Analysis Overview
Threat Level: Likely malicious
The file https://www.mediafire.com/file/lqlncwwnvq7n1rq/WaveTrial.rar/file was found to be: Likely malicious.
Malicious Activity Summary
Identifies VirtualBox via ACPI registry values (likely anti-VM)
Downloads MZ/PE file
Checks BIOS information in registry
Loads dropped DLL
Executes dropped EXE
Themida packer
Checks whether UAC is enabled
Suspicious use of NtSetInformationThreadHideFromDebugger
Enumerates system info in registry
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious behavior: EnumeratesProcesses
Suspicious use of SetWindowsHookEx
Suspicious use of SendNotifyMessage
Modifies data under HKEY_USERS
Modifies registry class
Suspicious use of FindShellTrayWindow
Suspicious use of AdjustPrivilegeToken
Suspicious use of WriteProcessMemory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-04-09 09:54
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-09 09:54
Reported
2024-04-09 09:58
Platform
win10v2004-20240319-en
Max time kernel
195s
Max time network
199s
Command Line
Signatures
Identifies VirtualBox via ACPI registry values (likely anti-VM)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\ACPI\DSDT\VBOX__ | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
Downloads MZ/PE file
Checks BIOS information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\SystemBiosVersion | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\VideoBiosVersion | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Checks whether UAC is enabled
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Injector.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133571300998826780" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-817259280-2658881748-983986378-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\WaveTrial\Wave.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-700.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/lqlncwwnvq7n1rq/WaveTrial.rar/file
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8e4d39758,0x7ff8e4d39768,0x7ff8e4d39778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1760 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2012 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2248 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3020 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3028 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4944 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=5728 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5900 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5388 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5356 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5220 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=6080 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=6688 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=6476 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=7160 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=7004 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=7296 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=7488 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=7652 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7740 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=7752 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7908 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=8528 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=8800 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=8984 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=9084 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=8716 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=8816 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8384 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=9356 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=9364 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=9520 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=9536 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=9552 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=10076 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=10216 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=10364 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=10516 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=10660 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=10796 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=10816 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=11084 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=11216 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9964 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=11932 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=11964 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=11980 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=11988 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=12004 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=12536 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=12236 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9328 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=12256 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=12892 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=12896 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=13000 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=13308 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=6276 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=13572 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=13560 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=6440 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=9524 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=3172 --field-trial-handle=2232,i,3915538061666887171,15629965885515244134,262144 --variations-seed-version /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=1684 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=7540 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5104 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=7588 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=10408 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=8276 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3712 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7212 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8280 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=12176 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=10400 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12280 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Users\Admin\Downloads\winrar-x64-700.exe
"C:\Users\Admin\Downloads\winrar-x64-700.exe"
C:\Windows\system32\werfault.exe
werfault.exe /h /shared Global\b3aba66128c54e7db9c71d6203602af8 /t 10080 /p 5732
C:\Users\Admin\Downloads\winrar-x64-700.exe
"C:\Users\Admin\Downloads\winrar-x64-700.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3820 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:2
C:\Windows\system32\werfault.exe
werfault.exe /h /shared Global\17d745c25ef44cfd9916e7ede42f1d01 /t 7516 /p 7524
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=12028 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3820 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --enable-chrome-cart --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=4736 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12164 --field-trial-handle=1872,i,10793316083122429709,12912692401641952713,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\WaveTrial\" -spe -an -ai#7zMap3775:80:7zEvent24585
C:\Users\Admin\Downloads\WaveTrial\Wave.exe
"C:\Users\Admin\Downloads\WaveTrial\Wave.exe"
C:\Users\Admin\Downloads\WaveTrial\Injector.exe
"C:\Users\Admin\Downloads\WaveTrial\Injector.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 71.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.114.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | 9.228.82.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.114.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 104.16.114.74:443 | www.mediafire.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| US | 172.64.129.8:443 | www.ezojs.com | tcp |
| GB | 172.217.16.238:443 | translate.google.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| DE | 18.66.242.6:443 | cdn.amplitude.com | tcp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 104.16.53.110:443 | cdn.otnolatrnup.com | tcp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| GB | 172.217.169.74:443 | content-autofill.googleapis.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| GB | 172.217.169.10:443 | translate.googleapis.com | tcp |
| FR | 35.181.89.222:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | 32.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.129.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.242.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 172.64.136.15:443 | go.ezodn.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| NL | 23.63.101.171:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 44.238.108.251:443 | api.amplitude.com | tcp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | tcp |
| GB | 172.217.16.226:443 | securepubads.g.doubleclick.net | tcp |
| US | 172.64.136.15:443 | g.ezodn.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| GB | 172.217.169.74:443 | translate-pa.googleapis.com | udp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| IE | 54.155.211.205:443 | bcp.crwdcntrl.net | tcp |
| DE | 108.157.4.121:443 | tags.crwdcntrl.net | tcp |
| IE | 108.128.218.76:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 222.89.181.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.114.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.136.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.101.63.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.108.238.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 142.250.178.14:443 | analytics.google.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | ut.pubmatic.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| GB | 185.64.190.82:443 | ut.pubmatic.com | tcp |
| US | 172.64.137.15:443 | bshr.ezodn.com | tcp |
| US | 172.64.137.15:443 | bshr.ezodn.com | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 205.211.155.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.218.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.137.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.21.18.104.in-addr.arpa | udp |
| GB | 172.217.16.238:443 | fundingchoicesmessages.google.com | udp |
| GB | 172.217.16.238:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | rt.marphezis.com | udp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| US | 178.128.135.204:443 | rt.marphezis.com | tcp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| FR | 35.181.89.222:443 | g.ezoic.net | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.31.209:443 | prebid.smilewanted.com | tcp |
| DE | 108.157.4.119:443 | hb.yellowblue.io | tcp |
| NL | 145.40.97.67:443 | prebid.a-mo.net | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| IE | 99.80.112.84:443 | ads.yieldmo.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| DE | 18.154.67.92:443 | cdn.prod.uidapi.com | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 172.64.152.89:443 | cdn-ima.33across.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | e045e6a704eca9473ee0f33077e0d9e6.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| GB | 142.250.180.1:443 | e045e6a704eca9473ee0f33077e0d9e6.safeframe.googlesyndication.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| US | 178.128.135.204:443 | rt.marphezis.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| IE | 99.80.112.84:443 | ads.yieldmo.com | tcp |
| GB | 185.239.172.170:443 | ghb1.adtelligent.com | tcp |
| GB | 142.250.180.1:443 | e045e6a704eca9473ee0f33077e0d9e6.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 34.120.135.53:443 | oajs.openx.net | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.69.83.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.31.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.135.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.112.80.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.152.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.67.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.172.239.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.135.120.34.in-addr.arpa | udp |
| US | 34.120.135.53:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | resources.infolinks.com | udp |
| IE | 54.229.105.156:443 | ap.lijit.com | tcp |
| IE | 54.229.105.156:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| IE | 54.229.105.156:443 | ap.lijit.com | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.105.229.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| GB | 172.217.16.226:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| GB | 142.250.178.14:443 | analytics.google.com | udp |
| US | 104.16.53.110:443 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | download2430.mediafire.com | udp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 199.91.155.171:443 | download2430.mediafire.com | tcp |
| US | 199.91.155.171:443 | download2430.mediafire.com | tcp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.155.91.199.in-addr.arpa | udp |
| US | 172.66.41.9:443 | resources.infolinks.com | tcp |
| US | 172.66.41.9:443 | resources.infolinks.com | tcp |
| GB | 172.217.169.10:443 | translate.googleapis.com | udp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| DE | 162.19.138.120:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | 9.41.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | tcp |
| NL | 142.251.39.110:443 | tcp | |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| NL | 172.217.168.202:443 | tcp | |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| DE | 18.173.233.49:443 | woreppercomming.com | tcp |
| US | 8.8.8.8:53 | 97.17.167.52.in-addr.arpa | udp |
| NL | 142.251.39.110:443 | tcp | |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.ovardu.com | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | 49.233.173.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 104.21.96.72:443 | www.ovardu.com | tcp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.opera.com | udp |
| DE | 18.195.175.1:443 | www.opera.com | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| DK | 37.157.6.254:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.175.195.18.in-addr.arpa | udp |
| DK | 37.157.6.254:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | cdn-production-opera-website.operacdn.com | udp |
| US | 8.8.8.8:53 | www.googleoptimize.com | udp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 142.250.200.46:443 | www.googleoptimize.com | tcp |
| US | 8.8.8.8:53 | s.adtelligent.com | udp |
| DE | 168.119.32.99:443 | s.adtelligent.com | tcp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| BE | 104.68.66.120:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 185.64.190.79:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | www-static.operacdn.com | udp |
| US | 8.8.8.8:53 | 254.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.66.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.32.119.168.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.redditstatic.com | udp |
| US | 8.8.8.8:53 | static.hotjar.com | udp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | snap.licdn.com | udp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| DE | 108.157.4.21:443 | static.hotjar.com | tcp |
| US | 2.17.251.25:443 | snap.licdn.com | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | 140.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 151.101.1.140:443 | www.redditstatic.com | tcp |
| US | 8.8.8.8:53 | alb.reddit.com | udp |
| US | 8.8.8.8:53 | script.hotjar.com | udp |
| US | 151.101.1.140:443 | alb.reddit.com | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| DE | 108.157.4.38:443 | script.hotjar.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| DE | 108.157.4.38:443 | script.hotjar.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 34.248.77.228:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.linkedin.com | udp |
| US | 8.8.8.8:53 | 38.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.77.248.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 216.200.232.253:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| DE | 18.197.118.154:443 | rtb.mfadsrvr.com | tcp |
| DE | 18.195.175.1:443 | www.opera.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| NL | 213.19.162.90:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| US | 8.8.8.8:53 | static.smilewanted.com | udp |
| IE | 68.219.88.97:443 | c.clarity.ms | tcp |
| NL | 213.19.162.90:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 154.118.197.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.232.200.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | ums.acuityplatform.com | udp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 52.224.31.34:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 104.19.159.19:443 | assets.a-mo.net | tcp |
| US | 8.8.8.8:53 | 97.88.219.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.162.19.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.31.224.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.122.59.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | router.infolinks.com | udp |
| US | 8.8.8.8:53 | ads54.adtelligent.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.159.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| IE | 67.220.228.203:443 | aax-eu.amazon-adsystem.com | tcp |
| SE | 213.155.156.182:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| DE | 91.228.74.251:443 | cms.quantserve.com | tcp |
| DE | 91.228.74.251:443 | cms.quantserve.com | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| IE | 34.249.226.75:443 | match.prod.bidr.io | tcp |
| US | 54.197.132.136:443 | sync.srv.stackadapt.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| US | 54.197.132.136:443 | sync.srv.stackadapt.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| IE | 34.249.226.75:443 | match.prod.bidr.io | tcp |
| NL | 35.214.174.160:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 89.207.16.201:443 | pubmatic-match.dotomi.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| NL | 35.214.174.160:443 | csync.loopme.me | tcp |
| IE | 52.30.18.244:443 | a.audrte.com | tcp |
| IE | 52.49.219.9:443 | pr-bh.ybp.yahoo.com | tcp |
| IE | 52.30.18.244:443 | a.audrte.com | tcp |
| IE | 52.49.219.9:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.228.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 182.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.226.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.132.197.54.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| GB | 172.217.169.70:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| DE | 18.158.116.115:443 | sonata-notifications.taptapnetworks.com | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | st.pubmatic.com | udp |
| GB | 185.64.190.89:443 | st.pubmatic.com | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| GB | 172.217.169.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 160.174.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.18.30.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.116.158.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | 9.219.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | tcp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| FR | 141.94.161.190:443 | green.erne.co | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 104.22.50.98:443 | mwzeom.zeotap.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.adtelligent.com | udp |
| FR | 141.94.161.190:443 | green.erne.co | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 104.22.50.98:443 | mwzeom.zeotap.com | tcp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.50.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.161.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.71.83.185.in-addr.arpa | udp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| FR | 5.135.209.105:443 | rtb-csync.smartadserver.com | tcp |
| NL | 213.19.162.90:443 | pixel.rubiconproject.com | tcp |
| NL | 154.57.158.25:443 | ads.stickyadstv.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| NL | 89.149.192.244:443 | ssbsync-global.smartadserver.com | tcp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | 64.170.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 105.209.135.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.214.120.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 52.46.151.131:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| US | 52.46.151.131:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 69.173.151.100:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | ads.creative-serving.com | udp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 81.17.55.116:443 | sync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 131.151.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.151.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.2.110.33:443 | us.shb-sync.com | tcp |
| IE | 67.220.228.203:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 35.214.241.248:443 | ads.creative-serving.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| NL | 35.214.241.248:443 | ads.creative-serving.com | tcp |
| US | 34.98.64.218:443 | u.openx.net | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| US | 54.234.222.19:443 | aorta.clickagy.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| US | 54.234.222.19:443 | aorta.clickagy.com | tcp |
| NL | 35.214.241.248:443 | ads.creative-serving.com | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| GB | 23.215.239.190:443 | secure-assets.rubiconproject.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| DE | 108.157.4.57:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.241.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.222.234.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| IE | 52.16.176.188:443 | pm.w55c.net | tcp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 50.31.142.63:443 | b1sync.zemanta.com | tcp |
| NL | 63.215.202.140:443 | casale-match.dotomi.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| NL | 72.246.173.47:443 | eus.rubiconproject.com | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| DE | 79.127.216.47:443 | c3.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | ws.rqtrk.eu | udp |
| IE | 52.18.168.73:443 | ice.360yield.com | tcp |
| DE | 79.127.216.47:443 | c3.a-mo.net | tcp |
| US | 8.8.8.8:53 | 190.239.215.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.4.157.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.176.16.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.168.18.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| DE | 57.129.18.121:443 | ws.rqtrk.eu | tcp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| DE | 79.127.216.47:443 | id.rtb.mx | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.18.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 213.19.162.80:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.80:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.80:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.80:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| US | 54.152.41.100:443 | sync.ipredictive.com | tcp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| NL | 213.19.162.90:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | live.primis.tech | udp |
| DE | 18.154.63.69:443 | live.primis.tech | tcp |
| US | 8.8.8.8:53 | 80.162.19.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.41.152.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 104.18.41.104:443 | capi.connatix.com | tcp |
| US | 104.18.41.104:443 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | 69.63.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.139.73.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.33.253.131.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| GB | 185.239.172.170:443 | ghb2.adtelligent.com | tcp |
| IE | 34.249.226.75:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | t.pubmatic.com | udp |
| US | 8.8.8.8:53 | dmp.brand-display.com | udp |
| US | 104.18.25.173:443 | s.tribalfusion.com | udp |
| US | 34.160.19.107:443 | dmp.brand-display.com | tcp |
| GB | 185.64.190.82:443 | t.pubmatic.com | tcp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| IE | 34.246.36.89:443 | ad.360yield.com | tcp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 107.19.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.36.246.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.avct.cloud | udp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| NL | 193.3.178.3:443 | ads.us.e-planning.net | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 8.8.8.8:53 | s.e-planning.net | udp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.3.193.in-addr.arpa | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cookies.nextmillmedia.com | udp |
| NL | 193.3.178.1:443 | s.e-planning.net | tcp |
| US | 52.0.165.201:443 | cookies.nextmillmedia.com | tcp |
| US | 8.8.8.8:53 | u-ams03.e-planning.net | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| NL | 193.3.178.4:443 | u-ams03.e-planning.net | tcp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 8.8.8.8:53 | cm.ctnsnet.com | udp |
| US | 3.218.6.156:443 | i.liadm.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| DE | 3.69.181.171:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| US | 8.8.8.8:53 | dmp.v.fwmrm.net | udp |
| DK | 37.157.5.132:443 | dmp.adform.net | tcp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| US | 54.197.132.136:443 | sync.srv.stackadapt.com | tcp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| US | 3.144.50.142:443 | dmp.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | sync.tidaltv.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | loadeu.exelator.com | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | udp |
| NL | 81.17.55.116:443 | sync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| NL | 89.207.16.204:443 | openx2-match.dotomi.com | tcp |
| DE | 35.157.207.15:443 | aa.agkn.com | tcp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| US | 8.8.8.8:53 | 1.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.165.0.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.6.218.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.181.69.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.5.157.37.in-addr.arpa | udp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| US | 8.8.8.8:53 | beacon.krxd.net | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | engine.widespace.com | udp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | usermatch.krxd.net | udp |
| US | 8.8.8.8:53 | tags.bluekai.com | udp |
| US | 8.8.8.8:53 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | udp |
| BE | 23.55.96.210:443 | tags.bluekai.com | tcp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| IE | 34.241.163.109:443 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | tcp |
| FR | 51.68.39.188:443 | dsp.nrich.ai | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| NL | 89.149.192.244:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 23.220.112.27:443 | hbx.media.net | tcp |
| IE | 52.213.103.114:443 | dpm.demdex.net | tcp |
| IE | 34.254.143.3:443 | loadeu.exelator.com | tcp |
| US | 8.8.8.8:53 | 204.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.50.144.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.207.157.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.236.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 236.72.119.168.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.163.241.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.39.68.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.112.220.23.in-addr.arpa | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| DE | 108.157.4.121:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 114.103.213.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.143.254.34.in-addr.arpa | udp |
| GB | 185.239.172.170:443 | ghb2.adtelligent.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | ads31.adtelligent.com | udp |
| GB | 185.239.172.170:443 | ads31.adtelligent.com | tcp |
| GB | 185.239.172.170:443 | ads31.adtelligent.com | tcp |
| GB | 185.239.172.170:443 | ads31.adtelligent.com | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | pxdrop.lijit.com | udp |
| NL | 23.62.61.138:443 | pxdrop.lijit.com | tcp |
| US | 8.8.8.8:53 | cdn.lijit.com | udp |
| DE | 18.173.233.75:443 | cdn.lijit.com | tcp |
| US | 8.8.8.8:53 | 138.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.233.173.18.in-addr.arpa | udp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| US | 8.8.8.8:53 | aqfer.lijit.com | udp |
| NL | 23.62.61.194:443 | aqfer.lijit.com | tcp |
| US | 8.8.8.8:53 | sync.sharethis.com | udp |
| US | 8.8.8.8:53 | io.narrative.io | udp |
| DE | 18.154.63.69:443 | live.primis.tech | udp |
| US | 8.8.8.8:53 | cm.mgid.com | udp |
| IE | 34.249.47.210:443 | sync.sharethis.com | tcp |
| IE | 34.255.243.50:443 | io.narrative.io | tcp |
| US | 104.19.130.76:443 | cm.mgid.com | tcp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 104.19.130.76:443 | cm.mgid.com | udp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.47.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.130.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.243.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | w3-reporting-nel.reddit.com | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 151.101.1.140:443 | w3-reporting-nel.reddit.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| GB | 185.239.172.170:443 | ads31.adtelligent.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| GB | 185.83.69.58:443 | ghb2.adtelligent.com | tcp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.teads.tv | udp |
| NL | 72.246.173.80:443 | sync.teads.tv | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.70:443 | s0.2mdn.net | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| US | 104.19.130.76:443 | cm.mgid.com | udp |
| DE | 18.154.63.69:443 | live.primis.tech | udp |
| US | 8.8.8.8:53 | 80.173.246.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | udp |
| IN | 142.251.42.67:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | www.win-rar.com | udp |
| IN | 142.251.42.67:443 | id.google.com | tcp |
| DE | 51.195.68.163:443 | www.win-rar.com | tcp |
| DE | 51.195.68.163:443 | www.win-rar.com | tcp |
| US | 8.8.8.8:53 | 163.68.195.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.42.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| GB | 185.239.172.170:443 | ads31.adtelligent.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 107.151.11.18:443 | ghb2.adtelligent.com | tcp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
| GB | 142.250.180.2:443 | googleads.g.doubleclick.net | udp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ads101.adtelligent.com | udp |
| US | 107.151.11.18:443 | ads101.adtelligent.com | tcp |
| US | 172.64.136.15:443 | bshr.ezodn.com | udp |
| GB | 172.217.16.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-if-v6exp3-v4.metric.gstatic.com | udp |
| US | 107.151.11.18:443 | ads101.adtelligent.com | tcp |
| US | 107.151.11.18:443 | ads101.adtelligent.com | tcp |
| GB | 216.58.212.227:443 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-if-v6exp3-v4.metric.gstatic.com | tcp |
| GB | 216.58.212.227:443 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-if-v6exp3-v4.metric.gstatic.com | tcp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| US | 107.151.11.18:443 | ads101.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 227.212.58.216.in-addr.arpa | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| GB | 216.58.212.227:443 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-if-v6exp3-v4.metric.gstatic.com | udp |
| GB | 142.250.178.14:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 174.117.168.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-174522-i2-bogus-dnssec-vd.gexperiments2.com | udp |
| US | 8.8.8.8:53 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-174522-i1-bogus-dnssec-bd.gexperiments3.com | udp |
| US | 216.239.32.55:443 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-174522-i2-bogus-dnssec-vd.gexperiments2.com | tcp |
| US | 8.8.8.8:53 | 55.32.239.216.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-174522-s1-v6exp3-v4.metric.gstatic.com | udp |
| GB | 216.58.212.195:443 | p4-bmgoptcmlcy7g-72mkegizfpatakmd-174522-s1-v6exp3-v4.metric.gstatic.com | tcp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 192.178.48.227:443 | beacons.gvt2.com | tcp |
| US | 192.178.48.227:443 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | 227.48.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
Files
\??\pipe\crashpad_2408_PPOCNCEPEHJMHFJV
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b3a883d07ace8091e8d5749d0fb29887 |
| SHA1 | 704809f8e51bf9ebc0cd50eabd1dafab987f2579 |
| SHA256 | 5c6c2b9f453787feb79cbc9ae16198382a4510bb166a09b5e5e3777f1e55590c |
| SHA512 | f49db9c86d30900aa97af43e00bd840896809bda4be16cb6c5d842d1cb6f58185408ce15a45068774e30fe6c6de1b93e7450c9a709a746c2baf53ffd6c191a2a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8c33a58ea5ee4aab707e3e943717c5ba |
| SHA1 | 6dd180e5b2d94cdcebbba22fe310661c45a31f03 |
| SHA256 | 1a2be05a55e89e7d0029b19ebcc636f200f8a5befee5823d76ffcc015f31a87d |
| SHA512 | 3299e524d34e5a70ed69a8f24ab4ddb4183f5d358ba93ba6dbe359b0bbd8ac25094c9942b67c8109fef95e170fb625321e9447cb3fb3d22e973ace3ef6ecd101 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | ed32df3f8c634d5ad5a946aaa7a0a437 |
| SHA1 | e5041cfb6054c5b7985d960bc32d755be51c6f75 |
| SHA256 | 17245105a3dce28ee6ee3e23bdc7d82ef67fb5a995e325b234345bc2e95a28c4 |
| SHA512 | 3e70e19c44cdf6bc24b6e4108a989a715fd9bd386dbd30ae3bcbfa05558ec7ad6b98bdd65dc752ac91772455c5afafd391ceb32669c97f9dcbb2f14cd9c50136 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2af01e1a2f9d1fab5ad6a35fa67e0603 |
| SHA1 | 12d4bf820f14e76c886dad2f2e8037cd575078b0 |
| SHA256 | c044c94ccbb7ebfcd6561a8a89125fca719f57055f7c607cd710a2abbad85357 |
| SHA512 | e1d145fbe62b1d16f80035e89bb381aded676779201d7c635d27bae316eedc284554cf02271165a6d71e70e72fee41954d0616058cac135577b2054052fcd26a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 4a0b907083f8afcc81fd894fb6c45d01 |
| SHA1 | 7161d696223d3373ccce860cf81249d7f738a02f |
| SHA256 | 87b0af1a5d48c9852603c2cd73097e27beb903aca92354231262ceba0e276e4c |
| SHA512 | 9a917882b29ac03f6af556b1c4cfb99b5e8260a4bf9a179b91cb1a1ddf47c1cd5543b8d7f008d955320e567dd4fc0236e187717d4bda748289700b3fe920aca4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a1731278fc58cadaf6002b9630a9e3b7 |
| SHA1 | d7c1a88d1691c052a86fa157cd15e7c4bdc08069 |
| SHA256 | d290f49c1fd35d9ef76d572bf1aec9759385f76613fc9781dcdb42b20656ec07 |
| SHA512 | f4b3bb999be3bdc536e263416b700b5d6736cbdda2ef495769cbc4c7ae4edbe2e4e220f8ce5bc5f629cb41b17acde39d16e4770c2c7a6eba79b541533243fe0f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8b007138ac1deded040f72d89842ffab |
| SHA1 | 8a0b142785345e2c5873a779c466859675c1fcf0 |
| SHA256 | b76c1ab718169b4a9c2a7ac936f82c9e12a2c34ef697b0193fd01964bfccf548 |
| SHA512 | 3a1c4bb2578bdd96458772b512e2ca8feabafb7d35aabf5a48cc55567842f5725d2b70a1005721a62372732a63d6bd41af3550f1b9cca0aae8f5ab242b8e1835 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d36c0c6145f45dd0774fecf2ddcb602d |
| SHA1 | d549d7e6d3a906eecdc4774e849ac39da700e55b |
| SHA256 | bbf57fe9360869acc1227cc3986fe79051ec2919afdeb3b3cef2f9f777c970f0 |
| SHA512 | f4a63b97f780396375ba2d86e9c6c62fe6255a47a3765612b4f8d89b2fa732895771504820ffbd39f4f12e9cd0d69f55dc3c43c0aab0c09d4f265c68d6ea740f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000043
| MD5 | d426c43c6cc7a7743d76db59c58610b8 |
| SHA1 | a7c12e4dd37ff6845d6dd4a44186ec2a0a9f3c7c |
| SHA256 | c4b8cdbb769d3093115c63894cb191f91fd40cfae265a140ea300e09578081c8 |
| SHA512 | 8fc77be70db2bcb89172fd5251367534eacfbaba60313c551a1837ca57a0ab3d4ca15ac9e6cb48dd9fd1c31b7084a92eb2c301f30e9857e21b5b64bac72415b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5bd2811b97e14454a27077eff8f10fe6 |
| SHA1 | 7043151ecbd8bc51acec1b2f8f1d4a1d1ff50c45 |
| SHA256 | f9ab12cf488c10c114824ec116f05b5811a408b146136920c9efa50ccd6c5225 |
| SHA512 | 3e4465617fed54fc9076ee7a4098c29c67965082769267a11d00d0f729cbadea9d468829a83910a00f278583728127a430ac0c51ddbbcfc8863c7ffe680e92fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7edf409f5b48822fbe160fa7a25ddf35 |
| SHA1 | 780d4919dd4f645a338c788c3c4176a976b97407 |
| SHA256 | 9e0e5cff0a6c84b5609adf5c3c6697bc1939613eed440855440cda8a3b0d92b3 |
| SHA512 | 7a63f9ef28aae31a7b6a693d99c6c2ff991dfd4b4daed8b36c01ae4a32b9425af609bd2b6da6adb013b3617568052a5419ca66d721f4aa775a01794ac7fbb0c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 19ef1389486dae17d75560ab6207dd6a |
| SHA1 | c050f5e4ceedcafea9be3c32a250b46218114a5f |
| SHA256 | 56a319125534d17521c520806a55d546b85c5acfa0496b53eee1189a1d5026fe |
| SHA512 | edfd35866c246802273926eea0a20cc11b960b636dc70400974e74b109940386715a5da2af7ea9e755dfd0e840a122ab011222d9758690be34a212ac3b5ef746 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\a3546c9a-c6f4-43df-afdd-cff0688665c9.tmp
| MD5 | 2107ff206ed97eb41d0f1838f8de06cd |
| SHA1 | cc7c3a73adfdc6a706c094f6f4f2770fd05f2483 |
| SHA256 | fb5d0f0a3a2c642f9f6e9e569b9afe06193af90781c4801d62b965a26c917714 |
| SHA512 | d9720cc08010a6091a0834a43ac0e171b7159cd537ce9e57ed43da2b4d4f495a4fa731a458c961924617faa623bf35db19d4a38c6168eedeb190bc4959d9b44e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 7589655fdfd51a717a884ee8c8107f27 |
| SHA1 | 8289e643e04799c4033831348c362152fb69b781 |
| SHA256 | 28e2dc86bcbb5f06558592504617c3265a16b5aff5c30baae3e119b781333fde |
| SHA512 | 56ab4f0f89624979cdb0c3886a58f1fe21a07706e3479d2386c68797d61275cb0a94ca7a5fd0e57d850d2721ce4db60e9e1aa30a03714a1ede028e238734cf5f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047
| MD5 | 2b7ec9fe5044c75348bc52964bf50b78 |
| SHA1 | 039e784c53ba423877c5c845ffb044abbf4c110e |
| SHA256 | 71c9403962b1f930169325d2c812125a0088d2a695609486bb6f31185e84ff97 |
| SHA512 | 92cb64599e198177093bda32e1c962fdccaa049d9875292b97c6b014d0d0afde750dcef27151751dda3f8639df41bed611bce7816c04d4e581b17b132d169016 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\cb45fc9a639f0741_0
| MD5 | 181e050eefa07e99cf0c49047542d592 |
| SHA1 | 550b6654b4d26670f3924c8dba5313cd43776310 |
| SHA256 | b0da1f8613de30ea6b08cbaa1a613cee8e2f69d9a66a945c0336a2400c79b96d |
| SHA512 | a9b344b624eb722ce9908f82f6084d0c2c623fe828d7054d152fb109eacdbb512d9736abc55dee0132bb4d7be2037aca4bb546e1c66e1aec5a3e5e4835137292 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5620c17dc9022255_0
| MD5 | e10928311969de5eceb9d2c6ad0e2133 |
| SHA1 | 765751a5b8772bcb40488dacbf41f73cdf65e65a |
| SHA256 | 91e3b9d5448c0059aecc8cf287d89894b86cbac2cab17a9f6771601c50a8458a |
| SHA512 | 20ce1a77612a8a29f5585d288f84a2573aed796b4dae6fa2daf1a2137c44a7666c9ba604bed02da9ca1f6c36f5f0986d8406d6fa4f8f60bb25bbdd6848cb814d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3fe6c02e3230ed8f92efbbd911166e58 |
| SHA1 | 7d94d7a31b4cf097a2cf3ac1d41fb49c6b795613 |
| SHA256 | a3c92d8d2d83ac5ceb82b35020bced0c815767ee3a2824aaaf309f4648199b27 |
| SHA512 | b4982cfd274292c7ff2ac59a65eb0dc5327db1c0f9639d4671fad26d2f6a84a6152bbe8becc9d71a150c3650233bbfaaf88b5f200c624c60a897c264c863e515 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 261e08e21be9d2ce961b2dd118ccfd19 |
| SHA1 | d6613235f4cf9a99108a088da2067c398912b048 |
| SHA256 | 622427a2fa4d59f924844856d84f388a58bc1eb6be1407044c701f27f4151774 |
| SHA512 | 1d36cbc8297154a7631ed274018ea982712878e1fd82ac0f49d4d57bb6a9c1feea6b74e931cce0562009f2edcdfc6535fb6bae55428c4d1f9922f9a95f99d56c |
C:\Users\Admin\Downloads\winrar-x64-700.exe
| MD5 | 48deabfacb5c8e88b81c7165ed4e3b0b |
| SHA1 | de3dab0e9258f9ff3c93ab6738818c6ec399e6a4 |
| SHA256 | ff309d1430fc97fccaa9cb82ddf3d23ce9afdf62dcf8c69512de40820df15e24 |
| SHA512 | d1d30f6267349bb23334f72376fe3384ac14d202bc8e12c16773231f5f4a3f02b76563f05b11d89d5ef6c05d4acaacc79f72f1d617ee6d1b6eddab2b866426af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ccdf31d203fbb76be7a369d75c88c026 |
| SHA1 | e0de5d0dc16f653030199f71030add475986b10d |
| SHA256 | 627c63fde220003a1bf78a56b41f0045a2762ee1e333e4741fd25ce7e149bf6b |
| SHA512 | 8abf8afc218a0e3f5793c8312f701d29d5c9b3d888992403703bd0c4564a932b44dc9c8821e95add41e4f4a74448a3d3c7bf3aa9f292722da6e27a43bbfced94 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe59238c.TMP
| MD5 | 56558b7a6f89d0e1ddda71b211912eef |
| SHA1 | ff3da313a70fe22d5c6d33b334f6375a1288e0b7 |
| SHA256 | 2c28fb92c99901918d1bea7868c21a67e45279fa0e5f959fb9f98a87e32e05c2 |
| SHA512 | eaac1818e587f649a6d0be214df4b37848edfaddad20ab8fb78b3ed52d266e78b4c075bf1d434a01c632f1de893d43174f54e633818ae6a1f0a829f6082bdb3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 6075dc7a93fadfa23713a025e82aead0 |
| SHA1 | 6883e5264f594325dd691eb2645da6feec8e1134 |
| SHA256 | b8880efede64653449a000e5f9dd7d64d340aa89cbf6325ab5e34d1b7005b25e |
| SHA512 | 19fdf73736f32e0d09ab563451a187c5b623d26dd3b06bd592c97f01ab8035fdf74feded57b762e8ceead7699c7946bf42254bc56e30134272c46f686191ffb4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 48a7da1515f5dc454e5e84bf649e8c6a |
| SHA1 | 8568367410482e033d09640c50d68b2cab59eb8f |
| SHA256 | 53202fbb6c70cce069da91e13f39f853955938be27caec36a503747cef0b7811 |
| SHA512 | 78fe533db68c12daf455e2ef8004c9008da80af73b601da945c1087eee481eb8588ed3d873e3431b31abe7f77384a80fe4819ebb7cd90223de2a08617e302d1e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 16dcbb02571dae0fcd7563d80304000f |
| SHA1 | fdd77c0c93f9d3d23898143f13fc121c123ba0dc |
| SHA256 | e2c52852e245df13b138e9ad2b25e2e9f6b4588fc85ec956a380aaa3914f2a72 |
| SHA512 | 59864cd4195185ad952d08b5eb1f3d715f6ecd43b15ec966377865d49d16dc15466614e4fc561c7a31332553ae65939ef1c96183780199e0dbb736ee0cb93021 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\b279c33e7361bde5_0
| MD5 | e1af221f8adbda6c9f3ace0f9b072949 |
| SHA1 | ca7fcb793759f4702554a3608b5a0dd5eb3abc73 |
| SHA256 | 7eb65227549ab9bc90cbbe5c4a808914c550b7299012162cf96ef6b3b340e0fd |
| SHA512 | 40fabf5c61effc39263035c6fe02cfb12909f088cb334a3dfe61d831708c8eb8962a4fdfd94a14b83d7f826c0558f981e878aa99bc0ca7066b16ab06c345fad5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\7ece01b0cb477166_0
| MD5 | 85d9bcbc38bcfcc713c6e6b0321a3124 |
| SHA1 | 710813e83550ced54c5edcd3fde6e7279fc33ced |
| SHA256 | b66fd44b01c66fcef76c608b596d979605895ef3f4ea182476fa5496dc23cab4 |
| SHA512 | d7ff6eb76a2daac32a0b6268a2af4810007c16f36772ebf7d8afe4b7461e2e051428d5e1ad99899b303d60398b1416a73523c354fb6a3c7d5a9abd16259d5098 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000052
| MD5 | b4ecf05fe49c7d270978fd43997bee50 |
| SHA1 | 14e60bc37d6af6907cfa60553ccab5a63d2e5a34 |
| SHA256 | 0b06ca55c1eb4674bf666bee6cd0193d8e72d3ed8535b7b5df6160e0391d84fc |
| SHA512 | dbf781ba95ba296226eb9e31afac76017ba8dcdb3ebe7571e54256849512673414aeca5e2aff4e4e77baa640f7f52b507187b4290a15e46373dd948cfd3fe877 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 2209c90cb566526f1f24d9746d8234f2 |
| SHA1 | a3262e1d0b977890f8c7f0090f7cbac305d45592 |
| SHA256 | 5e7c1f5f12afacce3a7d72cbbbb4675f378e9c678a2b8c1c07ae99a798e28e69 |
| SHA512 | 709d8932b3f583e922c8eadf624e5a3df622fcc6adaa1bf521b0b1b367f6af50c9140802c4a9f80f373631c6309e7339aa5f6b50240a7a9d717e9da3a7f02a57 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2405a3120fbe93809eccd03fd9d76700 |
| SHA1 | 328ad6643341abf624f327be268b38b966f67927 |
| SHA256 | 4228bfb10c97c8c7768a7e6ad22457e3d5ff5be36b1be3654983bc7948ab6bb8 |
| SHA512 | 8db7a9a5b00748c162fe496182258ea68f7c9b53b545dc14267cee240371988d1a88f9904737317f7a31c80ba2b9a844187c2aff8d503093d90798b132360089 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 74c269949986f281830e8007e28bf80a |
| SHA1 | 266536c082e4bf4696bcba50547e0bce9f45547c |
| SHA256 | f6a5f3e899aa0af638da49c232af82faf0406e1b16640b8b46b263018120f24d |
| SHA512 | 79f6d26b868ea2ae81b5699e333a42fc7742cb061ab5fba1ba5baccca19b7389a5f776537ec67c8f9bae380e9d41128b133c6de5fd41940eb4710a6694969e50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6740628ed060cc5a5bb3246b8b6c681e |
| SHA1 | a2dbebe10d0252838ffb5050fc31a4b030a422da |
| SHA256 | 608a01bb02664741aff6e8222231c9a58b14ed03445d2eb2beafe2e57e5ab3fc |
| SHA512 | 8dbdc3ab8d4ab71864196422bf2f3eedbecbb3567e2b678373db60badb14da0be45e533079d72919d4637d03212e96b89fc4d499e77fdf6b82482e272fb22f79 |
C:\Users\Admin\Downloads\WaveTrial\dist\client\assets\index-daab.js
| MD5 | a19bf5e804004e0397a4547f9a8568fe |
| SHA1 | daad35851be0986f1a99f5563976309c2f7fc800 |
| SHA256 | 66909b895c0b86eb1edaf95c0d728939a4986f01bf5112023bf52a6afc021155 |
| SHA512 | 2e98dedf48e2f16543ef28cdfad832f77a6250f6e71cadd2245e58aa4872a91934f390ad8552a1c59b035ead123904b95c31a1fb3d7ba3dbf49968b018755c5a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 27e16e9e5b1f5847d3d97940db8fcf96 |
| SHA1 | 428009b727fadd38c3e43f71d6d4252ad3fa3042 |
| SHA256 | 83571adff0f43c0c2f529b009090ead1d9e716aed6e749c911f8eeb64a72cf2a |
| SHA512 | 1efe3166b9daeafa9cb19522ca47e3ea95cd367af923ef95452a4c1de7390ba36f042c67f9216541d2722dd2bb9fdbd9d161e198155ae83aae1093f10af64990 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5d6066df02135786b5d2e58d7c8e5634 |
| SHA1 | 568bc999b75f81dc9ffc49c240c72e62a87e5b1f |
| SHA256 | bf07a369cd254f540ca67b3dce9f482d34709846c0caa6dc8ce9c14c97dd2cc9 |
| SHA512 | 413ffce590d00fd0dee36f33f374a436f8fbc5f13d4f04fd277b62a9adaf9c71bd36476431cf24430aae2863b888effeec56bfa96cabad7f1bf695657415462c |
memory/9224-1545-0x000001F4C2170000-0x000001F4C2878000-memory.dmp
memory/9224-1546-0x00007FF8CFB40000-0x00007FF8D0601000-memory.dmp
memory/9224-1547-0x000001F4DCE10000-0x000001F4DCE20000-memory.dmp
memory/9224-1548-0x000001F4C2CB0000-0x000001F4C2CD4000-memory.dmp
memory/9224-1549-0x000001F4DD060000-0x000001F4DD146000-memory.dmp
memory/9224-1550-0x000001F4DD150000-0x000001F4DD311000-memory.dmp
memory/9224-1554-0x00007FF8CFB40000-0x00007FF8D0601000-memory.dmp
memory/9492-1564-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1565-0x00007FF8F3AB0000-0x00007FF8F3CA5000-memory.dmp
memory/9492-1566-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1567-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1568-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1569-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1570-0x00007FF6711A0000-0x00007FF671B00000-memory.dmp
memory/9492-1571-0x00007FF8F3AB0000-0x00007FF8F3CA5000-memory.dmp