush.prod.mozaws.net udp
US 8.8.8.8:53 prod.remote-settings.prod.webservices.mozgcp.net udp
US 34.107.243.93:443 autopush.prod.mozaws.net tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
US 8.8.8.8:53 tracking-protection.cdn.mozilla.net udp
US 8.8.8.8:53 246.148.239.44.in-addr.arpa udp
US 8.8.8.8:53 tracking-protection.prod.mozaws.net udp
US 34.120.158.37:443 tracking-protection.prod.mozaws.net tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
US 8.8.8.8:53 tracking-protection.cdn.mozilla.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
FR 87.98.250.141:443 yopmail.com tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 142.250.200.34:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
FR 87.98.250.141:443 yopmail.com tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 142.250.200.34:443 googleads.g.doubleclick.net tcp
GB 142.250.200.34:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 tpc.googlesyndication.com udp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 www.google.com udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 www.google.com udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.178.14:443 fundingchoicesmessages.google.com tcp
US 8.8.8.8:53 www3.l.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 www3.l.google.com udp
GB 142.250.178.14:443 www3.l.google.com udp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
GB 142.250.178.14:443 www3.l.google.com udp
US 8.8.8.8:53 tracking-protection.cdn.mozilla.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 s0.2mdn.net udp
GB 142.250.178.14:443 www3.l.google.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 66.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 sync-tm.everesttech.net udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 8.8.8.8:53 tr.blismedia.com udp
US 8.8.8.8:53 pr-bh.ybp.yahoo.com udp
US 8.8.8.8:53 c1.adform.net udp
US 8.8.8.8:53 dsp.adkernel.com udp
US 8.8.8.8:53 a.rfihub.com udp
GB 216.58.201.98:443 cm.g.doubleclick.net udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 151.101.2.49:443 sync-tm.everesttech.net tcp
US 8.8.8.8:53 h2.shared.global.fastly.net udp
IE 34.253.145.49:443 pr-bh.ybp.yahoo.com tcp
US 34.96.105.8:443 tr.blismedia.com tcp
US 174.137.133.49:443 dsp.adkernel.com tcp
US 8.8.8.8:53 ds-pr-bh.ybp.gysm.yahoodns.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
GB 216.58.212.193:443 tpc.googlesyndication.com udp
NL 193.0.160.131:443 a.rfihub.com tcp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 ds-pr-bh.ybp.gysm.yahoodns.net udp
GB 216.58.201.98:443 cm.g.doubleclick.net tcp
US 8.8.8.8:53 tr.blismedia.com udp
DK 37.157.5.84:443 c1.adform.net tcp
US 8.8.8.8:53 tr.blismedia.com udp
US 8.8.8.8:53 h2.shared.global.fastly.net udp
US 8.8.8.8:53 dsp.adkernel.com udp
US 151.101.2.49:443 h2.shared.global.fastly.net tcp
GB 142.250.179.230:443 s0.2mdn.net udp
IE 34.253.145.49:443 pr-bh.ybp.yahoo.com tcp
US 34.96.105.8:443 tr.blismedia.com tcp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 dsp.adkernel.com udp
US 8.8.8.8:53 a-emea.rfihub.com.akadns.net udp
GB 142.250.179.230:443 s0.2mdn.net tcp
US 8.8.8.8:53 track.adformnet.akadns.net udp
US 8.8.8.8:53 a-emea.rfihub.com.akadns.net udp
GB 142.250.178.2:443 googleads4.g.doubleclick.net udp
GB 142.250.178.2:443 googleads4.g.doubleclick.net tcp
US 34.96.105.8:443 tr.blismedia.com udp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
US 8.8.8.8:53 googleads4.g.doubleclick.net udp
GB 142.250.187.202:443 imasdk.googleapis.com udp
US 8.8.8.8:53 imasdk.googleapis.com udp
US 8.8.8.8:53 sync.teads.tv udp
US 8.8.8.8:53 b1sync.zemanta.com udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 onetag-sys.com udp
GB 104.78.177.107:443 sync.teads.tv tcp
US 8.8.8.8:53 e9957.e4.akamaiedge.net udp
US 8.8.8.8:53 e9957.e4.akamaiedge.net udp
DE 51.89.9.252:443 onetag-sys.com tcp
US 8.8.8.8:53 onetag-sys.com udp
US 64.74.236.95:443 b1sync.zemanta.com tcp
US 54.174.97.40:443 sync.srv.stackadapt.com tcp
NL 185.184.8.90:443 prebid-eu.creativecdn.com tcp
NL 185.184.8.90:443 prebid-eu.creativecdn.com tcp
US 35.244.159.8:443 google-bidout-d.openx.net tcp
US 8.8.8.8:53 chidc2.outbrain.org udp
US 8.8.8.8:53 84.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 8.105.96.34.in-addr.arpa udp
US 8.8.8.8:53 49.145.253.34.in-addr.arpa udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 creativecdn.com udp
US 35.244.159.8:443 us-u.openx.net udp
US 8.8.8.8:53 us-u.openx.net udp
US 8.8.8.8:53 creativecdn.com udp
DE 51.89.9.252:443 onetag-sys.com udp
US 8.8.8.8:53 tracking-protection.prod.mozaws.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
NL 35.204.74.118:443 um.simpli.fi tcp
US 8.8.8.8:53 8.159.244.35.in-addr.arpa udp
US 8.8.8.8:53 252.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 95.236.74.64.in-addr.arpa udp
US 142.251.112.120:443 csi.gstatic.com udp
US 8.8.8.8:53 csi.gstatic.com udp
US 142.251.112.120:443 csi.gstatic.com tcp
US 8.8.8.8:53 sync.search.spotxchange.com udp
BE 142.251.168.154:443 bid.g.doubleclick.net udp
US 8.8.8.8:53 bid.g.doubleclick.net udp
US 142.251.112.120:443 csi.gstatic.com tcp
BE 142.251.168.154:443 bid.g.doubleclick.net tcp
US 8.8.8.8:53 qvdt3feo.com udp
US 52.200.95.225:443 qvdt3feo.com tcp
US 8.8.8.8:53 qvdt3feo.com udp
US 8.8.8.8:53 qvdt3feo.com udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 52.200.95.225:443 qvdt3feo.com tcp
US 8.8.8.8:53 225.95.200.52.in-addr.arpa udp
US 8.8.8.8:53 partners.tremorhub.com udp
US 8.8.8.8:53 fw.adsafeprotected.com udp
US 35.169.52.227:443 partners.tremorhub.com tcp
US 8.8.8.8:53 partners-alb-1113315349.us-east-1.elb.amazonaws.com udp
IE 34.252.215.239:443 fw.adsafeprotected.com tcp
US 8.8.8.8:53 firewall-external-2134955858.eu-west-1.elb.amazonaws.com udp
US 8.8.8.8:53 partners-alb-1113315349.us-east-1.elb.amazonaws.com udp
US 8.8.8.8:53 firewall-external-2134955858.eu-west-1.elb.amazonaws.com udp
US 8.8.8.8:53 gcdn.2mdn.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
NL 178.250.1.9:443 widget.nl3.vip.prod.criteo.com tcp
US 8.8.8.8:53 widget.nl3.vip.prod.criteo.com udp
GB 216.58.212.238:443 gcdn.2mdn.net tcp
US 8.8.8.8:53 gcdn.2mdn.net udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 gcdn.2mdn.net udp
GB 216.58.212.238:443 gcdn.2mdn.net udp
US 8.8.8.8:53 www.googletagservices.com udp
US 8.8.8.8:53 static.adsafeprotected.com udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
US 8.8.8.8:53 r3---sn-5hnednsz.c.2mdn.net udp
US 8.8.8.8:53 dt.adsafeprotected.com udp
US 8.8.8.8:53 d162h6x3rxav67.cloudfront.net udp
IT 18.66.196.125:443 static.adsafeprotected.com tcp
NL 74.125.8.232:443 r3---sn-5hnednsz.c.2mdn.net tcp
US 8.8.8.8:53 r3.sn-5hnednsz.c.2mdn.net udp
US 54.90.58.161:443 dt.adsafeprotected.com tcp
US 8.8.8.8:53 dt-external-217593033.us-east-1.elb.amazonaws.com udp
GB 142.250.178.2:443 www.googletagservices.com tcp
GB 142.250.178.2:443 www.googletagservices.com tcp
US 8.8.8.8:53 r3.sn-5hnednsz.c.2mdn.net udp
US 8.8.8.8:53 d162h6x3rxav67.cloudfront.net udp
US 8.8.8.8:53 dt-external-217593033.us-east-1.elb.amazonaws.com udp
GB 142.250.178.2:443 www.googletagservices.com udp
US 8.8.8.8:53 www.googletagservices.com udp
US 8.8.8.8:53 www.googletagservices.com udp
NL 74.125.8.232:443 r3.sn-5hnednsz.c.2mdn.net udp
US 8.8.8.8:53 227.52.169.35.in-addr.arpa udp
US 8.8.8.8:53 239.215.252.34.in-addr.arpa udp
US 8.8.8.8:53 232.8.125.74.in-addr.arpa udp
US 8.8.8.8:53 125.196.66.18.in-addr.arpa udp
US 34.120.158.37:443 tracking-protection.cdn.mozilla.net tcp
NL 74.125.8.232:443 r3.sn-5hnednsz.c.2mdn.net udp
US 8.8.8.8:53 161.58.90.54.in-addr.arpa udp
FR 87.98.250.141:443 yopmail.com tcp
US 8.8.8.8:53 yopmail.com udp
US 8.8.8.8:53 ade.googlesyndication.com udp
US 8.8.8.8:53 ade.googlesyndication.com udp
N/A 127.0.0.1:52963 tcp
N/A 127.0.0.1:52966 tcp
US 162.159.134.234:443 gateway.discord.gg tcp
GB 142.250.178.4:443 www.google.com udp

Files

\??\pipe\crashpad_2280_TASHAPNREXEHZXRG

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 dcd1701e1c1e97714ba0373382433dc4
SHA1 8656bcc320703ee451f7975b4e74bf12c82c1683
SHA256 dc85e8737e5d0a416a09c23d2e389b2ec40d78c741d67b093daf25a793368200
SHA512 905d094fc60b5781c89dda720d30e2fa81eb93447b35e4336b026b6989e4fde48253953c850cf40a42f99cef9eb68abe9a4919092b4eca0146b5225ad2d9599b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json

MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA512 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

C:\Users\Admin\Downloads\release.zip

MD5 06a4fcd5eb3a39d7f50a0709de9900db
SHA1 50d089e915f69313a5187569cda4e6dec2d55ca7
SHA256 c13a0cd7c2c2fd577703bff026b72ed81b51266afa047328c8ff1c4a4d965c97
SHA512 75e5f637fd3282d088b1c0c1efd0de8a128f681e4ac66d6303d205471fe68b4fbf0356a21d803aff2cca6def455abad8619fedc8c7d51e574640eda0df561f9b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 fd78c38d1e5cd4ca143bd91d6903b4dd
SHA1 453ef54f2214cf813de6c08ab7daedad1f525330
SHA256 e840dde38069237860da47d7675ffb6ac478449c4a8dddb142c510019f8d29e2
SHA512 dad45973015f993db8b8081ec04c3850863dd88372e6b9af5adb3d06d6fd1b5dc76fdd8edfc4f321801e09571ae4630160f9fedf310472f6f5a84bf52bdfb115

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 189bc2855af4052a056f74f7436a1b8a
SHA1 47c72992e783399de509174162740305f61e108e
SHA256 984810f6753b4225332688429496f854ebb536f6b6257b46b8576cdcaf21034f
SHA512 95a82cd7c035cd821b36ba108968037e819e694f09784febfea55297cfedb6110a545bcba70b555d9a7d9e78a9ba23e96ec93194ac9a77210fc28dfb99637aae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 58657e70f1fbc06625ce0b0d90adbabf
SHA1 a1e5aade32b8a28a85988fb132e31d6b41132b59
SHA256 147ab3b8c25a9a14b79238c3b520deccd0213cb3ca0b98c32f7ac949a97bbb24
SHA512 8bb774b739a4a9e9b314cafa3f177b733ed213fa8230adfb8a10ee081725be950a12010a13c586a1ba504f85e1b1afd3112dc2bcdbbff68e08f11e34a72e9e90

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 cb750554a55c6aaf0522d18d99493983
SHA1 ded177e01368d6e53a06baee9ebdb175ea811590
SHA256 923f096c0a697b52dfcd07197d30a78e68cef8a857c5d6432e0e0938451b219b
SHA512 aaaa523bd0e812ffaec8710a4016af8c096d5659e50f69f195de92db34e668c291e7a761c4b168e8fb051e8b34efddcc6bcda97c69a985557b054d3bce002dae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1

MD5 f50f89a0a91564d0b8a211f8921aa7de
SHA1 112403a17dd69d5b9018b8cede023cb3b54eab7d
SHA256 b1e963d702392fb7224786e7d56d43973e9b9efd1b89c17814d7c558ffc0cdec
SHA512 bf8cda48cf1ec4e73f0dd1d4fa5562af1836120214edb74957430cd3e4a2783e801fa3f4ed2afb375257caeed4abe958265237d6e0aacf35a9ede7a2e8898d58

memory/5332-118-0x0000000074A80000-0x0000000075230000-memory.dmp

memory/5332-119-0x0000000000970000-0x0000000000978000-memory.dmp

memory/5332-120-0x0000000005870000-0x0000000005E14000-memory.dmp

memory/5332-121-0x0000000005360000-0x00000000053F2000-memory.dmp

memory/5332-122-0x0000000005530000-0x0000000005540000-memory.dmp

memory/5332-123-0x0000000005510000-0x000000000551A000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\CrashpadMetrics-active.pma

MD5 d9a49a7d6d5ca840cf0f0e937007e278
SHA1 90197e483cc1bf8970cb6012997b1968f43d8e78
SHA256 183acf4a52e283da352ac2e3d51d43dbdd1534325f4585b6763a4ef38151b876
SHA512 142acbf150500db5f703b3e56c42895cb4374927f6e26adb02f090cf18e9797b8f4e34b7e621de6daf03093cc0a7df73cb4328525ac7a1a4f36e2b61dfde0642

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat

MD5 4a0b907083f8afcc81fd894fb6c45d01
SHA1 7161d696223d3373ccce860cf81249d7f738a02f
SHA256 87b0af1a5d48c9852603c2cd73097e27beb903aca92354231262ceba0e276e4c
SHA512 9a917882b29ac03f6af556b1c4cfb99b5e8260a4bf9a179b91cb1a1ddf47c1cd5543b8d7f008d955320e567dd4fc0236e187717d4bda748289700b3fe920aca4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations

MD5 961e3604f228b0d10541ebf921500c86
SHA1 6e00570d9f78d9cfebe67d4da5efe546543949a7
SHA256 f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed
SHA512 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472

memory/5332-130-0x0000000005530000-0x0000000005540000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version

MD5 9eae63c7a967fc314dd311d9f46a45b7
SHA1 caba9c2c93acfe0b9ceb9ab19b992b0fc19c71cf
SHA256 4288925b0cf871c7458c22c46936efb0e903802feb991a0e1803be94ca6c251d
SHA512 bed924bff236bf5b6ce1df1db82e86c935e5830a20d9d24697efd82ca331e30604db8d04b0d692ec8541ec6deb2225bcc7d805b79f2db5726642198ecf6348b8

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log

MD5 4e6d52f65e08c6078c65016987926f6c
SHA1 558fc797574f5b933dfe84e3f8761538fc8123f7
SHA256 8c8ce70bcf4d52e6bba05570786fac06734559bc2126bfae576fd8d18fd0d220
SHA512 2ae9448ce55ff68c4310eb78bc96e607314b49e6419b592664abc9ba6e671d216079ae7b597253990ba38a97ad526480f731e1695ced474082c00b4f017daad4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0

MD5 a282a67d94ecef95aab68a9b66d08e61
SHA1 e788cf52abd566584e28989f2f1ac2458c607230
SHA256 3e4082c6df51d52392649e72499277d8dd50e7acb135f7df34ae1244ee507753
SHA512 907e5e341312d03b1c86140e2867f0f182316cb8b2f9e49635c103056abce2d9906a4bb419c0ff0b1c2d8c87ac66d36fbb3237c9154d8f512e9a1d2ab0b09013

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1

MD5 0cf6474e44be7278cc394b4227f4d2fa
SHA1 ca475ed84f639aeb0ba8a5a4d15fdb4b66f4639a
SHA256 e8da58c32b34f010a428ad636ccc185ab82d52d213e25dde7c85cb64f4c6a111
SHA512 0e63322886970780d49bfbd5a8fda24dbd7955773ed11e4af38e856f7c25c08c4e2ea04986df2ddeea75133f692364367bdfccb36c580d231312e08f3d6cb7be

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History

MD5 55fc1902e1a56ae393377cc8ae1eb69b
SHA1 0ef2fd983573a2ce3410176f925e8f10b262f3f9
SHA256 a8f161241b8cbf50bef85863ce8534cdb59a9cd8a611949c787a3685f2caf7db
SHA512 e7e63de442f4c78835e244dc35d3d06b86d3e841174e6e8a7504582cc01c648350a74628da696d17d53f2e6ed703fecb3b4be08e9007e649a5c9e38f54546c0c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG

MD5 1f790a83be2b6c41f0cf06c4af0b36a4
SHA1 6f6dcab07f3e030250338a4c87ff92608b955b15
SHA256 fc4b526896bb0eeac5eb32d4ff09a2d147e3482ae5129200701db44a942a687c
SHA512 e898a28cdc58963f01fd162479897b870e8240ad4d72ab71bc5663652daf5b4d90cdc7924c8cda63bddab3ba7dc164b86dff850d15da619da6c15762cbefe4ea

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG

MD5 bd8d22bfe7f21c216cf3809e7eaff058
SHA1 0d8b2556e6713c17691458f9e807826e2e6fd914
SHA256 0e9c9ec06887a5819687f3fd758b0a11ded27da73659d1f21d8b98051a396d79
SHA512 de66e60ea89fb651fd82533357919773ddc864d410abf5e853212e564c622745e4488c057dda9a517cb6e6cac1ac0943d4419792f83a96365861e8523fd97852

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\000003.log

MD5 e0054a7f0133ffebdd07ec88ba0244c4
SHA1 21d9cd82902e13f0f6c8a15cbb2407a56d11c223
SHA256 69335fe0a79812d2a4a63c4944e1ab70ce2a71acd17e122f37e86e819b88ae57
SHA512 2cea12ffb6ba19c986b683cc3fac363f33abc11c1f415b772bc91dd87b471680bb14381e8e7e1d9b4b2957b6c097a3f223650a44124b33c8f227353e9c0e0eae

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\LOG

MD5 ad7466684edf99a6e0d2b68e3eb6a38c
SHA1 5e57f8ae7906fda3a56dc54000f557afe8e23ab9
SHA256 e8d76cfebf3510aac39095bc7439b28d9eb5447d55b1828f962661df145b810e
SHA512 9f8200932454d009debeaf312069880990e0fd5b87cecd9331846217557b03ecef94187b1376f8eea977e204ad7e731dd090b3c0e8b048744568ea4360146b41

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG

MD5 59b9ee914fe9555d01a04c1ad25155f5
SHA1 95613c890dd39f52ba3fa3bd7861ff79c2d2c3f7
SHA256 4ff3314a50626f5d29c81531b7d9cf7a798807d0b9e18381dbfd4299dac91e78
SHA512 526dfd6800de3708cb7357f0f295894310c62ffb6507f9cf0ac40f1740ae314c9859ffc2fd95dd97610f6162a8c5988f441d00336003059675618a0b7800d1e6

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_3

MD5 c48cddd735f79a2cd20845d5156c7aec
SHA1 c9ab9ac12366787c461cba508d9b080fc96bda93
SHA256 67302c2c57f13da01726371260330cd3b22aac918624d469146b36956d9f1dea
SHA512 101e9d4d3d63091bb1244a9111a9f7734eefac204bbd2d8bb35933d2c14cf2bac410f0a037ade7b53c365abeb61dde40a0af73db22a59e1f04a3149aacc61a6c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_1

MD5 0b7051095eb539451da2563744ad6906
SHA1 6f70614587ee2511dfd7f2af382615e8dc621e6e
SHA256 33a6e3db1aa56730a189e771586a36525e283d3797843ba36bac70222b104e7a
SHA512 ec7cf7f22432871d42f6961ff6fda9354e85cdda6b7b5374d35d7801fe37eb968e45c55edb05bd1cbe7b80b545fdd4a272d73531feeb77e6ece6e39545da61b3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log

MD5 8a30a1fdd0459d9ea8b1e78a8e636856
SHA1 9d7225e97f9cfcfb225cfbfd0b0bba21d4efdd20
SHA256 88fe1d31608930f2738d102d45c75dc77acdf01a1b69bfb7e7c0281575b75e33
SHA512 b529bce870cd8165bf82f3ebf94f07552467bd0993b9d35145182e54e26fb2ae8e7bb167d88267b632757e2146f27dfddf8867db0c66e5dcc306db12ec6b7bef

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG

MD5 2183e4539bff4490959ea8114776f0c1
SHA1 9f76baa79f6d75f8fb52ba65d52bc277c0ea0933
SHA256 8844ffdee32d4af631f5c15951e536fb519d6ef00e2fd79af9014221cacfc6e4
SHA512 103ed27988dab88dc60e03382ad5ec19c8ac5e2ddfc3e8d09f5e752542023c756c8cfbcd7c63c13c5f8efbc66650d6e7bc8341738321f1d12afcf179614f1b72

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\GrShaderCache\data_0

MD5 a893431b536d325bdb1279f7a6dd68fb
SHA1 9f00f8cd25603f7dbe1db376c3521ae5bfb9b6fa
SHA256 1fe43f4712709d62995a00c54d0303d1ff1bf161894461a79abcea7bf8866810
SHA512 d40140c0cd390db2e89c9776ee89d92a437a8e9923b9e72186ceba3e3902a53e8cde740877566f767cced40628df55744495af483f6662fb3f5c9369c657ec0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG

MD5 72510c022a94ce9824c1ec7ae99d3525
SHA1 83822939e2a08e749c4a283cb183c9aeaba0f604
SHA256 a6c21f58f39c535e511e86ef4d858ff9848b2cfa79a370499c7a8ca743ca6e1c
SHA512 3cd0fe84fbe44a2a13ae5346b6dc9f5f64ef3ff44777dfc39d4846ba358c5c8fb42d176f523d24438854b52c6c3c5e3e39777eaf281355dc7a7e00ebba26cea0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\000003.log

MD5 a27837d0ca93c8d1ca81488dfb159207
SHA1 9107aafaa30fd85842bc5f8424e87e8fa0db2a44
SHA256 3041a9329ec39053a76a94d942505643c791ed7714f76eee5ea1ae0d56b70b97
SHA512 17bb68f2d21aa94372b11e6692d859055aa37f39b1009f4493d298d2af4c17d418424c1dcb6b94b13f1245f94ec0810ee8ed908051df65ade41013f7a6a6a93a

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG

MD5 d3fcb5b7f6f690758305bccce3f1ebc9
SHA1 61a5735d672834d692514d511cca1941d395ee4d
SHA256 f503f3f334f7e94671e8db962b0b72f502ab1cc9818c50ac85f1a44c4bcfb076
SHA512 3446cb144f4adcff0073b78856e0cb14c89bbf75c13a6c14e28698d279db5e056c8570a1ad8d9a596aaca1f85cc570d6e94e2ce51de1da9078e6b6e0840829c0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3

MD5 bb508df99b2fac62ef365285050f8b44
SHA1 bab860ac1848cc362cabec7b4d417267ee8a5131
SHA256 2e4936433055e6e427c502ebd61a9c298782d6099ff41d26aebc3fac0a92bd10
SHA512 4a3a6c2cbeace56d18556358fd3e69d17afddf2631694498e511ba7cdd675194f0889cb1cd3ada461538cb4665d8b9c78452d102fc0e10c0ed3bea5c8892d4f7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sessions\Session_13356044313857795

MD5 7b1a9234b2408ecdbf712164b9591926
SHA1 616d305a44d04c31564e7ec8cc4aa5afbc0b9fbb
SHA256 07d612254597109db84e5d1eb2330ac67dfeabb75afef555fa16d8151965b5ec
SHA512 5baa5ccaae7414d6d360aa71e02fa33a4cf8453249c3bff2a9e51217425c57edb9b322d732edb54364ddf6b447d6600fe7b06a31b1c8750867cc22dc2eb3f294

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\chrome_shutdown_ms.txt

MD5 c81dfc99c29ce976d33ea3b0866b35fc
SHA1 d2d07341e098e663a5485084a5b30620dc735ace
SHA256 e3f4595a445e15eb63f7a72050ac251282db68a8681bc08a6b86b9f8cc9007eb
SHA512 724366179c6435f67dbca1677e6160398cb06ce5808497d0661622b1665f30e0a35e0cc533ea1fa1e52412df2e3c0ca4de9620d00e9b1519e7cbebb408ac28e2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Browser

MD5 de9ef0c5bcc012a3a1131988dee272d8
SHA1 fa9ccbdc969ac9e1474fce773234b28d50951cd8
SHA256 3615498fbef408a96bf30e01c318dac2d5451b054998119080e7faac5995f590
SHA512 cea946ebeadfe6be65e33edff6c68953a84ec2e2410884e12f406cac1e6c8a0793180433a7ef7ce097b24ea78a1fdbb4e3b3d9cdf1a827ab6ff5605da3691724

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG

MD5 d5c8550f2c01715b0612726053a208b1
SHA1 7e8ae8eafed01cba7c658b196b8fb20c34f573ce
SHA256 74a10ba9697fbf706b4a40a7acda3150036d2f1834052bfc1ee2bd4d95679ca9
SHA512 bd6cf27e76dd8b1c424e6fb5942a3e526af6e8471181c1fc8f18cc9323f9f09a313e18626471795c9989b2b5143eb21ae0ba435ddc4eae14b0d6e666a044c976

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 4ec936b1c0f72bfe143b1d509d1960a1
SHA1 952a8f5fd3c74de4017e3ef9748dddf553f6663a
SHA256 3902160f61f2a9df784a31325980008ca70d3067b93b501be96820951d4a5700
SHA512 a8bc9ad8aeb4612d9c5a38d4ca1041a4a001cb493901a5b508749dad7ce7b12f23c9c5dad4e9dfde851f563e35c6cb0ddec8cc1293430f299ed48add6427721c

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 0a4499a741b137123548c8ca55e5828f
SHA1 8a3e3032b5ae0814365e881f8ffb543296278975
SHA256 2ec462fecf00e337bc8cd5f7bbc9ad407ed8784bef6d783f1a9b69cf8868b142
SHA512 90f27b09251925df57ee21020dff1928bab485b5c0a7e6caebffb53e5007746827db1eed82896f8e9f0fe065cc7285e6ef450bbee95d908ccc13d6151a2a6565

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f9e52e9fc37ec6d0951ff027bc66fd51
SHA1 d65f2595f8309bfeac0541dcd046e6de7e0fdc61
SHA256 edff08b02a146cf9793fd55d4e22ae7f2c2c3568438645a3c4ce88667335a5b1
SHA512 52c67669f3a7f05fbd047e075665af78e38baadb45625919da7dda9ac3593432597fa8b9ab84d900cb6769242926269964096b69d4909f71e387de608600c98b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

MD5 459e5c6eb71254384b46a06d1d3a1d2d
SHA1 2f68bfcfb752db8e39b2387a8e656dd8c76eeefb
SHA256 61614c23ce9a7c72bcd40df6b15e3337f764d098c28fa24ee980c59d6fc7a115
SHA512 5cc967dde032ad4d1a04aa9e82e07814970686158557625c37461fe3023facec73da99d7a95740e229cc28a9ddbbcb8137d2094eacd2cd62436d8be5afd8c152

memory/5332-208-0x0000000074A80000-0x0000000075230000-memory.dmp

memory/5332-209-0x0000000005530000-0x0000000005540000-memory.dmp

memory/5332-210-0x0000000005530000-0x0000000005540000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History-journal

MD5 8220e65c69c9bf6fd1b0a0d557ba55e0
SHA1 ff34c17be92e3fadeca28e7c5efb2191a44327f5
SHA256 93be9a9c81fa77e51d89a603dcd6dcbeceb26aa2f99c93647b14627dd9d41dc9
SHA512 f57549ea30c57fa5d4011f2d1fb6e442064e791474ced51642f3486d822e8c659ad6b5bfc65e405aefb6aa96ac2e77745ca449ce6a86d03e91cf5146b955c6e4

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 e72cffaef2f7cbe899b6752f299721f7
SHA1 da8ee1cb35c8256eedc376f2d9667710aa9f153a
SHA256 c2ab9d52343a4f8e6ea5ae36af54ef242cb3517d206df69dbd8609aba68ac108
SHA512 cb54a9201009fd85fb198453b29815cfbc3777f191e7de04500012657c72afc1117b8cda2579f8918c785b39a4fec3d4fbc8f2407db2fe1f0233528834e269f3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 b39aa42e362d4b7902ce29ea9d682ed8
SHA1 df3475a7261107c6cf70e493357feb9cf0cf252a
SHA256 84e029f3b8ce20c7fd48667875c8ad3b4254037be90ff53fe345ebd049a3a998
SHA512 28d31f89661a7fdf63647a5570b772c48f6ebf3f47449f7c9911957552394a5c1ca1a1139f0722f2ec6b55282eb4cdd1d12273ffedb27ed5d1e49a64c6e00936

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011

MD5 973fc8ac60ac05d255f47b24e4d2f78f
SHA1 5d163f35156620f25a1247218c23113dcdae6e4b
SHA256 6482bf569b0a609368c4bf055a8aebaee53bf390bcf6438f495d13f4e860f19e
SHA512 486561f4c0c3c74a2d6826bc7841843c8ca15f4d0fa44f6758b9b92fb577ac3441c603fdfb42f518c5fb7fd3682fc52be50b9c902c5bba84c25ba11c2e06cc71

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 14b964f1535a82e33596a97c5e2f1374
SHA1 c1beb7c39dc663ad261c19536de411d561dc4f8f
SHA256 69b8840641faa6633e2b217b2dab28f8d77fdfc6a8fa3080c7476a2d4313bbaf
SHA512 97a775d3cdaba93ded0366a0e08761d860025d8f0334223d580192f54ee9a33648ec6d16fefd3fdb20b5b11180be80070e4843323017bedd3a87ee33b49ceacc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58a0bf.TMP

MD5 e744b70d365417f291821f1868de8f11
SHA1 ed076b9859ca742229a18d29cbfb1b0d064d37f5
SHA256 77a39f3a4e27b88f89d8d89e22409dd9a5328eb27a5249aebd099bb74f2cd138
SHA512 31928098344cfbc6aa3ebe35f4dfa38ecd7d737677f6f9ee709503b7aaa38a2c0b2ecf8839866b53518fc07984d043c449a8141845d6b4cccd58c89c500f5fc3

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 134548ea5c4bfdee6507569d1aeaa041
SHA1 7c37d968160f6e882560d1c7c1dd0bee8698bf6b
SHA256 8c77585d607eafbc271b922a93463ded202a3d59f677a647579825eb76f7c150
SHA512 f243d24d032612d252fd6c772c5a31e0fe30af6529c14cb13cd6aa32d1f3e67f5c4e7ef04b686f5f12adf2e4d80dcb2877cde439db23925507e803f51876dc2d

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 965aa56adaf0476fac28c99d8901826f
SHA1 4ea9fb87eb5b28b8a968528996fb51fd7f014fcb
SHA256 b4ab124c7cbdd7acd9e441b39f886a133408d46267bf0072a2453d688f935048
SHA512 15b6ec0860387e14460a91b67177a63ac2322c312b3070115b3f872319536bc739bd36471f43127e005734da066983c2826d3a1157eb264d7360d782558112ee

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 5c767e3d7dc8959cbb3c162a432bbc44
SHA1 9949b168050f10f4a99719648b21b1b872323872
SHA256 90e0739791089505373c7e1bfcd1ac993e25d96b2e33c62ddfdd4730ba8ff0bf
SHA512 d4e6dde7d2d425d7c402c609cafc602c9ef20dd041275506d657bd591a1ea901e4e2f9049727461367659d8d183517a78c4ababc75a7ddaa215a21d80f8141f2

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\9e504463-0ba7-4056-9757-4efa7b1d33cd.tmp

MD5 9417c1a579ad4a3808f4aeb975fef423
SHA1 6e8e90faf2410c769ddcfe95d06427ddba816853
SHA256 6ff4f993096b9feac5b02603591d253714ee505866ae93dbff80c546e6bb07b7
SHA512 8b402dc9c8392151788d065779f0434a48ff97d18a85bee48117cc874de4a9b8e4dad573d0a2c1e567f0405151f401eb2166225124e47194a45d464b6ae6ab13

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 48c56be9fd7dbf3a68af2711029cac20
SHA1 5b8b14084fd251776c61f8add8a882397bdd0eef
SHA256 6d5f6d2ced79fd36f1948ba9f72967cf12323783996bdb731464ac89aec898e6
SHA512 51505bed3e5986193d46b3ee6ac6c2efbc254362a244295c63cbadde334a4e3e14e1d327e7a6fd51b459e5206e06e13876cf0d40f240d21ba78f08c4e25e22ca

memory/5332-552-0x0000000001240000-0x0000000001362000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 b9c1b9041d275e3ee00475fb8a286e9c
SHA1 27dd1e65de624cb1127986755d2207a82f703c66
SHA256 b218221523e5a1f38ade53390359c5468dba3d25e2da4660d2f37868ee0d13a4
SHA512 bced8403702f180713584ca703f349b1b708e9b0a615deaa48659f7094ee8adf58c11260254c0e8736e1a56a9a5268031c4e4675b2c8e95570f3073c955ccffb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 8fc3112c55c05516f43217ff7c1748bc
SHA1 9a3c17740e0e13a15db27c0f9ef9f77df2d51594
SHA256 7f8b2d175099a8ddbcc48f79cbda0e971c6cb435ca578401a262b8c776e677d0
SHA512 3e9725a4ce03e85d8736196517cde717248528a30f03911663eebd6c97408f491025d840d20af6e1a0a3f6b2079a5a5f96bfb93eac910e63ceb8280ef3695c69

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 534a9bffddd31bc8fd51d3da0d559041
SHA1 8d4b7cacf8e999c38616ad9377107f40d28f6f15
SHA256 8fb6157064fc7c5fb555d39f530adfb883008a8d8a5d85a73c65869c14fce599
SHA512 59271c3d6382775301ebdad4e22a6579c2df75bca1eb6225487e4a03f7e2ac9c9c91c6a7a6e97754731af4ab975084463165ab1694c1643f621e6dc0ffb70089

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 cff7e274a1760b100908cf2a6c731023
SHA1 6722e8053e84ce9315a5db4e924a0b48b6503036
SHA256 07c411990f3d66445a7700845ccd549a8b4c01fadaf786928375a633ae5e8ed4
SHA512 eb4c4411366968df606082b3a307e1be9f2c8a0e3e0c5fcf999bef40766bde31fd0fadd63717d94972fda4a35779556c15cb0a128b0eebbb9766798761c56de0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 f6e8cc0dd1af919a94ce9de25979d7fa
SHA1 1a2c8041bc1b8cde39819f05af3da3dcba97efd5
SHA256 91ec03fb8f5080bb7974e0c1ca054789e4ee85a6cf31881ff16fa51aa5bf4fc1
SHA512 55f61e3e0e0376d8a133591bc71066bfe2a6e5a5ae0e930c12ecff30f3b28196fd7327f50fa2d7d2b063d6778d36fc854425f1c265fa062a05aa4b12b1ab1bc6

memory/5332-680-0x0000000074A80000-0x0000000075230000-memory.dmp

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\ba449167-045e-4e8a-803e-bb12ac1c6d45.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025

MD5 cda68ffa26095220a82ae0a7eaea5f57
SHA1 e892d887688790ddd8f0594607b539fc6baa9e40
SHA256 f9db7dd5930be2a5c8b4f545a361d51ed9c38e56bd3957650a3f8dbdf9c547fb
SHA512 84c8b0a4f78d8f3797dedf13e833280e6b968b7aeb2c5479211f1ff0b0ba8d3c12e8ab71a89ed128387818e05e335e8b9280a49f1dc775bd090a6114644aaf62

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 aa2c35823b5a65d2931fa24cb0a54448
SHA1 dced3d2472514b73502316c2d5e563ee733407a4
SHA256 fe0cc7595ed62cf5a759908e7d5c264bb39a93a612b833a229b3416f78d62afc
SHA512 80b4767a1dc4361dfdcfbbcee2b80f048948723d3f0afa40f656e9f928de56a91a87242edefa843fb5274464900fd5194c2a04121834e53dc8d0be37b94b7eb0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 80c4594270dbbae4f411365f67640ea9
SHA1 e6778da28aa94e1f333d0132bc38037fbf5701a7
SHA256 a2353c6b9991abd747818a8c9d7c94bdb0ec8acdf8c3e59f05fbbd143bed97e6
SHA512 c248e1a4c16c6dad18ccefc1f64ab0801efbbe70c6e68a63bd58cf9e8787bd6849e6123a76a7045a661c8c657b601d970f902d6b3bd96fea3f60c857af745d0b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 7be206db5004886b11a383f91eaaae39
SHA1 5075ae158b25b8c7a84fd6c2247670674ae7c9cd
SHA256 c70d63ab899219f084408ef4b2b166c9678a5fd9ed75b4b763cabb59c1113418
SHA512 e2174ec424bd9b939805e3ecb0ba3e774e2f2cd8dcbfbc9e8f907745ba1954c31111176b785303d34298397fea4c6a9320312da3f00c13b4f000a2248fa117cb

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache

MD5 f874ac00a597dcff652f82c45769b2d7
SHA1 08e77b8ff8a3967733cc42f3dce4fc6e9c85f709
SHA256 6d78d6ab5fe4c2cd6381f629f36331bac096a197a5cff3393077c1d2fdc20f79
SHA512 4ee7e2466068d5efd5e4a6031bcf8fdfa03cffdcc7375784a99223165f90ffa66b7cb51d21b69cc146161c4a7e308128e6205d0909606840626fc792dec819bc

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 87f214ac7ff717960085dd118e8f8ad1
SHA1 b9cce06eeebd35a3d11fced5e6eb22dfb84e928e
SHA256 53939607bc882b89e4d39d9675802a79962cfd1341d63b9c8a8e5c02f6d3198a
SHA512 cc1cbc58c3646f1ef2f0f32e4a7dd2cb29943cb7b3ca1b9ab4fca17f03075305de3f2915115f6d0e867445f4a830c46e906349006015bbee4350708a3842fca0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_mega.nz_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\MANIFEST-000001

MD5 5af87dfd673ba2115e2fcf5cfdb727ab
SHA1 d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256 f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512 de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026

MD5 b82ca47ee5d42100e589bdd94e57936e
SHA1 0dad0cd7d0472248b9b409b02122d13bab513b4c
SHA256 d3c59060e591b3839ec59cad150c0a38a2a2a6ba4cc4dc5530f68be54f14ef1d
SHA512 58840a773a3a6cb0913e6a542934daecaef9c0eeab626446a29a70cd6d063fdb012229ff2ccfa283e3c05bc2a91a7cac331293965264715bdb9020f162dc7383

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\db\data.safe.bin

MD5 bfd24df6684cb80de25514274618d330
SHA1 004275b3ad41964ef25cc2a5b2463c2aba759d38
SHA256 7f784dab6f338c82efdd6a5c51f20fa1b7cfee4891ead68116a678ac75885b03
SHA512 9810044787f0a2b8afcfe92b7c7937583380be474ff2db65b19139e1f93b07e40d42ec1b31b1e29d816b71e28c8fb61cfc47e6a5092da76240f991a0e80e5ecd

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\pending_pings\d393bc8f-7d60-4a8e-845b-350ec560ea5c

MD5 ed443dc6dd61bb005a1fd8ba5a1316af
SHA1 f14e4be788a19752a7e7d2bbe1064fe2edfdde6f
SHA256 e5b12b607fb2ce010128f3f6caf6ba9d124ac06ea25ce276d76d4e34f86f058a
SHA512 955d0b6182a54e0d79d2b1524ab06599ba351e787e1e87baa3c3b7a96a7c908f7a3f7389ac180eeb8dfe1b5159408b04e901ad3e152a4d8fa049e1c551388b1f

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\pending_pings\4f270eda-18d9-440d-af60-f8e36a95d308

MD5 c392597a231cc65b4330061d73529576
SHA1 682986796d54a480c825e739ff69b869dc118a96
SHA256 eca0f344c8036ab49b2bb5ec7617b59fb5f771053d6c7530086b23a724ccdad8
SHA512 d31c6955cb6caed5ae4d0ee1ab47f13cb151ac46796f004d5e2ec0c35a3409153b77dae245a61566ac707133f213398978678fabf96eb27e304679facd15c2f0

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

MD5 78c3db0e3d225900e3e78d43844574f6
SHA1 6b3b1ae60ef4363f47b21e0cd6b4a26e0a2432f3
SHA256 4fdd2d5163acc81aa9cb1a17d47b9f234fde5c6af369fa1b0a92cae3c82dfd73
SHA512 d73dbb3f954ee8c09ead1e6af247164c58095197bdffd3ceddb590875ee936b95b54051efaf9790657eb7d8d02404991544330702f21ca97d1f52f3ad71f2d09

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\prefs.js

MD5 a370c61ee8516201433968a2cd9135b5
SHA1 44751eedc772626e951c128a7ca927d3701aa875
SHA256 c3f41c1426b6e0b1d7cc38cc8b149b4309cb1ebf390104c43134cab56a2cd7cf
SHA512 44531bfeb2b0fc14e5128a999763dbff3e3bd72ebf9174093577be5e3895b571a0b25195b6d034b8d9b9139074817b79a24a1362fe504666b2e82c540a2c4a98

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 dd7d873cb7286d3c3bbd0268127af7ec
SHA1 1722d5d74a69cfbb8f810b0e46341e83ca1d5b31
SHA256 714a7536bc6ab70a3a89e1506a0cbe68f884b0fc4739a349309121cdb9ac3f83
SHA512 02bc4efbd5d673adaaceae1fefb2718bc2cab717b778778e806a7e9596760b337ff0731d34b1bd343602e786d195579cac29c889768dcce5737044a2cce3c5ed

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\prefs-1.js

MD5 ce135d57d6c00afb712be9803b400bfd
SHA1 6857e338de596fb338c3fdbd7043148449e7d63d
SHA256 95d2977cdbf1e5b6fc2499078b8d53ce24e0251812344ad7e5a1b992b8a53de0
SHA512 3a038a9aac516a8369807b0a5ceb4e1408e1607793f92b77cd3a63087eb2ef01ad10b3a47ce7c909814fd0b20178e8a7ddef0cdcba85ff7d6dd3e74668210583

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 0e20ee7c23a9d5128d5b92fd9fd688a3
SHA1 d92cb0f28907277e181f8423fcfa1d7e7a8bfb72
SHA256 dfdf96497c22bb017ae086856bc23ea8be420e8e82e8ac1a397a68a0f386f9b3
SHA512 5b0c422fb6fbe29f52574f035611248be4e416be1be0d4438a78108631b6784be09623cf267a7e4783974fa703c584f25a8f06f6a6b871348bf65c5581bbc272

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 dad1f70a11290cacb6f67d61efa71d7f
SHA1 c4a71a346d1b9f98f54eb49636f53997db7090b8
SHA256 b750560770847a9c53c016f85f76ba369ed477e2da670c64f6bed023eb7bc985
SHA512 1d52a208d9fe74378626e071bc9477d0dde315dfd3d9574aa8b72943280fd5dfb17d2f3fe90d672eb6938b87aadfdde781c1e3566b1cd4d41ff8653ed8e81527

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5a1704.TMP

MD5 6a15fbc2fd63dc07075a90a7c9dba593
SHA1 4e1069bbc95b0ec7a32e91873f7fa995ef1c9ecc
SHA256 3a6e8b4e2ff26391a3d19582989fd0d9e40e7905c9b277c287a322ba358491fa
SHA512 95550d123503acc25c0030c136e243fab78f2afde7b8a03a5ceee7236c8a39f1ea591bb91ded4afa5e6160d56f05cfc0842de515a42000857e3b71d9715d35d7

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e50ea25f03ad5bf9c535ff83c90b7ebf
SHA1 1a2fd23259b77896dfaa87157c16cbf98a34dcf1
SHA256 128abb0f8a10a4dc1159dd07a9afc004f87cb65cebeac9c9c0142cb62e971733
SHA512 87071b782ff0dace7afc1e294573f2afa0d21ad3836aa64b8c540ff4cdb4ba2c091d74cee7a16e9f825ee1d9465552a6bdfc9a6e394549fd4c1d6a88aca9e70f

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 ea18f6b5379b60d02a27a1bb671f83d3
SHA1 8d78655715024f47e233863008f4bedac45e7ce7
SHA256 8d7f90e9ac7f472e4b9ecb61902313fee0f1734e1b18b7dabaf8a938e88a23e6
SHA512 3ff53998d7c97d7ac797752a6595eccb280d7b15755e4672dcff5f64b115a6e0383c50571d45dd7b2e0896c282150eabd6ed20f157927f50d35b50ce8919d327

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

MD5 3643d3f44703c1840f563b01b50487ac
SHA1 6916f84934efa419d89e9f48f14f9c04a9baa3f8
SHA256 a67b539fbd42556f19d8776d02df6c30b1b6f9464ea08e8c17c008202c7e48d7
SHA512 13ade2527614c41ff4b9e8885b6ab06f9babff6f2f541434fde1a89c0a46a6720407550feae22efc26508b164e306692c67054acf26f3673f75e28f3f22e4fdd

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

MD5 1485bbc57c9c7d929c09766dac56c571
SHA1 392ce04eb17134bd075747102107e99d770b2415
SHA256 33917dc46bb21f65bb455ee6eb00bf6ca9c67b3929c94ba31de89d7d6c7850aa
SHA512 dec311bbcaa5c46572b5cf15bf0934362e78ef7c919617c41c6321907bacc3743a9dab5f0d56e7bd44701a5d83d57eef2ae05aa277fe637656d9e0fe21c43497

C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

MD5 a8a06dbfec119c0594fd3ee38dbe756a
SHA1 8d3e03ddead5e604b9f507e985aa35946a6b9517
SHA256 37cf5f93e5bdc316b4e6c54e4cda93089558b1f6c89aa24d1bece1f5713b9a2a
SHA512 80b9a76216a4073fbe7661483f06542ff88eee4a9ab474c4cc1bd7018ec2ecf4c4eb1e1073cabd6d50b5360c95f78c03ab1eae9dfcbe00e2efe7fd6ce70f4f7f

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 ef5a9cbb8039387fed596d1da88942af
SHA1 6b18096a7f97101e2efaca033dd7973eaa1e83ff
SHA256 0ad4229e26b0bebcd32b2e0e66152a7934e04eb527d8e5ea79b7a4c29544ce3c
SHA512 27a47294cfada9c1069ab9279139da6fab387803d0d24b1d1b23e109c6ead1b8be2c63fe98466537775c23cff33439fe576631e8ca73fffb7650bd6ce1b053f4

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\prefs-1.js

MD5 9ea66ebcb2df23c8e41537dad20fcf98
SHA1 96309cfe99c02cb0b9fd0063d2402f546eba8f38
SHA256 763bf966bc957d13aae789b89b5e8b77e95f4800345e79b1e972b04c0b7e5be3
SHA512 a05c38dcef470ddda30344c7669b2e1c994fe4866092f50728d8182dd583d85482a586c3cbb095c2a2b590c2efe3f9048d8875ac0cee65aecb066f8303c1b91f

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 c81a951d8d1bd8b35e2164fbf6ec6333
SHA1 d4a06474296d1bced890e29b0c9d108fecf59eaa
SHA256 c7a5df31a35687e674eec8c480a9b78b6267c7879196cefd0cc397aeacc52ac4
SHA512 57e999f8378434743f91589081dfd83872e58bff159a89773260d9f6a4edca1d679136533b8c604e3a7faafaed5d0a3a0fe54e9c2128f3ca4b07c9fbafbfb8e3

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\E3B4738F4FB9247B2E5464CA48A4EC6F60AE8EB3

MD5 732d958e420b7658c8f5b7ea475649c1
SHA1 343104f97d171d5e9153c77321ef6493bd491d39
SHA256 b0266bd8702d29a7b650070ecbe4174789f88adae79cfd89f77f8c051f47cf73
SHA512 0d70afcdea6cbaea25a7d84d02108380edfe98d6a08b0c10d3718e649ddbeb51d2a865d87865b1c3f7512d3ccdb21f56dba73b92cdd70eea9bc6655bc5a99fae

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 faff6693392c6fd626941c67d03f5ac1
SHA1 3549d3431ee840c29be648af43a18f1edcbf395e
SHA256 bc63f716e4330972a4f688d90aea76c5a01a3205edf9c63f7fb8fe75f4e62e03
SHA512 924834cf752fd1608449db32ef3b7bdd21478d412a358e101bc296cb750ab27b7aa7b1feefb740012cfe0bb70fb57ed24aa56f1f335d758676485d7595f16fab

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 9142831aa97bc1338b93db430965326a
SHA1 40c681ad9d7f2fd0adc4b78d8f3fecb9914bd801
SHA256 8c2a8a38f00370919b2a783e37f881f0c5c30c6a3ac2219ee9661badd19c05d8
SHA512 948214c0f5a56a5fdc35b8b0789554360e34a46282dcfb40dc6562325ef4b6d243112fea8dafddcfb59c5722fe5eb933436634d417ebf966f1700d2639504753

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 13ba70713eba568c1331a70e46c7ce0c
SHA1 490f8bb7330b499faa6b5ba178eb17cc5f85712a
SHA256 7975384b5f8f858c8aacc9df7c8588b56c7b9b8203717177a4d0a55d27d874d4
SHA512 1149568b2d43bd8a581cb578e82cb3d2615050fc74b5775ecbb0c7a12f3177b6aa4b7a07ee24f836bf8017e513510e110f283eee865cfc9c171b9734bb34dcbb

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 92e5b09c6df8026b7c5176f95b553a95
SHA1 ecb2aee70422f53319922b93dad0b6268b59167e
SHA256 c627c7e9a32cd9de491713bdc469c90f12b2568e4282b2719812f4e4825719b9
SHA512 55391d13bd7436d05935d08343aa2aa2c31ecedef58b80891c52ddc7e917facb37d5688e1242417ba375fb726c70524b2eadac49e0c09f67a28342bc4ae0d6f3

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 bdd740b7359543166b92cfd342f16870
SHA1 d7a7b9b73281d12ac138a74a233cbf94a78c5037
SHA256 2bc0cd91f6d69ad602b6fd0c5c2c0636d69bf30f6a7424a6220c523b2a1e2ebf
SHA512 235783f8ff4a9b466ef049e3e2010abfeb502272a0a1ff26622d692172ba039be2bf1af0efa2bc2a2141e8273ce261638a9bb77dc62f79b23f06d9228ff6b0a6

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 3494cd29e884730b49b8f79d7e676c06
SHA1 c6bdcca92deae6f9816784bc169ed921d473a830
SHA256 cca6ca24301a4ae7afb480fadd7b1923923a1bcf5b8cf33bec3c584ccfab8a42
SHA512 ae815cdeadee7e9c3d9f9ff8e54d313d6ade9fd91efc4f8b659f4392167702271702b8f1944ef114313d0f3efcd37bab3487e11e5fb67233fab60bf226388679

C:\Users\Admin\Downloads\QPfFePFP.7z.part

MD5 0f31e2402ca3454c2f5996ebcfa1686b
SHA1 070459fce4d191aa9c8c3db3ab08e3c84fe75428
SHA256 926f9a365359e072ba7d6c81600c095c4a3324bdfc6afbf65708de37278938c8
SHA512 6e0998ac28d26ba9ee2fca33fbef0e70983224514b65b9c11124968424d560af906f9e0dbd3449dd3db57636ef98e5c7c738b3d27dee282a4be568b099fa3905

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 2f659a22bdc2d71051f11ee20e8d4087
SHA1 d49d8282e0ef205a5bc5ac7d4a3df5699593f4a5
SHA256 4140870dd88cd2058d32501593f870ccb3f8d74f55e7679028a05821ce939a00
SHA512 ecd0a9faa62930c47e51ca3f12ca69edc52ebdd37fa1c95b1b805c4a2e052746a5b97a1e686c43d19c14b339600482739682a1f8757a0b49aede2cf5b5e45cbf

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 45b5158e22d575cd91d909035ac37158
SHA1 e3cc0b5d261c840776c46b790c2b503e02f201df
SHA256 0d25d26536bddfed9738080a057c049dcaa013d49f2c18f794b33e433a02f3f1
SHA512 25f5ea028de1e5422644cf597cf0d5db3968b2b43681f8ca4ca3fb2121e2f3e49544821768e29b516b8bea33634aa356d65b9560a9dae249d7bb27c987c7a845

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\184DD70D7790A7F4F16F7E13F3C66B479D9ECD6C

MD5 ed6be12699d08295e4cde1dbd2410b1e
SHA1 fbc74442e4dd633460209ff050304cccbbed6f89
SHA256 31bec76e8007551bb057c3fe8a06b3b859d5f36d9acc46f9c4d281a2efd6ee1c
SHA512 31755774c968c3a5e1512b92f28ea887a4257915f06bfc82794a7bf37efd0f0da000577e34d2f29cab7f510162752727922c5fe84e2b373b1f594ae4efd5fe9a

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\804AEF15E1CD2677DC6D1225F1F1F364231DF09F

MD5 010df7b5e8d4e6399c9635a7100b0ac5
SHA1 79aed15af89eef5de7ecbe38995523516c996daf
SHA256 db3d39627f2304b8db734c54f81946e39fff666d99280c5710735f3c0d786d55
SHA512 1821c0e3ba964c6092d62c27c4e2c9835c6d0bc864fc443fb02cb9e3f42ef281c6087fd4043ae6df15040e6c12282e3ee85649d655f8e59ef985752f52e70e86

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\doomed\27091

MD5 92bb3e708c15ce66716fe163531073e3
SHA1 4d39d8316e96f89fc5235a5056ae4f33341fe397
SHA256 48b87e335fbc752eb677b3a0d4d27ad0139dbd96f00b7f8ccbfbd1639bab4515
SHA512 1c58421a59a9c8a4abe960040b2255e95a8bae3912bf97700123b8a5d24d4664f823f8e08b179987ba9f0e534eccef4c44b9d9b9a05c76f3156ee18852a0def9

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\5C520119E4459C7852DC7D6A5D70AEA039C3C171

MD5 e6e17827d4f272e7dc46670f54a1d372
SHA1 61bd0165561230207726775b846680a1cc63f72c
SHA256 6f2d55c780917eed20f9f4008e99f5bfd21540aeb48c48dd74f7e99c532d58bd
SHA512 d0a754538d49c4f2723cdebdc0d3cd84ad4fb8041bef4ba5f3ed272863567eb4a1483bad2ba25d8a89534741c813174a851778cfae2a4bb647a793671c84dfaf

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\84F2CB7F04A716A54AC3B8651450CE2438FB71AD

MD5 9e1575c1759ccaa9a91a73587a79c795
SHA1 6966ca54a09e6d00473ca4514f0e98a2cfa0551a
SHA256 182b2cfc84ca5357cabc6f103b02132228f8cdc0117006db3a6b54afe12e7b3e
SHA512 a6a36d4af88627ea904167f3e22c5dd968f1c48db3c9df52ecb6df525906db421484ac945f7ddd35121e9dc8c127e3681ea93603d7efa1068cee5f59c03be24c

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\doomed\26309

MD5 ab240e866b653f1d304d9101ba344667
SHA1 412d1f927e33f6616888bb013e166521f5cdca08
SHA256 c69764a2a53a7df7eb2e0453fd060884af1a3ef5d75f31061ed2e9a4827c4ef6
SHA512 7f6d45d4a3bf1e3a33a92d746e451218c2b48b2748ab389e9ce559b5c8d71d8ac3f39656c2633923a103b1d97a6dda4f406cda0125c6bcba4977a15db7609198

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\47EAB8EAC4549822359B7814575E08CC0C2A391A

MD5 ef33dd4b55d250f276d099c215b1950a
SHA1 309093dd3733e4b076a4bd482f233e2d652d9950
SHA256 778fb2e3fc91fbc0b9c1468515b8e0293e52532bbb08ccb49c00b9e21ffea5b2
SHA512 758f0574fe54d0346d7297b957943d2339a7b7a4b28f5f3118bc1196da0d60c025888bcb59c0de5ad58f32b1fc86790cc1e633ce02ddd5196b5d831229ec3bd2

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 649527083b72001a61d476716bea8ea8
SHA1 c4eff6a7f1dc160cf1e83b2caeea9737c38cddd1
SHA256 513b0bc3eec8c3ceee8235892f902e30944c054a9325923398f7f8da91d51359
SHA512 77a89c57106040400df8291469198c4e42a5d6afb5548b2a1df0837b8bef5500c787d3eb3fab08c9b2f5d101a694a1f5345ed9993bdf8af4ba35a8d9e7c5a3d8

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 a719122b151147c601422fa8c069bb41
SHA1 249410c047df156b0af118ea82fca0cdba92d74d
SHA256 3f67d5ffc16cf27ffcf7405a20ba7c8ca92284fda1b5c9b5ade10be34c6a714e
SHA512 31ac75a89baa611d93a911518058a6fe0e89cb72eaf8ac9614792c4df88fe10cd8fd8e9192974c8031e0f66ae9477926776f1fd61eb02fba3ad80522682a2d3e

memory/60-2573-0x0000012FC2360000-0x0000012FC2378000-memory.dmp

memory/60-2574-0x0000012FDC9B0000-0x0000012FDCB72000-memory.dmp

memory/60-2575-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/60-2576-0x0000012FC40F0000-0x0000012FC4100000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore.jsonlz4

MD5 2e5cc390d5f07d1b2c25c348f43f147c
SHA1 435f80f5049d4de536e0ee8e7479dbbc1b1d8915
SHA256 b476dc4f22a14d78e5b82a7268fb6e990aec5bbe9f081af3a67b1806fe340a8e
SHA512 b214607a97ffa4e086bdd40a6831bb4694a74f32bd6b7e4f9216d7aa81103216a1127d55efa420c5aaddd7fbded1443c962a9e96ae6aeb28256191bf389d6267

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\prefs-1.js

MD5 f92748bd70bb38363b3b9434838fc73a
SHA1 748fd85e0a6363eff3f9c7b20859f53f5237c564
SHA256 2cba71e85c1ed50cadc3956a479bb91526d24b2c7dc019eecc17634e6f4c1dc6
SHA512 b1edf64e689325a7686b03b898ab762905c2f22ac71d7bd1c5b29f3f8b90892698532d2760f99364d6dc5a3ffff1480723e695ae2b2c4fdf1a40f2eb2f11edbb

memory/60-2676-0x0000012FDD1B0000-0x0000012FDD6D8000-memory.dmp

memory/5724-2677-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2678-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2679-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2683-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2684-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2685-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2687-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2686-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2688-0x0000024060510000-0x0000024060511000-memory.dmp

memory/5724-2689-0x0000024060510000-0x0000024060511000-memory.dmp

memory/60-2690-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/60-2691-0x0000012FC40F0000-0x0000012FC4100000-memory.dmp

memory/6964-2692-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6964-2693-0x0000019CD9120000-0x0000019CD9130000-memory.dmp

memory/6964-2694-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6964-2695-0x0000019CD9120000-0x0000019CD9130000-memory.dmp

memory/6884-2697-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6884-2698-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6884-2699-0x000001AB63FC0000-0x000001AB63FD0000-memory.dmp

memory/6964-2700-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6884-2701-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/60-2702-0x00007FFBE4380000-0x00007FFBE4E41000-memory.dmp

memory/6516-2703-0x0000000074B20000-0x00000000752D0000-memory.dmp

memory/6516-2704-0x00000000058A0000-0x00000000058B0000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionCheckpoints.json.tmp

MD5 ea8b62857dfdbd3d0be7d7e4a954ec9a
SHA1 b43bc4b3ea206a02ef8f63d5bfad0c96bf2a3b2a
SHA256 792955295ae9c382986222c6731c5870bd0e921e7f7e34cc4615f5cd67f225da
SHA512 076ee83534f42563046d25086166f82e1a3ec61840c113aec67abe2d8195daa247d827d0c54e7e8f8a1bbf2d082a3763577587e84342ec160ff97905243e6d19

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionCheckpoints.json.tmp

MD5 c4ab2ee59ca41b6d6a6ea911f35bdc00
SHA1 5942cd6505fc8a9daba403b082067e1cdefdfbc4
SHA256 00ad9799527c3fd21f3a85012565eae817490f3e0d417413bf9567bb5909f6a2
SHA512 71ea16900479e6af161e0aad08c8d1e9ded5868a8d848e7647272f3002e2f2013e16382b677abe3c6f17792a26293b9e27ec78e16f00bd24ba3d21072bd1cae2

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\pending_pings\05cb7240-89f5-4a3c-b174-3fc8a9c0c565

MD5 800ffee6bba706bf0b9103f4ec352821
SHA1 41f01ae39af2cffe2bcc636db184a53d661bd85c
SHA256 46d45adf97a9f1b7722fe33031c9540b0834177b828dd0170b453817053dc879
SHA512 fef4293a7402fc5da8037b8b8880bcde711de59003072e7775f55a2201870f25f50272879521212b9f1e011da2b9d5686fb504e1f7993dcf6118c70ec0a66149

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\pending_pings\003956e3-f2b1-4f8e-b710-d443d300f59f

MD5 1184075ba18fd6b9a9a50a5dd55d2da7
SHA1 ca910eac2c6a87fc528c9f4d72f41efffeecfcf7
SHA256 6f8bad8183ae163c5efd945f82e9fd21d2da23deb37a18fcfedd8fd64dc4bcae
SHA512 03ba9970797f3d1f1bfabb449a7baaed83fda484d43c9edff2193d9cc54b2314b64a4c8265ccd704c4e0cb2116ed77595b96644ce5ffae249d400b21df93e4f8

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\datareporting\glean\db\data.safe.bin

MD5 2a5b8f41f1ae22894249c40067e2188c
SHA1 d90e8430f8aeb5ff0e64d875fc337d87f363b3de
SHA256 952c29a35a9fa1ab0a7750e196fdab46eb5802fb84cb110ab7711ca6b360fc22
SHA512 ce73e1337f9b13aa3187ebb60683f2045ba356ff41abb64a5f47fc6d92c60c83b7f49f379ee7f80301c59b4b1064716cb7f8a9b008d07e633f0d294aa1b3f3f0

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\doomed\18416

MD5 28d2fcec8043ad0125b3f52579f8384b
SHA1 21f58b02ebea2caa3e27791457ca45d07b428469
SHA256 d1b5d9dccbf6f2257c2e0e301cd7bde608773a951541f742ba1c7379dd9f943b
SHA512 78746b1892ed7014b907dd7ca3ebd29cee9da1f3370f030b522f67008e8d407dd55071a0af89dc4c147eb98c29f8fe05f34bf0131a3cd2c6ba67ae00bd9808e1

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\E16DF70BC193BFD55CBEF45159E06751D454A43B

MD5 7a17c339118558bd5c321b3e3e3b8ea7
SHA1 c84f50870d3cb5c969f79791944011c7b10d7b2c
SHA256 0f596d4e12b4244248641666b5db5647628fe9f461e8d4871ce0bc14d1b1c011
SHA512 5bafd216e679d10f2c7c9e7696030d0c10dd5d3c99354ede5dcdf10dd26affb97bd19c079b9b4d4cdac99958017618f94cc2f4658a3528e608f3f516b62716a2

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\1AED6E7880749809FDA44260CFCC022718CCC7D1

MD5 e320cbb4b23ef904e83560ca70a80eb9
SHA1 bfd32478f7364d07d8407c81543b4cc80e849907
SHA256 3de73ce224b84e5f63efe5210a28bd30f0066b65abdd085a3ecdf517764cb716
SHA512 17c96a28cd131676ef5cbdd7aa01fe11874a4b3ccfcbf0ce1030c728da16fccb70d1c9e67acd6d6579c68e352e5d03de6e6e4c3529cf61fe6bda37f0802c59eb

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\8922525AA8632E3AD18C0760F9AF2B8255AD9EDB

MD5 4c4752dbf40694cefe87314c30406878
SHA1 fe6f622c50a4f3dcca284719cc050a42222f220f
SHA256 92c5af5a9f1979c82d3269f28e5029dd640ffb370700d33837085a7d7b2f0eb5
SHA512 ec6b3d806ac5b88d049cc66ad2a637338f848b71fa46e6fd9a5703cbb5ac0a3ce3c11780d5c775ccc5129e1e512dd51ee2448b4559e5c16cc92dac7ee19f656f

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 4a873d25cd4f11621a7830b018f04aef
SHA1 79fcf6f1c08b4e61b3b00fc0e26e0f285aee19e2
SHA256 74006b1a2e2ad0175b3aa5ac20be410aca4dc4f0cf34241fcd7df9808f35d275
SHA512 26fc25c63768194eae5d1aa44e012ab09533e2e5046980134feda592889edbdd8e284ec1cc4453f598e3dbac74932273c602246d87d5910ff1227617bafffc93

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\BD2D5C6DE8F0C8E81E2B0DE259617B8F6E67A2DF

MD5 63a409b6430a28d22dd3bd05d00bddbc
SHA1 59ee9a6c479c3b446c60682210d8328754bcb56c
SHA256 aa37350761376ff403d2b6a6b7c55d714cff47941590203d2e9251a3eaf69094
SHA512 d0e78d4968847a717a0dfc21a623796a85dc71c597fd2d435e26e291c09a14c813d3bf5c1fe9c8e2ce12ea890c3638f5d401d630e4caa7d4fc7a38e01fac63e5

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\F583A63478492F8DB090C75F1CC0E89B487FB106

MD5 3a5f255a192824e7c3fb84a0f0b69ad7
SHA1 eaa1d25c2c1590405bcabe37c4225d5bf6997c0f
SHA256 43a39152582ec164ca6f271669887580e38468fc30e00c024148f55e95dfbc5a
SHA512 a930883e0528854095cf72d8e80b5472b4147cfc50691d6e141e1122f52017542d2e8e1808164d1bde0e073ef2ee4b9c1122e2d5578ff789244e5d05e9e1ec6b

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\EC09351C99DABECDC3D27FB1935BA83D47AC1081

MD5 43cf07b14a269b31eaffd08103a7c37a
SHA1 7afb984d678956fbc8bf605dffb815ed079f41b5
SHA256 1a9140be4d9ecb802de8955e56ba8e7336120d9ac4a8a20955677e90512d91d1
SHA512 44304c87bcb20ae94bce57bf3c46b79bec8bcdf3e40aa80130b2aaf56ccc69aac5e8faf96f11384360efa87eb105193b520a21193a20817dcbf0cb19ed44ca4b

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\E1900B76D781D0ECD43BD44609988A5F7466C72F

MD5 d2360feb40b61ee1e785d0455afb69ba
SHA1 d8e25066d3fde272580fd2a02dcd2968d379cf3b
SHA256 444df12f489fd97ab3c0caf8f95f62f667ec6559210e4c7174cceef3341e2ec5
SHA512 35f3efe0adcd05d0dfc3a2122f160781da94cd62bf9950663dcf6bd716970a5911af060066e229ed0a7ea33d90f2accb25f2c457b8df45030791cf3bd120563c

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\8373B7978AFDA61CF80ABBD9B82922F00B21116B

MD5 2c887250b0d0802b33219364737a52c0
SHA1 147fe47c6bf453a9075b5df2a0e3f2f6fb466524
SHA256 c685c64adf4e9df47af03c4b04c36e74a80edbacdf91bf93f9601aab1837ed8e
SHA512 f85b4527c4292073eb3ba2c6f9a7c5dd306c255349449b41d8f02a759f7cf5d22b74d1ae4c7fac356612a80680e5a6c957ce0f12df623b68b520a2b629ee899f

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\doomed\26562

MD5 087ff576c4f117a78140461f52c5d6d9
SHA1 287d783eba5cfe4bbb8e4f7c7066433bf940a267
SHA256 bf8c573eab6d264cb8bc8ae1455ac5d819844d734e7f27398d67c923d80cc602
SHA512 e29e502e221769205fca9e40c56eee2ae26cd7ecfb7446e9002c5e6a4c1c1b7d344230b3e2b2ec06dd447a5d6f778acbce010b6dbd405a8e0587fc57c759caef

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\storage\default\https+++googleads.g.doubleclick.net^partitionKey=%28https%2Cyopmail.com%29\idb\12183338011.sqlite

MD5 83e0d22689bd10d38682c939343112ae
SHA1 7360c21415c62cffe77e7365f2b732d6dd879a6b
SHA256 30802f4164b3d825dac765852fb6c0a41ef358fffbf65e2aae4c275fd45f23ce
SHA512 530e6d09ca41aba9339bc63f3298d6d8d9b7db54812c8e316d2f680ccb92f51b1e2ccbd421d8e72efcbea618106eb2e9fb9861f8437c7823a2eef9696a949032

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 98384ab3615885c93580c59893b28c9a
SHA1 f7c521fb43ae72b964f78c37c4895e6459202dad
SHA256 a8b3628a2c4cce6d851a672db3fcc4b7686ee19751133754e4f3eafd81f065d2
SHA512 50101261f08a10d501ad4c751fa77336ae38ab0f473c42f17f804a57d4461a6b05952c20b35e40130ab9c8df1475f260722e3cb8934711de3e6867fae8ff7f40

memory/6516-3272-0x0000000074B20000-0x00000000752D0000-memory.dmp

memory/6516-3273-0x00000000058A0000-0x00000000058B0000-memory.dmp

memory/6516-3282-0x00000000058A0000-0x00000000058B0000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\prefs.js

MD5 0ca6cc2a142cc6e9b2de9739a16fbd27
SHA1 62b6a2aa714fc90023eb15065a445f0318b26803
SHA256 1a4af2a8b73f1fdb6ffafb6a2c15e41273fe72f7f99daceb179cd9d6b5bc47d4
SHA512 8614ef75abfdfd8094238f80c5a9999f8fda5aaa0e6756b2a7b078e985bd16c5920e58aa7ca4d3e9a88039b4bc1b4cc554906afab52440a308bf874c6a74b7ac

memory/3988-3300-0x00007FFBE4710000-0x00007FFBE51D1000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 e2793fffc556c7d7974d8124652e32a3
SHA1 49bc847734e9181c736a09a7c5b441121da02fa0
SHA256 920c973fc870add70103b1ebfa6dc03dc5ea79751e971e57821c1e2af4b89d98
SHA512 90670af309c1fc13859f05798db26da435390eb2a5462ead5eb8b5cb18d900c0abcb37eda56f326b9df67600ff1d9c51727f0aab53eaff23c803b67fb1c95946

memory/6516-3312-0x0000000074B20000-0x00000000752D0000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\crashes\store.json.mozlz4.tmp

MD5 a6338865eb252d0ef8fcf11fa9af3f0d
SHA1 cecdd4c4dcae10c2ffc8eb938121b6231de48cd3
SHA256 078648c042b9b08483ce246b7f01371072541a2e90d1beb0c8009a6118cbd965
SHA512 d950227ac83f4e8246d73f9f35c19e88ce65d0ca5f1ef8ccbb02ed6efc66b1b7e683e2ba0200279d7ca4b49831fd8c3ceb0584265b10accff2611ec1ca8c0c6c

memory/3988-3318-0x00007FFBE4710000-0x00007FFBE51D1000-memory.dmp

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 178010faba74f54454ba31360ee4ca57
SHA1 1d7b8477a3c3a176adfc2a57ee45369bccb73a57
SHA256 7b2d43561dcb90e9be09ccdaf07d92f451d9391660f58b49af53ae9cec97fb3f
SHA512 c1d9f19d85495a0c1415e1f0c24c1d3cefa8beb953481a6b3a6cc333026d0baec4c0fc7660df161920671ddacaff117db025067d5a83a29f4c5e735439df4d5c

memory/3988-3327-0x000002865E5B0000-0x000002865E5C0000-memory.dmp

C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\s7sufels.default-release\cache2\entries\699CE167D440594CB88CD65F0B7678CC3A928F5C

MD5 080ab1413381c9e79e955ce72323592a
SHA1 e8ca86cc6565af50116b0aac46b4c9ab66ef80ef
SHA256 492e6519ce9a542b35d2d375a32b39a768a70907a1c4d21a958435dd1bc1ebee
SHA512 a37af587ab9ced487ad508d86255eaebce942203bb69442754728e6a8dec0767a190f8944591b545d3b21e1cedce59861363b0a2ba1799b8977f6fa81322c202

C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\s7sufels.default-release\sessionstore-backups\recovery.jsonlz4

MD5 5163b9c39bed5197b25d3ee6d745d764
SHA1 fe7456cee2716e4e8d917e13572b5f2314c12842
SHA256 5efb03accc179b3192de56de9efa44d72bd0618506670670aaa7bbb306deb397
SHA512 ed41950d4e6543d778b8370425899a1075a23e515341a901d0e83a28e2310cd414c733c225708a2b2a0d4cd0591b0013d8226180303649e84b98b33fcc4f1c44