Analysis Overview
Threat Level: Known bad
The file https://www.mediafire.com/file/1fcx1z24mxjwr4w/WerboPack.rar/file was found to be: Known bad.
Malicious Activity Summary
Lumma Stealer
Executes dropped EXE
Suspicious use of SetThreadContext
Drops file in System32 directory
Suspicious use of WriteProcessMemory
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of SendNotifyMessage
Checks processor information in registry
Checks SCSI registry key(s)
Suspicious behavior: GetForegroundWindowSpam
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious behavior: EnumeratesProcesses
Suspicious use of FindShellTrayWindow
Suspicious use of SetWindowsHookEx
Modifies registry class
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-04-07 17:12
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-07 17:12
Reported
2024-04-07 17:19
Platform
win10v2004-20240226-en
Max time kernel
401s
Max time network
401s
Command Line
Signatures
Lumma Stealer
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\system32\eventvwr.msc | C:\Windows\system32\mmc.exe | N/A |
| File opened for modification | C:\Windows\system32\eventvwr.msc | C:\Windows\system32\mmc.exe | N/A |
Suspicious use of SetThreadContext
| Description | Indicator | Process | Target |
| PID 9204 set thread context of 8800 | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
| PID 10432 set thread context of 4620 | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
| PID 9920 set thread context of 10724 | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
| PID 9952 set thread context of 6452 | N/A | C:\Users\Admin\Downloads\WerboPack\WerboPack.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Windows\system32\taskmgr.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133569835463083783" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-566096764-1992588923-1249862864-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/1fcx1z24mxjwr4w/WerboPack.rar/file
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa6f399758,0x7ffa6f399768,0x7ffa6f399778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1732 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2136 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2172 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2980 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2988 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4584 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5612 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5212 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=3912 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5588 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5716 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5908 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=6124 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=6156 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5316 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7000 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=7052 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=7292 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=7316 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7324 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=7332 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7060 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7532 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7948 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7976 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=8248 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=8408 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=8440 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8804 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=8952 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=9336 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=9452 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=9624 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=9736 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=9576 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=9100 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=10180 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=10312 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=10320 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=10588 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=10780 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=10808 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=10820 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=10948 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=9208 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=11488 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=11856 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=11988 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=12132 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=12264 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=12724 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=12740 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=12884 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=12908 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=13428 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=13560 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=11708 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=13968 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=11744 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=14304 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=14332 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=14344 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=14716 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=14848 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=14972 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=15176 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=12392 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=12664 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x448 0x4fc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=15040 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=15432 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=15456 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=15604 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=15748 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=7768 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=15788 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=7040 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=15948 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=16228 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10900 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\WerboPack\" -spe -an -ai#7zMap13889:80:7zEvent30719
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=10896 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=12140 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:1
C:\Users\Admin\Downloads\WerboPack\WerboPack.exe
"C:\Users\Admin\Downloads\WerboPack\WerboPack.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Windows\system32\eventvwr.exe
"C:\Windows\system32\eventvwr.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\eventvwr.msc"
C:\Users\Admin\Downloads\WerboPack\WerboPack.exe
"C:\Users\Admin\Downloads\WerboPack\WerboPack.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Users\Admin\Downloads\WerboPack\WerboPack.exe
"C:\Users\Admin\Downloads\WerboPack\WerboPack.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2740 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=13656 --field-trial-handle=1872,i,6504949928967715681,2693699749549860869,131072 /prefetch:2
C:\Users\Admin\Downloads\WerboPack\WerboPack.exe
"C:\Users\Admin\Downloads\WerboPack\WerboPack.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Windows\system32\eventvwr.exe
"C:\Windows\system32\eventvwr.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe" "C:\Windows\system32\eventvwr.msc"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.113.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | 249.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.113.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 172.67.199.186:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 104.16.113.74:443 | static.mediafire.com | udp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| BE | 13.225.20.117:443 | cdn.amplitude.com | tcp |
| US | 172.64.128.8:443 | www.ezojs.com | tcp |
| DE | 216.58.206.46:443 | translate.google.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| US | 172.67.73.78:443 | www.mediafiredls.com | tcp |
| US | 104.16.52.110:443 | cdn.otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 20.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.184.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.20.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.206.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.52.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.128.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| DE | 142.250.186.74:443 | content-autofill.googleapis.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| FR | 13.39.145.251:443 | g.ezoic.net | tcp |
| DE | 172.217.18.10:443 | translate.googleapis.com | tcp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 44.240.111.24:443 | api.amplitude.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 172.64.137.15:443 | g.ezodn.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| BE | 23.14.90.91:80 | apps.identrust.com | tcp |
| US | 172.64.137.15:443 | g.ezodn.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| BE | 64.233.166.154:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 172.64.136.15:443 | g.ezodn.com | udp |
| IE | 54.77.0.180:443 | bcp.crwdcntrl.net | tcp |
| DE | 142.250.186.74:443 | translate-pa.googleapis.com | udp |
| BE | 13.225.239.99:443 | tags.crwdcntrl.net | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| IE | 52.49.69.142:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| US | 172.64.137.15:443 | bshr.ezodn.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 42.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.73.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.181.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.145.39.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.136.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.111.240.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.137.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.166.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.0.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.69.49.52.in-addr.arpa | udp |
| DE | 142.250.186.66:443 | googleads.g.doubleclick.net | tcp |
| DE | 142.250.186.131:443 | www.google.co.uk | tcp |
| DE | 172.217.16.196:443 | www.google.com | tcp |
| US | 172.64.137.15:443 | bshr.ezodn.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | ut.pubmatic.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| NL | 185.64.189.226:443 | ut.pubmatic.com | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| BE | 64.233.166.154:443 | stats.g.doubleclick.net | udp |
| DE | 172.217.16.206:443 | analytics.google.com | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| DE | 216.58.206.46:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 66.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.2.101.151.in-addr.arpa | udp |
| DE | 216.58.206.46:443 | fundingchoicesmessages.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| DE | 172.217.18.10:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 58.55.71.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | rt.marphezis.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 104.26.9.169:443 | script.4dex.io | tcp |
| FR | 13.39.145.251:443 | g.ezoic.net | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| DE | 142.250.186.66:443 | googleads.g.doubleclick.net | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| BE | 13.225.239.119:443 | hb.yellowblue.io | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 18.157.230.4:443 | tlx.3lift.com | tcp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| US | 178.128.135.204:443 | rt.marphezis.com | tcp |
| IE | 18.202.135.160:443 | ap.lijit.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| BE | 13.225.16.60:443 | cdn.prod.uidapi.com | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| US | 178.128.135.204:443 | rt.marphezis.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| US | 34.120.135.53:443 | oajs.openx.net | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 107.151.11.18:443 | ghb1.adtelligent.com | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 104.26.9.169:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | tcp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | 203.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.135.202.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.30.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.230.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.9.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.16.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.151.227.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.135.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.135.120.34.in-addr.arpa | udp |
| US | 34.120.135.53:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | 514a26b6c3c2c9c10547f37430a61539.safeframe.googlesyndication.com | udp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 172.217.16.129:443 | 514a26b6c3c2c9c10547f37430a61539.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 34.98.64.218:443 | google-bidout-d.openx.net | tcp |
| DE | 142.250.186.66:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| NL | 216.58.206.70:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| NL | 216.58.206.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | tcp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | tcp |
| DE | 37.252.171.53:443 | ib.adnxs.com | tcp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 65.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.11.151.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.171.91.138.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.206.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | tcp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 104.16.53.110:443 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | download2327.mediafire.com | udp |
| US | 199.91.155.68:443 | download2327.mediafire.com | tcp |
| US | 199.91.155.68:443 | download2327.mediafire.com | tcp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 34.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.155.91.199.in-addr.arpa | udp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| US | 8.8.8.8:53 | resources.infolinks.com | udp |
| BE | 13.225.239.67:443 | woreppercomming.com | tcp |
| US | 172.66.42.247:443 | resources.infolinks.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 67.202.105.23:443 | ssc-cms.33across.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 23.220.112.27:443 | hbx.media.net | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 67.202.105.23:443 | ssc-cms.33across.com | tcp |
| US | 23.220.112.27:443 | hbx.media.net | tcp |
| DK | 37.157.3.26:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 54.229.202.228:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | static.smilewanted.com | udp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | 67.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 247.42.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.adtelligent.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| US | 8.8.8.8:53 | public.servenobid.com | udp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| NL | 35.214.229.219:443 | csync.loopme.me | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| IE | 52.19.105.29:443 | match.prod.bidr.io | tcp |
| BE | 13.225.239.81:443 | api-2-0.spot.im | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| BE | 13.225.239.81:443 | api-2-0.spot.im | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| IE | 52.19.105.29:443 | match.prod.bidr.io | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| NL | 35.214.229.219:443 | csync.loopme.me | tcp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| NL | 79.127.227.46:443 | c3.a-mo.net | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| BE | 13.225.239.92:443 | public.servenobid.com | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| IE | 52.95.115.196:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 23.20.237.124:443 | aorta.clickagy.com | tcp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| NL | 213.19.162.90:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.112.220.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.3.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.202.229.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.71.83.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.229.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.105.19.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.32.42.70.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.115.95.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | router.infolinks.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| IE | 52.95.115.196:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| DE | 91.228.74.251:443 | cms.quantserve.com | tcp |
| NL | 72.246.173.47:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| IE | 52.30.158.183:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 8.8.8.8:53 | g2.gumgum.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | cs-rtb.minutemedia-prebid.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| BE | 13.225.239.97:443 | cs-rtb.minutemedia-prebid.com | tcp |
| IE | 54.76.168.150:443 | g2.gumgum.com | tcp |
| NL | 89.149.192.196:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 124.237.20.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.162.19.213.in-addr.arpa | udp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.173.246.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | cdn.dxkulture.com | udp |
| US | 104.18.42.227:443 | cdn.dxkulture.com | tcp |
| US | 23.220.112.27:443 | hbx.media.net | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 3.219.53.60:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | ssp.disqus.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 54.175.251.200:443 | ssp.disqus.com | tcp |
| DE | 3.77.194.54:443 | match.sharethrough.com | tcp |
| DE | 3.77.194.54:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | ads.servenobid.com | udp |
| IE | 54.246.136.8:443 | ads.servenobid.com | tcp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.158.30.52.in-addr.arpa | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 69.166.1.34:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | 196.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.168.76.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.57.245.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.42.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.53.219.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.251.175.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.194.77.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 69.166.1.34:443 | sync.go.sonobi.com | tcp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 54.225.145.9:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| SE | 213.155.156.167:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| NL | 35.214.229.219:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| IE | 34.240.126.98:443 | a.audrte.com | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.145.225.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.136.246.54.in-addr.arpa | udp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | jsc.mgid.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 104.19.133.76:443 | jsc.mgid.com | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| DE | 52.28.236.78:443 | rtb.mfadsrvr.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 8.8.8.8:53 | dmp.brand-display.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 44.217.2.137:443 | i.liadm.com | tcp |
| US | 34.160.19.107:443 | dmp.brand-display.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| NL | 154.57.158.25:443 | ads.stickyadstv.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 193.3.178.4:443 | ads.us.e-planning.net | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.16.207.89.in-addr.arpa | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.126.240.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.133.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.236.28.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.19.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.2.217.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| JP | 211.120.53.206:443 | tg.socdm.com | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| JP | 211.120.53.206:443 | tg.socdm.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | match.deepintent.com | udp |
| FR | 178.32.197.56:443 | rtb-csync.smartadserver.com | tcp |
| FR | 178.32.197.56:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ads.dxkulture.com | udp |
| US | 52.206.181.150:443 | sync.ipredictive.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| US | 45.55.126.71:443 | ads.dxkulture.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.18.47.7:443 | match.deepintent.com | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| FR | 141.95.171.140:443 | green.erne.co | tcp |
| FR | 146.59.148.16:443 | pixel.onaudience.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.43.72.97:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | 4.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.197.32.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.181.206.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.47.18.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.148.59.146.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.171.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 104.19.133.76:443 | jsc.mgid.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| US | 104.19.133.76:443 | jsc.mgid.com | tcp |
| US | 8.8.8.8:53 | servicer.mgid.com | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 104.19.129.76:443 | servicer.mgid.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| US | 8.8.8.8:53 | s.e-planning.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | cookies.nextmillmedia.com | udp |
| US | 8.8.8.8:53 | 97.72.43.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.15.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.249.124.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.129.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 44.195.5.162:443 | cookies.nextmillmedia.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 193.3.178.2:443 | s.e-planning.net | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cs.minutemedia-prebid.com | udp |
| IE | 34.250.71.194:443 | cs.minutemedia-prebid.com | tcp |
| IE | 34.250.71.194:443 | cs.minutemedia-prebid.com | tcp |
| NL | 35.214.229.219:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | cm.ctnsnet.com | udp |
| US | 8.8.8.8:53 | d.adroll.com | udp |
| US | 8.8.8.8:53 | u-ams03.e-planning.net | udp |
| FR | 178.32.197.56:443 | rtb-csync.smartadserver.com | tcp |
| NL | 193.3.178.3:443 | u-ams03.e-planning.net | tcp |
| IE | 52.31.45.85:443 | d.adroll.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| US | 8.8.8.8:53 | dmp.v.fwmrm.net | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | sync.tidaltv.com | udp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | loadeu.exelator.com | udp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DK | 37.157.6.243:443 | dmp.adform.net | tcp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| IE | 52.17.202.44:443 | dpm.demdex.net | tcp |
| US | 3.231.143.32:443 | dmp.v.fwmrm.net | tcp |
| IE | 34.254.143.3:443 | loadeu.exelator.com | tcp |
| NL | 81.17.55.97:443 | sync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 8.8.8.8:53 | c.mgid.com | udp |
| DE | 3.64.22.195:443 | aa.agkn.com | tcp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | odr.mookie1.com | udp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| US | 8.8.8.8:53 | beacon.krxd.net | udp |
| US | 8.8.8.8:53 | cdn.mgid.com | udp |
| DE | 142.250.186.130:443 | ade.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| DE | 162.55.233.29:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | engine.widespace.com | udp |
| US | 8.8.8.8:53 | tags.bluekai.com | udp |
| US | 8.8.8.8:53 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | udp |
| BE | 23.55.96.210:443 | tags.bluekai.com | tcp |
| IE | 54.74.75.115:443 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.5.195.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.170.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.71.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.45.31.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.202.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.214.120.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.143.254.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.143.231.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.22.64.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.236.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.186.250.142.in-addr.arpa | udp |
| DE | 162.55.233.29:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| NL | 213.19.162.80:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| GB | 18.134.84.16:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | s-img.mgid.com | udp |
| US | 8.8.8.8:53 | 210.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | 115.75.74.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.233.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.162.19.213.in-addr.arpa | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | cm.rtbsystem.com | udp |
| US | 8.8.8.8:53 | cm.idealmedia.io | udp |
| US | 8.8.8.8:53 | tracker.direct.e-volution.ai | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.43.72.97:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 147.135.71.24:443 | tracker.direct.e-volution.ai | tcp |
| NL | 213.19.162.80:443 | pixel.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | pixel.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | pixel.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | pixel.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | pixel.rubiconproject.com | tcp |
| NL | 213.19.162.80:443 | pixel.rubiconproject.com | tcp |
| US | 188.114.97.2:443 | cm.rtbsystem.com | tcp |
| US | 104.18.164.66:443 | cm.idealmedia.io | tcp |
| US | 35.212.212.222:443 | rtb-usw.mfadsrvr.com | tcp |
| IE | 63.33.151.66:443 | ad.360yield.com | tcp |
| US | 104.22.54.206:443 | cdn.connectad.io | tcp |
| NL | 213.19.162.80:443 | pixel.rubiconproject.com | tcp |
| US | 104.22.54.206:443 | cdn.connectad.io | tcp |
| US | 188.114.97.2:443 | cm.rtbsystem.com | tcp |
| US | 104.18.164.66:443 | cm.idealmedia.io | tcp |
| IE | 63.33.151.66:443 | ad.360yield.com | tcp |
| US | 35.212.212.222:443 | rtb-usw.mfadsrvr.com | tcp |
| US | 104.18.164.66:443 | cm.idealmedia.io | udp |
| US | 8.8.8.8:53 | hb.yahoo.net | udp |
| US | 188.114.97.2:443 | cm.rtbsystem.com | udp |
| US | 104.19.132.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | sync.admanmedia.com | udp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 8.2.110.17:443 | sync.admanmedia.com | tcp |
| NL | 104.109.143.6:443 | hb.yahoo.net | tcp |
| DE | 116.202.167.155:443 | inv-nets.admixer.net | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | 16.84.134.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.71.135.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.164.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.97.114.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.54.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.212.212.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.151.33.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.132.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.167.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.143.109.104.in-addr.arpa | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 35.212.212.222:443 | rtb-usw.mfadsrvr.com | udp |
| IE | 52.17.147.169:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | sync-eu.connectad.io | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 104.22.54.206:443 | sync-eu.connectad.io | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync.connectad.io | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.147.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | udp |
| FR | 146.59.148.16:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | u.ipw.metadsp.co.uk | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 35.214.132.90:443 | u.ipw.metadsp.co.uk | tcp |
| IE | 52.212.133.95:443 | rtb.gumgum.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| IE | 52.212.133.95:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | ads.avads.net | udp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| US | 8.8.8.8:53 | 90.132.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.133.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.133.128.34.in-addr.arpa | udp |
| IE | 52.49.51.224:443 | cs.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| IE | 54.217.116.3:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | ws.rqtrk.eu | udp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| NL | 188.42.189.197:443 | ads.betweendigital.com | tcp |
| DE | 57.129.18.111:443 | ws.rqtrk.eu | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 8.8.8.8:53 | 224.51.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.116.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.189.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | udp | |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| NL | 89.207.16.201:443 | casale-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | euexchangesync.digitaleast.mobi | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 34.95.81.168:443 | euexchangesync.digitaleast.mobi | tcp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 8.8.8.8:53 | sync.e-planning.net | udp |
| NL | 193.3.178.4:443 | sync.e-planning.net | tcp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.81.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.2.110.33:443 | us.shb-sync.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| BE | 13.225.239.37:443 | s.ad.smaato.net | tcp |
| US | 34.128.133.112:443 | ads.avads.net | udp |
| BE | 13.225.239.99:443 | tags.crwdcntrl.net | tcp |
| NL | 79.127.227.46:443 | c3.a-mo.net | tcp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| FR | 178.32.210.230:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | 230.210.32.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| DE | 142.250.186.130:443 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 159.113.53.23.in-addr.arpa | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 23.227.151.242:443 | ghb2.adtelligent.com | tcp |
| NL | 89.149.192.196:443 | ssbsync.smartadserver.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| DE | 37.252.171.53:443 | ib.adnxs.com | tcp |
| US | 52.206.181.150:443 | sync.ipredictive.com | tcp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 35.186.201.99:443 | dsp-ap.eskimi.com | tcp |
| US | 104.18.24.173:443 | s.tribalfusion.com | udp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| US | 70.42.32.127:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | t.pubmatic.com | udp |
| GB | 185.64.190.82:443 | t.pubmatic.com | tcp |
| US | 23.220.112.27:443 | hbx.media.net | udp |
| US | 8.8.8.8:53 | 99.201.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb.adentifi.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 3.221.141.3:443 | rtb.adentifi.com | tcp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| IE | 52.18.90.0:443 | pm.w55c.net | tcp |
| FR | 178.32.210.230:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| NL | 193.3.178.4:443 | sync.e-planning.net | tcp |
| US | 8.8.8.8:53 | 79.122.59.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.141.221.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.90.18.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| DE | 216.58.206.33:443 | cdn.ampproject.org | tcp |
| NL | 193.3.178.3:443 | u-ams03.e-planning.net | tcp |
| DE | 142.250.186.66:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.206.58.216.in-addr.arpa | udp |
| US | 23.227.151.242:443 | ghb2.adtelligent.com | tcp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sideindexfollowragelrew.pw | udp |
| US | 8.8.8.8:53 | birdpenallitysydw.shop | udp |
| US | 188.114.96.2:443 | birdpenallitysydw.shop | tcp |
| US | 8.8.8.8:53 | cinemaclinicttanwk.shop | udp |
| US | 8.8.8.8:53 | 2.96.114.188.in-addr.arpa | udp |
| US | 104.21.63.97:443 | cinemaclinicttanwk.shop | tcp |
| US | 8.8.8.8:53 | disagreemenywyws.shop | udp |
| US | 104.21.89.249:443 | disagreemenywyws.shop | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| DE | 142.250.186.46:443 | google.com | tcp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | e2c46.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | speedparticipatewo.shop | udp |
| BR | 35.215.235.162:443 | e2c46.gcp.gvt2.com | tcp |
| US | 188.114.96.2:443 | speedparticipatewo.shop | tcp |
| BR | 35.215.235.162:443 | e2c46.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 97.63.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.89.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.186.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.49.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fixturewordbakewos.shop | udp |
| US | 172.67.212.157:443 | fixturewordbakewos.shop | tcp |
| US | 8.8.8.8:53 | 157.212.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.235.215.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | colorprioritytubbew.shop | udp |
| US | 172.67.139.138:443 | colorprioritytubbew.shop | tcp |
| US | 8.8.8.8:53 | abuselinenaidwjuew.shop | udp |
| US | 188.114.97.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 8.8.8.8:53 | 138.139.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | methodgreenglassdatw.shop | udp |
| US | 104.21.38.106:443 | methodgreenglassdatw.shop | tcp |
| US | 8.8.8.8:53 | 106.38.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.197.17.2.in-addr.arpa | udp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
| US | 107.151.11.18:443 | ghb2.adtelligent.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| NL | 216.58.206.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | udp |
| DE | 37.252.171.53:443 | ib.adnxs.com | tcp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 162.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.186.250.142.in-addr.arpa | udp |
| US | 23.227.151.242:443 | ghb2.adtelligent.com | tcp |
| US | 104.19.129.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cl.imghosts.com | udp |
| US | 172.64.146.129:443 | cl.imghosts.com | tcp |
| US | 8.8.8.8:53 | 129.146.64.172.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 104.21.63.97:443 | cinemaclinicttanwk.shop | tcp |
| US | 104.21.89.249:443 | disagreemenywyws.shop | tcp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 104.21.63.97:443 | cinemaclinicttanwk.shop | tcp |
| US | 104.21.89.249:443 | disagreemenywyws.shop | tcp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 172.67.212.157:443 | fixturewordbakewos.shop | tcp |
| US | 172.67.212.157:443 | fixturewordbakewos.shop | tcp |
| US | 172.67.139.138:443 | colorprioritytubbew.shop | tcp |
| US | 172.67.139.138:443 | colorprioritytubbew.shop | tcp |
| US | 188.114.97.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| US | 104.21.38.106:443 | methodgreenglassdatw.shop | tcp |
| US | 188.114.97.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 104.21.38.106:443 | methodgreenglassdatw.shop | tcp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| DE | 142.250.186.65:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| BE | 104.68.68.28:443 | servedby.flashtalking.com | tcp |
| US | 8.8.8.8:53 | 28.68.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ajs-assets.ftstatic.com | udp |
| BE | 13.225.239.126:443 | ajs-assets.ftstatic.com | tcp |
| US | 107.151.11.18:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | agen-assets.ftstatic.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| BE | 13.225.239.115:443 | agen-assets.ftstatic.com | tcp |
| US | 8.8.8.8:53 | d9.flashtalking.com | udp |
| US | 8.8.8.8:53 | js.ad-score.com | udp |
| US | 8.8.8.8:53 | cdn.flashtalking.com | udp |
| US | 8.8.8.8:53 | tracker.samplicio.us | udp |
| IE | 52.31.85.169:443 | d9.flashtalking.com | tcp |
| BE | 13.225.239.108:443 | js.ad-score.com | tcp |
| DE | 52.29.95.208:443 | tracker.samplicio.us | tcp |
| NL | 72.246.172.44:443 | cdn.flashtalking.com | tcp |
| NL | 72.246.172.44:443 | cdn.flashtalking.com | tcp |
| US | 8.8.8.8:53 | 126.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.64.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.85.31.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.239.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.95.29.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.172.246.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| US | 8.8.8.8:53 | stat.flashtalking.com | udp |
| NL | 72.246.172.44:443 | stat.flashtalking.com | tcp |
| GB | 18.168.222.179:443 | ad-events.flashtalking.com | tcp |
| US | 8.8.8.8:53 | data.ad-score.com | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 104.19.129.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | secure.flashtalking.com | udp |
| NL | 72.246.172.44:443 | secure.flashtalking.com | tcp |
| US | 8.8.8.8:53 | 179.222.168.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.115.211.130.in-addr.arpa | udp |
| US | 104.19.132.76:443 | cm.mgid.com | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 216.239.34.117:443 | beacons2.gvt2.com | tcp |
| US | 216.239.34.117:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | 117.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 104.19.129.76:443 | cm.mgid.com | udp |
| US | 104.19.132.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | 204.201.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | google.com | udp |
| DE | 142.250.186.46:443 | google.com | udp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 142.132.249.188:443 | ghb1.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 188.249.132.142.in-addr.arpa | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | udp |
| US | 35.244.159.8:443 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | sync.teads.tv | udp |
| NL | 72.246.173.80:443 | sync.teads.tv | tcp |
| NL | 72.246.173.80:443 | sync.teads.tv | tcp |
| US | 8.8.8.8:53 | 80.173.246.72.in-addr.arpa | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| DE | 142.250.186.130:443 | ade.googlesyndication.com | udp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
| US | 23.227.151.242:443 | ghb1.adtelligent.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| US | 104.19.129.76:443 | cm.mgid.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 104.19.132.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 58.69.83.185.in-addr.arpa | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| DE | 142.250.186.46:443 | google.com | udp |
| US | 8.8.8.8:53 | sideindexfollowragelrew.pw | udp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 104.21.63.97:443 | cinemaclinicttanwk.shop | tcp |
| US | 104.21.89.249:443 | disagreemenywyws.shop | tcp |
| US | 188.114.96.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 172.67.212.157:443 | fixturewordbakewos.shop | tcp |
| US | 8.8.8.8:53 | colorprioritytubbew.shop | udp |
| US | 172.67.139.138:443 | colorprioritytubbew.shop | tcp |
| DE | 142.132.249.188:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| NL | 216.58.206.70:443 | s0.2mdn.net | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| DE | 142.250.186.34:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| IE | 34.243.58.177:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 188.114.97.2:443 | abuselinenaidwjuew.shop | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 192.178.48.227:443 | beacons.gvt2.com | tcp |
| US | 52.223.40.198:443 | data.adsrvr.org | tcp |
| US | 8.8.8.8:53 | 116.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 177.58.243.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| IE | 52.18.90.0:443 | pm.w55c.net | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 185.89.210.212:443 | ib.adnxs.com | tcp |
| US | 192.178.48.227:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | jelly.mdhv.io | udp |
| US | 216.239.34.21:443 | jelly.mdhv.io | tcp |
| US | 8.8.8.8:53 | 227.48.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.210.89.185.in-addr.arpa | udp |
| US | 54.152.41.100:443 | sync.ipredictive.com | tcp |
| US | 104.21.38.106:443 | methodgreenglassdatw.shop | tcp |
| US | 8.8.8.8:53 | 21.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.41.152.54.in-addr.arpa | udp |
| DE | 172.217.16.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 54.167.157.124:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | 124.157.167.54.in-addr.arpa | udp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| DE | 18.157.230.4:443 | tlx.3lift.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 104.19.129.76:443 | cm.mgid.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 172.64.146.129:443 | cl.imghosts.com | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| DE | 172.217.16.131:443 | beacons3.gvt2.com | tcp |
| DE | 172.217.16.131:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | 131.16.217.172.in-addr.arpa | udp |
| DE | 142.132.249.188:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| US | 172.64.137.15:443 | go.ezodn.com | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | 181.32.239.216.in-addr.arpa | udp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 172.64.137.15:443 | go.ezodn.com | udp |
| DE | 142.250.186.162:443 | googleads.g.doubleclick.net | udp |
| DE | 172.217.16.196:443 | www.google.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| DE | 142.250.74.194:443 | googleads4.g.doubleclick.net | udp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.251:443 | onetag-sys.com | udp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | servicer.mgid.com | udp |
| DE | 142.250.185.130:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.mgid.com | udp |
| US | 104.19.130.76:443 | c.mgid.com | udp |
| US | 8.8.8.8:53 | s-img.mgid.com | udp |
| US | 8.8.8.8:53 | 76.130.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cm.mgid.com | udp |
| US | 104.19.132.76:443 | cm.mgid.com | udp |
| DE | 142.132.249.188:443 | ghb.adtelligent.com | tcp |
| US | 192.178.49.163:443 | beacons.gcp.gvt2.com | udp |
Files
\??\pipe\crashpad_2748_VMRJMJFHYPCXOHRY
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 31447d4692e96968156de5d7c11a1ee3 |
| SHA1 | 612701bdd4ccbea2fdfab097bf3b6891fa75084a |
| SHA256 | c3818d9bc3b160fde0b33247cfcc30d586ddc99dbd1e35bb7e13f7d758548b48 |
| SHA512 | 4e8828b1427244e0b60fc84347f83afcc1c2946a90fe5fd43cf13778cb34f33a6baff6554b003deb49a6add330beca272095e447df7b4e8dd3ee9bd4dc41bd0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6cd3dcd18d79026b5814315774db6f2c |
| SHA1 | 12f9e91b5b71bfc5b828f485609c88f785992f53 |
| SHA256 | 4e78e1868bcef9f14f6234c0994b50c5cf2f6b49e09fa90e83bbda81e274067f |
| SHA512 | 7f19af64b6fa441fd68a3d9e01651dc00f5c415910339aa7cf2ca57104de7d30ab30d897df570d239e815bfab6327cc1d37827513ee0c68f49a7eb36889b1b55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6d1717c7ba178ccc6e6a6d6cbfcfdf91 |
| SHA1 | dd1d536bedb183218bdd1659e3a0897e7429e544 |
| SHA256 | bc5009abb86483d143a81cebefaf7e6da339e05517585fbf1655e2872f19c8a8 |
| SHA512 | ca68bd515f3663a2f65128cec65ea57e394f7f139f1e7605ba86891499fd2aa7ecb1465c074e98c4cc91cf1d096baff2be81230b39d985a1c4b8c8d09e9a7590 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 1a7cdcf21794595155d9daf1ec65d8da |
| SHA1 | 40352477e8e67dcd08926c4d5904886a59ca052d |
| SHA256 | ce57ea98de4e5bc14ef94248254970c775ec2c2e1105acf460333f725b3366f3 |
| SHA512 | 3e1c27fc5dd19282fbaec773dd87077fe1749a450b2ee15bf001548751cc6293025e3454482706126131febb642021ae655350bbe8d43c5cd057b73708241895 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | e0d823d82af46b76903d70d9e0db0fac |
| SHA1 | 8ca05aa26a10bc15ccf64abcc3a7d56446bc2563 |
| SHA256 | e3cc8c80cf5a8726a413e1e2e42e285ea4f8c37ba3a90f3f65b35e428bd74fe3 |
| SHA512 | 52c94d4e42d86ccb2cb3a739abb914d9ff6be023ebfd9606e4e0b78fb2a10295b272e88cc580a8dc1ab083ebfb81acf6ccbc1aa571ba885129f847107cf17ae2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c3de359689d2a861d1c9d0b8bbced5a8 |
| SHA1 | 47932bc18938a08b76ad2a00584f2f7891bd5ea4 |
| SHA256 | 8352306ce54c5d93999e9e7dcc1deac44e46f65cbb6b01943286bccc7e778b8e |
| SHA512 | 9f7f0d0e84e707f6c285e4f1191181d54e33cc751758c8d4235c489d592b6a9192831e58fe983b264ef98227694052a537eaf80285bf3804c7420644d209ce6b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2b1d29eeee4bb094f6da61893ca8d830 |
| SHA1 | 3904202be66328c1103ac1a8404ee932b5c54184 |
| SHA256 | 32b435fe61d51235ad62ce5e4a51efdb85519baca7111a66f26e8046a4fb6eb1 |
| SHA512 | 6c128cde435d6ad1a4dcc71afe5b86a285ae1a4cdfb1937b300a8c07ab200632578e0f64400f72e1c5880bb210c873d8ec6a76945219da85802041ad0f875fa0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 871232de6bee5fcfd15fc14956ebc9e8 |
| SHA1 | 489e830c54ed69ab11594dbb0f65f65cd4956f8f |
| SHA256 | 4bb816ccb78d308260855492e3e17eb04c2d20980da0473cb297365256108be4 |
| SHA512 | 3bd0906610a9696501c4159f9f9a6c2de02f0c80a3eba1b961e9e8beea996fcf8e9a50bf530daf2f737d0c31e96619a43edc336c74063af8fe746ea52a9237d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0f54333334ff6f80eaf0d005ad92ff86 |
| SHA1 | 7681b6c6f7f5cda5c245d3baa707aa46aad41367 |
| SHA256 | ef1067f2119641a023788aa30723daa669b3df4afd92d5a41697d88052a10029 |
| SHA512 | 1e7b624c06bd1ac9bc4f55fbf44eda850001f830b092c4ca8e6735655b006499d4e60494296e07308c51ffede1c34af7d3c37695dced9f410365e91ea5c4417f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1eacf8db2694c145f5b8c5205e5b9676 |
| SHA1 | 69695a124ca5d0b382ca0f88c63dee0c100b9539 |
| SHA256 | 025ff0dbcb97cc3caee25537b9c211d16c14240d9a075296353add7201f86266 |
| SHA512 | 36040e5401bdb1274dd2a889eaa7ed90d45ced2df7d83e416b36a4c2e21f64b8ce26f351abbec515ba60841e6f367b6f24387d17a5a084b5de4317e496451a47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c610513aa59453c4cdab021f7c469555 |
| SHA1 | 7a8754d5c255e86895928c3605e6fd473e243ed7 |
| SHA256 | ce45fba319f924e0326f661e9b1c676ff9ef182458a8f11c7df14ed27e714365 |
| SHA512 | 1e589af03a2714b393e8abe81ce87eb7ae3ec20888858ad90142afd022c66ac3ba24857368147b6e1d4bcff06ba1d4e6b156e566861e05ae93c93436522b8267 |
C:\Users\Admin\Downloads\WerboPack\ASP.NET Web Pages\v1.0\Microsoft.AspNet.WebPages.ru.1.0.20105.408\lib\net40\system.web.webpages.razor.xml
| MD5 | 9c8531c1d5f692cd921c8a56d85bc85d |
| SHA1 | 801b699bec07e93fdd05469f15cf80be4178e409 |
| SHA256 | 16953fbbff24c3d927e5640060948da47c15a32918ecb2fc4f922a82b3fcfa9c |
| SHA512 | 3e7fbce84ca7bc96d46ffc3b4fc7acf21d962d379589125a6515178693c379eb6b5833e428ec11f106e9b807147c698e898840a20a8189a01baf76ace9a1f719 |
C:\Users\Admin\Downloads\WerboPack\ASP.NET Web Pages\v1.0\Microsoft.AspNet.Razor.ru.1.0.20105.408\lib\net40\ru\system.web.razor.xml
| MD5 | 398dc059ac7b960a31bba803c6d4b7a3 |
| SHA1 | dfac62f6e4ac50a0029031244fc5a1469ffe90e8 |
| SHA256 | 943feccacef5fe23b3daf662594e3b45fcb8bc1caf25ea1c474721921caa9488 |
| SHA512 | f3bb82690b39dad744be9c403f7efcf2c40c903f85be013fff4b1a2ac77e8d59e77bc1eb9989134f800fba3d9bcb987485a92b719386750c70dd7fa1acb533e0 |
C:\Users\Admin\Downloads\WerboPack\ASP.NET Web Pages\v1.0\Microsoft.Web.Infrastructure.1.0.0.0\lib\net40\Microsoft.Web.Infrastructure.dll
| MD5 | 969d6caf273394f064475292d549516e |
| SHA1 | 91f688c235388c8bcee03ff20d0c8a90dbdd4e3e |
| SHA256 | fe18f4259c947c1fd6d74f1827370e72d7ad09aefb4b720af227333583e0169f |
| SHA512 | b4f6a614e5fc52850e3d02ebf7e85abf1ebe3fb4ebd6b4f03ec9dc4989cce88e44714ca2198dd7e632f5ed0f15225a68b31052da33e5ac3ce48a1c91c3c04446 |
C:\Users\Admin\Downloads\WerboPack\ASP.NET Web Pages\v1.0\WebConfig\System.Web.WebPages.Deployment.dll
| MD5 | f9efab153915541f6cbdd147f85f9842 |
| SHA1 | 5d923740f2377298ad917eb9f5bfb45e0b1465fb |
| SHA256 | 130fe2b8282263c77d9bee89d636166848291432696c449d708c819b17bf053a |
| SHA512 | 74890a53f2b0b73816e5155fb2b48580fa1dbf3e35077e7915d96ae57516c5da2bbf968978ae134e12754039a5ada6f8dfbcdc121cab9b887a6d4d259b68f3ba |
C:\Users\Admin\Downloads\WerboPack\ASP.NET Web Pages\v1.0\Visual Studio 2012\thirdpartynotices.rtf
| MD5 | b0ac92e72b07a4b37d66f0264e3373c0 |
| SHA1 | 769dec94ed0bfcb47e68026aa01e80a26943ff38 |
| SHA256 | 5a0792c375031840221f1737ba389b0d6dac373b118a107e50fbe78fe5f4ba69 |
| SHA512 | 716c37b16c577de53b7f6e3934e09ae329e138a8a1725d60e9d8907c43c4400918a31b12ae173644efc25ccc9bf7cb332a3042c17386a3724320ab977a7ded52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 20efe595a4331dfc51124517879c9de8 |
| SHA1 | 5d6f4541fb5f8d08ec72ec69ae71298ebe42331c |
| SHA256 | aa2c7039ecff85bd36df883a6879770b1318d35c8371bbb5fc9a72d6d488e187 |
| SHA512 | eff953f4525b5b187b56ed627e83f5573841aeda4be931100b3a3ee5769308e202252957cd9fb14d02f387c960de64c7886a3eb9f9cf7f0fb3ef5218613f0e31 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5818b3.TMP
| MD5 | 72037f07bbc132d6bb3ce9beea8286d1 |
| SHA1 | ed00af1be8b6c9678a55e250f813767a8c2b30c8 |
| SHA256 | 12b4358a8b5228fa2c47cc87dce7f04b75eee7ed2cbc57cf8b25412c8f2ea107 |
| SHA512 | 567ed4e50fef9e30413c5fb357a783e905f4b83fdf52479d458f972c684d9d214201df17b3fbbdc358e0b9a8282d97bcfb6e913411732beb985b6dbe38d11ae2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c71d5e2aae6843e2614288c12025388b |
| SHA1 | 6f58b11a6317e9ef64dcaf987e4e9cd034da98bc |
| SHA256 | 31c4d52caa2ddcad4a72faed36a6b5fcc78823e7e10a8cbcf76a48d6a125e19f |
| SHA512 | a72a398535faf016a0006bcdf88fb814050b5c393d70a17f4a6bc9944b0ceb0f6b721178bcb3530c7279ad0d3697969795a548e98db2d99601d9d5ac10a7d126 |
memory/9204-1524-0x0000000000FC0000-0x0000000001012000-memory.dmp
memory/9204-1525-0x0000000074830000-0x0000000074FE0000-memory.dmp
memory/8800-1528-0x0000000000400000-0x000000000044E000-memory.dmp
memory/9204-1532-0x0000000074830000-0x0000000074FE0000-memory.dmp
memory/8800-1533-0x0000000000400000-0x000000000044E000-memory.dmp
memory/9204-1534-0x00000000034F0000-0x00000000054F0000-memory.dmp
memory/8800-1536-0x0000000000400000-0x000000000044E000-memory.dmp
memory/8800-1535-0x00000000009E0000-0x00000000009E1000-memory.dmp
memory/8776-1539-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1538-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1537-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1543-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1544-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1545-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1548-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1547-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1546-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
memory/8776-1549-0x0000020FCDE10000-0x0000020FCDE11000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | b6b9484b0f9c1f008bdf29e29daf424f |
| SHA1 | 48b08cb85724d0b849a4e1bb7f0622bc7324e1b2 |
| SHA256 | 3776616a9e3c468bf221d762ba3a6adc4fbe7b9d834174ecc350d20f7846548f |
| SHA512 | 63d3aeabe42051a8b2b0e3ce159781417074a46ad1067a49022087f7884dbc37d1091555d71aacafe4a947abcdd38c33030f5f742b00f23d4d86215728e86b52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f593d26cc1b1930935871dfac3d98ee2 |
| SHA1 | f254cd4c0d8738e4263d4afac77e821efafffade |
| SHA256 | 14ff8556a99de90ed187d94bc56cd7fd70130b6393aeef14c71f9d79c402f1db |
| SHA512 | ea60ce91065ea2d96fa2f609f065bb7a37de34b02be07a9e67d83f64c832dfd769bf575d61f51686053b02476e12d4d037406217c386f37182fde7d892f98c0b |
memory/7348-1572-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
memory/7348-1573-0x000000001D920000-0x000000001D930000-memory.dmp
memory/9204-1574-0x00000000034F0000-0x00000000054F0000-memory.dmp
memory/7348-1575-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1576-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1581-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1580-0x000000001D920000-0x000000001D930000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000027
| MD5 | 10480ba298b5a637d14e1f7f4c2a245d |
| SHA1 | 73259a79c1ac539a81af8f74b82e33685a0587f8 |
| SHA256 | c2a256ef438afe02c50a6b0ebf516157e5eead7fce661501be6a5651040d460c |
| SHA512 | c0b5000ae9decca04f3e13e7d86f66197c0f64baccc97f91a9fb5504b1c74370307ce1b5c903e3086e66d46d782affecce8568775842dae71b36228aa8abde91 |
memory/7348-1609-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
memory/7348-1610-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1616-0x0000000020AD0000-0x0000000020FF8000-memory.dmp
memory/7348-1617-0x000000001D920000-0x000000001D930000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d9c945a45db0af2839a720ab7d2b0f5e |
| SHA1 | 263489b314e2809b55d1a5c7dba136c37cbc858d |
| SHA256 | ab5c05306c740dce193929c4d64c2cef114dedaa0ff85fbbaa8f2d6892362671 |
| SHA512 | 61683c9546bc0bf08e39f67223bcff2e4749332c8350ab51c9b1381e0657dd2b12a741e7828928f557b0deb9c5fe6cac8c95eaa91be4c8535cadab1f00b2c4a0 |
memory/7348-1627-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1628-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1629-0x000000001D920000-0x000000001D930000-memory.dmp
memory/7348-1638-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ecb3b5c0affa868da04fc1ff0fb0264e |
| SHA1 | 4000930cc1410b820c8b03dcb0fef307d19f45e8 |
| SHA256 | 552caa59f8f3aa29fdacf49c92ce67d684a00da0e3928b7f2ae223d50f2c591a |
| SHA512 | f92330f4c4979252de9665d309d8acd96298d29ae4ca7e8d3d1c305c80786ddec4bcb19c4f49dd275c0640c68060210c814be7e2deb62101bf0f1b5926aaacd2 |
memory/10432-1649-0x00000000748D0000-0x0000000075080000-memory.dmp
memory/10432-1655-0x00000000748D0000-0x0000000075080000-memory.dmp
memory/10432-1656-0x00000000023D0000-0x00000000043D0000-memory.dmp
memory/4620-1659-0x0000000000400000-0x000000000044E000-memory.dmp
memory/4620-1658-0x00000000009A0000-0x00000000009A1000-memory.dmp
memory/4620-1657-0x00000000009A0000-0x00000000009A1000-memory.dmp
memory/9920-1660-0x0000000074660000-0x0000000074E10000-memory.dmp
memory/9920-1667-0x0000000074660000-0x0000000074E10000-memory.dmp
memory/9920-1668-0x0000000002B30000-0x0000000004B30000-memory.dmp
memory/10724-1669-0x0000000000400000-0x000000000044E000-memory.dmp
memory/10432-1710-0x00000000023D0000-0x00000000043D0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1ff0971b9065126d55143a080d6d49f3 |
| SHA1 | 539c90d87223f89d68c92485007113e6565eaf58 |
| SHA256 | 50b3726a0c784b027bd8f6aa45934ec359e356816fa8b6027c7b2d5f4909ab58 |
| SHA512 | 9142d14a6382415dabdb623602aa573d44a65778a7f6d47b5fedd55b08bcf5adf0d0f22067806a98fbd9a53576be1d1529aa13f258fcc7193b9acb8d19980051 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 33d765d6d501afb219965c6e12143eb0 |
| SHA1 | ab0fe5010a1d0095718cd7f4b177bdf4d6ab7115 |
| SHA256 | 8bf7955d7f52cb4264a96b93fdf7aad1c06cc1ce46d8c24b22564da8aed36bb6 |
| SHA512 | db6e4fd31248c0a7d1efaad485d695c714e444fb1841c094707b9d490d838142a3fa381d8874b395b38c4607d0a8525390fe005a4da4674b67cdbe27ff86380b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a1324f08d1751a117179105e0a80ed7d |
| SHA1 | 00161324c423b87a785af57114da6082322f0816 |
| SHA256 | f8e73e5da8859270d2b33723a6ed48d712574c0f3eded24867ab6bff4d2ca1a7 |
| SHA512 | 6e33e5cb046f45b97de3d7b744c043beb05bc1a46819ca58073a953d9136cb53adfda8f567ba64ecf11985c95ce1db464cb78409ec06cbf511b3c1e8a0035da1 |
memory/9920-1746-0x0000000002B30000-0x0000000004B30000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | eb7cc153578e4d7fe91840de2a23f286 |
| SHA1 | 8264ea83244910995c95a97a23380d354bedf555 |
| SHA256 | 8e4dd4a2bf19c5c5c03f97c4813f08aad676d4890f1b1b308eed72a8cc05ec54 |
| SHA512 | 404b1c621f271c5f14bb4011062c6aeb281c81bef51f89dab7a9987fae4f349589edde00aa6cf293e2bdc9b8712f12ba5e9f15b62bd5c1fd849c969a063f3650 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\9e5d24f96f361ee0_0
| MD5 | d65ce1337e647d6c06be1b5f8ee86d4f |
| SHA1 | a470f78d6c108da4249b0e7135b6d7941de87fac |
| SHA256 | 6fdae3fbd02bc47a6640aeabbd4e3fb3a3338806c562efcb96ce1fec6e03d212 |
| SHA512 | 12b28282a87dea227a43f151852d8bd9e0751e2aba7e1ddd6fcafbe003c6eb4fe5a6beb2c1951f0fa6b28ffd00cfde7dc9e15f6e9aaeecb78697fd43b86c93cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a789085243b3fccb_0
| MD5 | adc434b492c18a544c0313526e88b8bc |
| SHA1 | 18c23b5fe966580c6255354674b4383596ee0144 |
| SHA256 | d9348b3f7ec764b7d5675f4fcdda873290984853fb3700d8f9168983e3013862 |
| SHA512 | 32225408f7bb6609fd80f558ef32872bd3daec2f6921eda831fe000a1d4b84caf0099a0e414fb62c1d6a8b34b7173f66c5ea1aa52a608a493ff6047ea4716859 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dd73921d2ec18019a3d22482a00fbdab |
| SHA1 | e326418477088200e18e152b511d1b73b27f8e2d |
| SHA256 | a4876546671ac03a52c40a0fb8820180c7d851e30215fac637b97780e71cba89 |
| SHA512 | d79862c720b83e8a622abc0860ac95b5568c42fdb477ebd1de7590fbb0718fa82abce95552c688b049ddff55b139245e19fa5572c784a8d290fa6b6832313397 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 60dbb1f53937c4fa83f3a67fb6860282 |
| SHA1 | 621660b43787450603a9df22628aa880dd2d3693 |
| SHA256 | 07310c4687c44335a75884f80c12850d7efd29882d95fe63f55fa0f98e9ba0dd |
| SHA512 | b462296fbba91d70a7758659b171b52600175439bdb6384b42da37814229fcc792baf5fd2fc364e1c821406d131d968096977d9365da484ac4d96c1e1aae0764 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000030
| MD5 | 2b7ec9fe5044c75348bc52964bf50b78 |
| SHA1 | 039e784c53ba423877c5c845ffb044abbf4c110e |
| SHA256 | 71c9403962b1f930169325d2c812125a0088d2a695609486bb6f31185e84ff97 |
| SHA512 | 92cb64599e198177093bda32e1c962fdccaa049d9875292b97c6b014d0d0afde750dcef27151751dda3f8639df41bed611bce7816c04d4e581b17b132d169016 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 6a59472d5758454dd7618ca11cdd0a31 |
| SHA1 | df04951009c2359629c075c38dc4fb2a3d61938a |
| SHA256 | 98959dd2826e09927ebee0eadfe62554d1a93a77b011a6247d432361c5639cc9 |
| SHA512 | 00a4b9ee18c23b16905056b0219bb436c29a990fce10faf0c5b07b772c66a12be4be3461faede6cee67c2a6470fada57bfc791bc1578bf5385dedaeee39fe7e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5dd3d97da84095b75137de5d267221df |
| SHA1 | 16e9a8dbefa546fa682a9a458b8ee0af9364b4be |
| SHA256 | 2869fac52796c13a0d6d9be04aaae1f4eabfe75e894444f4c08ed6b68319d64f |
| SHA512 | 551ba61a5ed9c232fc66e3ee198bff8f6446187d1198d464e95ec505a5171aa3c986b794e1b87fbc4b42d98145bb14f7b75f0bc57a850989caa6f8fe5033dd45 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\664dde42cbb0e195_0
| MD5 | 8f39a581432ce522b59050bd7c941b82 |
| SHA1 | 09640f123ff9b5d74e3ed2ad562f1376342e0832 |
| SHA256 | 61a65e4cafdeec190b320f184ab5e9e49fa93b42aa40617e31f04404973c028f |
| SHA512 | 8aa60c9e04e344e8b2731583aab27745d43cfd694405138e99f7da2a9550ff433622e6eec4ba7cd2316de4f04247d7cfbe3415bd8a56bf1956345cc16f5650e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a8e6ccff5bc9809f_0
| MD5 | 315cdd8b83abda50c9e0c79d39c3ffe2 |
| SHA1 | 096955fe5d1a229688bbfac93ed928f3b2f819ad |
| SHA256 | 24ca081fad523fb8bdb0884126ed7bd37d8778feb074cf56cdc6870416b96896 |
| SHA512 | 941b55f88d8ef7740382acd3c697f1eaa18584dfdee8bd1b36773c7c82dcfac57efcf0e59181e0d1dfa4f15cb41004be4e76fba0797045f86d6c51cf12e14cae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\170e9a83a0d401d0_0
| MD5 | ca8333ba8dd5c684c3f8314c9e5abf09 |
| SHA1 | 86f12a8e511ff61cc37eec3aa65e793a1c21a4b2 |
| SHA256 | c5b28e5138c4d66237bd045805305d8916728108864bb19579e85a916ba7f541 |
| SHA512 | dec7b1d315bd10cc3d1aa92dbbeee5f40129599b7fd261c1376f718993a3d3c7e63a4564dab9704410a462b4914a0dcfaf986a009764ff6815e3830b1bbee6ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bf20e67f4c068a497d1e677246c164cd |
| SHA1 | 7ee82acad93b70cdf7eb2f49cdcbd413b6d08296 |
| SHA256 | a6417130fd52594f67030d3f6658d8c1ecb3b89b5bad39135f5191612f2b52dc |
| SHA512 | 8127007cee60ad63c948a041044c873a4163a493076c298d512ee51e0a7edc754f1e615fd2a3b9163e5d1013ef62004aeed1d8ad294374b06987167b3f5dfba4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0fba7717e999ed797c87c7b97face8db |
| SHA1 | b16bc9f2dbd88f73f5156d752cfeb5a6ffe59e7a |
| SHA256 | 8e2f09b327353ea644a86e283d514e4926e7913f6cc7b9fe1eebc476fc309794 |
| SHA512 | 8fc656a27b70a22dc1b43b3497a80981f1e7ba27c941e625a20700d7ca69061a951bd405e6624c9be9cfd114aa9c21b8d638e48e9f66f4f175ccb2c98803d8c1 |
memory/9952-1909-0x00000000748D0000-0x0000000075080000-memory.dmp
memory/9952-1915-0x00000000748D0000-0x0000000075080000-memory.dmp
memory/9952-1916-0x0000000003220000-0x0000000005220000-memory.dmp
memory/6452-1917-0x0000000000400000-0x000000000044E000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6fcd97c8cfd7a6bf_0
| MD5 | de0635860006c8a6dfc23acc3fc51efd |
| SHA1 | fec28593199cf4d93839f014b46c629316da3146 |
| SHA256 | 74fb6b261cfa5900eae8a94ee9b0d5f77d10f6c4fbc214614d6f5dc924bb15a9 |
| SHA512 | ccc63562e4dc9f174087e6fa8e340477d3ab99c6cf30bbc78c388cb878a70594055184e9865050d6ea8bd3d6174bd1e03ac8b58bef63578c4129ff64df9a128a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 962a1ba49f397163a27afda7f94ac23d |
| SHA1 | 3574dd3d79ebd12d715324d7adbe571d707a5697 |
| SHA256 | baa52f48b83390e864b3ccfb1ff10d1efa3e0f2f36fa43726b268d15bfd3fda1 |
| SHA512 | 0e4757881b8e408e6aa4bd3a40574f41da2ed0681213d444600a340f5d63d98c2120c6a86d082a2e1170a18452a2c8d87c386d0a2ae17dbe9b2bdb766083d544 |
memory/11176-1951-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
memory/11176-1952-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/11176-1953-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/11176-1954-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/9952-1955-0x0000000003220000-0x0000000005220000-memory.dmp
memory/11176-1956-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/11176-1957-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 18680f96e8b3437bbc645a38877756c3 |
| SHA1 | f137ab1262ff035a2edb60ba08f92d0e2b6fb73d |
| SHA256 | 8d2793b312c56565f89b93d4ef984bc6de47c8f3e1fafe0441fc214938ef8fa4 |
| SHA512 | 24c3c4e4cb1b84dbe1aae31b0d16f28f21d91967f500d184701809b500a545eb9b25214a87e88d45e077f4e4538449548641a930cecfcb97f3aebcae9ca0d970 |
memory/11176-1967-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/11176-1968-0x000000001CA90000-0x000000001CAA0000-memory.dmp
memory/11176-1969-0x000000001CA90000-0x000000001CAA0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4e6fffaaf008a48e_0
| MD5 | b9c0cc31edd7ff7abd54d48b372fc85e |
| SHA1 | 9a85ff0e8e9738c93353e8a633e1009d04f2e247 |
| SHA256 | 999ba31197ebb92688d235f50a60691687e56f1e7dee5e463bde6ea8a3eac368 |
| SHA512 | 5621ce8abbcc2619ffa3de6037d4e9df051f931d5b8aa929d40e841c19901a84a88a94718037010c42538d4bff8b64134c2c6781947f0a1840fe29ba65189dca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\52355db50ced19f0_0
| MD5 | 8c66dcdfec3283bd1e7b22e499dcdf82 |
| SHA1 | 4a96b9f03bbb988323889ddbe64b31623b21a757 |
| SHA256 | e9dfdd2ff3b13d82788d20865af97e05e784a1fd81a63b53af208aa8d9d2cc06 |
| SHA512 | 259a9be87889a6d2c285d86dba78e66c0a1fff2bdf2eb5d1e67e8635bb88d368e0aea038f55babe893babf085a9ab45a519b57d14f946b9163ed05f32ec6380d |
memory/11176-2012-0x000000001CA90000-0x000000001CAA0000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2e053d85598696767e00adef14124a74 |
| SHA1 | e0d87a5a08b9735a5aa6128283c03eb112f855b9 |
| SHA256 | 84d6355c4e022ef0f7f659646f2641ea56ed7813dbce29952dc051428d8feb3a |
| SHA512 | 2d92719893637a2b7ce81ef1a8254f9ec291c689ac22bfcbf180123a32c8c93fafffa39c0f8ab258640e996c6ca054b64e77070ecb5fb048b34ea7f019bceffd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | d50dfae45f948ac0fdc558ff8d0c1096 |
| SHA1 | 302dae42e61f1f15e6b065320b83dcc2073cecc4 |
| SHA256 | 5b42b508922e01083ee16a24d0ce5a3a5545abb3aeff6066f2273b6389b12635 |
| SHA512 | 345c282c384d007d8e3c10eed135b5527c05e9465e7408fdcd5254f10367c0c871c3fdd1156b70495ac255262b84e067ad72ba7587e16829fe6df834e6a6f8bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\02447a40531782dd_0
| MD5 | 0cb3afa08d7363fef5da4d74d2bc6fc2 |
| SHA1 | 318f52ca340425c2d473193b9071f448c73af4d6 |
| SHA256 | 8a77e86635af74e6ab5067433c6dde1c4f58bc4ebff1b3094ac3c6cce5569b1b |
| SHA512 | b147d2ad975c1c45595f3ad48b8e1dcda95e9d4aea88ce5bf5a0c3fedfd3acf204329e047eab14443cdb86e963e9070c21581b13193fd610e46ea9df2d77d9aa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2bfde39962961371_0
| MD5 | 2888574a4d8865afa090f0b71128f025 |
| SHA1 | 92d9d0185f6ebe390d325244fe003461aa7f0bfa |
| SHA256 | dee70e3eed4f62c2e6db162c94d57f34d701dc47b55f08eb336ab14ebeff8059 |
| SHA512 | 374a53c14382d6068a09e4d6219da3f9b3892f733c91afd9656836a1d0e602760f8924e3c44808d625ca76b3f7c9afb7abd41a6b65f55e5dac233aff4d498fef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2c1f2ece10b0bfcf_0
| MD5 | 02a66e2f3744ca6aef94c636938ef1aa |
| SHA1 | 9ed2bb52009a32c548891c8dda227285b2f9ed30 |
| SHA256 | 400741ed316bcec632bc08388c7464f473f568fda8e0e7e3a997351da8b0c9fa |
| SHA512 | 46cfe13ebd3fcce75e346669d37664f31df44e762880a796349de922207c5a22d9c02afdadf2fe2a7b104931e35792572d08ba9752206c3f61ca050a16d32743 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a00cde7bf04043ca_0
| MD5 | 18e57919d5b77ec507693fc66d3aed06 |
| SHA1 | 7ea4bc1a1ea048dad657512e38cfe78c809e88e8 |
| SHA256 | 4aa5ffc1c4fe6dc1c169608ecef28187ea50fd7aab028b0e06a8fe4cc14f1b1a |
| SHA512 | e8b2c9c17d2aedc93b08e815f11f46254467a7b44d07fbb2e8bf06a11bbd3f15222706d36fb2ee7f156944bfc2419bc68d92ff3fc52e2bedabd7a637cb6220a0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d8de73360a62c778_0
| MD5 | 66b0bff5e4992f8539e4bfc8090ed1a5 |
| SHA1 | 8b016e70dcad87666fc5e619e9284c3ca5dbbcb6 |
| SHA256 | f36f49d12d0697c9011632af1d1c12a8bf6f36c58a7077f5cd4a141d938ab2a6 |
| SHA512 | 33f42ee21f966dcaebde66a971dec23a2bac1c3c0a4ddaaf8c76ef66408fd840a15083bc1bc8433805968527f876ada2b3c90c375cd8e54b3d87f627759dd9f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\42a0dbdee502c395_0
| MD5 | 2dc6e8ecd31a7c680541619d93cf2514 |
| SHA1 | 6b44e17ba5c5ec49163c130e4db70a06209bd844 |
| SHA256 | dcec74405b242e9cd927b08f6de111f65540346ab134cb9d40fc6e28acd0764b |
| SHA512 | 94de3a244e0d6ee82f0e7285a3f061e26e26acfb2967abcb938c386868cd0592227f7712e9c688a6c6b504d9a82d2878f4155687403d64a6fd49618ae5da9d4e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8d1f674a9fd848a3_0
| MD5 | cef4d53615bd97aec724a68a5aaa2010 |
| SHA1 | 71943f818fadad333b7e45a653c19d56ff636f74 |
| SHA256 | 74270ad92572544646479cc916d59c30d13d18400e1cd444e70efc96339116c3 |
| SHA512 | 557ad3cbd5e79878863478dffacb5a1bbf4ddb00239d198b764e4a1214d7ffb6f76303338ed8d99541af2fc5866389229cc1e849db68b3d9a3af65c6e0cc4384 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bef823688401b0cd8451b97f7c1db42a |
| SHA1 | 252dffd59c4ea672e051e3fbc018fcb5de9b3df1 |
| SHA256 | 55f167a070b26d056841eddb4633824dda82e713b3f412db44b978fd38b72429 |
| SHA512 | 4e73e0b6ad8a8890836cf0682aea05fda9cd65fb5d7b0493f95f1bc33a1c4a1930fcd9f6527012a378e4ce3b6e72249d4195a43c1f53f1f43f1e85dc10caea41 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 230263475676145abffb456926fb37ff |
| SHA1 | d90931a9c56f3773d95a493ea278a1824731cf38 |
| SHA256 | 671bccfe68734c9809ee64495e27047d5886d49f1d1f903758b42b7949d241e9 |
| SHA512 | dcd22957df85a9a47f6063c62728891d001798251a387cb66a5827f7fe10d9edb5de2a1b9847b48b7caffecdcbe021b7be77f643395a60ea768d4b071f799bac |
memory/11176-2090-0x000000001CA90000-0x000000001CAA0000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Event Viewer\Settings.Xml
| MD5 | f31bd6fab0021178ea66e8cd8f0c051f |
| SHA1 | efb7a75e1ef7cc5649df5c25f528b47dad908b3b |
| SHA256 | 4a6cd1e0bd61796623b25f14d9c58b188a9fa5e649964cd1a6dd50b5d4ddca77 |
| SHA512 | 39ed61f2451a0c97930b5a23d191587803d6fab132bb020bf19069f6f2172010f2099c0c56abffcc9aa9163c8fd9ad9e255e213a7bbd3548158458b051c9b131 |
memory/11176-2108-0x00007FFA5B050000-0x00007FFA5BB11000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 758a37356d03b705e2ca2533c95a3e4f |
| SHA1 | ba899c4df33c60526c7ce2417a719466339d32b4 |
| SHA256 | 9c211f4f2632e93efe61325f8d77b0cc6a5b2777326837524343ce67eaff92d0 |
| SHA512 | 36e81930a8317b4c9639159f053d7ef25807508c42de30d8962dd63d4764ab21aca659bba033b84afd1305289bb6e47d9aad9eba235634f6df45b63d86414fca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2ebacb94403d7e5cf77ad1a10b8ec19d |
| SHA1 | ce14b8525fc1f1b993cbb89bf90aea5044f867c3 |
| SHA256 | b8be62a5f34be514fa77a663b0b635608b3f75d5f738433b30113094973b29d2 |
| SHA512 | 292f71bd12457b5bd52c6eeb0feac50eaf37262e7f7e863cfdfb20f6e8224a753ef665fa6139d5625d28e9a5a0c03bda66ad61122331c721eb0b472cc614edd7 |