Analysis Overview
Threat Level: Known bad
The file https://downloadtestfile.com/ was found to be: Known bad.
Malicious Activity Summary
PrivateLoader
Downloads MZ/PE file
Loads dropped DLL
UPX packed file
Checks computer location settings
Executes dropped EXE
Drops file in System32 directory
Drops file in Windows directory
Enumerates physical storage devices
Suspicious use of SendNotifyMessage
Suspicious behavior: AddClipboardFormatListener
Checks SCSI registry key(s)
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Enumerates system info in registry
Suspicious use of WriteProcessMemory
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetWindowsHookEx
Checks processor information in registry
Modifies data under HKEY_USERS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-10 15:25
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-10 15:25
Reported
2024-05-10 15:35
Platform
win10-20240404-en
Max time kernel
542s
Max time network
549s
Command Line
Signatures
PrivateLoader
Downloads MZ/PE file
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe | N/A |
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe | N/A |
UPX packed file
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_768.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_custom_stream.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_1920.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_sr.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_1280.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_exif.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide_alternate.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_2560.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_wide.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_96.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| File opened for modification | C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Explorer\iconcache_256.db | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\rescache\_merged\4183903823\2290032291.pri | C:\Windows\system32\taskmgr.exe | N/A |
| File created | C:\Windows\rescache\_merged\1601268389\715946058.pri | C:\Windows\system32\taskmgr.exe | N/A |
| File created | C:\Windows\rescache\_merged\4183903823\2290032291.pri | C:\Windows\system32\taskmgr.exe | N/A |
| File created | C:\Windows\rescache\_merged\1601268389\715946058.pri | C:\Windows\system32\taskmgr.exe | N/A |
Enumerates physical storage devices
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_QEMU&PROD_HARDDISK\4&215468A5&0&000000 | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Windows\system32\dwm.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\ConfigFlags | C:\Windows\system32\dwm.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (data) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133598283852988582" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\AnyDesk.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://downloadtestfile.com/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ff978cb9758,0x7ff978cb9768,0x7ff978cb9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1588 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1708 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2108 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2904 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2912 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=5176 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5540 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4988 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=5664 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=2976 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=5556 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=5348 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5240 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4932 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4688 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3048 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5544 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5416 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5620 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=1680 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=4976 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3004 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5820 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5856 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6064 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6268 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6420 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6832 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6940 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7084 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7164 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=3736 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=5276 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=1544 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7112 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5868 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6740 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7480 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7596 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7740 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=6468 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8296 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=8572 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=8120 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=7232 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=6764 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=7400 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=8352 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=7224 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=7236 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=6736 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=7264 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Users\Admin\Downloads\AnyDesk.exe
"C:\Users\Admin\Downloads\AnyDesk.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9304 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Users\Admin\Downloads\AnyDesk.exe
"C:\Users\Admin\Downloads\AnyDesk.exe"
C:\Users\Admin\Downloads\AnyDesk.exe
"C:\Users\Admin\Downloads\AnyDesk.exe" --local-service
C:\Users\Admin\Downloads\AnyDesk.exe
"C:\Users\Admin\Downloads\AnyDesk.exe" --local-control
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=8452 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=8308 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4376 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4480 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=3112 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=7844 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=7820 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8900 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=7916 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=8596 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=7180 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=7784 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=8584 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=5716 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=4624 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=8908 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=7236 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=7276 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=4696 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=7200 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Users\Admin\Downloads\AnyDesk.exe
"C:\Users\Admin\Downloads\AnyDesk.exe" --backend
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x2ac
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=6944 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=7892 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=7944 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=8700 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=5856 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=7760 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=8252 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=6944 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=4592 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=9532 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=9720 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=8440 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=7368 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7840 --field-trial-handle=1840,i,5943801458671847287,13664280053533529508,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe"
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe
"C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\irsetup.exe" __IRAOFF:1905626 "__IRAFN:C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe" "__IRCT:1" "__IRTSS:17090042" "__IRSID:S-1-5-21-1739856679-3467441365-73334005-1000"
C:\Windows\SysWOW64\werfault.exe
werfault.exe /h /shared Global\1e2743fbce604f9eaf9dd2b589e3fa6d /t 5964 /p 3900
C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe"
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe
"C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe" __IRAOFF:1905626 "__IRAFN:C:\Users\Admin\AppData\Local\Temp\Temp1_lndl_tlauncher-2.72-installer-0.6.6.zip\TLauncher-2.72-Installer-0.6.6.exe" "__IRCT:1" "__IRTSS:17090042" "__IRSID:S-1-5-21-1739856679-3467441365-73334005-1000"
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Windows\system32\dwm.exe
"dwm.exe"
C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x0 /state0:0xa3aa9855 /state1:0x41c64e6d
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | downloadtestfile.com | udp |
| US | 104.21.92.8:443 | downloadtestfile.com | tcp |
| US | 104.21.92.8:443 | downloadtestfile.com | tcp |
| US | 8.8.8.8:53 | 8.92.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.downloadtestfile.com | udp |
| US | 8.8.8.8:53 | singapore.downloadtestfile.com | udp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | tcp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | onesignal.com | udp |
| US | 8.8.8.8:53 | 145.160.16.104.in-addr.arpa | udp |
| US | 104.17.111.223:443 | onesignal.com | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| US | 2.18.190.80:80 | apps.identrust.com | tcp |
| US | 104.21.92.8:443 | downloadtestfile.com | udp |
| US | 8.8.8.8:53 | 223.111.17.104.in-addr.arpa | udp |
| US | 104.17.111.223:443 | onesignal.com | udp |
| US | 104.17.111.223:443 | onesignal.com | tcp |
| US | 2.18.190.80:80 | apps.identrust.com | tcp |
| GB | 143.244.38.136:443 | cdn.downloadtestfile.com | udp |
| US | 8.8.8.8:53 | 80.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | speedtest.tele2.net | udp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| US | 8.8.8.8:53 | img.onesignal.com | udp |
| US | 8.8.8.8:53 | 77.190.18.2.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| SE | 90.130.70.73:443 | speedtest.tele2.net | tcp |
| US | 2.18.190.81:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | 81.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.178.4:443 | www.google.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 216.58.201.110:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 4.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| GB | 172.217.16.238:443 | consent.google.com | tcp |
| US | 8.8.8.8:53 | 48.229.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 42.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | anydesk.com | udp |
| US | 18.239.208.37:443 | anydesk.com | tcp |
| US | 18.239.208.37:443 | anydesk.com | tcp |
| US | 8.8.8.8:53 | 37.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| US | 8.8.8.8:53 | ad-wa.anydesk.com | udp |
| GB | 216.58.201.99:443 | www.recaptcha.net | tcp |
| DE | 167.235.224.171:443 | ad-wa.anydesk.com | tcp |
| DE | 167.235.224.171:443 | ad-wa.anydesk.com | tcp |
| US | 8.8.8.8:53 | 200.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.224.235.167.in-addr.arpa | udp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 8.8.8.8:53 | tracking.g2crowd.com | udp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.18.43.31:443 | tracking.g2crowd.com | tcp |
| GB | 216.58.201.99:443 | www.recaptcha.net | udp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 8.8.8.8:53 | 31.43.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.178.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.155.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.dwin1.com | udp |
| US | 8.8.8.8:53 | js.hs-scripts.com | udp |
| US | 8.8.8.8:53 | serve.albacross.com | udp |
| US | 18.239.208.2:443 | www.dwin1.com | tcp |
| US | 104.16.138.209:443 | js.hs-scripts.com | tcp |
| US | 18.239.208.100:443 | serve.albacross.com | tcp |
| US | 8.8.8.8:53 | 2.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.138.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | download.anydesk.com | udp |
| DE | 188.40.104.135:443 | download.anydesk.com | tcp |
| DE | 188.40.104.135:443 | download.anydesk.com | tcp |
| US | 8.8.8.8:53 | scripts.iconnode.com | udp |
| US | 18.239.208.78:443 | scripts.iconnode.com | tcp |
| US | 8.8.8.8:53 | speedtest.net | udp |
| US | 151.101.66.219:443 | speedtest.net | tcp |
| US | 151.101.66.219:443 | speedtest.net | tcp |
| US | 8.8.8.8:53 | 135.104.40.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.speedtest.net | udp |
| US | 104.18.203.232:443 | www.speedtest.net | tcp |
| US | 8.8.8.8:53 | 219.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.203.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.ziffstatic.com | udp |
| US | 8.8.8.8:53 | b.cdnst.net | udp |
| NL | 23.62.61.122:443 | cdn.ziffstatic.com | tcp |
| US | 8.8.8.8:53 | 122.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 64.233.167.154:443 | stats.g.doubleclick.net | tcp |
| NL | 23.62.61.122:443 | cdn.ziffstatic.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | 154.167.233.64.in-addr.arpa | udp |
| US | 18.239.212.129:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | d3div1mtym39ic.cloudfront.net | udp |
| US | 18.239.208.35:443 | d3div1mtym39ic.cloudfront.net | tcp |
| US | 8.8.8.8:53 | cdn.static.zdbb.net | udp |
| NL | 95.100.96.32:443 | cdn.static.zdbb.net | tcp |
| US | 18.239.212.129:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 129.212.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.96.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | js.hs-banner.com | udp |
| US | 8.8.8.8:53 | js.hs-analytics.net | udp |
| US | 104.18.34.229:443 | js.hs-banner.com | tcp |
| US | 104.17.175.201:443 | js.hs-analytics.net | tcp |
| US | 8.8.8.8:53 | 229.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.175.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 18.239.208.17:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | js.usemessages.com | udp |
| US | 104.16.79.142:443 | js.usemessages.com | tcp |
| US | 8.8.8.8:53 | 17.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rp.liadm.com | udp |
| US | 8.8.8.8:53 | zdbb.net | udp |
| US | 8.8.8.8:53 | gurgle.speedtest.net | udp |
| US | 52.73.2.199:443 | rp.liadm.com | tcp |
| US | 3.226.5.92:443 | gurgle.speedtest.net | tcp |
| IE | 52.212.141.62:443 | zdbb.net | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 18.239.208.14:443 | tags.crwdcntrl.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| US | 8.8.8.8:53 | gurgle.zdbb.net | udp |
| US | 34.233.213.127:443 | gurgle.zdbb.net | tcp |
| US | 8.8.8.8:53 | 142.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 199.2.73.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| IE | 52.48.17.214:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | speedlon.hyperoptic.com | udp |
| US | 8.8.8.8:53 | speedtest-1.london.network.youfibre.com.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | speedtest.swishfibre.com.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | lon.host.speedtest.net.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | udp |
| US | 8.8.8.8:53 | lg-lon.fdcservers.net | udp |
| US | 8.8.8.8:53 | speedtest.noone.co.uk.prod.hosts.ooklaserver.net | udp |
| GB | 45.10.101.252:8080 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 152.37.112.6:8080 | speedlon.hyperoptic.com | tcp |
| US | 8.8.8.8:53 | speedtest-lon.retn.net.prod.hosts.ooklaserver.net | udp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 31.22.12.17:8080 | speedtest.swishfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| GB | 188.94.45.252:8080 | speedtest.noone.co.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 95.87.111.214:8080 | lon.host.speedtest.net.prod.hosts.ooklaserver.net | tcp |
| GB | 45.92.46.45:8080 | speedtest-1.london.network.youfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 185.82.8.1:8080 | speedtest-lon.retn.net.prod.hosts.ooklaserver.net | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 18.239.207.196:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 8.8.8.8:53 | 62.141.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.5.226.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.213.233.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.17.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.101.10.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | 250.26.113.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.112.37.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.82.148.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.12.22.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.152.7.50.in-addr.arpa | udp |
| US | 104.22.5.69:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | 252.45.94.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.46.92.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.111.87.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.8.82.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.207.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| DE | 3.121.52.114:443 | btlr.sharethrough.com | tcp |
| DE | 3.121.52.114:443 | btlr.sharethrough.com | tcp |
| DE | 3.121.52.114:443 | btlr.sharethrough.com | tcp |
| DE | 3.121.52.114:443 | btlr.sharethrough.com | tcp |
| DE | 3.121.52.114:443 | btlr.sharethrough.com | tcp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | c2shb.pubgw.yahoo.com | udp |
| US | 8.8.8.8:53 | ib.adnxs-simple.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| IE | 52.208.98.189:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.208.98.189:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.208.98.189:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.208.98.189:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.208.98.189:443 | c2shb.pubgw.yahoo.com | tcp |
| NL | 185.89.210.46:443 | ib.adnxs-simple.com | tcp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 8.8.8.8:53 | jogger.zdbb.net | udp |
| US | 52.200.14.12:443 | jogger.zdbb.net | tcp |
| US | 8.8.8.8:53 | tags.bkrtx.com | udp |
| US | 151.101.2.219:443 | b.cdnst.net | tcp |
| DE | 23.201.241.251:443 | tags.bkrtx.com | tcp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.52.121.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.98.208.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | stags.bluekai.com | udp |
| BE | 2.21.16.202:443 | stags.bluekai.com | tcp |
| US | 104.18.34.229:443 | js.hs-banner.com | tcp |
| US | 8.8.8.8:53 | lantern.roeyecdn.com | udp |
| US | 18.239.208.10:443 | lantern.roeyecdn.com | tcp |
| US | 8.8.8.8:53 | privacyportal.onetrust.com | udp |
| US | 172.64.155.119:443 | privacyportal.onetrust.com | tcp |
| US | 8.8.8.8:53 | 219.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.14.200.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.241.201.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.16.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | af96048b3939043410b6e8ba2e36e877.safeframe.googlesyndication.com | udp |
| GB | 142.250.180.1:443 | af96048b3939043410b6e8ba2e36e877.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | p.ad.gt | udp |
| US | 8.8.8.8:53 | ids.ad.gt | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| DE | 37.252.171.85:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| US | 172.67.23.234:443 | ids.ad.gt | tcp |
| US | 172.67.23.234:443 | ids.ad.gt | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 52.214.77.117:443 | dpm.demdex.net | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 172.67.23.234:443 | ids.ad.gt | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 172.67.23.234:443 | ids.ad.gt | tcp |
| IE | 52.214.77.117:443 | dpm.demdex.net | tcp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| US | 34.98.64.218:443 | u.openx.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | secure-us.imrworldwide.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| IE | 99.80.111.41:443 | secure-us.imrworldwide.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| BE | 64.233.167.154:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn-gl.imrworldwide.com | udp |
| DE | 162.19.138.117:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | idx.liadm.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 18.239.208.2:443 | cdn-gl.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | ookla-d.openx.net | udp |
| US | 3.226.229.36:443 | idx.liadm.com | tcp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.77.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.111.80.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| GB | 142.250.180.1:443 | af96048b3939043410b6e8ba2e36e877.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.doubleverify.com | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | tcp |
| US | 2.18.190.133:443 | cdn.doubleverify.com | tcp |
| US | 2.18.190.133:443 | cdn.doubleverify.com | tcp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.18.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.229.226.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fw.adsafeprotected.com | udp |
| US | 104.22.5.69:443 | ids.ad.gt | tcp |
| US | 172.67.23.234:443 | ids.ad.gt | tcp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| IE | 34.240.40.111:443 | fw.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| IE | 34.240.40.111:443 | fw.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | ad.atdmt.com | udp |
| GB | 216.58.204.67:443 | www.google.co.uk | udp |
| GB | 172.217.169.38:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| US | 104.18.36.155:443 | dsum-sec.casalemedia.com | udp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.teads.tv | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| US | 8.8.8.8:53 | pixels.ad.gt | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | bee.imrworldwide.com | udp |
| US | 104.22.5.69:443 | pixels.ad.gt | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| US | 18.239.208.33:443 | bee.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | 111.40.240.34.in-addr.arpa | udp |
| IE | 52.215.214.62:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | 38.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.25.90.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.214.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| GB | 172.217.169.38:443 | s0.2mdn.net | udp |
| IE | 52.213.20.15:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | api.hubspot.com | udp |
| US | 104.16.118.116:443 | api.hubspot.com | tcp |
| US | 8.8.8.8:53 | new-collect.albacross.com | udp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| IE | 54.73.128.78:443 | new-collect.albacross.com | tcp |
| US | 18.239.208.69:443 | static.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 34.243.60.168:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.20.213.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.118.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.128.73.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| US | 54.189.142.49:443 | dt.adsafeprotected.com | tcp |
| US | 54.189.142.49:443 | dt.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | rtb0.doubleverify.com | udp |
| US | 130.211.44.5:443 | rtb0.doubleverify.com | tcp |
| US | 130.211.44.5:443 | rtb0.doubleverify.com | tcp |
| US | 54.189.142.49:443 | dt.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | 168.60.243.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.142.189.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.44.211.130.in-addr.arpa | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | track.adform.net | udp |
| DK | 37.157.2.230:443 | track.adform.net | tcp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| IE | 54.154.177.51:443 | aa.agkn.com | tcp |
| GB | 172.217.169.38:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 142.250.178.2:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | s1.adform.net | udp |
| DK | 37.157.5.72:443 | s1.adform.net | tcp |
| GB | 142.250.178.2:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | 51.177.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.5.157.37.in-addr.arpa | udp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 152.37.112.6:8080 | speedlon.hyperoptic.com | tcp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| GB | 45.10.101.252:8080 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| US | 8.8.8.8:53 | tps.doubleverify.com | udp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tps.doubleverify.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | app.hubspot.com | udp |
| US | 8.8.8.8:53 | track.hubspot.com | udp |
| US | 104.16.117.116:443 | track.hubspot.com | tcp |
| US | 104.16.117.116:443 | track.hubspot.com | tcp |
| GB | 172.217.169.38:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | 116.117.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| GB | 142.250.200.34:443 | ade.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| US | 8.8.8.8:53 | tpsc-ew1.doubleverify.com | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | 14.25.17.104.in-addr.arpa | udp |
| DK | 37.157.5.72:443 | s1.adform.net | tcp |
| GB | 142.250.200.34:443 | ade.googlesyndication.com | udp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| IE | 52.94.223.37:443 | aax-eu.amazon-adsystem.com | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| DE | 91.228.74.159:443 | cms.quantserve.com | tcp |
| US | 54.164.102.167:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| IE | 52.49.52.84:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| GB | 185.64.190.81:443 | image4.pubmatic.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| GB | 185.64.190.81:443 | image4.pubmatic.com | tcp |
| NL | 64.158.223.140:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| US | 8.8.8.8:53 | 37.223.94.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| FR | 51.255.68.171:443 | dsp.nrich.ai | tcp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.102.164.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.hsappstatic.net | udp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.52.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.68.255.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 104.17.175.91:443 | static.hsappstatic.net | tcp |
| US | 104.17.175.91:443 | static.hsappstatic.net | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | fwrmlhv7pxpu6ciwtqfqy3kx8nctc1715354873.nuid.imrworldwide.com | udp |
| US | 18.239.208.109:443 | fwrmlhv7pxpu6ciwtqfqy3kx8nctc1715354873.nuid.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | 91.175.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.208.239.18.in-addr.arpa | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | boot.net.anydesk.com | udp |
| NL | 185.229.190.236:443 | boot.net.anydesk.com | tcp |
| US | 8.8.8.8:53 | relay-ad195ac5.net.anydesk.com | udp |
| GB | 57.128.141.163:443 | relay-ad195ac5.net.anydesk.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | 236.190.229.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.141.128.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | api.playanext.com | udp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | udp |
| US | 18.239.208.111:80 | api.playanext.com | tcp |
| US | 18.239.208.111:80 | api.playanext.com | tcp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.208.239.18.in-addr.arpa | udp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| DE | 3.127.77.137:443 | btlr.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c2shb.pubgw.yahoo.com | udp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 52.212.214.65:443 | c2shb.pubgw.yahoo.com | tcp |
| US | 8.8.8.8:53 | ssp-sync.criteo.com | udp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | 137.77.127.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.214.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.1.250.178.in-addr.arpa | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| GB | 142.250.200.33:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | tcp |
| GB | 216.58.204.67:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | cdn.ampproject.org | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 23.53.112.216:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | 216.112.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| SE | 213.155.156.166:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| IE | 34.242.109.11:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 35.214.130.251:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| FR | 141.94.242.226:443 | green.erne.co | tcp |
| FR | 149.202.238.104:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.109.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.130.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.242.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.238.202.149.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| FR | 141.94.171.213:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| FR | 141.94.170.77:443 | pixel.onaudience.com | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | 213.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.86.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.170.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.214.120.3.in-addr.arpa | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| DE | 168.119.177.137:43196 | tcp | |
| DE | 168.119.177.137:7070 | tcp | |
| DE | 168.119.177.137:7070 | tcp | |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| US | 142.250.126.94:443 | beacons2.gvt2.com | tcp |
| US | 142.250.126.94:443 | beacons2.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c19.gcp.gvt2.com | udp |
| CH | 34.65.65.90:443 | e2c19.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 94.126.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.65.65.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| GB | 142.250.178.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| IN | 142.251.42.67:443 | id.google.com | tcp |
| IN | 142.251.42.67:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.200.54:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.187.206:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 67.42.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | tlauncher.org | udp |
| US | 104.20.37.13:443 | tlauncher.org | tcp |
| US | 104.20.37.13:443 | tlauncher.org | tcp |
| US | 104.20.37.13:443 | tlauncher.org | udp |
| US | 8.8.8.8:53 | performance.radar.cloudflare.com | udp |
| US | 104.18.31.78:443 | performance.radar.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 13.37.20.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 78.31.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sparrow.cloudflare.com | udp |
| US | 104.18.2.57:443 | sparrow.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 57.2.18.104.in-addr.arpa | udp |
| IN | 142.251.42.67:443 | id.google.com | udp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.46:443 | www.youtube.com | tcp |
| GB | 142.250.200.54:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.179.230:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 230.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | udp |
| GB | 142.250.200.46:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 42.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| GB | 142.250.178.14:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| GB | 142.250.178.14:443 | encrypted-vtbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn1.gstatic.com | udp |
| US | 8.8.8.8:53 | encrypted-tbn2.gstatic.com | udp |
| GB | 142.250.200.14:443 | encrypted-tbn1.gstatic.com | tcp |
| GB | 142.250.200.14:443 | encrypted-tbn1.gstatic.com | tcp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 104.18.31.78:443 | performance.radar.cloudflare.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | uupload.ir | udp |
| IR | 212.33.193.83:443 | uupload.ir | tcp |
| IR | 212.33.193.83:443 | uupload.ir | tcp |
| IR | 212.33.193.83:443 | uupload.ir | udp |
| US | 8.8.8.8:53 | plus.sabavision.com | udp |
| US | 8.8.8.8:53 | 83.193.33.212.in-addr.arpa | udp |
| IR | 185.147.178.24:443 | plus.sabavision.com | tcp |
| IR | 185.147.178.24:443 | plus.sabavision.com | tcp |
| US | 8.8.8.8:53 | cdn.yektanet.com | udp |
| US | 8.8.8.8:53 | van.najva.com | udp |
| IR | 185.166.104.3:443 | cdn.yektanet.com | tcp |
| IR | 185.166.104.3:443 | cdn.yektanet.com | tcp |
| US | 188.114.97.2:443 | van.najva.com | tcp |
| US | 188.114.97.2:443 | van.najva.com | tcp |
| US | 8.8.8.8:53 | 24.178.147.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.97.114.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.104.166.185.in-addr.arpa | udp |
| IR | 185.147.178.24:443 | plus.sabavision.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 188.114.97.2:443 | van.najva.com | udp |
| US | 8.8.8.8:53 | bfetch.yektanet.com | udp |
| IR | 185.166.104.3:443 | bfetch.yektanet.com | tcp |
| US | 8.8.8.8:53 | static.cdn.asset.aparat.com | udp |
| IR | 185.147.178.15:443 | static.cdn.asset.aparat.com | tcp |
| US | 8.8.8.8:53 | static.cdn.asset.filimo.com | udp |
| IR | 185.147.178.16:443 | static.cdn.asset.filimo.com | tcp |
| IR | 185.147.178.16:443 | static.cdn.asset.filimo.com | tcp |
| IR | 185.147.178.16:443 | static.cdn.asset.filimo.com | tcp |
| IR | 185.147.178.16:443 | static.cdn.asset.filimo.com | tcp |
| IR | 185.147.178.16:443 | static.cdn.asset.filimo.com | tcp |
| IR | 185.166.104.3:443 | bfetch.yektanet.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | audience.yektanet.com | udp |
| IR | 185.166.104.4:443 | audience.yektanet.com | tcp |
| US | 8.8.8.8:53 | ua.yektanet.com | udp |
| IR | 185.166.104.3:443 | ua.yektanet.com | tcp |
| IR | 185.166.104.3:443 | ua.yektanet.com | tcp |
| US | 8.8.8.8:53 | native-scripts.yektanet.com | udp |
| US | 8.8.8.8:53 | native-removal.triboon.net | udp |
| IR | 185.166.104.3:443 | native-removal.triboon.net | tcp |
| IR | 185.166.104.3:443 | native-removal.triboon.net | tcp |
| US | 8.8.8.8:53 | 15.178.147.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.104.166.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.178.147.185.in-addr.arpa | udp |
| US | 188.114.97.2:443 | van.najva.com | udp |
| US | 8.8.8.8:53 | tasvir.yektanet.com | udp |
| US | 8.8.8.8:53 | cr.najva.com | udp |
| US | 104.21.29.5:443 | cr.najva.com | tcp |
| US | 8.8.8.8:53 | uupload.najva.com | udp |
| US | 8.8.8.8:53 | s2.uupload.ir | udp |
| IR | 212.33.193.85:443 | s2.uupload.ir | tcp |
| IR | 212.33.193.85:443 | s2.uupload.ir | tcp |
| US | 8.8.8.8:53 | 85.193.33.212.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.16.208.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.58.20.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.14.97.104.in-addr.arpa | udp |
| NL | 52.142.223.178:80 | tcp |
Files
\??\pipe\crashpad_4788_ODBJPYDXMKMFIFSC
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6216c1c659bd12222990a809fdbe7657 |
| SHA1 | 829bb1d6033cdef5b95d4a3dd966a0ee34300fe4 |
| SHA256 | 029e89bb3cf8c347e06dff01e77bf60b1e00e110cf79e177ffc531a01febff11 |
| SHA512 | f32dd98993ccc7fd1d8f626d78aa5e72e80c92944e7a37ab5ecb07abb163965fa22787ea136053e61d54b410edca3efc7aa208339abe487c70472662bab818bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f5deca6442010a7fdc2c4f820e601fee |
| SHA1 | 2dab298d21290c876e74e3b87ed03820fbda9101 |
| SHA256 | e5a4717748d7237f8778b3cb06fad426f99daac79d035807a2785cacb6152fc1 |
| SHA512 | 6fb290a6de02ed66fcb0b9d5b5710193a217dae10d3c648668ff314e541d99e76907a5023fe111640440f682399e427da5bcdd209c4ef74546c9af3c148c0070 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 2c72ee1f395273e7e6788eb113b58e71 |
| SHA1 | 5bc6a8d922f5f916c49668ca594f600d1a0379f8 |
| SHA256 | 52fb2764a36e24d5367c18aedf3003b7909141f11d5269bd19542b81b1d8a79b |
| SHA512 | bbc051de2eecd00a3fd7cf0d47872460d180211f942cbc64bf2f443f8be73855bab853c54e8fd3fd11528f2e5ffc9e30b33169543d6a224b8513cf4837c2fc38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3f892359239269ec9c155ffc3a7cdb8e |
| SHA1 | ebe74cdc6ba62672faf66bfcfb70e8b3a912ac02 |
| SHA256 | b6308013791b6f30805f8a701f964318872fa3e0883d326fa788265146a0e6f4 |
| SHA512 | 828aa8348d107393feb7beff12423c65e6b374c5df01b9b9b3589ce2cdc59863e85a29a85568f6e191ecebc1ece7ae893f056369aea6a326fee29cab311d3316 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 87beb9f31dde29b96e8943481d84d408 |
| SHA1 | 0c160dd1b4be8c5a94f1bd3d75c971dc9952c6dd |
| SHA256 | ea44c07fa4be3a7f4c9f1b80205713e37924487794166f2f545c9b96841cf9e0 |
| SHA512 | 176103467aa9d43961996d96f371664c863f988bfb9360f8078c067d9b8c32a006ec0b76ff76d7aba39b5264197d82b3b9cf1629ecbdb2c2be57129cf3e6d856 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 949d0e5c71b85b7c4ffd380428920e03 |
| SHA1 | c36447491a052e395dbcb83222d3f3cfb94b9d4a |
| SHA256 | 5bb8255124f7b45cd59768e4865b6b8fe67af6a113cc2a2c9163469f7712c6b5 |
| SHA512 | 8636912c012404a712d0a1b3b120f09cbfa9e9a5be9c7a8b6635c16937de1ecd1ee60492ab0a7d5cca0fb82f5bc397dd4c9c21a0d4a78e4b5f3ccd6d54a7ea00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | c979294c4101a834037886a2d956a458 |
| SHA1 | f0787bf3c47bad160693af537bbbf2a1ec9c12d2 |
| SHA256 | e405e6c12abbe9518c1ba36c64e1cea4540dce77a87962e92500d31d9c0965b8 |
| SHA512 | 646adb41f5624031978b2a9508944c875d479d14123052dba6961643b2e30152d58c0b5b108d0026afa69c4cfd5e39aaadfc7a1cf9a10f2e7b9dfe189bf889e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7da431df7f578c4a6ef61068f70dd0e3 |
| SHA1 | 0b12447c788d9fc6bde226c20beff2254cad302f |
| SHA256 | a7ce13398a785b852e6e2d868a7312d5a29188f68f846999f8fe9563907ac759 |
| SHA512 | fdf0b6dc4d0f0e96fa7f0701a45a75d02f63fa055d5c360115c39332c37f83de5f179883f3a2b7522bc803413947549090abc04be59b9b3b79e19c5d6d546ed8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2cbeb3fd6f9f325a034f6f3f9cd94d1d |
| SHA1 | c386a3d6394fa75eab7d2c5c1ff660a9b067b13a |
| SHA256 | baa4faebe8ab3527940370d636b102a643f7c727e6ceb5e2f6e468d0ae076184 |
| SHA512 | ed7349bf0b89e763520cf01cb421e7b3508e035fc21e6792739e8b0f978e2382080023fb304039e2185e1a9c2302b599e0539cd2756e09d68dc1661e5507b758 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 329a1370589fb968ddaf23c17d1982aa |
| SHA1 | e6f1a5227d0b9dcddad1a2f1a2715e3f362a4074 |
| SHA256 | 0d53dc0bae413259f3c50d9217aac806eff9fac4c4c189ba4eb306b8efacdf7d |
| SHA512 | 29081d62dd9f7fcf5f493c5ab7109108090ad4305e141c2d344318810f2764b67f1e0a17d88ca80b9373ec178add2f7cdf135c6f5ddc2a156c6df07daaedcf92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ef5ea17404c733eac914b4cd24df061f |
| SHA1 | d9fcaba51e86121261eee33021bbe982681514dd |
| SHA256 | 96309a29a4a26d4f8fb85ba202f1452c527e6923b994541f2ba748f7183f72d0 |
| SHA512 | 8e110d82be75a120db2fdc44074949fa52d093395d39a404d5cadb7111bb1d55186729d980f5a1e220c6c82bcea542bec3ef0e920fee7f93701263b4bd7a1d79 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ef79ea019e83f9e5bbafc076c46d4b1c |
| SHA1 | 46e839645a6af02b17948782a69d051f8182f289 |
| SHA256 | dafc5616283cab6144a569bbecb2b4160ccaf1a894ecf3f185a9800406f0b5f1 |
| SHA512 | 0f859bd828800901ed6618627a29dd404d78a669b377618f63e3300c124ef82f8138911c3e71315f02f46625ccf18d459d50d930070a1c84ac99da0a6cf87091 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 4a47d118b432b1888d608da652f6255f |
| SHA1 | c23ba9c0ef0273e496361a02313297b5e1b9318e |
| SHA256 | 6241849f879ccce3fa0467745908d44137b8973b54327216be1d4b86380ff8cf |
| SHA512 | 098c2fa7cb25e9e2f1bb8207bd4470626558f97ee5198b1edff0fe255c5cde8778bd48bd6e99b9e9229e95de6709dc7ebf2afb4f808110c146e590fd4a6034f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58e0a7.TMP
| MD5 | 091e2ed2a92fc527f451541243478ec4 |
| SHA1 | d1dbf80323436bc12d2f7100fb1ea68fc17ac7c4 |
| SHA256 | 01b2970a200998e4c56a5174686833848c964959087ee4f0137652c8418513fa |
| SHA512 | 6281ddaeddde8723dd3b3ee6bab389248303c9b205cc891f1f901158922c396fc79b61b47b091c63aac7293d68186174eda4d12528f7f04f4c58613e3b1ffe45 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ee854cac3cfd22bb2a89cf67ab11353a |
| SHA1 | da8874d359834944bb0571cb1d7026401f7225db |
| SHA256 | af88ac082ba01fe6c0d17206071c5b2daa8f243d2feed163c91b03d146f1362d |
| SHA512 | e82102529bcb97e793885f28d757003832e227d6722668572a0cfdc3a69eb335192c5460f20dfa85883a92f65d421da4edbb99c197369d76c9316c9e921d91f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000058
| MD5 | 585ac11a4e8628c13c32de68f89f98d6 |
| SHA1 | bcea01f9deb8d6711088cb5c344ebd57997839db |
| SHA256 | d692f27c385520c3b4078c35d78cdf154c424d09421dece6de73708659c7e2a6 |
| SHA512 | 76d2ed3f41df567fe4d04060d9871684244764fc59b81cd574a521bb013a6d61955a6aedf390a1701e3bfc24f82d92fd062ca9e461086f762a3087c142211c19 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000057
| MD5 | f782de7f00a1e90076b6b77a05fa908a |
| SHA1 | 4ed15dad2baa61e9627bf2179aa7b9188ce7d4e1 |
| SHA256 | d0b96d69ee7f70f041f493592de3805bfb338e50babdee522fcf145cb98fc968 |
| SHA512 | 78ec6f253e876d8f0812a9570f6079903d63dd000458f4f517ec44c8dd7468e51703ea17ecce2658d9ea1fdb5246c8db5887a16be80115bbf71fe53f439d8766 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5603aecbd3fa1df16dde7c69f1c0998b |
| SHA1 | fcedc8be75d82053d251d334e7adccfd6b71f95c |
| SHA256 | 40f706fcdf893402cdbf6c6679c40b3236d3af5b9171ba571cf6f38ddc61b635 |
| SHA512 | f261389b6422c2cddf830757d0379967c3b2e725cb914442d42a10262033495786e4bd234afba8fbf6879fa47d2aedff657e772ffc198b2a40625cd8223f5f62 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | fe13acdd51bd8c68a03391794c12aa1e |
| SHA1 | 3ebc9ecb7dd46069f0e14d06d097c9e93a81e9c4 |
| SHA256 | ac893a74f59d434fb286cf7184a665dcf816baa41cbcd2ccd6163f18d57cba7f |
| SHA512 | 495bc2db4143e3b1bcd0dca575cdf011dd8983f3e505c64377e5e375254f177b79b37cc83c1df35ce31bdcf3d4d0291a91cf7e4178fb292926b6690bb967ab7d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e3b863f36328dada18066003eb9ce0a5 |
| SHA1 | e40c00cd83e7774a0ebd7375fc39e0add2ef69cb |
| SHA256 | 534af764819f7b4d39a880325a0db6d688b6226bea0155367cf08c90273ceb42 |
| SHA512 | 517d2143f326532e8f1b49ef0fa1608b4cdc4bc9aa0561200c1f938f35acfce0685bd2bd2c2816895cddc30fd2ae9525a1ce0c9750650a82ecf9d0d43579a504 |
C:\Users\Admin\Downloads\Unconfirmed 660759.crdownload
| MD5 | aee6801792d67607f228be8cec8291f9 |
| SHA1 | bf6ba727ff14ca2fddf619f292d56db9d9088066 |
| SHA256 | 1cdafbe519f60aaadb4a92e266fff709129f86f0c9ee595c45499c66092e0499 |
| SHA512 | 09d9fc8702ab6fa4fc9323c37bc970b8a7dd180293b0dbf337de726476b0b9515a4f383fa294ba084eccf0698d1e3cb5a39d0ff9ea3ba40c8a56acafce3add4f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | b42fdc2e4e6a401969d5dc9fc4ee324c |
| SHA1 | a233f416720b498164ee4bb4e91ee8794e06ebe7 |
| SHA256 | c63a055e4ae08b3da49f544973ffb66e15d766c4edb346ac37dd5a0f335eac0d |
| SHA512 | a6561c39b6c8df259fe2e66895b0b520d8690629cbb7ce85532199b699a77b7bd842b9930fe5dc9f02fe90551b17266f98d66bfdc62aeb2850b0181b47b434d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e075ee2bca197d70b8384eb037d504b8 |
| SHA1 | 6f376b1cabab2252ba569126827e7b62d0b23e1f |
| SHA256 | 8e0e97e2ebdbadd816f9192f7c065944dc677ef150e70b80e9c544f7915f8d83 |
| SHA512 | 7cc83a052d1f7993b89edf1f740e680965288203363662df3e9f29fbc8cf1fb0c2296b6b5f5c0b8dbb43b4819020baa4488eef1e4cc40d334e8b0063d39fb7f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008c
| MD5 | fc47b08617b08869c9c5f5f6a5c07f53 |
| SHA1 | 70366b3a8cf99a7b1c135bfdb0b2ede1fad91e6f |
| SHA256 | fe93c85d8bd89371a90833d1402865d3c5a6866b7d6048570407c209a1b8dc9d |
| SHA512 | b519f8a1a915bc2c7f15d9881bc2f4278ade1a274467a769e3f3ebf3239ae836649c9aec92e718c798063d5f841f5fc1305c3067fa961226c0791111bf123573 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_af96048b3939043410b6e8ba2e36e877.safeframe.googlesyndication.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_af96048b3939043410b6e8ba2e36e877.safeframe.googlesyndication.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ae689a2144e9e24bc49282f4757ca91c0bf7f5f1\index.txt
| MD5 | 39f817f4fb6e1e2e4e1aa5cb9c142059 |
| SHA1 | 316fc279c57e4a7a523cb5deb2ba6ec15c880e2f |
| SHA256 | 6e91b31ec518c0c247ceb7f2036efbe32bb3c30f4c254beff878b6f9fb445fe3 |
| SHA512 | bc41194bb536bf88611888e85f59ac1fc3658cc5eb1aec875c53d8963061bae09738885b5058ba6ba6e3064944ec8b3306d9f1d0ba7f57cc1faa4b474b81f3ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\ae689a2144e9e24bc49282f4757ca91c0bf7f5f1\index.txt~RFe5977a7.TMP
| MD5 | 8cfc100f0792c222367fe759ef46beb2 |
| SHA1 | d2d9be9a0fcf7583c670df8a2d7a5d4b8f7d3221 |
| SHA256 | abdf81fe88bd980a5380995e8a85db4790ec8398b927bdef119e633bb3747f05 |
| SHA512 | 34a2c757384c40e99fcb5d4f100968827dbb07b1dedc362861568f4d97668df6689443655d120d00a3c02279868a9e29484326a84e0b568c8e071744945c6da6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 19802f0cf5614335a8b4ca776986b22d |
| SHA1 | 07f7608c005ab64d4fe86e42ca6ec5348c68afda |
| SHA256 | 32c486213e271977a0d16332f4cb0b90b6be62433b34c9d970f34f74df956d78 |
| SHA512 | 1141f8da951c1eb831a03aada1dfab822176552a1c90f664651dd70902fe995c429b8967d1c8bc49c92609afc620677a0d267b78a3482b7747ceb9275703d66e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000094
| MD5 | 475b50689dfe5ac600b3de04ace088ea |
| SHA1 | fbb328c285b985d98e436e1a2025dc2ef814f08d |
| SHA256 | bb3580399452f7fc44aa591302242cc83e1a1c5daad646fcc2d1d3e81b9b7bc1 |
| SHA512 | 55bef283c23fe00a25ab86c8e62df455236bb4a114d72da8986d0ab51b46567f195d35f94de1e133ae61e95d121de99938aa02e80abfd38c3c841fde9214c381 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 173d419baf1a6fbdea21b4a5f054fa16 |
| SHA1 | bb37d8be1192b257a6e8969c61f5938ae7ca2cac |
| SHA256 | 6a460691c7ed7944e5c52e43a3e145966f80365112eb94bcb33bf125a660e45f |
| SHA512 | ae966e48f3b9d32457b0ab12b1ba887b10ab1c798a9cdbcddd5058e50953ae60c7a3d66d088458a85b1c47d7b0231ca324dc17c5c509ba97030903ead1a71b49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 359b0cd28898fd10479e71a74115eaaa |
| SHA1 | 720091a410d8df6390e9533d8a792ef23305dd26 |
| SHA256 | 61b81623e1b99af81676ac9665e92fa7f5b95df472d4c2c602b8707fcd79ea63 |
| SHA512 | 7108401605edcd044fc153a7bb138ce2b92effd7b54458bb2de702b89a6f9a1c9433da1fe19b3edfe063ee3a84c2adca61878a986d02e33c3c821495e7da1f5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | cd5f864ad3b66139580ce7c07bc68b3b |
| SHA1 | 334b294e020b876fe35192b5a01419c00547e41e |
| SHA256 | 9e0d9a5cc2b19527dfee0aa29fdff7d142cd4e09e1095d11efddde5c05e35ece |
| SHA512 | b4071463d4f5800bb3579ab589a97f191a5a1c52ac3222bcdb1e5ec40d6219f6f0cda5dfcd044b1428f060f8e378a49b77f9dbf4cc5ab481f46146b7d2295521 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 585f9edb7361a118412c7d8a9076d9ea |
| SHA1 | d11f9e8ae9cc37735e95f6d7f14c2649801c6559 |
| SHA256 | f6644f3f62919fe6b660ac5ad82752293be8b964fbd44d3662fac41604a9f2d0 |
| SHA512 | 1579d4d2d315b687c1c390da09e730f6d5ff66f62d39430dde94f8fb201dd7643af68c5e73a16e1d9baf617bc36b07dbb570e67f11c2f68791d7870b9477777d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 597b033bacec18e3b46faef494ffcd22 |
| SHA1 | 2624813786ac60bab1fc11cd4073c64e54c42138 |
| SHA256 | 04d95160f50aeba4ee2d0a0b54d87779b618d5424f58717a5ff81d7125050c1c |
| SHA512 | f9de9415bbc12ba51d9ccdb624390c89b3e45a5f26422fc7294a799bef8e7260832443af550735c1a99a323105d1f1c221515f61df254824379ff213c4b020aa |
memory/5648-965-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | da09fe0b607a0a8411f6af4d5a02308d |
| SHA1 | 95077e9baad9d0672b3345c15217b43ef783fa65 |
| SHA256 | 39bf40fa6b9b29c56b874870e1ee7dd62320de840fdbab7cfe434ad52680ead4 |
| SHA512 | 835f8a32187a496d9076b7dae3794566a6a9cca808ce15c683899c079a36c3b050bcd9010a8863b54ca5de715bb269412343166c3ada61fe2012f323b40268d5 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 2655f4b977825c2573fc79ddf339b390 |
| SHA1 | d00a285ed0fcdf32c362e09815bb2d1465b440a4 |
| SHA256 | fd9d09c6e3d6deb2ca74b520f2ac02c094a8c08c7d21d447bccc28264e3eab08 |
| SHA512 | 977f62e14aee7f6d590175427ae9476590a87bf8fe06c948b28a9a37450678743a700a4526c7e4e8991133f6320473e20520a03c371943a0b9db292220202c7d |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | f8bbea7ad3d7699313e71f1b5c8c25a5 |
| SHA1 | dab0011c6f68c0e2ae74f656d91a8fae5798ecb4 |
| SHA256 | ae8c4e820a7862076564f16ce7bbdd3db4109131b12dff70d477e4ae48ad40e8 |
| SHA512 | 7f2b3c5bb4fbd2ab18588865f85aca8cd5665e966c829f1c4d088fa56f11c422b71d8af6c3452cf5e64809c8a5016e0f63794980fb0fb739836f311efe324417 |
C:\Users\Admin\AppData\Roaming\AnyDesk\ad.trace
| MD5 | 0fc2ed26cce1c27c10ca243db69e6870 |
| SHA1 | 043dc008df17c206b05328d04ef37f710beb309b |
| SHA256 | 4c302030cc7edd4d48236e60d4a3034e2c6beace7b0def4541c10f436287d1f6 |
| SHA512 | 2c3422466768bfae434a675ebd66e378793d8cc99e5f54f3e8c44fb28729ca8c748556913c0e6be1bf4cd66ed7e8f48d62c46d3cc5742f064be74f0dd60a14d5 |
memory/6072-984-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\75fdacd8330bac18.customDestinations-ms
| MD5 | 7f61f3abcd7c2ea49e5b971fc5e8ee40 |
| SHA1 | ebb31b2570900f9d6078101e2c38d886c3bac536 |
| SHA256 | d28e794983660ef2f56245ad7ca5e228eb418128b75b834b7378d835ad4675e4 |
| SHA512 | d3e25b2463e860461082e765ea86936d9ff023a82d2c249cde6e05c8695d54c090049784e35bd5e488d7126ff1826b424d5c55a5dc4bd84c76794908d921caf3 |
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf
| MD5 | e73d7f10dcbd980620307208da9813aa |
| SHA1 | 8c3667708d045f3a9157f9e2078bd73fc2f0048e |
| SHA256 | c88f1d248363e65111863cfb5ac425be5c141f3718afce9f1cafb9435954fbc4 |
| SHA512 | 248b6efa4d1269e53ca982f24cd194d474e46803d5ac661ad8d68976fb4780be204dc2c455248f59297ca65c86d90132488561a5e4797ade18c54d0c527aa879 |
C:\Users\Admin\AppData\Roaming\AnyDesk\ad.trace
| MD5 | 6f8476da833b17d27b0dacebee4fc3a9 |
| SHA1 | 3256c8fa45c3da3d9ae0fe3a60e31d439b948276 |
| SHA256 | 8ab2fb8206c45bc0d199d5a4559e0e01a09dfa0858eef2a3b7d65e060aaa32ab |
| SHA512 | c351c57fd383989a4d43b6fcf02197b4eacdf481f5fdbb782f0f93f782df92b2133e20f178663152fe58eb24697413dfecabaeb14e222b8a7b73baa69079a68d |
memory/2772-1013-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1015-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/5648-1017-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf
| MD5 | 2fb7a593c05431d269fd0a889735328e |
| SHA1 | c147c6a1d6a7ddd86c549b8b204d85ee2f500833 |
| SHA256 | 24e7a0993c56cdcad860d6aae083935fcdb5c0f0e8fe60f5a7bec804d24361d2 |
| SHA512 | e7beebbce00a41413aae0eff06d9a3a3b7750018e5d526b3b102e885167ca0048ce887218b08c2aa949377f5cc4a8014c3b2e7e80802c9654af0e74901884bbb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b3848edd885ee4d599507866f95518e9 |
| SHA1 | 721308e7d3253b880fe9de60c688b5a3180f5f07 |
| SHA256 | ba24bffbf55ceb22d7603d6879636aeea2616ba2099756489bfccb19ad12271b |
| SHA512 | 70c28bf374b3e91da4b5587cf129c5993721839e0906b776969871d3770399e39c26aee6ca444d77e9437470b979859ab96c1ab7487dc80cf1dada575b61826a |
C:\Users\Admin\AppData\Roaming\AnyDesk\system.conf
| MD5 | 88bce5479ccdd7d817a75b570e94c073 |
| SHA1 | e452d66167e1901c8303884e46bf70cce46f7840 |
| SHA256 | 3f491ba11f4f82948bf51b44db69e5897094cebded8cd08812ba24156f11b2e4 |
| SHA512 | 42188c36ea45c3482b4eb27ff5b3146d4885103ebe64314c694dcf9cd2cb49583e4c2b0272ca8072dd56b9256027c78075393f4e7dd0d6d29f553b05168fffd6 |
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf
| MD5 | 218ef015d0da1ccd5fb0a51917e4a170 |
| SHA1 | f7a6d4609e12d27c24906334d73673b8fac99627 |
| SHA256 | 43b06f5bfa4addc4ae819cead7de438687af40e85cf7b7dd421984f439dbfdea |
| SHA512 | 7728715a38a08c99d68b10abb399e97be393ac706a2f52a133d52388c02a9c2b519476354ee77f083fe7ee5e9474ce2bc9f7a03ec5d07e699da19e594459d182 |
C:\Users\Admin\AppData\Roaming\AnyDesk\system.conf
| MD5 | 669dcee7adfc520e130ac9dfc8aadcfa |
| SHA1 | 5f53b7acea2bdf80a8e46cee72368d6830de4b72 |
| SHA256 | 7a71b446564988a579d63a01009f96960cdf78b6bb97e191ff6b2ca4e93ef449 |
| SHA512 | 5033b26335ddf2965a0ad1fcc4454c018767557eb4deda6fdc69e0b1f5c78be4e3ebd24f02289639823346c5375954abb9a9ffd7f6847c061600822a70cfd97c |
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf
| MD5 | f6f348c2ceeae031b4b56781e0fda2a0 |
| SHA1 | 035c3a96bdb9c116ce9bcd8901b2299537353c07 |
| SHA256 | e4b52c0bef2cb7c113447b8c78a6f43fb53101d8bf253af9c5d5e7768b869975 |
| SHA512 | 4bcf0f418d5ce0d7effa3a8c73929df74cf66673cd6572ea2d834b26fabbd1162017ebc288671dd8a2de94c804488cd83de11cbf9c4c536c0d8f1763cad6d97a |
C:\Users\Admin\AppData\Local\Temp\gcapi.dll
| MD5 | 1ce7d5a1566c8c449d0f6772a8c27900 |
| SHA1 | 60854185f6338e1bfc7497fd41aa44c5c00d8f85 |
| SHA256 | 73170761d6776c0debacfbbc61b6988cb8270a20174bf5c049768a264bb8ffaf |
| SHA512 | 7e3411be8614170ae91db1626c452997dc6db663d79130872a124af982ee1d457cefba00abd7f5269adce3052403be31238aecc3934c7379d224cb792d519753 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3ffc732625c41bc8a391fb157870f6c7 |
| SHA1 | 34be63fa0b89de7ef271aad8b1a55c81f3fb8123 |
| SHA256 | 7a70003fc04dbe94663781c91329d347d8bb3430e08ed15a0bee3faded26f61a |
| SHA512 | 16f0b37d6471565a61fcdae9fde3c8c0ef0cc0e010fcf73fe422ae55655dfc53e858df977ae0f0b50b2fec66078975f0e100412486dc2c766f0ce788463bb571 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 6435b15545c5f2e830ca14c4921b1edb |
| SHA1 | ea3e1279f256cbffcc4cc8a1b7e1df0ee6dddae6 |
| SHA256 | 8a8ff4fd2bd620225030e95e4c81f483463f1ee8dfb25ba9c0cf6940e762be1c |
| SHA512 | 64b9333742432288ffc317a201e39c16b54d0673a28a6ad8cd7666585c527d4675e5bfb01817278896a68252b1019348794468381cdb05d7891ff136dd41c7e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 02491a091755242e1b056466aca7be03 |
| SHA1 | 074fdcc15900f8e75b3e88caa59fc762a7214105 |
| SHA256 | a0540687dc7d37b11f1662ce275ac1a665317baf654d619603ac4cc3a5c86aa4 |
| SHA512 | 9708a2fcc5a431251a91e34810d5479c533c37b6acff23692a5ba7880e49d6dc9abcaad2e6d278b1efef521c099084c9169c8582dd4258f54533bd07241d0a63 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 64aeb384d1fbc99b27df7b69bd6910c0 |
| SHA1 | 80c46a105f2f4c98e45bb7d8be24df216001d89f |
| SHA256 | a46cc881fcaa69d02c29e393b110df541bd4257b452c7358133954750c51838b |
| SHA512 | 10a6d6f1a3269e685dcf97785cd5f7834375eee06214d33b8c28165f4ea1f78092db769c4775479c8a4bf13ddfcb5ccf013fb7f313e6f7608abcf60c2504263c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | 188496839a8ec880e8955e85b5d98e48 |
| SHA1 | 63c0f3876ad72a170ba618ad765132048acb970e |
| SHA256 | 875394931d73230a8688b89796970d4513c45bffad839b5e448ad48c9a3285e3 |
| SHA512 | 8288040c3a97cca7528ae5ecbd6fc73ec389a492ecdb7443979297f50e324e86220b8beeb2ada80cd836cdf32046d2199afb4d81d3a62078559335cc0b1be162 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 5ce7bdeeea547dc5e395554f1de0b179 |
| SHA1 | 3dba53fa4da7c828a468d17abc09b265b664078a |
| SHA256 | 675cd5fdfe3c14504b7af2d1012c921ab0b5af2ab93bf4dfbfe6505cae8b79a9 |
| SHA512 | 0bf3e39c11cfefbd4de7ec60f2adaacfba14eac0a4bf8e4d2bc80c4cf1e9d173035c068d8488436c4cf9840ae5c7cfccbefddf9d184e60cab78d1043dc3b9c4e |
memory/5648-1404-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/6072-1407-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1408-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/2772-1409-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 02c5ad503c79560e17ec588c33877b17 |
| SHA1 | e03299ce48b3d53d2320f029ea672d6667f34bab |
| SHA256 | 473d3f3d308ed7834ac457bfe6ff9177bb086e1975106eaa382391308494144d |
| SHA512 | 904b73a8dc0f1600364ef91e147a1aa5474b3e10a7e71f614d1b7e152b2357fb5422dce92c6c69a397929cbee57e53238fad66c0aced98b9ba6d0e178dbb3225 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4ab1cc8a9552ae13644f8cb1412e9918 |
| SHA1 | af03d73b7f0289f58a5b046ab0009fc479e78be4 |
| SHA256 | 186686f32e13de5638a89daf82fdc499bfb67fbe018667801442a1345060d5ba |
| SHA512 | 335d8992a0e5ecac0af49ac89ad9dc0cc379541e310dbc6eec8e558d72327138adc21c0ba4f2a97253b8a209ccb0473dae77a8e8b5d7d7312c2b27a813495b43 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bb5fa96103e9784c354ad9e9c69e2586 |
| SHA1 | bf0eccc6e0908aa4faa37e434b3b792509cd60de |
| SHA256 | 35396575b11abc65088ac49adf74cd08319591f79c814d249c02208f1d532155 |
| SHA512 | abbf3646726001a206e228f3829b4f5aebfd94102ccccfcc2cb6d3f6c15101027a344e3608761c9d56e80a07cd4eda688f0f1f326674ea7f7480d40a91eb3011 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 3e7e3b7a9711122c39d86a92ee13f061 |
| SHA1 | 27d1f08f7504cf4a4a0cf32b2f17a2563860ae66 |
| SHA256 | 41731276aa7c03bf06c8696e62eb7e4969177541e86f62b439ff2914898a0372 |
| SHA512 | 1b42fb994b0679f96cc6de265e99c3339dd26bd8f68bcda413665096250d432cbb1c63c7872dfff8dfc9a9bd1a094cbaf3aa7b86fe00034c410c60c02b1952a0 |
memory/6956-1519-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1525-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/6956-1536-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1538-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/6956-1545-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1547-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/2772-1548-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/6956-1550-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/6956-1555-0x00000000002D0000-0x0000000001A19000-memory.dmp
memory/192-1557-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 587ffc51251f5e195578f4a9e97ef5a8 |
| SHA1 | 4d85686cd6c1bfda7f25357a52e6ec78574bfc8b |
| SHA256 | 0bb047dddd426de254f0f5f251f9b45c70598206b66b14d322275a0f23e908cd |
| SHA512 | 331f281113688715a42bf451c52afd3a49fb8df2e63cc9707f2049f59d48e527bafff327b25f527bc8c0e89679b70f1586e88b2e8e6e4d9d561529806bcaee8e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d32257abb258047ca859dcdc8864bdd6 |
| SHA1 | 1c367feb90eab6b6f9fdec29a3f7150836ca964d |
| SHA256 | 8e9cf33b9b9aa69dafdd7b611e3aa81ab040fb983a5b1d395eabcca04d0d8785 |
| SHA512 | 4b173524b745eee9a7ea77da2632d2c205b6683818fcbad30da50309bf4e6721579bcd48356201a8ed4a1a66f09c78acec8050980ed3c24164e576108d4f7f19 |
memory/6956-1626-0x00000000002D0000-0x0000000001A19000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 87c2b09a983584b04a63f3ff44064d64 |
| SHA1 | 8796d5ef1ad1196309ef582cecef3ab95db27043 |
| SHA256 | d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0 |
| SHA512 | df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 1aca9c8ab59e04077226bd0725f3fcaf |
| SHA1 | 64797498f2ec2270a489aff3ea9de0f461640aa0 |
| SHA256 | d79727a3a88e8ec88df6c42d9bb621a9c3780639c71b28297957ada492949971 |
| SHA512 | d63ebb8d19e6cbe9714603688bc29eda4e347e1bf0bb9b0b7816225220263781b84966413a946feb4ae27750371de01e03092dacc4051116073c518d6217fe65 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 2d5d91779d5102364628a7d7c5910115 |
| SHA1 | 22a1ba5904ad3f9ae8a59df9a2b541ccf69c08c0 |
| SHA256 | 2cf1b3de4bfecb5626075198e36f97f7adad2d47b27a926bb2a60d57e1e9ddb6 |
| SHA512 | 710bc9a423f037c33a4de523b7158d6646d28924eabac477dc33c9d1d92193a71406210d009858a1d7961f0fcd7fb31b56b633ac9c1c6ed82daf4ee788af6173 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 474c3537821ff6aee095ab4d6310ec93 |
| SHA1 | 3dca5887ea3956bb57db327fd26dfa0f927bd832 |
| SHA256 | da7f27194069e2095705abf26c3e1f632e898bc38b22600b67aed4070c3c45a4 |
| SHA512 | 39af2b06e1ccd3f0721a715f8b049e0353ce41605b857570cd633dd05866402c7f2471673608a359561c31b4004a274fc120ff4728aaf104d76f8487cd91b3f9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 5f3b681ccbc04929088fa1ca810bfa99 |
| SHA1 | 3a208f4791708e39c837a8b1d84b16a906e44578 |
| SHA256 | 3db6277c4e85d9349240f2e5ecdaab48c59e10cfc5064597124f8743fe7854b3 |
| SHA512 | 7d7514c0808bc388eb5fb2fb4e429654efc63368295b208fd86f169912118057409cf94dc2c3368b3bc0c34e9da0daa67835d91e9280d83036ca9e1a830e82c3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe5bf97f.TMP
| MD5 | e3b0aa424e780c695e124788d413ab2a |
| SHA1 | b476b3a715000967a4dcde6c757fadaa7b6a4796 |
| SHA256 | d4462ee27525b67c40378a1bf5cbc27f2a11361dc078063b0b9eea412dd2cbc4 |
| SHA512 | ecfe3811b86ed9b5135be704d37ad7724af6fc1cef766766d733843362d72ffe29295b77284cd2bce258a7d38c9847cc02d8f6fc51fc79a49c082fa1483ee69b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt.tmp
| MD5 | ed5c8b8b12ef5c6e376060a6ff64b30e |
| SHA1 | 30e448b5c3f2bd46bd1d1835b4d493f7801d811e |
| SHA256 | 0452fbc511943f32f70b1f2a7335186134af70cc181f0d63e00aa9897f0b7068 |
| SHA512 | 26e966f5f9077fd1e988b9f300cff1454b93c74e166049d1f6d8eeecc74fa61a4b67f1d74e1986d9fa2e90d5f8d9a50e632bbc7e655d0796a321fec8d8f9f452 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2c10fc41d7c6fed36ab6a2da8efc296f |
| SHA1 | a8d93c3b2cfd2c21023788f71efe25677e73dc1e |
| SHA256 | df2e9f66896f659f589b636c280e94b8251d2d6566f2e1df9a4335ca3db44c90 |
| SHA512 | 03503cf0a5e85c54b11397fbbf69b4f861841eafcfe8ac5e043bba5627f0e9ae3c7b782089fef7efcb58e4fa6b1f53204aeefeb627b0ae09a48e40f3301f302f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b8
| MD5 | 9d71fb47f66a28877912fc032226cc56 |
| SHA1 | 63b82287d01e003ce2b4711a3b1a6a90b185752b |
| SHA256 | c810d22b18073f1efb9bf3834c0e79576109ac7875a1a231198129c3a7b8d8b3 |
| SHA512 | a42b0a39e263eb253390247f1608468cdfe5fb55b5d5350d5f411701c596e324971363c83ee9f602a395a58693205b506cf2a70c0220f78006aedae09c6ad599 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ae
| MD5 | 98c4bf16f55aa4138effd446e4c73c19 |
| SHA1 | 9a84f990cd42cc550e43034f8b0533940c47726d |
| SHA256 | a23988894bd7faa26deebc5d01dde15a04997207ea4f666367fdc3468a1479b3 |
| SHA512 | 2b5162f3e3ee631115ae8312ab39f8d0e7c0872e69c9f0a9d0197f1fb82995649b90afdefaa3eeb3b7eb1a2ae5c92b5602b3404226a67113d3a26ee23c670892 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 358ea1886d30ed8b9e459abdcb2eb699 |
| SHA1 | 7d01acaec7a75d77757f5d82c0ccc4c5c5167091 |
| SHA256 | b67a00bb70e2d3ed12b688e259c490045cc05ed942e903a923aaf70a583ea27e |
| SHA512 | f0886965b5628ebb532ee731ca2e04ce755ae28241d49c00802aea1cf07e88f46073e491a616e8b1409279ce09f08283707265d7ce1eb1e14b0cbb4dcc46803e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | c3c7f1de4cf4a98ff88ef10a65026fe5 |
| SHA1 | 9e16470547443c179562a59e8050f1c1fb351598 |
| SHA256 | ec0608c5a8a86abf614acbd757436db4f150dde8090d7335271cf33098fafb53 |
| SHA512 | 2d022d8fc8c70ffa91d65c38e4cc518e1c5f2399c3e56febc794432c22bde7d5a88dc994818ec3e79f723f4a8318659a1643c5824c0fb239d0863960490d0c20 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 71a495ffe1026b9fd4a82ab66e2d9f00 |
| SHA1 | a432aad6c4042a41510addc3dc88fd0c576d741d |
| SHA256 | c6e493deddd7c920826e170d8dd4c5fa9860258619d8d386f146f2bca70e48a2 |
| SHA512 | 58927cced07208dfb97185430ab07c2312778d11e7c2f698c609fde3283823141e6ff5a03b30ceef09e6865e32f30e11760a319342b93709412a14e0e5175bff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | 1054e78f17db6eb8fbe6734fffaf7d27 |
| SHA1 | e3f94c11a744325d5b780acfbd6cef4f234295cb |
| SHA256 | 58b2aebc09bee4ac7057eebe2f90693b66fb625f56c77d00b9ea70acb6c20c92 |
| SHA512 | 446d5508d30c6e11728786b3144f3b634852de7dc925fd963b4646cae8e049cd3d884a0c374bc2dfcfc154e3ae92b4218bf7950a04506f3b5a285d619110857b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | acaea83c1fd79c551465d2023bacd681 |
| SHA1 | 52fdc737a245db4f411c7bf59b996fa8e476bdcb |
| SHA256 | d1ba8140f585aa028fb481338dae2a8c3cd02ea314e7945a821d148a6a5c1f87 |
| SHA512 | 58a0aac3f90e3bf305d19e2bf8f88fed58a5ac387799c081b7e1d4dde243165ddfb643ecea09af5a00b5ffb4f6f90ae9f4b8d8d0b1ff30e4989b53bc8241860f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b1
| MD5 | 750ac1afc9ee7dd557768978d15fba50 |
| SHA1 | 133e9d996f8168881eb07ba83a018f738f5c35d8 |
| SHA256 | e1210625fe8a5279775627c004cc39fa045940ed57229f39d3d472c53d306fa0 |
| SHA512 | 1b1dec12c116459a70bc7dcd657aee3c1616e75c26cb02db4775177cc2a76d616e3156c3c12914b8fa826b9009e2715a7a1215c8ba317737d01129418717ae50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b2
| MD5 | 3dfe21a99e36122cd7546f3715bea195 |
| SHA1 | cf14a670e3173a6a2228c2a18f814500ab40fc8b |
| SHA256 | 14fd31b8f71e6608c396c2016fc1679e154c31e83321cd66d4240bac07a7afdb |
| SHA512 | 8ff358eace7ff2b9561998755e47a8e85321fdf560788daa14ea0305183e8d6b999639775de37b1fa631c74ef05d9ce553c99190192ff1b5bc229d1c70ad2e79 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b0
| MD5 | ac83857f0497a4a0e7669329827cf228 |
| SHA1 | 18ea483c966969e43a654fcadea9719a8aca370c |
| SHA256 | 43337a1354f376890cdb73f3dbaf95a8027761c574c30cdecb321096be485d3e |
| SHA512 | 6a35c50764d31d4bac07ddbec2329238cd04f2c58c00629e523ae7fc2a7d6be5d1226f8fb6c3c1043b215c38c47951a66fa8a9d4f4d6ddce7664bd1d011db2aa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3
| MD5 | 94467638ef8d7e781e4a65449cfd0cdf |
| SHA1 | 07b315043c92ca7de37c2de6e791513869a17fb5 |
| SHA256 | ff7abe86cde71bb1d9534fe637e35b9922b84c1c9ee5ed2a447b5086bfea9b9c |
| SHA512 | c8ea932dd4f58d981afbb465b0d64edf3ed79381e2bd14e1bb76b5d2284e1c72c17d5f13088d5adb062bb5367f33a045f0068b4eb15b35841233275575daabe6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old
| MD5 | 5b6bf7fa2003b055cabcc9bb7a3dd425 |
| SHA1 | 1f0796d09be139ed96aa8f996ff912d4d9d38749 |
| SHA256 | ab6d1554ef8cd62ac09d11c8437e38e198301f642a28e0b39e3bad31c815db56 |
| SHA512 | 822adf19b0b8c89b0475f4a0c0497ffc08a7dd41bc4e77b6cdeb31a1090d8572ca147f5f5645bd1f9a98498b511e439ef0b36c5b2689a7ee0b0e37c4b9ef98b9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old~RFe5c5674.TMP
| MD5 | 96f338e72225c794bf19d8f6d5c461e0 |
| SHA1 | 204ceaa701b2d1b62af3d04f955f8af3b99b12f3 |
| SHA256 | b59b4d2a96dba22cdd257b5cfa01a5db153c1079c14d60ac9e1b13671f16b718 |
| SHA512 | 55fb21d21ae60249a364d7c93dfb54e7d9ed86bb7d608e1f5b12aefc28d0de7c0d2356233ed1c3a9d3b508c67df3173893437a54cd275c7e4a93cc7669e33008 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b4
| MD5 | 803e5c41b9fcf6f3a121e4d273de89d5 |
| SHA1 | b763ee2f37610ad8f5c04e3e6609cd0335093576 |
| SHA256 | 992584bedcc075da716dfb9f12ec53ec2693e0036dc90dd2829ddb04556425a7 |
| SHA512 | c7c36fc779446620fb8140f3cb60caa8bb3c6464e0311d5e590461c797678f4810b8b438cd7d38023a299bf04b4a31612dfe2a7df9e5c03c3b285998bec835d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | b30a9d2f1b03f4eb4a0929b68e5e7b34 |
| SHA1 | 5d20cb50b14bb26224e08357731eda0f4996c7fc |
| SHA256 | 4e69ea1c4965ea4a53c5b46e8de0849e13f9c4dc1c2c64c056c298a5d53e5cec |
| SHA512 | 942393e948ac4d29516494b5a5365363f9cab828a67853a066bc58632b9f04eb334e1fcac73424b78bcab3c53ccefd19ebd320c2ec57ae055f6941946623d533 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 779c252346e0dba568ecdda697493178 |
| SHA1 | e265f4fe583e5ada317ef9d5fca875fe2b77607a |
| SHA256 | a6d2079c504ebb85e83025d60a922b5e7d153371ca66bd7f920da3b0a50a1de8 |
| SHA512 | d101ab10d1241df743daeeb8a20893efe4046d95f77169ebdcabb05607e3b60ed8b985e0483c7b9cdd06d0b1073d2ff20a6a02d02fceaf40f35283fd37671bf6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ce
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\000003.log
| MD5 | f1b3a7a2d059117dfb70178e542caf04 |
| SHA1 | 09f25ceb25d054934a387ae5611220a61e13bcbd |
| SHA256 | 9bf6d90a2ba4fa68daea80e1dee1b139046ba2aaf337f8623bfe3295acaeea5b |
| SHA512 | 2f97389aae777cacb45bc8a086f3cb9ab52aa54b1be006de8ced94ad8bd4137d33b4f64daf05fa99e7800beb489482b1d4ca15d3442540d68f08660187d3939b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index
| MD5 | 54cb446f628b2ea4a5bce5769910512e |
| SHA1 | c27ca848427fe87f5cf4d0e0e3cd57151b0d820d |
| SHA256 | fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d |
| SHA512 | 8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 852d9e22230e77e6607d0f665d8d1222 |
| SHA1 | d3a97e987b6daed99ffcb39b45f323ccad86e840 |
| SHA256 | 658124deda63bf052c4de9954f49f0e8fd8ba4203efcb94127765436119ced46 |
| SHA512 | 29400a15282ea36e6f6a451bc78b689a157dde3a9fc444e830da46c6de680b1c5f99b06111373471a4aeee45695d81858f918875dc59ba722d99b80b5d218ed8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d0a6c731bcbab3bbc448b6619cb4f75c |
| SHA1 | 5be14ae7f06df33af1d947433acd52017f0aa79e |
| SHA256 | 4aa3779a05298784e972670da2daec4e00232c2efb034dc79f8df854dc0beb6f |
| SHA512 | e4a2360c734746c842728a9a1f131c043d0c4ecf0bb904c5611f80ace87874e8ed478f56f22eabd4c3aca5e1c6beebeb202da59f91690afa4d63bd107f4587ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 72f3f1d150f5ab4541e5cd4754d65ffe |
| SHA1 | 0b61182a05009dd31ba5ca8f6e8c437e76600191 |
| SHA256 | 2656f05050c718efcf830898c192d835791863148167fa3e6ffa05ac85a9806f |
| SHA512 | c631f50a499bd06f01af0a74090ddff151d4944a4def856e402b145e5f88d004092c0eb8efcefd59f960b3f8b4b042057fdf39e882238272694874c7843bf63d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5607dfb857ca433592dfba008cae1f09 |
| SHA1 | 6248667c6817734ec09ec95505013c45bcccf40f |
| SHA256 | 96e98697ffcd1abd84c9bd910b0363e280d542e50f0958ac3332c6cab8605a01 |
| SHA512 | 2e1e824f0be04a6c6ae715a60fc540c9c260c30085ddd50f26a909a31bad9d59df6597d7d4ef1397663c2e4b8036599bf9fd7d91c09d3ebc0dc46905b1ec0251 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | c104dc23d005587d690df7fb8a63edcd |
| SHA1 | d120dd2905e1a38f9006ce04ed3504089fbe98ea |
| SHA256 | 6b41056526f7ad4cb28a07eef205d4764663e03c130765ffe24ab15db9fb09cb |
| SHA512 | 2608d5b80040c2e5cfbd47d1618ec9ddcaf94ca044e24096c17f8f8af7f57f9d9825a27328b042e7c57ca6bd33e06d94b786705b4e2544d1c166fceab6396560 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5cd98f.TMP
| MD5 | 036efd0cdd2d949c70b6c7e8cbc2e2f0 |
| SHA1 | 1976a5f525f6fb243f7d7ec2b47b5098dcf2124a |
| SHA256 | d35780fb4d7ea0ff79a7a9abb662b6e1e703b802113052be5619aa93077d15db |
| SHA512 | 53c3b8c752ef2856faff146f36103780cf86c1b37353bc92da67bbb17b82a82d6939a0e40c4f08db81436c592a280952a2ed6206f291d0223046f0a68a786904 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c924508bcc9bffa994d1ce83ca6ac906 |
| SHA1 | e537ae2ed37ff3331874da366d4093c2fb8d1649 |
| SHA256 | 918f68976e0898f77812cc37e75dcce428a202aac53bd8c8e4d790fb7ae7ba18 |
| SHA512 | d8d54ac0ff8aefb2e2bf9a811a51ad99e27c8b3d64efc0cde863a4548b80f501038acf7af5528661589b2f1475c502708d094e1fa069084c86607e67210fe9bb |
C:\Users\Admin\Downloads\lndl_tlauncher-2.72-installer-0.6.6.zip.crdownload
| MD5 | 788d551a2dbfd28a077f0e6701e76d12 |
| SHA1 | 221ca8864c4f9e53ca6cdbc7c21bdb3b031dad97 |
| SHA256 | 530639ab939c2c77fe86b30d56cf5e94de7271c51683ec583cdb5dc3676809b1 |
| SHA512 | cdbbe839d6ccb2f6a80f5438de3e75b4277f36be7591fb92a093bf9386db46ae65d871f7252786b101dc35de5d15b3b856a2a14ccc14f25c42f6a9ebdac6aa76 |
memory/3900-2355-0x0000000000A40000-0x0000000000E28000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 84695c51f53ea8ba5c16e15115777a00 |
| SHA1 | 66ef7d4135bdc0487e3e9430a4f5a6f57c3aadce |
| SHA256 | 6c5b6e033c76fa1f1bf704e63d367f1ee6447de926baee722fefd241e192223a |
| SHA512 | 423c6d59f8f604f9e7982c49a5bd87aae4e641297e1e2b42df6b6c498856848dde6aebf8131429fbc27a423cef6afe397c75ae66bd3d1d30ea0752e530869385 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\200.ico
| MD5 | e043a9cb014d641a56f50f9d9ac9a1b9 |
| SHA1 | 61dc6aed3d0d1f3b8afe3d161410848c565247ed |
| SHA256 | 9dd7020d04753294c8fb694ac49f406de9adad45d8cdd43fefd99fec3659e946 |
| SHA512 | 4ae5df94fd590703b7a92f19703d733559d600a3885c65f146db04e8bbf6ead9ab5a1748d99c892e6bde63dd4e1592d6f06e02e4baf5e854c8ce6ea0cce1984f |
memory/3900-2576-0x0000000010000000-0x0000000010051000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\Wow64.lmd
| MD5 | da1d0cd400e0b6ad6415fd4d90f69666 |
| SHA1 | de9083d2902906cacf57259cf581b1466400b799 |
| SHA256 | 7a79b049bdc3b6e4d101691888360f4f993098f3e3a8beefff4ac367430b1575 |
| SHA512 | f12f64670f158c2e846e78b7b5d191158268b45ecf3c288f02bbee15ae10c4a62e67fb3481da304ba99da2c68ac44d713a44a458ef359db329b6fef3d323382a |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG2.PNG
| MD5 | 002d7b09d84ce8afb28af5839f045d2c |
| SHA1 | 1f98419d57ba89949a5f39d0669fa6cc74e58cda |
| SHA256 | 21a14265d8815b4130db57a1fbb72c01b2672443a2bf2d5dff327cfea6eaba46 |
| SHA512 | 0d484b1b589cd8e9d25ed1ec362f8747f3897a08bca3432e562242028633b9db09e3c6d02bdb4d40eafdb6a31bba969b053fba0c8751fde3af56833deb625be1 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_0\IRIMG3.PNG
| MD5 | 4e9c9a3e0decd223efc59ac883b1bfb7 |
| SHA1 | 45d306055040c88de7647042f7e84e903ea3d4b0 |
| SHA256 | 38935d0ae50737207a1b016ea1d8e414f3baa4ad652d4d60ee291d9077421dc4 |
| SHA512 | 098bd638ff48c41edabbf48db832ba738cc59ede849f509d77bb347c6544c8a7a9294f08ce39391bd2ca9913393ccc477f74310b872f24ac65fcfe96c53055f7 |
memory/3900-2604-0x0000000000A40000-0x0000000000E28000-memory.dmp
memory/3900-2651-0x0000000010000000-0x0000000010051000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.exe
| MD5 | aaf77b5a4b81388b3f03c2cb1929eb3f |
| SHA1 | 5335d13255ac92b8c85fdf9a9a9b87030a2ee8b2 |
| SHA256 | b7e83d228cb4930a83f9df33a2345f9e937136e517a4d877718154f986ec3214 |
| SHA512 | 48d9ff21aa259eaa61fd6707f4db43ce4a888fb7ff9f8cc84391f722ce1e5fe11fc42d8ee10f572a8c02689f85f787a6f961e0570436fe970e0fa0c72a25facc |
memory/6852-2660-0x0000000000B80000-0x0000000000F68000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\irsetup.dat
| MD5 | de4e4a622447d10af3a35dabc5818897 |
| SHA1 | 052680ead76256d639b35b3653185411e2e7b997 |
| SHA256 | 7afa6e6c1011d13c013740aacf45bdeba82358362ae3a349236cce9c6b65f646 |
| SHA512 | b4c31c128941f2d50761a77ce5301c2807aaf54c0569ae7a531ea3eb1c526bcbdf3dc3c620b6ba6644efb3e0aeca29c855800ae80f6a75c6be01c9b0d8c76a02 |
memory/6852-2870-0x0000000010000000-0x0000000010051000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG5.PNG
| MD5 | 3d0673a9db0f08a324fe31cb288ae29e |
| SHA1 | 53d04960c0cbe4fa62fa5790684f52b9e0106588 |
| SHA256 | e902ed708a62e7627ee891526e11e65ff93c9711bb59dfc6e4551212a798d3eb |
| SHA512 | 9532178f91871ff27b93050ea98949426f980e333be777e0a97bdde00fd68314d3728d24b7372973d92f48bf58d1775b9ed2ff40d433fb241ca766ef01b035b4 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG1.PNG
| MD5 | 108009806c86154147a3db0200e7a558 |
| SHA1 | 91de4ab62bc8346cdc9cac18f94b81ae7cd746e9 |
| SHA256 | 481cb516f2e5e1863db5509fd19846214e86dad3cc2c1003ee92a4205ba40bb8 |
| SHA512 | 88ef993f5057148dd6730249fcf730d4fa78a071e899f3364187de4f072b007cde5660dc4e53f061698b1f5f57d0068bf5f0d03d10d49f206d799ddece3b3445 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG4.PNG
| MD5 | fcb6a1901df8c7affa94c53e9118ea45 |
| SHA1 | e201be88a43c7a5da083116306e2d2a4bb053083 |
| SHA256 | 190a91d287fb20013f0b754bbc612653e6adea96dcf0b7cd6e78d6c15e064a69 |
| SHA512 | a2bec34c04d6c187694ad1bb0021a9fda2a305d7f0d7bd8657baeb2d13e11eae9d1e095f4a0a6d6bbdfc80998159302c5e62019716c9b1a02ecbbcf97b6f1cc3 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG23.PNG
| MD5 | d0ce75b54c461d53e9cc541b34bb5c21 |
| SHA1 | 69049eb2c570641f3eaae8eff0d87b42d74244c3 |
| SHA256 | bcd4aab9275dcd7c8be4b3079ba539c02c25cbad720ac2b1f7352bdfd7a73021 |
| SHA512 | f9f9b030a57d080a4675e93b76344458acfc20db60ce51328ae3f2faac6b6f71d34131818691e54079b6a6f6f8011a008e5a5088411d5d3aaa784355a6eecbdc |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG42.PNG
| MD5 | b29d1db21a731ce7c02b4d336334f7ee |
| SHA1 | 52ea4ee4cfa82cc22a1edc8ff7999ea13f2029a6 |
| SHA256 | faa23b23d935e54a80cf8f9def978d43d0cccda9dc2e523402d5992f21820c04 |
| SHA512 | 6c0b96deb9c00fb75e54d1d0fa32482fcf57cfbcd7ff32aad3f53357e70f036fc787a62346a106c1d2fc02241550a8f2142648428f5a133c1e6586187157cb53 |
C:\Users\Admin\AppData\Local\Temp\_ir_sf_temp_1\IRIMG41.PNG
| MD5 | 02b61339e2dbee99f5c8bc93183a2345 |
| SHA1 | f6e71e0a6b8215ea91daa7b6302c869d669654b2 |
| SHA256 | 3db30d797e9fd97fdd63e1bee031477726748e853a61a1cb348837a1d9598012 |
| SHA512 | 3d9152994bd3f6204588acddc952960de69e3b2d7c23aecdba52f1a72a30a3912755a492055ae2fe31003a16b002cd486e8da5c6f3ab0a62b82ea780c8e319a8 |
memory/6852-2908-0x0000000000B80000-0x0000000000F68000-memory.dmp
C:\Users\Admin\AppData\Roaming\AnyDesk\user.conf
| MD5 | b1ec1122bfb9b11a3d27c1b7a7b8facc |
| SHA1 | e4462efc9a93be48fb6213ffed16cc37f4a6e0a6 |
| SHA256 | e38625c936a94d0a56c85693c74ec16f392893c7fbbae4414da74b35bb394f87 |
| SHA512 | 767cf3b0c9d5c8cf3c60139046e550fd6c26b3546e12864478624e1a7408bca051fa839c09041025c5331d2835ae07641e36771e60788d06bd5097cc49979fae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 42a034b5abc74a3c7e7caf3b2bf6e3de |
| SHA1 | 59b575d9072291e79e9aa8b2cd2e5609be0f6f9a |
| SHA256 | 2ff08f8b235f3bd5481d02aba3a0c02a1d1f678f67d5a298e9fa0f6ac25ab885 |
| SHA512 | 45efbb499c921a489fdfec492eb9fd1e89be7574f6cde5b77f590d7a854252f0844b7dc14d988999eb4bf823ca2b93eb1db4d3564adb91bcd0cacfdc577688bb |
memory/6852-3008-0x0000000010000000-0x0000000010051000-memory.dmp