Analysis Overview
Threat Level: Known bad
The file https://github.com was found to be: Known bad.
Malicious Activity Summary
RedLine
Detect ZGRat V1
Lumma Stealer
RedLine payload
ZGRat
Reads user/profile data of web browsers
Executes dropped EXE
Checks installed software on the system
Accesses cryptocurrency files/wallets, possible credential harvesting
Legitimate hosting services abused for malware hosting/C2
Suspicious use of SetThreadContext
Drops file in System32 directory
Opens file in notepad (likely ransom note)
Modifies registry class
Suspicious use of FindShellTrayWindow
Suspicious behavior: GetForegroundWindowSpam
Enumerates system info in registry
Suspicious use of SendNotifyMessage
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Modifies data under HKEY_USERS
Suspicious use of AdjustPrivilegeToken
Uses Task Scheduler COM API
Suspicious behavior: EnumeratesProcesses
Suspicious use of SetWindowsHookEx
Checks SCSI registry key(s)
Suspicious use of WriteProcessMemory
Checks processor information in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-03 11:11
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-03 11:11
Reported
2024-05-03 11:16
Platform
win10v2004-20240419-en
Max time kernel
267s
Max time network
268s
Command Line
Signatures
Detect ZGRat V1
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Lumma Stealer
RedLine
RedLine payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
ZGRat
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\LucidSwapper.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\Setup.exe | N/A |
Reads user/profile data of web browsers
Accesses cryptocurrency files/wallets, possible credential harvesting
Checks installed software on the system
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | camo.githubusercontent.com | N/A | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of SetThreadContext
| Description | Indicator | Process | Target |
| PID 5492 set thread context of 5392 | N/A | C:\Users\Admin\Desktop\LucidSwapper.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
| PID 1924 set thread context of 4916 | N/A | C:\Users\Admin\Desktop\Setup.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133592083354566214" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-17203666-93769886-2545153620-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-17203666-93769886-2545153620-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-17203666-93769886-2545153620-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-17203666-93769886-2545153620-1000_Classes\Local Settings | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Opens file in notepad (likely ransom note)
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\NOTEPAD.EXE | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff9fe1fcc40,0x7ff9fe1fcc4c,0x7ff9fe1fcc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1936,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=1932 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1620,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2220 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2244,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2468 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3108,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3148 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3176 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4636,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4340 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4592,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4600 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4472,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4640 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4520,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5284 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\" -an -ai#7zMap2916:82:7zEvent26410
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4568,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5476 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5384,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5788,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5744 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --disable-databases --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5428,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4980 /prefetch:1
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2000 -parentBuildID 20240401114208 -prefsHandle 1916 -prefMapHandle 1908 -prefsLen 25457 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {21bf258f-f4d4-41dc-b1dc-1b25a2efd1a4} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2388 -parentBuildID 20240401114208 -prefsHandle 2380 -prefMapHandle 2376 -prefsLen 25493 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fd93c5e6-e5cb-470b-b186-ccbd96237538} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3056 -childID 1 -isForBrowser -prefsHandle 2864 -prefMapHandle 2880 -prefsLen 25634 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {da836038-d52b-4167-bd4b-dd94c0af3dfd} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1256 -childID 2 -isForBrowser -prefsHandle 2436 -prefMapHandle 3788 -prefsLen 30867 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a112c6ad-f281-4b57-9420-8bf21d9fbf15} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4884 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 4924 -prefMapHandle 4920 -prefsLen 30867 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5c5e7889-b65e-4085-a2c0-ed3e31691af4} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5272 -childID 3 -isForBrowser -prefsHandle 5368 -prefMapHandle 5364 -prefsLen 27097 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f58875b3-dc05-472b-9627-5eeabf3ce721} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5500 -childID 4 -isForBrowser -prefsHandle 5508 -prefMapHandle 5512 -prefsLen 27097 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {144ab5ef-9575-4468-9c93-c0d6c7d0cbf6} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5692 -childID 5 -isForBrowser -prefsHandle 5700 -prefMapHandle 5704 -prefsLen 27097 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {13455011-2bdd-4029-960d-30df76571d4a} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3708 -childID 6 -isForBrowser -prefsHandle 5556 -prefMapHandle 5552 -prefsLen 27305 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b6103efc-deb9-41f7-8926-875c4c804f06} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6260 -childID 7 -isForBrowser -prefsHandle 6272 -prefMapHandle 6268 -prefsLen 27305 -prefMapSize 244658 -jsInitHandle 1212 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {93544c1e-0bc0-4647-881d-5133a494af00} 4312 "\\.\pipe\gecko-crash-server-pipe.4312" tab
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5284,i,16025465581052282039,14729164917230695858,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5496 /prefetch:8
C:\Users\Admin\Desktop\LucidSwapper.exe
"C:\Users\Admin\Desktop\LucidSwapper.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff9fde5cc40,0x7ff9fde5cc4c,0x7ff9fde5cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2044,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2040 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1752,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2164 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2324,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2496 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3004,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3084,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3244 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3740,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3724 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4788,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4776 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4784,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4884 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=3228,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3220 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4484,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3348 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4772,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4976 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5148,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5156 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4608,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4860 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5276,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5180 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4964,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5612 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5452,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5644,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5776 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5764,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3284 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5908,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6024 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6052,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6164 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6196,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6316 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6456,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6472 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6640,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6604,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6768 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6948,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6956 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7080,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7120 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6968,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7500,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=7776,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=7988,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8004 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=7676,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7628 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=7396,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4552 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=5024,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7864 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=8536,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8572 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=8512,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8528 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=8784,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8640 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=8916,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8924 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=9060,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=9208,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9224 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=9232,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9356 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=8652,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8952 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=9600,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9612 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=9620,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9744 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=9752,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9876 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=10020,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=10052,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=10312,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=9892,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10012 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=10704,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10796 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=10620,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=10452,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=9772,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11076 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=10788,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=11052,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11432 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=11300,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=11316,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11572 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=11708,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=11716,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11876 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=11816,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=11992 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=10508,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=12164,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10804 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=10792,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=12480 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=12476,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10868 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=12484,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9048 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=12564,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=12364 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=10864,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=8568,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=8604,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=11944,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7268 /prefetch:1
C:\Users\Admin\Desktop\BO3 PC GSC Compiler Loader.exe
"C:\Users\Admin\Desktop\BO3 PC GSC Compiler Loader.exe"
C:\Users\Admin\Desktop\Utilities\Simple Canonical String.exe
"C:\Users\Admin\Desktop\Utilities\Simple Canonical String.exe"
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\README.txt
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4616,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7672 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Downloads\Git_Installer_v1.4.6_latest.7z"
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Desktop\" -an -ai#7zMap1020:110:7zEvent9036
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1124,i,2684798811224221222,12837435635663300404,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9408 /prefetch:8
C:\Users\Admin\Desktop\Setup.exe
"C:\Users\Admin\Desktop\Setup.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.109.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 20.231.121.79:80 | tcp | |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.86.106.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.109.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.114.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| NL | 23.62.61.171:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.61.62.23.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 104.219.191.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | private-user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | camo.githubusercontent.com | udp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | objects.githubusercontent.com | udp |
| US | 185.199.108.133:443 | objects.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.53.16.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | virustotal.com | udp |
| US | 216.239.36.21:443 | virustotal.com | tcp |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| GB | 216.58.201.99:443 | www.recaptcha.net | tcp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.15.97.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.36.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.34.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| GB | 142.250.187.227:443 | recaptcha.net | tcp |
| GB | 142.250.187.227:443 | recaptcha.net | tcp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.187.227:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | 227.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.250.142.in-addr.arpa | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 31.243.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.190.18.2.in-addr.arpa | udp |
| N/A | 127.0.0.1:60147 | tcp | |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | spocs.getpocket.com | udp |
| US | 8.8.8.8:53 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 34.117.188.166:443 | spocs.getpocket.com | tcp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 34.149.97.1:443 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | content-signature-2.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 34.117.188.166:443 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 34.160.144.191:443 | content-signature-2.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.services.mozilla.com | udp |
| US | 34.117.188.166:443 | prod.ads.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | push.services.mozilla.com | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 44.233.67.78:443 | shavar.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | firefox.settings.services.mozilla.com | udp |
| US | 34.117.188.166:443 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 34.149.100.209:443 | firefox.settings.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | tcp |
| N/A | 127.0.0.1:60154 | tcp | |
| US | 8.8.8.8:53 | 78.67.233.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | support.mozilla.org | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | virustotal.com | udp |
| US | 216.239.32.21:443 | virustotal.com | tcp |
| US | 216.239.32.21:443 | virustotal.com | tcp |
| US | 8.8.8.8:53 | virustotal.com | udp |
| US | 8.8.8.8:53 | 21.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | ghs-svc-https-c46.ghs-ssl.googlehosted.com | udp |
| US | 8.8.8.8:53 | ghs-svc-https-c46.ghs-ssl.googlehosted.com | udp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| GB | 216.58.201.99:443 | www.recaptcha.net | tcp |
| GB | 216.58.201.99:443 | www.recaptcha.net | udp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| GB | 142.250.187.227:443 | recaptcha.net | tcp |
| GB | 142.250.187.227:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| US | 34.149.100.209:443 | prod.remote-settings.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | aus5.mozilla.org | udp |
| US | 8.8.8.8:53 | location.services.mozilla.com | udp |
| US | 35.244.181.201:443 | aus5.mozilla.org | tcp |
| US | 35.244.181.201:443 | aus5.mozilla.org | tcp |
| US | 35.244.181.201:443 | aus5.mozilla.org | tcp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 44.242.34.204:443 | location.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | locprod2-elb-us-west-2.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | locprod2-elb-us-west-2.prod.mozaws.net | udp |
| US | 34.160.144.191:443 | prod.content-signature-chains.prod.webservices.mozgcp.net | tcp |
| US | 34.160.144.191:443 | prod.content-signature-chains.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | ciscobinary.openh264.org | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| NL | 2.18.121.197:80 | ciscobinary.openh264.org | tcp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| GB | 142.250.187.206:443 | redirector.gvt1.com | tcp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| GB | 142.250.187.206:443 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | r1---sn-aigl6n6s.gvt1.com | udp |
| GB | 173.194.3.70:443 | r1---sn-aigl6n6s.gvt1.com | tcp |
| US | 8.8.8.8:53 | r1.sn-aigl6n6s.gvt1.com | udp |
| US | 8.8.8.8:53 | r1.sn-aigl6n6s.gvt1.com | udp |
| GB | 173.194.3.70:443 | r1.sn-aigl6n6s.gvt1.com | udp |
| US | 8.8.8.8:53 | 201.181.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.34.242.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.121.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.3.194.173.in-addr.arpa | udp |
| RU | 147.45.47.64:11837 | tcp | |
| US | 8.8.8.8:53 | 64.47.45.147.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.133:443 | objects.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.108.133:443 | objects.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | udp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.114.74:443 | www.mediafire.com | tcp |
| US | 104.16.114.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 104.16.114.74:443 | static.mediafire.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| US | 104.21.63.106:443 | www.ezojs.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 18.239.190.3:443 | cdn.amplitude.com | tcp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| GB | 172.217.16.238:443 | translate.google.com | tcp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 104.16.53.110:443 | cdn.otnolatrnup.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 104.21.63.106:443 | www.ezojs.com | udp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | tcp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 54.188.126.51:443 | api.amplitude.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| BE | 64.233.167.154:443 | stats.g.doubleclick.net | tcp |
| FR | 15.188.219.54:443 | g.ezoic.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 188.114.97.2:443 | go.ezodn.com | tcp |
| US | 188.114.97.2:443 | go.ezodn.com | tcp |
| US | 188.114.97.2:443 | go.ezodn.com | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| IE | 52.211.28.127:443 | ad.crwdcntrl.net | tcp |
| US | 18.239.208.47:443 | tags.crwdcntrl.net | tcp |
| US | 104.21.87.79:443 | g.ezodn.com | tcp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | tcp |
| IE | 52.211.28.127:443 | ad.crwdcntrl.net | tcp |
| GB | 142.250.178.10:443 | translate-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 188.114.97.2:443 | go.ezodn.com | udp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 74.114.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.63.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.190.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.167.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.219.188.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.126.188.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.97.114.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.87.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.28.211.52.in-addr.arpa | udp |
| US | 188.114.96.2:443 | bshr.ezodn.com | tcp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 188.114.96.2:443 | bshr.ezodn.com | udp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | ut.pubmatic.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| NL | 185.64.189.226:443 | ut.pubmatic.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| GB | 172.217.16.238:443 | fundingchoicesmessages.google.com | udp |
| IE | 52.211.28.127:443 | ad.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.96.114.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 18.239.208.120:443 | hb.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 23.227.151.194:443 | ghb.adtelligent.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| IE | 54.76.99.16:443 | ap.lijit.com | tcp |
| FR | 15.188.219.54:443 | g.ezoic.net | tcp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 1c8a226f77cc329178e679d435af8a9f.safeframe.googlesyndication.com | udp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| GB | 142.250.187.193:443 | 1c8a226f77cc329178e679d435af8a9f.safeframe.googlesyndication.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| US | 18.239.206.232:443 | cdn.prod.uidapi.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 107.151.11.18:443 | ghb1.adtelligent.com | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| DE | 162.19.138.83:443 | id5-sync.com | tcp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | euexchangesync.digitaleast.mobi | udp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| US | 54.172.53.250:443 | sync.srv.stackadapt.com | tcp |
| GB | 142.250.187.226:443 | cm.g.doubleclick.net | tcp |
| US | 52.46.130.91:443 | s.amazon-adsystem.com | tcp |
| US | 34.95.81.168:443 | euexchangesync.digitaleast.mobi | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| NL | 185.89.210.122:443 | ib.adnxs.com | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| FR | 5.196.111.68:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 185.89.210.153:443 | ib.adnxs.com | tcp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| GB | 185.64.190.79:443 | image8.pubmatic.com | tcp |
| NL | 154.57.158.26:443 | ads.stickyadstv.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 34.98.64.218:443 | google-bidout-d.openx.net | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | t.pubmatic.com | udp |
| DE | 18.195.38.227:443 | rtb.mfadsrvr.com | tcp |
| GB | 185.64.190.82:443 | t.pubmatic.com | tcp |
| GB | 185.64.190.82:443 | t.pubmatic.com | tcp |
| US | 104.22.51.98:443 | spl.zeotap.com | tcp |
| GB | 142.250.187.226:443 | cm.g.doubleclick.net | udp |
| US | 52.46.130.91:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | download2282.mediafire.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 52.95.125.22:443 | aax-eu.amazon-adsystem.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 199.91.155.23:443 | download2282.mediafire.com | tcp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.14.67.172.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 199.91.155.23:443 | download2282.mediafire.com | tcp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.64.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.99.76.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.151.227.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.206.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.11.151.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.81.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.53.172.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.130.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.140.121.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.38.195.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.125.95.52.in-addr.arpa | udp |
| US | 104.16.53.110:443 | otnolatrnup.com | tcp |
| US | 104.16.53.110:443 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 23.220.112.27:443 | hbx.media.net | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| IE | 34.249.151.204:443 | sync.crwdcntrl.net | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| DK | 37.157.3.26:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| IE | 52.18.245.140:443 | pr-bh.ybp.yahoo.com | tcp |
| IE | 52.18.245.140:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 188.42.34.64:443 | ads.betweendigital.com | tcp |
| DE | 91.228.74.159:443 | cms.quantserve.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| IE | 52.214.140.212:443 | match.prod.bidr.io | tcp |
| US | 104.16.53.110:443 | otnolatrnup.com | udp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| NL | 63.215.202.172:443 | pubmatic-match.dotomi.com | tcp |
| NL | 193.3.178.4:443 | ads.us.e-planning.net | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | 23.155.91.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.112.220.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.151.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.3.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.245.18.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.34.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.140.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.202.215.63.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 104.16.53.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| NL | 147.75.84.158:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 18.239.208.114:443 | woreppercomming.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | www.ovardu.com | udp |
| US | 104.21.96.72:443 | www.ovardu.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | s.e-planning.net | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | cookies.nextmillmedia.com | udp |
| US | 3.212.198.223:443 | cookies.nextmillmedia.com | tcp |
| NL | 193.3.178.1:443 | s.e-planning.net | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| IE | 54.76.99.16:443 | ap.lijit.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| DK | 37.157.5.132:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.198.212.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u-ams03.e-planning.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| NL | 193.3.178.4:443 | u-ams03.e-planning.net | tcp |
| NL | 193.3.178.4:443 | u-ams03.e-planning.net | tcp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| NL | 193.3.178.4:443 | u-ams03.e-planning.net | tcp |
| US | 8.8.8.8:53 | ad4m.at | udp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 8.8.8.8:53 | rtb.adentifi.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| US | 3.218.132.46:443 | i.liadm.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| NL | 63.215.202.140:443 | casale-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| US | 3.214.176.164:443 | rtb.adentifi.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 172.67.74.129:443 | ad4m.at | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| US | 8.8.8.8:53 | dmp.v.fwmrm.net | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| GB | 18.134.84.20:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | beacon.krxd.net | udp |
| US | 8.8.8.8:53 | usermatch.krxd.net | udp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| IE | 52.49.105.45:443 | aa.agkn.com | tcp |
| DK | 37.157.6.233:443 | dmp.adform.net | tcp |
| IE | 52.17.107.72:443 | dpm.demdex.net | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| US | 3.144.50.153:443 | dmp.v.fwmrm.net | tcp |
| FR | 149.202.238.105:443 | sync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | udp |
| IE | 63.32.63.11:443 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| IE | 54.78.246.130:443 | id.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 104.22.30.209:443 | csync.smilewanted.com | tcp |
| FR | 51.68.39.188:443 | dsp.nrich.ai | tcp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| DE | 162.19.138.83:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 34.248.77.228:443 | ce.lijit.com | tcp |
| FR | 141.94.170.64:443 | pixel.onaudience.com | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| SE | 213.155.156.185:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.5.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.74.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.84.134.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.132.218.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.105.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.107.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.176.214.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 105.238.202.149.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.63.32.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.50.144.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.246.78.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.30.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.39.68.51.in-addr.arpa | udp |
| FR | 5.196.111.68:443 | ssbsync-global.smartadserver.com | tcp |
| DE | 162.19.138.83:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | ag.yieldoptimizer.com | udp |
| US | 8.8.8.8:53 | cdn.doubleverify.com | udp |
| US | 2.18.190.133:443 | cdn.doubleverify.com | tcp |
| US | 130.211.12.42:443 | ag.yieldoptimizer.com | tcp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| NL | 89.149.192.201:443 | rtb-csync.smartadserver.com | tcp |
| IE | 99.81.59.238:443 | ad.360yield.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| US | 8.8.8.8:53 | sync.e-planning.net | udp |
| GB | 142.250.179.230:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | tps-dn-ew1.doubleverify.com | udp |
| BE | 35.210.149.152:443 | tps-dn-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.170.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.77.248.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.12.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.59.81.99.in-addr.arpa | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 230.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.44.211.130.in-addr.arpa | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 54.172.53.250:443 | sync.srv.stackadapt.com | tcp |
| US | 54.172.53.250:443 | sync.srv.stackadapt.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| US | 18.239.208.129:443 | api-2-0.spot.im | tcp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 54.172.53.250:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| US | 8.8.8.8:53 | ums.acuityplatform.com | udp |
| NL | 35.214.130.251:443 | csync.loopme.me | tcp |
| US | 64.202.112.223:443 | b1sync.zemanta.com | tcp |
| US | 64.202.112.223:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 52.0.142.82:443 | cs-server-s2s.yellowblue.io | tcp |
| IE | 52.50.53.225:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | pool.admedo.com | udp |
| US | 3.208.230.100:443 | aorta.clickagy.com | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 18.239.208.15:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| BE | 35.210.53.219:443 | pool.admedo.com | tcp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 104.18.25.173:443 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | sync.adtelligent.com | udp |
| FR | 141.94.242.206:443 | green.erne.co | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| DE | 3.127.178.105:443 | ps.eyeota.net | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.146.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.53.210.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.149.210.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.142.0.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.130.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.53.50.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.122.59.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.230.208.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| FR | 141.94.171.212:443 | pixel-eu.onaudience.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| DE | 3.127.178.105:443 | ps.eyeota.net | tcp |
| BE | 35.210.53.219:443 | pool.admedo.com | udp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| IE | 52.95.125.22:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.242.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.71.83.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 105.178.127.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| NL | 64.158.223.137:443 | openx2-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | static.smilewanted.com | udp |
| IE | 54.77.172.14:443 | pm.w55c.net | tcp |
| US | 172.67.74.129:443 | ad4m.at | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| NL | 35.214.130.251:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.18.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.172.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.sportradarserving.com | udp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | tpsc-ew1.doubleverify.com | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 18.239.208.47:443 | tags.crwdcntrl.net | tcp |
| US | 18.239.208.47:443 | tags.crwdcntrl.net | tcp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 141.174.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| IE | 52.212.7.112:443 | ice.360yield.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.2.110.33:443 | us.shb-sync.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| DE | 18.184.177.15:443 | match.sharethrough.com | tcp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 52.55.107.251:443 | sync.ipredictive.com | tcp |
| US | 172.64.146.152:443 | capi.connatix.com | tcp |
| US | 8.8.8.8:53 | hb.yahoo.net | udp |
| US | 8.8.8.8:53 | 112.7.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.177.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.146.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.107.55.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| GB | 142.250.178.2:443 | ade.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| GB | 142.250.178.2:443 | ade.googlesyndication.com | udp |
| US | 80.77.87.166:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 172.64.151.101:443 | dsum.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| DE | 142.132.249.188:443 | ghb2.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 188.249.132.142.in-addr.arpa | udp |
| US | 23.227.151.194:443 | ghb2.adtelligent.com | tcp |
| GB | 185.83.71.234:443 | sync.adtelligent.com | tcp |
| GB | 216.58.212.226:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.213.2:443 | securepubads.g.doubleclick.net | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | udp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.133:443 | objects.githubusercontent.com | tcp |
| GB | 142.250.178.2:443 | ade.googlesyndication.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| US | 8.8.8.8:53 | sideindexfollowragelrew.pw | udp |
| US | 8.8.8.8:53 | acceptabledcooeprs.shop | udp |
| US | 188.114.96.2:443 | acceptabledcooeprs.shop | tcp |
| US | 8.8.8.8:53 | obsceneclassyjuwks.shop | udp |
| US | 104.21.20.88:443 | obsceneclassyjuwks.shop | tcp |
| US | 8.8.8.8:53 | zippyfinickysofwps.shop | udp |
| US | 104.21.39.216:443 | zippyfinickysofwps.shop | tcp |
| US | 8.8.8.8:53 | miniaturefinerninewjs.shop | udp |
| US | 104.21.30.191:443 | miniaturefinerninewjs.shop | tcp |
| US | 8.8.8.8:53 | plaintediousidowsko.shop | udp |
| US | 172.67.213.139:443 | plaintediousidowsko.shop | tcp |
| US | 8.8.8.8:53 | sweetsquarediaslw.shop | udp |
| US | 104.21.44.201:443 | sweetsquarediaslw.shop | tcp |
| US | 8.8.8.8:53 | 88.20.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.39.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.30.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.213.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | holicisticscrarws.shop | udp |
| US | 172.67.183.72:443 | holicisticscrarws.shop | tcp |
| US | 8.8.8.8:53 | boredimperissvieos.shop | udp |
| US | 188.114.96.2:443 | boredimperissvieos.shop | tcp |
| US | 8.8.8.8:53 | 201.44.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.183.67.172.in-addr.arpa | udp |
Files
\??\pipe\crashpad_4688_VYBBHIEAYQDYYJJF
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 877a7f36251ac214c483c14fb39794cb |
| SHA1 | ccdbda548e459e4e57dc3ff07fb8a857f1efd215 |
| SHA256 | c5f040c2b7d524f7497428b7bbe755e3671df05f63b8d7b66259e221dae081a6 |
| SHA512 | f1604e945437fa2ce637d0a1bf6f6f1ef55dd02e901640a12c1bae9f0279684f3184ff4fee6f40a3f00b4783a8cd8a79357d1c1095783df9803e466f01065ee5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c77bf434a7bee587e608a7b3d81edb26 |
| SHA1 | e08b5f74b68834ca17ecc0b24bdde81f66ea6b14 |
| SHA256 | fc1aeb37746db8aa0643c1ddda23924d33774743ee1365e0ca0ba28ac2f9c3d8 |
| SHA512 | 911d31fa43c0744d4d92f92e3646907615f6b0a0f24a55ebe4e6b8110cea9b7216b9c8e035bb352cba86347380c0c9dac4f45baf1aea88e6948104ef1c0bc7eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3026d89e399954dd6c567c267dc36749 |
| SHA1 | 2fb379bb620a613ada528dad591e9c9e2f97f881 |
| SHA256 | 6ab343e3138a6225c00f35d35a4efa1e85b79331972fc279d112857f6f5bede2 |
| SHA512 | 0a974c74bae316e1705f5816cd82907d9b2e5fd5fa96d7d962261842f444e4ea94fe549ed1d6ce3f46f12dd5804e43f450aba3bc55a981e94b37c2857dfe7520 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3f7d31a85f4da722a9fadd972f5a16f7 |
| SHA1 | b24e8b683d2c3a522191267545d085c9ea02c17b |
| SHA256 | f180fecd99e6673a1726838e766688aa10b5a10d13f626e9227c47dcbb03bd8f |
| SHA512 | 4f80359ad7eaa6c9518e82a1d400d5dd20a52b7014e5e8b8a01410124dc857970535024b04b114a3ee39ade16d51c66b6f00b70c679cd2e445ac12fd32bf5627 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d63032d92bf770c8d8393208efb7ddb5 |
| SHA1 | 3789d30135dd94a3791f8675eec8f00bd3eeb468 |
| SHA256 | 1417780e853bb8c6ef697c0955af395814b9d389c7b21e60b99e81625b78c2c7 |
| SHA512 | 91099e14792b5254c9b66c223bdbfdb346953925b63bc03d1b626c0daede8d7d278255b710b4a2c04510a46daf73d56799c3d4a422efe5eb40f09ccfb1f9afd8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 062c7270e2d240e617f468785cb973e5 |
| SHA1 | 3e50644132de4f3739c8803f04eaa1f2a8bd96d5 |
| SHA256 | 70e42ca0ea2905cd1af2ffdd6a1fc458f372ca7226d09f4981ec2aa712b5abde |
| SHA512 | 223f00c27dbdb1fe76ae2e0b89c663655b3d7960eb6252da49b1a446758e42c7ba2201f84972dc97d53884f4370240bb3dc24c7698da4bd96c343faf5a02a7ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7474b01807d584d28638c12afccc4892 |
| SHA1 | 0ef7d0b8db1b893d57e5ef854fb62fd21b4676a9 |
| SHA256 | 25e90d538dcda0a98955449229e0c6138f6ea13ee79eae671ddfb57a78c31cde |
| SHA512 | 704863021ca0c3ae6fe18e6220ba449fb592b0ee12760e0e3b51f94fa5503cfc9f84fb88d9c27617eeeae45bef363b5791e820615281c51ffd6043b32d9f4a6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | 0c2234caae44ab13c90c9d322d937077 |
| SHA1 | 94b497520fcfb38d9fc900cad88cd636e9476f87 |
| SHA256 | d8e6f62282e12c18c930a147325de25aef1633a034eaf7a3ce8de1fb8de09912 |
| SHA512 | 66709f74b19499df1e06700e1c257e14a82ca4287194e4b177b3f333748d927f413c8c459a35e7e5a2f92d28410b0129f106d94e3dd85bc0dd0b986add83b18f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | a4b04ba2b9a56f5911fee0c29629e53e |
| SHA1 | 939e8e65e22ae978a6b63dd1400fc6f58c5015eb |
| SHA256 | 523d8983d24e050e6e7e1f43d0caca6bd77bef38ec046d181b13bf32702fc025 |
| SHA512 | 1c3357e9ecd3ac0de53d14f5d4c8d8d0aeafd30cb2e0dd6cfd1be68cca4fd4e178e79938a5ffe9a17b43e4f60f6e8e08c1054fa44160377fea740da70761c80f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | e1831f8fadccd3ffa076214089522cea |
| SHA1 | 10acd26c218ff1bbbe6ac785eab5485045f61881 |
| SHA256 | 9b9a4a9191b023df1aa66258eb19fc64ae5356cfc97a9dda258c6cc8ba1059ac |
| SHA512 | 372c486ac381358cc301f32cd89b7a05da7380c03fa524147c2ddf3f5e23f9b57c17485aaedc85b413461a879afc42e729547b0c96c26c49bbdb7301cd064298 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 8b2813296f6e3577e9ac2eb518ac437e |
| SHA1 | 6c8066353b4d463018aa1e4e9bb9bf2e9a7d9a86 |
| SHA256 | befb3b0471067ac66b93fcdba75c11d743f70a02bb9f5eef7501fa874686319d |
| SHA512 | a1ed4d23dfbe981bf749c2008ab55a3d76e8f41801a09475e7e0109600f288aa20036273940e8ba70a172dec57eec56fe7c567cb941ba71edae080f2fdcc1e0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 9ccb3e387ecf1d1c32d33a33b61db8f3 |
| SHA1 | 9d6625afcaa4d6bfe223268ccf82ff32ea9532a3 |
| SHA256 | 3d34b64d0099f608de0e555d46338252a99d36f2a25af7180702c9966621fa0b |
| SHA512 | 05c3d41fd4115bd66c1a938ad644424f8df93f96ae27004c800e43acbc4b23568456574ceba605ea696fb594585811fedd0f9ec547a697344479e4d7516f65f4 |
C:\Users\Admin\Downloads\LucidSwapper.zip.crdownload
| MD5 | 5e3f7d7cd2a9e777c7715b4113be0e9c |
| SHA1 | e8b8b6da84866bf8f52d250370d69cd8b7e374e8 |
| SHA256 | 4bf36954d0e3a086f4ea0a2f54ead1afc474a7e145296dd3e13c9a23db3e7bac |
| SHA512 | 17b65231264848d249e86d647ca5f5fdb2b4a707b8108f81b1770daae9e0655c03ed44479bc2ad4b625eddc0ef2e62da5a0f7030c8a1c380600f343fb8a2b910 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a8da8c6790786a6461204b06982ab9fa |
| SHA1 | 5fa40524cca50f84fa1a482b5bc7a09efb66d51c |
| SHA256 | c6013b297096aa6db984019b0c5fdf79bec49d3bdd3b76b34c23e30a04a71c3d |
| SHA512 | 717881c958888c5790dcdbf10b8d89bd69c761f91d92518d724b48aea8be9ab4b1847db935f96a28291c39743a4ec7f879cc450d37c2b808d4a584b99c75ee46 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | a2792a756081fdf7eda3ae418181a543 |
| SHA1 | 2fd90a84ffbc71d844e9da4bb09b92f8d0376747 |
| SHA256 | fa12433cde148ed6fb34c9dc193a3834d54edf16bc6fa774b0f1e188b9af4ad1 |
| SHA512 | 4b1b325d7dbd9d7eb72ca809aca901ec5a1214bf88e29924780b8306bd0f679844eec66a542a8e7a2b25d40f9246a56004b90bcc3564927b555d1eade0932430 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cd0fe0dab07ad51862484f8ecb1dc507 |
| SHA1 | b9c7236708747d311d8d6a320f1c9af7bd9d4eb9 |
| SHA256 | c534df14d70127a201405d9bc2167422f12c62ac3aa5b21666a00dacb17daff7 |
| SHA512 | 2cdd546ed6294252768eb098a06cc377708898e77cc4be49ca9c91fe0e38ab1d9e1099b5679beb88379c953e1a3d5a52fa23f96d7a1d72d335fb5d8e5efb8069 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c57c0fd68d01df97e20b53f67c259631 |
| SHA1 | a1244170178cbfeb9add97b4550e493921fe8c9e |
| SHA256 | ea820b9a3128fe12ec50074be5b45e54625bfdddeabff6f9fedbfb4d88ba7b2b |
| SHA512 | 2514a5fa368981106ed833a4e07c73af1d2e29697c4979bf3533131e5675bcc3755d25d471e57ccfa8cd3eb3962a43ec1b9ec4b845e5e9b99cd969c603d7db90 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b806db59e49d39d2ec7a3ca7e787d36f |
| SHA1 | 688b39b36e2290d200dadc16e9e4c288b5047198 |
| SHA256 | 2412b1e686f65590ac4ee29a6a76eab11c17bcaa71f12d9bea1d7693c79dce12 |
| SHA512 | 81dd789810f7c9efea6f2fa327cf11d4832959422188fc858d6ccb94ba3f3325a50ede46439b1a18d2e0cd64d3123a107f9ee743ef8808500cca212e44ade5c3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 735615a98dee8be6d6e434774fb63706 |
| SHA1 | 99616b4531a48cc6991375bcc4b598fd297e6593 |
| SHA256 | 3933efeefaf862ed5743a825149d7418117d758ebeaa73c45ac6783613f08d5b |
| SHA512 | 1d7d830fd8146ade2e457a31fd0ef732de74a1994ed1de9cc7bd2c235178e7d4485c36c10012f938141ca539d5e687f717aad9ee01c008283d9a902d0ff192bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f83bce5fc554c15a9f6d07a870799449 |
| SHA1 | 1795ccfe181c17eb9e61c4d80d5857f7ada9951c |
| SHA256 | a281b2a761cc4bafd8d225b26af4d996194dd2ef94628edbdff0adab111c5c59 |
| SHA512 | 3af4e0e28e738a018128974b7b22eb0c728167874921478c4f276198c42184dbd6302afaf375edcf7580246b0d02dc8b43e6de6efddd428bff7b9c3fdcdf958d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5395712d72921baf76e84ac27c64560b |
| SHA1 | 031e5d8f793eae4bd01ce61bca43349f9c6e381b |
| SHA256 | 88b809e23eddbd9855992a6c7961e1078557e18076162796d8eae9a39aa14730 |
| SHA512 | dd680dc9baa14bbcc29a7dc82c0c1c3e5cd9f02edf845cb99dc7ebe001bcb90cb0933db6270bf99057e857b8ca111746f0473c6cb086c3a03c9e2f10f93406e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | a7a84e52158f9e144220ea5f1d474e0f |
| SHA1 | 539c63712d43661d56032ac0b3ee1e1bcb4108f6 |
| SHA256 | 80a94c94d894d6c6b0b673c112d57d842e46f7662f8b35fbec30bd2a813946e1 |
| SHA512 | 32c1bd660112a91bb17535db289ef721e324078a50c3aa4611c5fac07de5630297c9a84fcf65c8388106574c08151ecc18123bb9e38a67ec4801e1d87360ea04 |
C:\Users\Admin\Desktop\LucidSwapper.exe
| MD5 | a4afe7e45200965e73b26af1c270d307 |
| SHA1 | 8ed83bab7bcbc05e6fcd28ab0b2b0a99edf2a21b |
| SHA256 | 61d940d5e60486b5da71dab297b1c67419d690490ec85e4c4ac1a09971ff6c7b |
| SHA512 | a8867d90dc724d27afe1283f9d5d6f4ae12ff61b5d302c26d30d864ea862bb52f319ef6404c51c3c15376cbfb618ed03c75bf30227e84b9c148e934dc6649acb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f47a6a92fca05385a36e06bdda4918f1 |
| SHA1 | e9042966a478da78cfa36c801a7fd70f6d20a762 |
| SHA256 | b3d397cf8bebc77ae08d4d0b9a1932316211447c11047d82bc0f7d59f8b4b426 |
| SHA512 | 70b8634b68cd2ab94a1652439790e1dd3153def1eca624e706bf2aa9e35da600d96cdd343feb3e75f4f9d96d390a688f46a522a09d6c95de6f32aef0e4be1f38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 21e1b00792384da8ce9d80bf05a5ff7c |
| SHA1 | a81d4c6be86ea85fff2acb3850fe43383cb1e3e7 |
| SHA256 | 2f9aa2e8d22b66a0ed1326ca7b7829b4f88d58d3e341710e162a9fa26e5b8169 |
| SHA512 | fb5faddb5ea0ac2351b13566e4aff4876947a67af84c0c92ca6d2469689738b0d969a0d68e44f57615edfb3c4be4cb15f156cb34db30e5ddf9685f36a931623f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 62fba0f2fd0a6e4ab6cc5bc846ff929d |
| SHA1 | 21865704a49e5493c60cfc019c69d013f4d42879 |
| SHA256 | 2c0fd0b2f47e8cf76084f86e9a783b55d9b0f47e1f6abb5dccbc2580c2839ac4 |
| SHA512 | b8b441d925fa013734a812deaf4191e4d5a70ddc2e16b36ae739b2054101fd3d18102a53999fe98df502d4960368e1ecbe2713f4d29f9976b34b9e6b89f6b445 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 822daf3ca4179cc220f49189f785a3df |
| SHA1 | 6c86dace1adcee6b88e8217eed52ce01996e0088 |
| SHA256 | 5d5bee99bc134f47d97544eb4c29ef0385fb80d41bc6c6a0375fe782846744ed |
| SHA512 | a225a8eb478acf414a55ccc7daf6951dab0c6b01b3d83e7a02dead18f947cf680f3c8647c6781dc961f892d036806a2105fe018888e9ba370c9bc86a735e0676 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\pending_pings\f6431b0f-71b1-44c5-bf8f-2e58dde6867b
| MD5 | 8dee062852c1e166506dc79b56ebb569 |
| SHA1 | 77a170a8e15c7e6a6db8b04360a5486d51cb49f0 |
| SHA256 | c210fd4c926d6f5dad4315989766bd396e32dfbcc033bf6317fb6db10b188df3 |
| SHA512 | ae7c22bbcaa51367fa75889c871d5860cb59377d0d518609d1e8287ef50cfc85f894b9230cfb06058c6efdd7e23338daef354ae784ae5ec0e73dc75effc885eb |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\pending_pings\f1e90c69-eb71-4457-a7c9-fcb76be0d332
| MD5 | e1e6f1f6a7109d887c831eb57627393b |
| SHA1 | 59b0e342b34d5f7d6d478c54664eb0bdea410952 |
| SHA256 | e8d1b6c17a0ec2454bffba1c41d44ff59fa60a0c334bade0fb0225d499940181 |
| SHA512 | c730f1aa8fb9d7b2da32131009ca2c2a417878c1ea476ac996d1458250c01db79d930d028303432d0c06da1379139d7ef8f1b5fc1ff47c07feb1718b845a9659 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\pending_pings\d5f6750f-745c-45e1-91e7-a1ba17e0b53b
| MD5 | 335e24a9fd6b94f3d9be37a30d7cc5cf |
| SHA1 | 6030e8bb32e8b8c5aca5ec0811c34c184fd42db1 |
| SHA256 | b0e348bed883051bcf247e39160a3729af5fa17e43cb6e961e1ea63967c13648 |
| SHA512 | 7014997a2b0b5e98adaa2e9c7314254fef05c0bbe115ea00be70ce3e361a709c5f88fbd093a609dc5ef3d2f2c1dc5449901e747dbd821cefffe8d0df4b01ba26 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 451bd0e2f5cca59ff886a55623624829 |
| SHA1 | 081687dcfed17877f19808f47c3a6b0d732c5292 |
| SHA256 | 3e71bc1f71478cd04e547724a5c89055fc7b422d6e51b292d3da4682c8469f78 |
| SHA512 | 83217135d9af0ebcd8a151d26bddd9abd979d9b6a5bb5965f4148e6c7ef6b78bd7e46f771caf2842ecb10f1a7306b90db8dce4929767aa79f300c8d30ba16d82 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\a9whdnbl.default-release\activity-stream.discovery_stream.json
| MD5 | a402b99921d4145eebcb4181ab559687 |
| SHA1 | f34ea5fde63143fac51fea63dd4adea1ae64e9ca |
| SHA256 | 208d7df4a2af8d13d0fb5cf190fa86d119bb6ea9c7e6ff6bf7a2a43727fe6e09 |
| SHA512 | 639a8166461076120ae2f26010c753d5f052b23be0713e7c1c3bc4b255597a646b1efe0cb6460526cc994ec26bbad8c6a4e97d6a247882bcbe7585284fe005ff |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 100da85f610fea4468d891cfb2c5c804 |
| SHA1 | 7b97bcb4d32fee6b3182075160b42c13e3a5982c |
| SHA256 | 0d4b9afb2a1278f7f9fb976e5b377429b0e5b2750409d7cb16078b2f6ec429f8 |
| SHA512 | da11a4a54636204788731e7fe03760d3768868946829848d923c84362898c4fd75adcc7f17e11de17c40537e69e4b4114a6e25c753c40248504439a15ffc4205 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 20d91626fbb60bc5155b9ab85e7e69c7 |
| SHA1 | 45a21dfebef5ac9f09d537df19db94d2efccdb57 |
| SHA256 | 13a91c0b8793dfb89e16d867840175b0c608bceab3c5b08139cb81d481f3d9d1 |
| SHA512 | cd1e9e01d5aeb3e0d8e80fe93e00ffe56d69e3eb8567b1df5665242ae82e7659158131ba39d8847d31e9b2c176eb6d43b37c30e4f00fc216ce746e210cfd5397 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\prefs.js
| MD5 | 30949063270a308b7cc85dd3c28233a2 |
| SHA1 | a9407cfd74947b706fda30b98fc009f959c86f3d |
| SHA256 | 2fdd35868e02355f8a9a8b8ca1a46e8ddaca5649dc1615d985f56404e7298f88 |
| SHA512 | 6ea0cc5071456ad2b34baa2d9c7cbcfbc8b12518bdfe93cdd4639ee5523c2b5ef969f11005a222c547cc0d2ac4e21b24bab4da02edb2d5229aa7534e839c1880 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 777c0287e7e82394b3ede8fe5f40a5af |
| SHA1 | e0d554f29ee5a7d1eb777fae8bfc077768f18dc4 |
| SHA256 | d3776ec13ef49ef39e81ffeb6e9e029c6d749b6a43de002e4b2f632198ee42c7 |
| SHA512 | 6f8263da24b92ef0146ce7669ee84b35450e3211c7fc52f38f7fa67789e6c479668ebae31452bfc1eed58296dba17ca46bce906d6df4a4056631f1c7d09dbfdd |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\prefs-1.js
| MD5 | fed7b40ae36286ca05e6b114faaf1077 |
| SHA1 | c3df549c5040c916d4f728b5f8f90fd9fe69c836 |
| SHA256 | 80bc95d2b3605eae7c1b399c24a938c1b67458436f6e3eb2584ca55a9d48a38e |
| SHA512 | bb2e29a7e308668a03917b31cc3844b1985769aa044bf93b6e09d9cc3dd5a355667b330c9fb0e3068686837d0c4b59561a023c8bb10248dd10776c9ad8aa1a84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 78ddb6b38de9dbf68030ad4409cc90df |
| SHA1 | 1eedbab5a861757a96f8da683044b01f078162ec |
| SHA256 | 5f854194fe1740a081eefbc772702c25801f22dbae55b511f8926222e39293c4 |
| SHA512 | f8533655a63a4eea235b2b645e5e84b44ea75db0bd28dbcb4f9542fbc1a58c6532cfe9008b72ecd2ed7ddc923fc98b16c2a004a45d3006bc863bbdfd0d5f173f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7170314c276e4dad96788f0342093571 |
| SHA1 | a4ce85f6a1ad7ac9bb5147c6c82e571eb1b8697c |
| SHA256 | 525274da76ba77f18adeaf699b29a1969edee82ee0c20e3a0ed04232b211ee30 |
| SHA512 | 01d7d3bff7fa0fcf093b94ca003b5377be315f04685e79e8c2a89442ff269cc083fffc18aa7c9683ef4379596c4b4f781a83acaeb5825c0f972e48b96b65270a |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | dd76932a6942ee8a1d8120ed780cc5aa |
| SHA1 | b69cbc39db8cf8616f82d18074964b20fb9fdc2d |
| SHA256 | d3a18a4cbdab6d5c43b223020e3336f857523c979c30c71d36285ac080cbbd90 |
| SHA512 | 1ee4638249b9859dd351575f5b0a49e5d0531f2c348f59749b734459b57d183e7995d8817e81eda82cbd3302c3f662e144bad92e004b9b5ed99d95729183cae1 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon
| MD5 | 09372174e83dbbf696ee732fd2e875bb |
| SHA1 | ba360186ba650a769f9303f48b7200fb5eaccee1 |
| SHA256 | c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f |
| SHA512 | b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\AlternateServices.bin
| MD5 | 70d9c9df3c478e3cf15a8b71eccceee1 |
| SHA1 | e9b22bf118e7e1962e4f4378bcec7f6fc8a8bdd3 |
| SHA256 | 5593e5967b4bd05cea34b1f6c83d03dc49e1149b588ac1da73167c0ef9016d4a |
| SHA512 | e8c8ba8be1f124088f42431ce97093d1b43a9e258e43be2ab70f4689b369d65def3de976811ae0f8972a468adac9c5bfb84597457c3268615aa722514a682570 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info
| MD5 | 2a461e9eb87fd1955cea740a3444ee7a |
| SHA1 | b10755914c713f5a4677494dbe8a686ed458c3c5 |
| SHA256 | 4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc |
| SHA512 | 34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll
| MD5 | 842039753bf41fa5e11b3a1383061a87 |
| SHA1 | 3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153 |
| SHA256 | d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c |
| SHA512 | d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 6b4931f12a6a5c2bfeccf2533c7bdd56 |
| SHA1 | 2c75e572f1954eaa0946d5e9002f25cb91f4fef5 |
| SHA256 | 2d1695aa62cd2bd197cead38189e92bf4aa721f906175b24bfae8b79288b530e |
| SHA512 | 939ce43be8e91fed1c0ed8d0f9647496c2f0f8fec74ce5ade0fb500dde69bfa608615411b1694b2e848e9f908650cdfc1040be8377bb72b2437a0248c3df9ade |
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1
| MD5 | 0a8747a2ac9ac08ae9508f36c6d75692 |
| SHA1 | b287a96fd6cc12433adb42193dfe06111c38eaf0 |
| SHA256 | 32d544baf2facc893057a1d97db33207e642f0dacf235d8500a0b5eff934ce03 |
| SHA512 | 59521f8c61236641b3299ab460c58c8f5f26fa67e828de853c2cf372f9614d58b9f541aae325b1600ec4f3a47953caacb8122b0dfce7481acfec81045735947d |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\gmp-widevinecdm\4.10.2710.0\manifest.json
| MD5 | bf957ad58b55f64219ab3f793e374316 |
| SHA1 | a11adc9d7f2c28e04d9b35e23b7616d0527118a1 |
| SHA256 | bbab6ca07edbed72a966835c7907b3e60c7aa3d48ddea847e5076bd05f4b1eda |
| SHA512 | 79c179b56e4893fb729b225818ab4b95a50b69666ac41d17aad0b37ab0ca8cd9f0848cbc3c5d9e69e4640a8b261d7ced592eae9bcb0e0b63c05a56e7c477f44e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\gmp-widevinecdm\4.10.2710.0\widevinecdm.dll
| MD5 | daf7ef3acccab478aaa7d6dc1c60f865 |
| SHA1 | f8246162b97ce4a945feced27b6ea114366ff2ad |
| SHA256 | bc40c7821dcd3fea9923c6912ab1183a942c11b7690cfd79ed148ded0228777e |
| SHA512 | 5840a45cfdb12c005e117608b1e5d946e1b2e76443ed39ba940d7f56de4babeab09bee7e64b903eb82bb37624c0a0ef19e9b59fbe2ce2f0e0b1c7a6015a63f75 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\prefs-1.js
| MD5 | 23d976f2e10139e25ef6ece7de41deb3 |
| SHA1 | f176e13e396f31d443d673d1dc3326143502fc31 |
| SHA256 | 4021d7f57500fa8695084bcb01f19c23a64c69627ad6e1268874a12aea7fa1ca |
| SHA512 | e109738b994821dcf1c4c06c8f73d76d8f4cbcd88f06cfe82b42dfca7a7b80f9f68a57a987cc9914826539211ae3a2c58ed60c6ebc7ef0333929498f907acf54 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 95440ba697ba90d3cc4fbb318c8b3724 |
| SHA1 | 2b252d084ba7bbca402335f2395e0687e3a14d3b |
| SHA256 | 38401572f3ed8c60c80ae8e9d3cce43fce7ff1440c03f3d28c7fe2e22d8b37c3 |
| SHA512 | 1121a09f1a668eb4901d337fc6c9fbd9abeee1943d09675eff8d142f88c8b34dc08daab4020a90a939e5c8507c264d21643c4f69973fdf6cecb6d584e46e2be2 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 083de1bfd1b25cc41e58cbc2b3df018d |
| SHA1 | 1b144d4518df7914c0b827e51696270af2ec2e92 |
| SHA256 | a484d4a07077da8ac43dc90828a15fa5b49a6e507d52b77178c417929f3687b5 |
| SHA512 | 54fd24db7aecb9938530650df3e9bad6e8408868fb1d86ff58e8fcc7b8ed60aa1dca88929e528d05acd1a58557891b974580c9945aea05a546f1e4df2cdb7442 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\a9whdnbl.default-release\datareporting\glean\pending_pings\80d87ea3-422e-46e2-8081-f324f848426c
| MD5 | d3bacc569518c180b480ed55f2e705be |
| SHA1 | 6a092eda38d769d239cd2d89532256dd1eca2f61 |
| SHA256 | ff86b426ee4103a782ba9032fb1662c0d6a932eeaaaad990bfad5e2aad5c7038 |
| SHA512 | be18a2be816857b18ec0142f0cd711d97d5561e6ec5442af02365727e3ce9b18d2c2f302d4ddd2f8aae24a5ca0a4207772c746558bff859a7ca6592c6939ac20 |
memory/5492-1217-0x0000000000B22000-0x0000000000B23000-memory.dmp
memory/5392-1218-0x0000000000400000-0x000000000044A000-memory.dmp
memory/5392-1219-0x00000000055E0000-0x0000000005B84000-memory.dmp
memory/5392-1220-0x00000000050D0000-0x0000000005162000-memory.dmp
memory/5392-1221-0x0000000005000000-0x000000000500A000-memory.dmp
memory/5392-1222-0x00000000066B0000-0x0000000006CC8000-memory.dmp
memory/5392-1223-0x00000000061A0000-0x00000000062AA000-memory.dmp
memory/5392-1224-0x00000000060C0000-0x00000000060D2000-memory.dmp
memory/5392-1225-0x0000000006120000-0x000000000615C000-memory.dmp
memory/5392-1226-0x00000000062B0000-0x00000000062FC000-memory.dmp
memory/5392-1227-0x0000000006420000-0x0000000006486000-memory.dmp
memory/5392-1228-0x0000000006DD0000-0x0000000006E46000-memory.dmp
memory/5392-1229-0x0000000006600000-0x000000000661E000-memory.dmp
memory/5392-1231-0x00000000084F0000-0x00000000086B2000-memory.dmp
memory/5392-1232-0x0000000008BF0000-0x000000000911C000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies
| MD5 | 130919a767c5601cdb0ea3a1a6669c99 |
| SHA1 | 0bdbf9bddeaf65daaa111a9640b45a05b94e0c1c |
| SHA256 | d839f4c49c7afa12f2f52ef0d26037fda860e78d42cdf476e9e789d26061aef8 |
| SHA512 | 0d496c12bcd70cfd1297c0e6d2808bdb6bc4ccabd37f3394d2cfdf5434131191d07e7b514dec5443a888f9486b1fe7dc402493676bbcb97026f1ce97a3690b60 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Data
| MD5 | 26222ab612fe21cb4e2c32a94564935e |
| SHA1 | 4e61ee4f623996afa038452ac782bfc061afcffe |
| SHA256 | 4bf19aae4248487a6f4bfa04d1e7c8033ab2d0246b0a9818770ac3aaa0ac3fa8 |
| SHA512 | 534074b4db21ae31d94e26592f3ff8a397db3bd319a14e471c44abadf212777cfb5a3415c38012a39a2a498cfb80859162bc51e6f7a4815ff47833d0616e6fbb |
memory/5824-1237-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1236-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1235-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1241-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1247-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1246-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1245-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1244-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1243-0x0000027068380000-0x0000027068381000-memory.dmp
memory/5824-1242-0x0000027068380000-0x0000027068381000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version
| MD5 | aaa1d3398c11429309df446cc70a4b24 |
| SHA1 | 426037d880450cfe67c0db4e8836d8cf67c3af33 |
| SHA256 | d3c5bb416732a0643cb435ce980e4cf7ed0d96375d6d1d866565ffa4cf5f4e31 |
| SHA512 | 5400a74ad59ee80e11b97e884bedee53af567520b807e4c3c43b68446bb495a967e22838aeee4bfbf02486ec5abfb2e821c5165ab2b894a54e0d7eb70c7355a9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db
| MD5 | b48cda5d825a709e8ccd1eb873e53210 |
| SHA1 | b8b3e71aa4f27a998a15cd1b6e40eac18d5147af |
| SHA256 | 421f26974a1696944a5c1a11e1aa051684db1ab5beb2a5fc7fac30c5f6b25c9c |
| SHA512 | ab32479da1b6c4b38423d3851a080177638779987944b421ad289dbf2b13adb7b7a8617b077d478b025b5a66361b6b91715e6a30c64e9db5b0684b72ec377e29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1
| MD5 | 32fd511cf713dd88c39d1c11210b2b2b |
| SHA1 | 0309d476491f4f3e4ba36043530b9003a9e5320c |
| SHA256 | 610427a6dab7fd0e469a171ea2c4449e6a49d7ce9f02c26708b8c6781828f16b |
| SHA512 | 0a548e3771a73599c7ae929df0dcce0aafd3fe5ada46513bd47fda081c59590e1270ea3d188f6e7c471a5bc9fe793c9add2c26e6754ff995561d4a19fa9a4e4d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c
| MD5 | 966badd89e33ab5b8465b20755f0e2b6 |
| SHA1 | a5374956d64ff48ff73821f98038cc53dc76d2ac |
| SHA256 | 00dee0d95fffb358676231d9df7645dad2cd20daccaffe557f8bd4b34de663bb |
| SHA512 | 0ab48fdf1d19f827529581b399f8a2f78a3c881756cc091093880526f824cb8613eea79f1e991bf24802086c6e62ff9dddae674ad1912d239c195c62c75e5be3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b
| MD5 | 7b9cb0b6c9837bf7d7529689f6b1af8b |
| SHA1 | 18fb7b11ce3f7ab9bc9b339c3bddd0adba256ac8 |
| SHA256 | 40bcfc603a1d58a67b524342a9d2b2cb327c54e96dcbeaf1e25b490f7d9243b8 |
| SHA512 | 2e03cb144295410dd3e0515db2203b2d4d7c44196c5776c98563fe9f32071a6c6319be03c3f98a508587778beb0a0de6d8adf95e8b3dca20e35e7beb71d7b2d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 279a08187fe6dd2fc9af819e4a104b4d |
| SHA1 | 9d3cd1b396cefa97cd2de96a327da6daa457950c |
| SHA256 | ea3b8ac34dd2156a5c83cc7d282db609ac01c87e45d129839630580e7cfefddc |
| SHA512 | 9c19e345474f6535253fa4c6ff1a230069752b7c34141924a90c1c54975c26759851cd618d10af601c3b169593b935364fce8b0662d3282ef4520e23c3b0fe37 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | addbac3228beeb9b91c6c82ceb5d0927 |
| SHA1 | 56a4e1fbe3ebcd9ae8a3d9612716675f5a7792d1 |
| SHA256 | 22911a92291696a97bd934b37bcb65619dee3548cdd887ab32599e13ccb736e1 |
| SHA512 | 280c10dc7db1e162234e22e0c922db6939c8b8cb4b12407601baca8df5b762ec9b3866008abf57a3f8c8c0ef9ebc8a8d2e20e1f35187bf046657efcf92c32515 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | b8184091f7cc1915a2050398c47de307 |
| SHA1 | 5b5e7e462641e4125822907626e2e2b0f18a96d5 |
| SHA256 | a22c86a659485ced77346552e7153e1cbb64f248eeb27d6917d066a05157e7e4 |
| SHA512 | aa64c7a6da1fb2f9a2543a10f79adb2c5f9922ddc9ac1369fa93808b3be54e64bc45869d90dcf30b76a5aad42c3f0d7f7318475e60d1a83295f20085790322d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | 6414dbb9e1c9fc5e8e095df8fd3c0d2c |
| SHA1 | 497b8db482ef6bf584e153b76348b650ce96ec30 |
| SHA256 | 60a0cf619691ffb386bdc313a981419498f7c2fdfd93ebf7d0095b0147312d81 |
| SHA512 | 8bbd0a46590fef090e24f668e64e19002a4e3ecc024eb6576e58820a78c9b86c52bda5f31408c2dc072902fa2031e073d4b5870b83568ba710469c42e0c502e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | 1d26b2a9903e70ef365ee7c4f170c4fd |
| SHA1 | d686ab36d326a146d219d497183e48b90f5a1a7d |
| SHA256 | fcccff7aafb9b04ea8ebb1f52b8ae4be471c96f208dd470e1a2f40b1f6bddbcd |
| SHA512 | 44d4e31c206d6921e8ace3a83a1096c6f96d73241794742ebc1697449d1103ffc62ac4616ac940e954e7e52f9cd5155704980f94a27f19375435e4130d017c12 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 3a3cf52f53f8577c78e66bfc15978158 |
| SHA1 | 324b5b2c607239df8cb04f0f44bf4e6656ff7840 |
| SHA256 | fc5baa051c20114c21a63f276e7eecb339e139dfc6096ea8acde15c60ad6fa3a |
| SHA512 | 27e461c76cbf8313ae24358658a5acdabb278470f7147e4423c5e268bcdff70d8eaed739d2d310fe0ddbfbdd5ccdd6e3c77735d87250fd4d6284fccf8f885438 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 5b930eab3067663e6a741af396cb830d |
| SHA1 | eccc5387f9bfe4670191fbf44e7a06ef9710755c |
| SHA256 | b8e04c5dbc18a4c58ffc243e7692fc23308328b1ce146063376609ef07d0c34c |
| SHA512 | caac24b58acb883c1bf0dca9063d01b0a54f059fb50442d38218156b73d21e8f6dd0e226a7aa013b43db91619fcd3d04faf22985f1ca5afee43213dbe8e13c65 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | 7739350f11f36ec3a07b82584b42ab38 |
| SHA1 | d97e0e76a362e5fce9c47b7b01dab53db50963d8 |
| SHA256 | d84e9971e8c344b9ff5a5968e7252270757f211f0d408e26c12693729068ed75 |
| SHA512 | 2cb436985e382ec17390a1f8a7c112bdf18206c66d845934a14f9c84781200828e05c57cef5d4128a9d9b96778042ecb7ba2c031563c78ee9b8ec41accf8a537 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | 31527d26d2caae1819d8d8ef0b50a693 |
| SHA1 | 4cd3ff01a2ced27cb8d90132da6b6349ce54291e |
| SHA256 | 4196d51f71ccbc4d235d34924da7db90348de6b816c9110d48d02a11d83371af |
| SHA512 | 07579621ac873ce4919ef3f8f9c8d4e335c38c7ff6945452e5a45c957049270d7fe520cb6edd9f23b91998da3ed36e4b862be223823326b40360979e90d2c196 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f
| MD5 | c82fbaa7e5113d3ed2902a3500ec8631 |
| SHA1 | c9b4889980899c0f2aea9ac8d0bae28b59e6add3 |
| SHA256 | 4f4e25ef0961b656039ed8628951b5ff6c0a197f8866374b5937e182b12ff278 |
| SHA512 | fc3227c51b9bdcf0917b040aeaa925795e153c7a78469b7e1c87717c1664f46208e5fc3e413f93724ef0fa94aea655db55f04c5a61dda0df737c25b75393136d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 063fe934b18300c766e7279114db4b67 |
| SHA1 | d7e71855cf6e8d1e7fbaa763223857f50cd1d4bd |
| SHA256 | 8745914e0214bcd9d2e6a841f0679a81084ef3fc3d99125876bee26653f4253e |
| SHA512 | 9d0dfc21306b3a56c2ecdf1265392271969e3765e161e117c8765125b34793e24458217cf6514b364f351f47e65baaaf5856be0d13406a789f844d6ba8c7075f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 18cc2d7df048032243f5f60028471e32 |
| SHA1 | 0fa116b526c3cf9f6853c7f687e7e3776bf9d4a7 |
| SHA256 | d3bf4744666cc0b99f24f2769f0018027217fed7a2e18cf13e75c83c8fc569dc |
| SHA512 | 2c1944efc5afceb4bf652124e4a9050aafa322ac70435221b57cf7c2e2b2aa21053ba38eb57bbc78f87877bb5b8580c5aa4b22210aea92e9fafd65eb06c2574a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 6861908211ccd069d674c208aa8a49fc |
| SHA1 | 7be8f854cd633fd6cc299ac6e2246d79314e008c |
| SHA256 | f2541e1b3ce87f535b10372967cb4c2fd17aeaf5526925c3a0704e54a067c0cd |
| SHA512 | 0a53a59f16a4ea8ef53652b076cdc2cda9488a4df2f4c962c939a66fd20c46beac0a78661feb8de98c474f9c61938fd6dc53eb6e5a5dbfaad07d12311a87a821 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 8278023fac368f67d8b83512b48cf0f9 |
| SHA1 | cfbb90dea9e8a9df721806c7d49eff44166b2197 |
| SHA256 | 1e62f0399a3c5a499b3c93622608d15d3948c3c335359bc695bf3522b03fd48d |
| SHA512 | e04ba7a9402379c064bf5707a5fbe3e5ea6de978b1ad50d38f9b30bef47dbb761f0f8461de8cfaf7c33779dbb47fcf4df7fe387d12fbbf899f7530f6f63a340d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 8b36b954e5a8947dedbc720664fbccb7 |
| SHA1 | 0310a60a8bbd7ac385b6e94aec8dee9aa05a6d24 |
| SHA256 | 069b3e224154172e3c385b5ebbdde887253d596776b74b9fb2a326b875fb718e |
| SHA512 | c2827251585fbb5e24bc38ef58822e8892d952c6e2a90743453502254550384cfcc9789858d66706c86f51c483fc28c23c796ba6285747689940460402b30f29 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | 08c52d32b07f67938f6f6a4700a80cae |
| SHA1 | 0987ca52e05e167c13b290be32e27f1f47acb936 |
| SHA256 | f57af1d19f2ada9f86cd5e2148bc74f4cd9e13d35d31c1c34ed08b78abcd75d1 |
| SHA512 | 932a8bacd1ea06d10780906f2851d4edeee107770b4809e1cad0ae85b322cb8baeb57f4c4e817b6b0e9b13c8f63a5659c094c1180b8965f17beade4b0ef042b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3
| MD5 | aac5fc300959a41c38d3c09b40868a63 |
| SHA1 | d634a0df422f736189c9c489bbfdb101b43c93b0 |
| SHA256 | 8f416a1b8b6a5ede967b2c40a235b57aad9bd973d0cec3c156d9f676416353ec |
| SHA512 | 17a22fc740510e7ef3b7351c814d0321e7c75b633ca8e17b15e71b4e03f027e89fe76733905d845f7ae723631f8267a1aa591f16fa0973ffa3d274fc48637920 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2
| MD5 | 1405a82106f96a230edc46cedd0bee1a |
| SHA1 | 32e7e7d73e28ae871a6fe7bc488ec2fa1bbf4fbb |
| SHA256 | 8e5af47fd03f6ce3a88b24edbf263b920a9adeef434a2034a157c75a849ad29f |
| SHA512 | 0ce3c3610ab6e7dacbcbf93a56caa234be7b8ca529c12ed005ab8cf5797fd3639616b875f47003baa490453346815eb8471a4d44069af9d9700d75f9dbec84fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0
| MD5 | db3e67b5aed0dba7d037b09005223601 |
| SHA1 | d106ba7ff6d9313890dfb4fcb27a02a8f27a17b2 |
| SHA256 | 4d3227c90cc70716edec75cbaf212a8dc9978d8e93a312aca19871d115f35663 |
| SHA512 | bbbb3d64cdc151d999c85489c83dc9c0490b0577f2c034829d9df90da77d5047a9db26b759cfe3c9bd60ca7e013c5f602bd1726bbd8831f1f6835324050cc887 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links
| MD5 | 63472acd1e498ccbfd841921e9087e0a |
| SHA1 | 26342b39d9106004a1b32eabd1ff25cc55ea78e6 |
| SHA256 | 03fe5a2261ea6cf33891516588c8cea877e407c607208078e0dc2b0d2a18dac1 |
| SHA512 | 391e3cbd9cfdd35459cad843bbddd1e46ade0c2d59e86bb2d87a2e0b1d5d078c593b13cf61337df697b835486f4d987006e49d06515980ec364844c9534ecc5a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons
| MD5 | 35b26868b437a813109bb2499dfc240f |
| SHA1 | 4b2abfe8cd6314c84b93b9b26f0699e0f94b5387 |
| SHA256 | c9fd9365466482cad2073f9a0924e0b85f77d2f6e1c002da8154ee8930616782 |
| SHA512 | c50406a5fe4b455c70f038865a92169e09a6f95a690a529934fe89cebdf10e5edfa957e381f7f274cfd6728bf2e5929b8e2ebd81b000c31e601ebd0950293d77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History
| MD5 | 37be842a57ce9118728315b8db5fcd80 |
| SHA1 | 6b639d73c3279e7c8bcff4632b5ae94414aee325 |
| SHA256 | 370c075aa09e04639fc6852bfc51db8343e61ab103f152042931d380cc00c535 |
| SHA512 | 53449fd3e3f137d2ce2d745ca72d461bf29a9a7aa4047d90f324e797b9b5f93a679602d70842c3473152d443f3e4d83a6ef4e2de2b820086a081f60e8227cb6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG
| MD5 | b7f240de68d0c611a80664dd1c3e81aa |
| SHA1 | 5b5d8baaea209e4fc2391352fffb148266741428 |
| SHA256 | c36b7464f0f8c3a9f72b8a5a343716b57815e41b045487fc2d6faa89fec5fd32 |
| SHA512 | 8ccfb7b1392f8a17dac53a9e09b1e3b0139da86f7a3825c4a6f42c4a725e7f0ceca2e079a9d6e98f068a8e6b3e555bb1298c375c2e95a695be99bcccf418e50f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | da17cac17925f6bdcdafbbc584f844c1 |
| SHA1 | 4ea27782cfb7f24295b5cbe097d880416e4775b6 |
| SHA256 | f10d951a632b46d81d1091c474dbbb86955d01b57d1bb0fd65478cceea4cec46 |
| SHA512 | 4aea186c989c59be6a12bb103c65db62441f8899f67aa92b3aed5f0e6092cfab655771a398109fe9c642338757619987801d48b0b145fd8616669e09fd54b2d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 88e02bfe1c38dff967d5183aa4a54576 |
| SHA1 | d0dc1be9689d7b941c41496f3e876a6ca2813e6f |
| SHA256 | f522b8b901f973c4a6e18528b6d87c263f763204603d8863fa805aa4009c6bf2 |
| SHA512 | f8e90efa49681cf28443227d5a360fe5bc8f89160b236752f0acc391bcad138e7d4d1111f85fb126a20141508be1eaaabe6d4167b2784dda0af6105f631e62bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 888dd609924425f5b8b592d736a696a0 |
| SHA1 | 3f68c1d4caf2120942c2b1ff37b40dea1391b246 |
| SHA256 | 865e84448fc50e80a49a417df1a872bbae8164a722209e6e0d8cade92d97f750 |
| SHA512 | e0abf3168a48307d294e1847ddd34732b730d94ea4d11c7a02bf31ce041fd9ea9f94c78ad04651b6bf80e6f3047c4a1ca1e17049f766d6e307919c4a76230305 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ad329bf811c30b6128a0a8a47c95a3b5 |
| SHA1 | a4ad4bacf00b9192184996c25772a2f4d057a74c |
| SHA256 | cc839c7ec01c5f478e788bbe172fd8de00340a24541170908224e16fd0ac036f |
| SHA512 | fdf97729a695acbe4143ac70c33defd2504cc817e822c94e35ed789ede1919c4203e9b036f4d3aba99232f19066e0a2193369558571085157ef428154eb86b55 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | b01918f3fecc9ee92b18c113310e58e8 |
| SHA1 | aac75222e809ca5db13d48e323b211f8b8f5fa39 |
| SHA256 | 570b3ba8ca837af182f6e144ab7327de0390bde10b6c98a2b6d862105032f6ff |
| SHA512 | 22c9e229d9dfc6b70dfd056ce9efc4a701f9b407ffe179ecd5d6c8b27f0901bdd83f5c9df0ef16959cf112fde05a540eb579f90b1e2d40699b6deeea4bd99fa9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 80677bd7b635c8c6cb0dd37a034327b2 |
| SHA1 | de0264b2c7210a3a27d43aad5bf706cebeb41a61 |
| SHA256 | 76de26564a5496f069f6caf7c93029a6616cbf697ba078e3bd216145fbec659f |
| SHA512 | 0bcd30ce19d8b016572a9cbd69f9434b45d5e310c0400c4e8c3d73663d99f881abfd2fcbaffa648136b805371b21d945021d97127242d07830a56f8820c577fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7fac49be3e6d72a06114465a3176c857 |
| SHA1 | 56d4dffa9cd3150a67d18fb0da97ef237e50702a |
| SHA256 | 416883cc6cafa9b420546268d9fed1a0a194e5d0d3aa4b965f1d3cd55aebe826 |
| SHA512 | 4496687769e28f70bc85bcee4196903ef47787f863573ab3b441899a4fa3dc17a2b318026bd5b1a35d00214fbc91fad3b0f466dc62c5c1cc44a3e5c25cf27b93 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ffc3221cbfe1034efe7bc1fc518147c5 |
| SHA1 | a38d0109c5ca696867de28de867916dcd6f16054 |
| SHA256 | 55a850d31124dcce0d3627e0735961f78eaf9191467926f6aad4a11508587153 |
| SHA512 | e022b267564fa307aeecbab5c46fc3525adc8fc4eb0c16ff4f94d2990415ed0e95c936b27b7b377194f9b319dac35561b783e458b000060c14f783b8b1744678 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3353d543f78c9039bb02491e3d51fae2 |
| SHA1 | 5ab21242669df97788678df49411758d049870a1 |
| SHA256 | 4252e25bad52d0ea36d7eff63a7066a63afd5a31c15d23a51cbab88f8f31a2a1 |
| SHA512 | 1c94ac4e9878603135c6d9bd93bb6e8fa02311cdb2e080ce419b48bafc6c01967acc34a35650c5293953fd6798e11cd8aa634c67cdc2a4f94e8413cf149ae0d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | eb9eb56a8ed3b0f2d737a28fe721ec74 |
| SHA1 | 4390d82f34556b41deb43a1b7f29335360d53a62 |
| SHA256 | a9c91e17e652d9d28df5759559f93ae00a7b235d68384675c8de696037b41d78 |
| SHA512 | 640431b8e859d00e6bf048434e28c752d5e72aeb424d14dfbb710154f16ea3f70a96f88d7a7035a694cbe3612afb3a6682b074a4774953e26331dfa070f640dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 27dcc0d1caf223abbee893d4742736e2 |
| SHA1 | b9c6b3e86b38da061a237635aa7ac09c0d6b83cd |
| SHA256 | e16dc220952b0734303dee324ae449babc168dafc8a4d4615ca496003fc20299 |
| SHA512 | a84e0e764cacac44db42e67a21dc98e1e5424ad46de4efd4c9b2cdd69f4d9b2c8c518ac62629757d466e51d7a15e5f1b490a246e16a6784fc1bac79e1727e983 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 93226754d1d0d40442de4ef5faea7315 |
| SHA1 | bdd14a0db14a2dabe9350b3cc988a58fffda801f |
| SHA256 | fb6f5f59a4e948454933512cdb6f7b279b7bc85955b781f5278fd1d0c6c8c3fc |
| SHA512 | edb65f67d679116c48abfc8ba5b1c2d7065112867c06216bd6983218c8ad9cc770fda620d1035df08b17284b8714c97bebf5d69c00a4b135cda8172f2b1cb6dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 69416881010c256c830a9ca919d221e7 |
| SHA1 | 5114fcc9d31e19393c51ae87a28bed6b1de3632f |
| SHA256 | 586cdaf72d049970f271bd1f6076263cbacf2fc0a0c2c1819a55d60fcd340e2e |
| SHA512 | 8ffa9ba243a0831e0c1fba03176bd1e1dc0c45ddaf56a2c18a244f43f26fa9bd054c77664eedb142232605ec1e854bba6aaf604122a19936f651e596594aa997 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a526bc490a193b299a4be0fc7887d334 |
| SHA1 | f86e14d6e8877a0ddeb35ddb64c1da26415ac2fc |
| SHA256 | ba6e31f46ebcf629b1f8d5a51af971de36e7d987f60feff571e7f3feae793c8e |
| SHA512 | afa52c3bb13642159325ee508c50ad2b4e5060d23d4b26dcba8a068459f6401e7d67ec41978cd444fb1d2f52f82e2c418f53363ae69b8ae7e6538c8033008839 |
memory/4924-1721-0x0000000000510000-0x0000000000518000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e391f031b09fdf6b9c3b6ce13ed0dcb0 |
| SHA1 | 99a76412f45c2c7054be50df98e8ff0415925d26 |
| SHA256 | d232bb273c52e186c211f47eb14cf70012eeb1fff333ba80a5b937452ad32665 |
| SHA512 | d63006dc4506d7a4e31fb4093be88ba96e4fd16d072984f466e8e7ea071328c096dbb707149ea1656697fd2d176fea8407b32c4dcc141e2288f78b30871313ec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 269e20da4f6fa9b6d7131077579395a0 |
| SHA1 | b633c0a88a29eebb15d6abe9c23e4a4d8c4a0caa |
| SHA256 | 2d70d8b91be453232760777e965a9949a624bb18b82fc34088566ded61d913e1 |
| SHA512 | aa3f1cc850fa9da96c3d9e66acadb710f084070ed5a8a7b4b402faec3fbb4b17cb0adb54197392b7cc966de481b50aa338e7dd762c481c4d9880187fb2989087 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | bea497eee6754a449992a17c15e73383 |
| SHA1 | 3d590a7a0f71abe2ce14f252b8c4090af33720bf |
| SHA256 | 7e043f76907e0edce962bd3611be6059157d6692daa680a36dc125a34ea7d2a2 |
| SHA512 | 20b372a2c15aac8bdb15eabb09f265bc4f3eb2f52a7e4ebc4489e845a6dd6ef0115badad89c0af358d3ec3f60835d221d27fe0b0c14a36216ef3489bca8b4bcc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | efc7de4f81e1c0c42126c91a1057a699 |
| SHA1 | 7596ddc26be1d90cbdd7b9498eda7abb5b06ecaa |
| SHA256 | 9af61b2216a807a7981a46e618df90f8d294552fb9140a19ae718e52d6c24e05 |
| SHA512 | 73d6938f716633d248eb3a950fb76e97c01e72f72a9482ed57186e0a3b1c7f4e016e4c0c58fdc25a431e50f78f379d2e8708f90183dc01d4a2168b09cb140882 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e66fcd98f74a2638f6794da4f6e22cd5 |
| SHA1 | 81446ca70b10acb0dfc67a60d9524cca9db1ec81 |
| SHA256 | 9a7c34896f662302540228adf2793e4ce141ddfc1f5d096b26e2f3c0980f508b |
| SHA512 | ab7163c8c3f2a1e3a4d5adeb7badfd27fe9275517b40500a0badf0c4236033e15670950f6c2f0d4211f3b6395927ca01cc2e8ad8007327f10c34eec0107aecb6 |
C:\Users\Admin\Downloads\Git_Installer_v1.4.6_latest.7z.crdownload
| MD5 | ae7817ac8896a9c20b6eec678fc7c0b3 |
| SHA1 | aa41986d93e2ce5121d1bfc83a96864bd30ccc01 |
| SHA256 | fb3aed2b0f9854632be8a3b2a428de6ce05ba99441502aeb74c5cab29c11b099 |
| SHA512 | 52283ef467ec108a3c3d2c3df15f1952ccc9243c21ccff949f4c219f5080de141b47f832ad75257ded33ba4197fc742b5912ed92390095ef73196eb2ed1ee83f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 25d012c8e2d17d593b2e055e15a0a4d2 |
| SHA1 | fb86f64adb9fb016b2fcabb1dde5c2ad978bac61 |
| SHA256 | d2845b5ffba1eaa42d3095f8e52d4398a657cc6a925d1da8ef69d5eaf7811dc1 |
| SHA512 | a0a3246788356403a70085c3c3266ab8b4dc4d95b1fbbfe4c5988398fa361d087c7dc8371015c6878bd9a34523aa4e3e1e9fbed9532a3f7c2bab278360e35e08 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | c1bd6e9fece7e98a08ea3f8cb9902332 |
| SHA1 | 6924b3ca3aad4f7f15181798fec9ac780557a158 |
| SHA256 | c3e0c3b67b5a52e12e57de92b6059c3d2caf0606b20e8978d6c0e6f719d88ddb |
| SHA512 | fe88be37263ef0d4a03d267a2ee967426545433531d558da5823a3a42346849d9a9bd603e1b9e81974396d321f5a0f9c82b001afa4e4137ddbcd5e2cc02f353a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f41c47fe26bd99d8e47ed5608f064427 |
| SHA1 | 61778ffea80bf2cc8126f484da197c95b3ed5455 |
| SHA256 | f9fa7118debac866aded0c3650fa9197c29a2de61c6abda5e9a16334152b9318 |
| SHA512 | 3b014dbcc5e7d68046664f9be4d7d66f85209e98db8bb03fad15a6fb4590aabd3163564a598dcd4ec7a02e157cbd7e19968511d669a65163cc3e0c253bcbda6a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1313930efe6f184e53bd26c95cbd1a94 |
| SHA1 | 0b00313d1dcc9a7aa1afcb2fea1617f7484e6bd9 |
| SHA256 | 6c385e2208e34620a69acf23b27870134abccdd3721aa2f2e720d9534b7f9e34 |
| SHA512 | 5bb29c97b2e4f0fc16b080b608ea79954f7315c8879d6e95420388bff7e81ec6af6fa855e6582362111adec802daef8a1c0950802c315dfc2ace8f65542dd4ad |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
memory/4916-1897-0x0000000000400000-0x0000000000459000-memory.dmp
memory/1924-1898-0x00000000005C0000-0x0000000000641FAE-memory.dmp
memory/4916-1899-0x0000000000400000-0x0000000000459000-memory.dmp