Analysis Overview
Threat Level: Known bad
The file https://www.mediafire.com/file/5utoofxdfp7uqxc/Yuqu_v_7.99.zip/ was found to be: Known bad.
Malicious Activity Summary
RedLine payload
RedLine
Loads dropped DLL
Executes dropped EXE
Reads user/profile data of web browsers
Checks installed software on the system
Accesses cryptocurrency files/wallets, possible credential harvesting
Suspicious use of SetThreadContext
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Modifies data under HKEY_USERS
Suspicious use of WriteProcessMemory
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-23 00:13
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-23 00:13
Reported
2024-05-23 00:44
Platform
win10v2004-20240426-en
Max time kernel
1799s
Max time network
1793s
Command Line
Signatures
RedLine
RedLine payload
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\Yuqu v_7.98.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Yuqu v_7.98.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Packaged\crashreporter.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Debug\crashreporter.exe | N/A |
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\Debug\crashreporter.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Debug\crashreporter.exe | N/A |
Reads user/profile data of web browsers
Accesses cryptocurrency files/wallets, possible credential harvesting
Checks installed software on the system
Suspicious use of SetThreadContext
| Description | Indicator | Process | Target |
| PID 7664 set thread context of 7184 | N/A | C:\Users\Admin\Downloads\Yuqu v_7.98.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
| PID 3920 set thread context of 3944 | N/A | C:\Users\Admin\Downloads\Yuqu v_7.98.exe | C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133608968800569571" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-540404634-651139247-2967210625-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://www.mediafire.com/file/5utoofxdfp7uqxc/Yuqu_v_7.99.zip/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff87912ab58,0x7ff87912ab68,0x7ff87912ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1684 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2160 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2212 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3080 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3100 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4408 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=5100 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5552 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4944 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5560 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=4536 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=3596 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4508 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5712 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5364 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5976 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6120 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6268 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6416 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=6560 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6712 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7012 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7020 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7372 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7508 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7312 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7840 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=7368 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8160 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=8152 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=7356 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=8196 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=8204 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=8228 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=8236 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=8248 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=8396 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=8412 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8428 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8940 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8980 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=9004 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=9020 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=9036 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=9052 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9060 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=10772 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=11344 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=11132 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=11204 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=8580 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=11332 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=11632 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=11600 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=12272 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8524 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=12068 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=12304 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=12496 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=12660 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=12820 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=12840 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=13116 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2356 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=11656 --field-trial-handle=1936,i,16212058865639575611,9710332055096963134,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\" -an -ai#7zMap22154:84:7zEvent4728
C:\Users\Admin\Downloads\Yuqu v_7.98.exe
"C:\Users\Admin\Downloads\Yuqu v_7.98.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff8791346f8,0x7ff879134708,0x7ff879134718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2152 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2232 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2700 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3436 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4780 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2824 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3540 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3540 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4764 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5108 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,12428946578418146127,3114594209272703197,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3996 /prefetch:1
C:\Users\Admin\Downloads\Yuqu v_7.98.exe
"C:\Users\Admin\Downloads\Yuqu v_7.98.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
C:\Users\Admin\Downloads\Packaged\crashreporter.exe
"C:\Users\Admin\Downloads\Packaged\crashreporter.exe"
C:\Users\Admin\Downloads\Debug\crashreporter.exe
"C:\Users\Admin\Downloads\Debug\crashreporter.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff878f7ab58,0x7ff878f7ab68,0x7ff878f7ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1776 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2140 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2264 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3104 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3112 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4440 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4568 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4752 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4904 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4900 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4904 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4744 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4700 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x254,0x258,0x25c,0x9c,0x260,0x7ff646d4ae48,0x7ff646d4ae58,0x7ff646d4ae68
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4660 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5760 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5932 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x320 0x4f0
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5816 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6124 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5900 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1988 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4764 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5652 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=1628 --field-trial-handle=1964,i,1476856151100625297,2001460834616205998,131072 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.113.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 172.67.199.186:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 104.16.113.74:443 | static.mediafire.com | udp |
| US | 104.21.63.106:443 | www.ezojs.com | tcp |
| US | 8.8.8.8:53 | 58.55.71.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.113.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| GB | 142.250.187.238:443 | translate.google.com | tcp |
| FR | 18.244.28.11:443 | cdn.amplitude.com | tcp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | tcp |
| GB | 142.250.187.238:443 | translate.google.com | tcp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.16.52.110:443 | cdn.otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| FR | 15.188.219.54:443 | g.ezoic.net | tcp |
| FR | 15.188.219.54:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| GB | 142.250.180.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 172.67.199.186:443 | privacy.gatekeeperconsent.com | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 106.63.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.52.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.219.188.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.142.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 172.67.142.121:443 | go.ezodn.com | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| US | 8.8.8.8:53 | download2296.mediafire.com | udp |
| US | 199.91.155.37:443 | download2296.mediafire.com | tcp |
| US | 199.91.155.37:443 | download2296.mediafire.com | tcp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| US | 172.67.142.121:443 | bshr.ezodn.com | tcp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | udp |
| US | 52.88.132.196:443 | api.amplitude.com | tcp |
| GB | 142.250.200.34:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | googleads.g.doubleclick.net | udp |
| US | 104.16.52.110:443 | otnolatrnup.com | udp |
| US | 172.67.142.121:443 | bshr.ezodn.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| FR | 18.155.129.56:443 | tags.crwdcntrl.net | tcp |
| IE | 52.49.45.15:443 | ad.crwdcntrl.net | tcp |
| US | 52.88.132.196:443 | api.amplitude.com | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.155.91.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.132.88.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.45.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| FR | 18.155.129.109:443 | woreppercomming.com | tcp |
| US | 8.8.8.8:53 | www.ovardu.com | udp |
| US | 104.21.96.72:443 | www.ovardu.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 109.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 205.47.74.20.in-addr.arpa | udp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 15.188.219.54:443 | g.ezoic.net | tcp |
| GB | 185.83.69.58:443 | ghb.adtelligent.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| FR | 18.244.28.86:443 | hb.yellowblue.io | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| IE | 54.229.235.11:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | bd699713d463e1c1ad248af01a0f1a9b.safeframe.googlesyndication.com | udp |
| FR | 18.244.34.129:443 | cdn.prod.uidapi.com | tcp |
| US | 172.64.152.89:443 | cdn-ima.33across.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | 154.239.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.69.83.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.30.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.235.229.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| GB | 172.217.169.65:443 | bd699713d463e1c1ad248af01a0f1a9b.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| DE | 142.132.249.188:443 | ghb1.adtelligent.com | tcp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| DE | 162.19.138.83:443 | id5-sync.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.152.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.34.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.249.132.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 52.213.68.198:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| FR | 99.86.91.26:443 | api-2-0.spot.im | tcp |
| DE | 37.252.171.21:443 | secure.adnxs.com | tcp |
| DE | 37.252.171.21:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 50.31.142.159:443 | b1sync.zemanta.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| IE | 52.48.246.250:443 | match.prod.bidr.io | tcp |
| IE | 52.48.246.250:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| SE | 23.32.84.225:443 | ads.pubmatic.com | tcp |
| FR | 18.164.52.25:443 | s.ad.smaato.net | tcp |
| IE | 52.95.115.255:443 | aax-eu.amazon-adsystem.com | tcp |
| SE | 23.32.84.225:443 | ads.pubmatic.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | sync.serverbid.com | udp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| FR | 52.222.201.64:443 | sync.serverbid.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| DE | 162.19.138.83:443 | lb.eu-1-id5-sync.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 34.198.38.143:443 | aorta.clickagy.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.68.213.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.246.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.84.32.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.52.164.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 255.115.95.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 2.17.251.11:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 50.31.142.159:443 | b1sync.zemanta.com | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| FR | 5.196.111.68:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 50.31.142.159:443 | b1sync.zemanta.com | tcp |
| BE | 23.55.98.169:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | odr.mookie1.com | udp |
| US | 52.86.155.245:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| US | 107.22.9.250:443 | cs-server-s2s.yellowblue.io | tcp |
| IE | 108.128.74.207:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| DE | 3.123.208.101:443 | rtb.mfadsrvr.com | tcp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| US | 50.31.142.159:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | static.smilewanted.com | udp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 89.149.192.245:443 | ssbsync-global.smartadserver.com | tcp |
| GB | 185.64.190.84:443 | ow.pubmatic.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| DK | 37.157.2.230:443 | cm.adform.net | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 192.132.33.68:443 | bttrack.com | tcp |
| NL | 188.42.191.196:443 | ads.betweendigital.com | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 8.8.8.8:53 | ads54.adtelligent.com | udp |
| FR | 149.202.238.104:443 | sync.smartadserver.com | tcp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| NL | 35.214.185.183:443 | csync.loopme.me | tcp |
| DE | 91.228.74.166:443 | cms.quantserve.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| FR | 91.134.110.136:443 | rtb-csync.smartadserver.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| IE | 52.95.115.255:443 | aax-eu.amazon-adsystem.com | tcp |
| FR | 91.134.110.136:443 | rtb-csync.smartadserver.com | tcp |
| FR | 91.134.110.136:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| SE | 213.155.156.169:443 | d5p.de17a.com | tcp |
| IE | 63.32.224.138:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| IE | 63.32.224.138:443 | pr-bh.ybp.yahoo.com | tcp |
| SE | 213.155.156.169:443 | d5p.de17a.com | tcp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | 22.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.38.198.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.146.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.98.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.236.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.74.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.208.123.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.9.22.107.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 245.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.191.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.185.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.110.134.91.in-addr.arpa | udp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| GB | 142.250.200.34:443 | googleads.g.doubleclick.net | udp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| GB | 185.83.69.58:443 | ads54.adtelligent.com | tcp |
| US | 8.8.8.8:53 | cdn.mediago.io | udp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| US | 8.8.8.8:53 | cdn.adnxs.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| FR | 52.222.149.5:443 | cdn.mediago.io | tcp |
| SE | 23.32.84.208:443 | cdn.adnxs.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.224.32.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.149.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.84.32.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | images.mediago.io | udp |
| IE | 79.125.111.123:443 | ice.360yield.com | tcp |
| US | 34.111.60.239:443 | images.mediago.io | tcp |
| FR | 52.222.149.5:443 | cdn.mediago.io | tcp |
| US | 8.8.8.8:53 | trace-eu.mediago.io | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 35.244.159.8:443 | u.openx.net | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 96.46.186.182:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| DE | 116.202.167.133:443 | inv-nets.admixer.net | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | r.casalemedia.com | udp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | 123.111.125.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.60.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.167.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 182.186.46.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.174.214.35.in-addr.arpa | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | gtrace.mediago.io | udp |
| NL | 35.214.168.80:443 | gtrace.mediago.io | udp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.2.110.33:443 | us.shb-sync.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | live.primis.tech | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| FR | 52.222.201.10:443 | live.primis.tech | tcp |
| US | 104.18.41.104:443 | capi.connatix.com | tcp |
| DE | 18.192.200.108:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| FR | 141.94.240.143:443 | green.erne.co | tcp |
| US | 104.18.41.104:443 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| FR | 141.94.170.64:443 | pixel.onaudience.com | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| FR | 141.94.170.64:443 | pixel.onaudience.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DE | 18.184.216.10:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| DE | 18.184.216.10:443 | ps.eyeota.net | tcp |
| DE | 18.184.216.10:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | 10.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.200.192.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.240.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.170.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.216.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| DE | 142.132.249.188:443 | ghb2.adtelligent.com | tcp |
| GB | 142.250.200.34:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.197.17.2.in-addr.arpa | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| RU | 147.45.47.64:11837 | tcp | |
| US | 8.8.8.8:53 | 64.47.45.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| RU | 147.45.47.64:11837 | tcp | |
| US | 8.8.8.8:53 | 19.229.111.52.in-addr.arpa | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tiohentai.com | udp |
| US | 172.67.159.40:443 | tiohentai.com | tcp |
| US | 172.67.159.40:443 | tiohentai.com | tcp |
| US | 172.67.159.40:443 | tiohentai.com | udp |
| US | 8.8.8.8:53 | use.fontawesome.com | udp |
| US | 8.8.8.8:53 | a.realsrv.com | udp |
| US | 172.67.142.245:443 | use.fontawesome.com | tcp |
| GB | 195.181.164.16:443 | a.realsrv.com | tcp |
| GB | 195.181.164.16:443 | a.realsrv.com | tcp |
| US | 172.67.142.245:443 | use.fontawesome.com | udp |
| US | 8.8.8.8:53 | syndication.realsrv.com | udp |
| GB | 142.250.180.10:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 40.159.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 245.142.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.164.181.195.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | s3t3d2y8.afcdn.net | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | u3y8v8u4.aucdn.net | udp |
| GB | 195.181.164.18:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.17:443 | u3y8v8u4.aucdn.net | tcp |
| US | 8.8.8.8:53 | 248.229.211.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.164.181.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.164.181.195.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 172.67.142.245:443 | use.fontawesome.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | tiohentai.disqus.com | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 199.232.192.134:443 | tiohentai.disqus.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | 134.192.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | disqus.com | udp |
| US | 8.8.8.8:53 | c.disquscdn.com | udp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 18.245.175.87:443 | c.disquscdn.com | tcp |
| US | 18.245.175.87:443 | c.disquscdn.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | 134.64.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.viglink.com | udp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | a.disquscdn.com | udp |
| US | 8.8.8.8:53 | referrer.disqus.com | udp |
| FR | 18.244.28.122:443 | cdn.viglink.com | tcp |
| FR | 18.244.28.122:443 | cdn.viglink.com | tcp |
| US | 199.232.194.49:443 | a.disquscdn.com | tcp |
| US | 199.232.192.134:443 | referrer.disqus.com | tcp |
| US | 8.8.8.8:53 | links.services.disqus.com | udp |
| US | 199.232.192.64:443 | links.services.disqus.com | tcp |
| US | 8.8.8.8:53 | 122.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.194.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.192.232.199.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | mega.nz | udp |
| LU | 31.216.145.5:443 | mega.nz | tcp |
| US | 8.8.8.8:53 | realtime.services.disqus.com | udp |
| US | 54.227.95.54:443 | realtime.services.disqus.com | tcp |
| US | 8.8.8.8:53 | g.api.mega.co.nz | udp |
| US | 8.8.8.8:53 | eu.static.mega.co.nz | udp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.14:443 | g.api.mega.co.nz | tcp |
| LU | 89.44.169.132:443 | eu.static.mega.co.nz | tcp |
| LU | 89.44.169.132:443 | eu.static.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 5.145.216.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.125.203.66.in-addr.arpa | udp |
| LU | 89.44.169.132:443 | eu.static.mega.co.nz | tcp |
| US | 8.8.8.8:53 | gfs206n207.userstorage.mega.co.nz | udp |
| BE | 94.24.37.117:443 | gfs206n207.userstorage.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 132.169.44.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.37.24.94.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gfs270n357.userstorage.mega.co.nz | udp |
| LU | 89.44.168.67:443 | gfs270n357.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.67:443 | gfs270n357.userstorage.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 67.168.44.89.in-addr.arpa | udp |
| LU | 89.44.168.67:443 | gfs270n357.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.67:443 | gfs270n357.userstorage.mega.co.nz | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | 84.65.42.20.in-addr.arpa | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| GB | 142.250.187.238:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 195.49.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| ES | 172.217.168.163:443 | beacons2.gvt2.com | tcp |
| ES | 172.217.168.163:443 | beacons2.gvt2.com | udp |
| US | 8.8.8.8:53 | 163.168.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tiohentai.com | udp |
| US | 8.8.8.8:53 | a.realsrv.com | udp |
| US | 104.21.27.152:443 | use.fontawesome.com | tcp |
| US | 172.67.159.40:443 | tiohentai.com | udp |
| GB | 89.187.167.7:443 | a.realsrv.com | tcp |
| US | 8.8.8.8:53 | c.disquscdn.com | udp |
| FR | 13.32.145.81:443 | c.disquscdn.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | 7.167.187.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.145.32.13.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | tiohentai.disqus.com | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 199.232.192.134:443 | tiohentai.disqus.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | cdn.viglink.com | udp |
| FR | 18.244.28.122:443 | cdn.viglink.com | tcp |
| US | 151.101.64.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | referrer.disqus.com | udp |
| US | 199.232.192.134:443 | referrer.disqus.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | links.services.disqus.com | udp |
| US | 199.232.192.64:443 | links.services.disqus.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | mega.nz | udp |
| LU | 31.216.144.5:443 | mega.nz | tcp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 54.227.95.54:443 | realtime.services.disqus.com | tcp |
| US | 8.8.8.8:53 | g.api.mega.co.nz | udp |
| LU | 66.203.125.12:443 | g.api.mega.co.nz | tcp |
| LU | 66.203.125.12:443 | g.api.mega.co.nz | tcp |
| US | 8.8.8.8:53 | s3t3d2y8.afcdn.net | udp |
| GB | 89.187.167.7:443 | s3t3d2y8.afcdn.net | tcp |
| US | 8.8.8.8:53 | 12.125.203.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.144.216.31.in-addr.arpa | udp |
| CA | 162.208.16.109:443 | gfs302n209.userstorage.mega.co.nz | tcp |
| CA | 162.208.16.109:443 | gfs302n209.userstorage.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 109.16.208.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gfs302n113.userstorage.mega.co.nz | udp |
| US | 8.8.8.8:53 | gfs208n139.userstorage.mega.co.nz | udp |
| US | 8.8.8.8:53 | gfs204n146.userstorage.mega.co.nz | udp |
| US | 8.8.8.8:53 | gfs270n121.userstorage.mega.co.nz | udp |
| US | 8.8.8.8:53 | gfs214n139.userstorage.mega.co.nz | udp |
| US | 8.8.8.8:53 | gfs262n333.userstorage.mega.co.nz | udp |
| FR | 185.206.26.49:443 | gfs208n139.userstorage.mega.co.nz | tcp |
| FR | 185.206.26.49:443 | gfs208n139.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.181:443 | gfs270n121.userstorage.mega.co.nz | tcp |
| LU | 89.44.168.181:443 | gfs270n121.userstorage.mega.co.nz | tcp |
| DE | 94.24.36.43:443 | gfs262n333.userstorage.mega.co.nz | tcp |
| DE | 94.24.36.43:443 | gfs262n333.userstorage.mega.co.nz | tcp |
| CA | 162.208.16.23:443 | gfs302n113.userstorage.mega.co.nz | tcp |
| CA | 162.208.16.23:443 | gfs302n113.userstorage.mega.co.nz | tcp |
| NL | 185.206.24.74:443 | gfs204n146.userstorage.mega.co.nz | tcp |
| NL | 185.206.24.74:443 | gfs204n146.userstorage.mega.co.nz | tcp |
| ES | 185.206.27.49:443 | gfs214n139.userstorage.mega.co.nz | tcp |
| ES | 185.206.27.49:443 | gfs214n139.userstorage.mega.co.nz | tcp |
| US | 8.8.8.8:53 | 49.26.206.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.36.24.94.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.168.44.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.27.206.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.24.206.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.16.208.162.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | syndication.realsrv.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons5.gvt3.com | udp |
| US | 192.178.49.163:443 | beacons5.gvt3.com | tcp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | 163.49.178.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
Files
\??\pipe\crashpad_4352_ZDPFLNNPCQJMDAJU
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 90b8e3c077c7289cf4b7078243e26f76 |
| SHA1 | c8e3387c59c20fcff770b846e972a52f7f93591c |
| SHA256 | 001c51870a28710313d50d9037f261881517a384d3e502d9112b04ea2e8538a1 |
| SHA512 | 4461003ce00d03608509d7ab645b933ec95c398623a1d8c6440c8a5b069d32e73aff391a1d3954511dfca7da698c0820970017b66629e3647800e5cc3920f1cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 04497a4cd1bb69c73f0db647b0b0adc2 |
| SHA1 | ecb48b8596ba0fd9b71c43463c0629794bdf8cbd |
| SHA256 | afeca782de0fc9352ed6803e39aa53c939ce2d01e68051c64399e0a72d83ff86 |
| SHA512 | 35b1c5f518099fa6aac31666bf239f5305534086683677cddfcdbccda652255f3b53ff163c2577f8ce7d9cb79e6d3288c8458af0db09762fe73be475864d563d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d328c2ff85c28b452c61097b8715d668 |
| SHA1 | f23042c30e69633f44d42c5a193ea6499f8a1f61 |
| SHA256 | e3544c08d8988daedbcbd2757b9993a44e46385e1e2e80491619aa8f00f0c1d6 |
| SHA512 | 3c19ff54331adf652a65c85f95e66b249a3c3b734390116aff5bdd4499e44b0ee1e7673735e1a3caa83871344bcd171306ba9811d788824961b4ab55cbed76a0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fd7d3da8abc65cf531412db601c65f22 |
| SHA1 | 20fa945c16c9b3570432fb934dd81c17e90bbf74 |
| SHA256 | 25fd8d9603c69e30b999cd56fac6884f187998bfe05da103aca2e0c7708ffb73 |
| SHA512 | 7450ae75b6ed4dc6ca84360f40377dab8995b88ba31715c439dbae2ebcb72b0683dc989d4db01d22d4947e4ff318d0ffcb290239bfa59cbd5cc770183c3b3f97 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bb1468ad724a87cc21bccf13b9cbd353 |
| SHA1 | 24c82154ace89167cf7eb82459ae3cf9b26b17cd |
| SHA256 | 45dd8254371ed553cf5bffdf535040182f6d3503f32ac797c887614339356488 |
| SHA512 | a3b118e1dea33f7a203c628b851e838aae0b92129e4ea2839c359ef8b0460c55e24df7d3bd7c958fbe1ac1eea83cfe153682cde020f61726577f0c6795f3e4e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0c683342b6729e5ae01dfcbe1e5fe138 |
| SHA1 | 56f09e64fd5f96df6e9a75885d066a2aae570d48 |
| SHA256 | 502f9e9b0d194ad005c27e1dd72a51e920cfda092202c73e5e951675ecef33a3 |
| SHA512 | 9fc6fb5b7f1242ab61a1cca87e8eddde3abc1ac51f6ce79b3e6af97da21cab95b25f7b8c17393c84c7e0f5589b544bf37f5a9c0e9a5aec861f6ad29e258ccaca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0ec296b4f996680bc6f9011c32a7adf6 |
| SHA1 | d60b78baccc44cc559a95aaa327c50fe71e82841 |
| SHA256 | a8969ed7b5012fc3290975140e571555557e926fb803034c62fa837f2fb1cd58 |
| SHA512 | 5fc92fac510d976b5834d049a51ba8cf208d15691c5d7b4edf33c039d804dc0ecd38eeac1dbc65d6a775333603841c5982a4e360cc83b37b86582f93d305d3a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8c1963ea233b315d19861e2104ed4486 |
| SHA1 | 39fc3671bdacd60ff4a707b7acbfcf013e1e5d49 |
| SHA256 | 2988054c9c19ed7e3ce793b11f3aa429f26de57b92b65e5f1bffb6478271da1b |
| SHA512 | b72f35b0b036ca80eda8eaf058fb8edf39a61a19b021ac0e6ef430c5bf7a956b345e16682c7a69eeb49222479ae96ea02dfe9885fc2bafb9db864d1982fc7f99 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 86275db2396653d8d39faa9bab0048c9 |
| SHA1 | e04ea0224cb5b7632cd2d1efe63339b92e27477b |
| SHA256 | 9f73c54dcd528e1aeb1a5938b4d1538349c530db08166c6fca5ec22e10af29dc |
| SHA512 | 6471a0733317c58211d7d37af08c3802399d44275832c82cf18c010d6bc12115c053cf47de43be4b8abfcc4a0740ed866abaa0646d7b2d3bb548c080c57139be |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe58120c.TMP
| MD5 | d878a0602667a889883762fbfb3c3d26 |
| SHA1 | c40b99ae9651d22e9089455448afe2056079c14a |
| SHA256 | 80f5135eeba37a99b1d1868835dea9ffd49890d1913bb153df28534c453163f4 |
| SHA512 | 1b021516ecbcb833c6fe1c3b70d34820f47f0d0e6f894fbbb419235d866c19a49f34a62817038b9c9c9f1c35db23e269422ada9e58afff31d675dbffa9214629 |
C:\Users\Admin\Downloads\Debug\libGLESv2 - Copy (11).dll
| MD5 | 68a2796d69106ad718a63ae471274be5 |
| SHA1 | 57a6d4ae44412f8a0e7b0e320fb3b5d866775189 |
| SHA256 | 4acc00137e018585ac29cd66c52c99ba20576bc52325164b5e86a1d566f127ec |
| SHA512 | 39f50ed8b619c341a849dcff97ceb9faa93b626a5972801362a28d973ff115bc6c5c5acec91e9b49169da8a015c967ec9e2215251fd52348082295aa58faccce |
memory/7664-512-0x0000000000C50000-0x0000000000C51000-memory.dmp
memory/7664-513-0x0000000000C50000-0x0000000000C51000-memory.dmp
memory/7664-515-0x0000000000C50000-0x0000000000C51000-memory.dmp
memory/7184-514-0x0000000000400000-0x000000000044A000-memory.dmp
memory/7184-516-0x0000000005D20000-0x00000000062C4000-memory.dmp
memory/7184-517-0x0000000005680000-0x0000000005712000-memory.dmp
memory/7184-518-0x0000000005740000-0x000000000574A000-memory.dmp
memory/7184-519-0x0000000006CF0000-0x0000000007308000-memory.dmp
memory/7184-520-0x0000000006820000-0x000000000692A000-memory.dmp
memory/7184-521-0x0000000006750000-0x0000000006762000-memory.dmp
memory/7184-522-0x00000000067B0000-0x00000000067EC000-memory.dmp
memory/7184-523-0x0000000006930000-0x000000000697C000-memory.dmp
memory/7184-524-0x0000000006A40000-0x0000000006AA6000-memory.dmp
memory/7184-525-0x0000000007390000-0x0000000007406000-memory.dmp
memory/7184-526-0x0000000007330000-0x000000000734E000-memory.dmp
memory/7184-527-0x0000000008AD0000-0x0000000008C92000-memory.dmp
memory/7184-528-0x00000000091D0000-0x00000000096FC000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | ecdc2754d7d2ae862272153aa9b9ca6e |
| SHA1 | c19bed1c6e1c998b9fa93298639ad7961339147d |
| SHA256 | a13d791473f836edcab0e93451ce7b7182efbbc54261b2b5644d319e047a00a7 |
| SHA512 | cd4fb81317d540f8b15f1495a381bb6f0f129b8923a7c06e4b5cf777d2625c30304aee6cc68aa20479e08d84e5030b43fbe93e479602400334dfdd7297f702f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 2daa93382bba07cbc40af372d30ec576 |
| SHA1 | c5e709dc3e2e4df2ff841fbde3e30170e7428a94 |
| SHA256 | 1826d2a57b1938c148bf212a47d947ed1bfb26cfc55868931f843ee438117f30 |
| SHA512 | 65635cb59c81548a9ef8fdb0942331e7f3cd0c30ce1d4dba48aed72dbb27b06511a55d2aeaadfadbbb4b7cb4b2e2772bbabba9603b3f7d9c8b9e4a7fbf3d6b6b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7f8ee04c19c9c527a2d1fc0d97d3f707 |
| SHA1 | ef764432dc0e3fbcb10ca1147182d60b0065af8d |
| SHA256 | 2d7f1092e428eb71230e0b44e6471c47a3fa4d00bcc7048b9b239cc7f155ae17 |
| SHA512 | e30fc83940632df675827a8b5cc0e7f3e1b8a4d6ef67d2c3bd91a750b7c6a3d25f1c035349b279107b9d3f9e304192682a2bce317b1366e72849a90476ed4085 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 3e3885ba08fa6c7d47597851da35c9e6 |
| SHA1 | f77a5ed82d6c79da89b24e60ef1c67ab93c79562 |
| SHA256 | 045251534f53c41d0bf2390ffa6b6d7a230818714a47bf8293a5f6bae0c75251 |
| SHA512 | 7cc013cc216112bf9afa83493b5d884f6f9d246b043b3b03ae23999c1c80bce32a31fa4f105bf4af7609ab26387de0ba935f1b4fb240cbc11c20b9202bd8cbfa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7b27669be0f69c6561ccba79bcddca6c |
| SHA1 | 7f5d6b3bd89a6a1490d27fcc8850b77990b47afb |
| SHA256 | 040426d41f68bfd7553ed448db581ae91d56ed17c63fc61c4dc1549626ed51e0 |
| SHA512 | 644aef5638a0eb169d5fe3f51b5861918b9c05395937f892ce7bcbd61e7436bd25cc0a0ee689328c95f396a58edd428bffd00634d0593293162a299dfae7da2e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\ec44b447-a0bf-4f15-9be0-43eced6c1af1.tmp
| MD5 | 807419ca9a4734feaf8d8563a003b048 |
| SHA1 | a723c7d60a65886ffa068711f1e900ccc85922a6 |
| SHA256 | aa10bf07b0d265bed28f2a475f3564d8ddb5e4d4ffee0ab6f3a0cc564907b631 |
| SHA512 | f10d496ae75db5ba412bd9f17bf0c7da7632db92a3fabf7f24071e40f5759c6a875ad8f3a72bad149da58b3da3b816077df125d0d9f3544adba68c66353d206c |
memory/3920-593-0x0000000000070000-0x0000000000071000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\3454f6e0-a8c3-4ae0-b59d-25dadf0a8380.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\a52c4a06-537c-4914-b594-a92d1aa6fa71.tmp
| MD5 | eecc7feaa8c0526c846327760768cee6 |
| SHA1 | 40273f41295ebf09c1936dc529b78b7169781b73 |
| SHA256 | f5191d28d2995069078e01ea4266b493e1e0b8efb7a143400e22465e42cfe4a0 |
| SHA512 | 71b661a2c09fb4d35654cd3fd2c202646c33f7eb74d307b61a90a3c470fecabdfbb7eb23a162f2048a1f17003936f5e8947cddd37c15582f3762678ac8292c04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3d044968d9a8a83f431a1eaf7f779f9f |
| SHA1 | aabefb4a2d0745d8a4c6219263ca831870cd02fb |
| SHA256 | 0e16c8129f50c467f700ece2cff12a2958a128721b66ef063d2cc15112a10460 |
| SHA512 | 709c3fd668c6a738ea1de6e1850b765b6c531f99c3ec3f11888292df9680d857d368544ba94e716dc7de2c84dbf362ee67fa84b53db48ab36ca72f8de3cbcc0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | f998b8f6765b4c57936ada0bb2eb4a5a |
| SHA1 | 13fb29dc0968838653b8414a125c124023c001df |
| SHA256 | 374db366966d7b48782f352c78a0b3670ffec33ed046d931415034d6f93dcfef |
| SHA512 | d340ae61467332f99e4606ef022ff71c9495b9d138a40cc7c58b3206be0d080b25f4e877a811a55f4320db9a7f52e39f88f1aa426ba79fc5e78fc73dacf8c716 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 45121b29007873f9b98a4366fb19642d |
| SHA1 | e277926a2855d68ae37c261ca95794a78d504fc5 |
| SHA256 | 5ba0e9b0b8d8da8acee6b34b42fa98e5961ed289868a901af8323276ad400ccc |
| SHA512 | 9e3bdf995157e0464361117798fc9e3a06e9c38e1b577f9126b329972f86aab19dd87930a0f4f1779b7f629dad10ab0dc8f0a6a1e448d69342b5d6b694066d04 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | af1ac9795f7e44bfe2a0da35e0b854f5 |
| SHA1 | c47ad973007ee93c109862cabf24b0aa7cd635f9 |
| SHA256 | 7a9c5fde3cbcbdf7d1bae3a8e22236d0e3eb0b75922dcd04cc5a2d64cb585106 |
| SHA512 | ff81db5e318333fd331563b1d9d0866bc466c6d2148497bc2893c67b76c4eef5b08061b2cd0ebb7ebfa33b0eb5301aab2855163ca9795966afde9908a1051653 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bf65db20cca297304be5e36080018284 |
| SHA1 | a83e7c4a47198414f4fb292a95e769f1b578f87e |
| SHA256 | 951fda0a30c2a789af376f18636ff324cd78765717fb44f582d8b6743e8c0bf8 |
| SHA512 | 6a2822162b8c4f940efddbcb9f7cecf4c52731e8b99fbe2a94ad8307b35863acf61b64a7a316d92cf057b0b6f786048219f17335cf9829046d359c31911cda23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 7fc0ed98d66592f33000b6d95aea039b |
| SHA1 | 1215ab0f945eaf5bee27ce72fb551481613e8a65 |
| SHA256 | 5600b5c2723b33635b55a36a4e8cdb2bc5ed6ab6dcdf3e6a3d4a0d0d82958cfd |
| SHA512 | 4794658dec34d7a16a45659207285ca7bf13d082c3da3176f987c679beae0834a72bb6fb5a5015342b7d45219bd4dae6760da381eafe16894f29114a4914f677 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | 1fc15b901524b92722f9ff863f892a2b |
| SHA1 | cfd0a92d2c92614684524739630a35750c0103ec |
| SHA256 | da9a1e371b04099955c3a322baee3aeee1962c8b8dabe559703a7c2699968ef4 |
| SHA512 | 5cdc691e1be0d28c30819c0245b292d914f0a5beaed3f4fc42ac67ba22834808d66a0bfc663d625274631957c9b7760ada4088309b5941786c794edad1329c75 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bbc89e50a636074ad4f2cb0e52aeb346 |
| SHA1 | f89fed80e1c94612f4ffac0fdfe6a64bf451bb25 |
| SHA256 | 291ca9b2fc9f3f508b4ce02629bccca941df7ea14bb69eb633859dc7b31c64f4 |
| SHA512 | a08cdecacc19f37fdd4f95a0692a135b27ed5b4d77ca71318e48fbde5a504988f497e1e802e52e6fd3318ad598a7ed5a277559069207fe42cb27ef4d13c4595c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 80e614d80c67fdc88247ab6b19ae6599 |
| SHA1 | eed79337515381d96e350acdd2c5929e9b290a2a |
| SHA256 | b05d666beea2e6a4265877b198222d8abad4d69301fd7ef9c65b14692987ee16 |
| SHA512 | ad3fcbc453e0a5aaa81ab84a2b2f2e4087ca0bd16203f716bf61521d1c3bf3923b1c74e65c431d2d17dba0fe47373837de9ded4b885bf1d38deb28cbb63678da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 6552af941da385cbf29be6a81ed5d2a9 |
| SHA1 | 847e126e63379faa403503dd73a501c8ffa6fa42 |
| SHA256 | 4f39cfda5775abeb9d4c965d745ccd7f315279aff15b0a32b1e121f5e542acae |
| SHA512 | 5066d50f900104c22f21da17f67a2ffff14d7ec150dfd9596c56b64a182b0f1571bbdc5734bf214544f67e67446b4f85136a1ca682f1396a447b874e35169587 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000057
| MD5 | 20531128108a4ed52418596ec4893a2d |
| SHA1 | b2250b0ab51209cd6ac8a484c81911b2fd45f3b9 |
| SHA256 | 2827d2a9b19ddbfd8d92a1b63b470ade593a3cf34a857c1b0598eb0c896e33a4 |
| SHA512 | b93adb2d508f9cf1d64bcb98f90f03d3c2a46b12d04e6e088f0cdd0b7a8e8d6ef2395f23ef73cc6704a248f839582117510863a8bc12fb05127744b74b20265d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 622dd33aa4c0f9b449f02b6de28f95b7 |
| SHA1 | 1a53ecb61632cb89ce6e81cf5e0470c14fff1ca8 |
| SHA256 | 445c66b3b8187798ce62ae522c21a4bd3da6d4572f0037bc1b13414f3a6bd45c |
| SHA512 | 109bf92e0b13e7f5b7c8ed8d13374e27a7d07c87204d2d2c0de5ebaa0f417394b176586527a1bc77360520262b2643e51df9e3d1a2dfe927bc7ed6c27cfbf2c4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 70fa7bf83ce0dd4c4dd9e7e650aedf90 |
| SHA1 | 05cc866cb2480c930dbebbec45e7c0089e0b1fa4 |
| SHA256 | 91c3bbfdce9e3a2fc3284025c614c769b9fa04873a66363a37251a14ef2a7c53 |
| SHA512 | ad3a3bcbbb02d278abdcdaaba7ca0d5b6638f2038ea4eec5cc1891d42847dfdcf0092aa7f35276a5aca99c5179645b59c99e568988336e30af9cceb23e2905f7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5a881d923fde6b6b37893e0807dbcc42 |
| SHA1 | fa233399613639c692546509fda93d2838d99e00 |
| SHA256 | 156825dc8a694f8d0b22dab805c75181ac836c15eaebca68d2d229ff6ab30046 |
| SHA512 | 0a215563a5dd47c92e79f7e501d21b14d6fa0df2a83774e019475671b3c729bbd7e499af88a278c78ca619196edf282c9c7e0f7ad9acf534c1af4ad6ef96294f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 781978cf8b456831c0684cd3c7264042 |
| SHA1 | 014e6272b89d3473fe264871e177c4a0a69ac22e |
| SHA256 | affbf6934a5be193b5d923ac1b73ec91b3082315e13ec39d6e56d62a31ba2c62 |
| SHA512 | 3c97dd2b75595241c0eab2b3c6d1089902625d03ec47549a4048161ab35882bdcaa17fb76fa7460a5fb4bf483c634f3e4af79d9e2c4363417a8089f8c9b83146 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | eb0edc48a8e099fc6fd373f4700694b9 |
| SHA1 | f0a0a981bfbb9988ced243358be0e9c08a006ba5 |
| SHA256 | 3435abc02da994bc53dc811ed130659dd4dc0cfb66c32c922dc14672e14efe57 |
| SHA512 | 6c8353f454655c49c7301b071eccdb099833aab4929a1fb2cf7f2fd4bb50a1fa29d6caa36ce345bf8c7f1098f23fc9d51c82329854c671ccb6316700cd7fb635 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | b8ac3dddfb0b098f61a1ade6d512a1ed |
| SHA1 | f955d6fe7e4abaffb9c5d0906f4d8c5277a010bc |
| SHA256 | 4fb096d9bdf8fc956a4f72cbd8c8a7ddfd9b20cc716c6394357c4ec4c8ff16a4 |
| SHA512 | 4cd11161926798e915e9df5b36f46b65d689a7e83c2c42246e6bbcdc466d196c58155c916a1eeb281754afca2b3f3d84d5b6d91e5c971382285e53a61646abf9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 0d067c4782de453683ec07bf8a995e96 |
| SHA1 | 735e0751c3fb02807dad8d59a5a5c1b8feeae6fc |
| SHA256 | a4c21a68e01066275964258ce2ff330dfe8c491583e59441657e077fcc13481a |
| SHA512 | 3858d21cc37739da06bd30504feefcf4daaf33569e2bd600fa27ffdd93d419c1421082de492631d75fe57751e3e1d95e19d771bb84079b14befc29d01b121be3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 06ca87efdc9141b1ce04dd166494f951 |
| SHA1 | e088db6614bdeed5d146c896493a8e2f20c6ef51 |
| SHA256 | 6c15143d5dfba8f93c9943b54707394f93f982e62a706c4c61521e52bcea2e97 |
| SHA512 | f5bff32c6947e4596b2e1bbd37f5f41088df904cb14d82b2b50865fca8b5b2e12dc84cbdff0d2c43041f48324306092a596011d3a71ea71216d1d4c96fb921c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000048
| MD5 | c374ef7c880d14b36cca5dcb7a4fbafc |
| SHA1 | 7fb9a23c3e14f0e8ed26b5132d3fea4695eb4bb0 |
| SHA256 | 1714e6037b8820fa855986e92285fa0c66df6c02132a4d24765a78b3c87c111a |
| SHA512 | b4e4f1d8b774ae980e54b15f1bd95dbb05dee4dab1395788064a62651e33a4b466050b188db94fc2419dbc837719ad6e3e31c7ef78eee98e7f7d079a4e217305 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047
| MD5 | eed9bf74b9800ef0df6ef9c5a829503d |
| SHA1 | 17c29e9d4ad348bea0f556bd024014dbd52a5f6a |
| SHA256 | 7bce19e47c75b991bd7920724a29b589bacbf0ccc4a019e70064e6819b1ef646 |
| SHA512 | b6b39d35c18d5e2cf471db701db2350cfe85dccc34a1878adcefcaa13665404fbda39d9314ffd6d581635eda95e6b98a92729feb354c5a92e7ce4ea00c950866 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b
| MD5 | f35a9970a1b8650dbbe14188b8b3262a |
| SHA1 | 65e7073844b78ff55fb273ce0c06004b6d633bf5 |
| SHA256 | 5d49eb656252d330b4553f2119087a3f1d79e199e1c60720e766e940931d7eee |
| SHA512 | 90332057f40c7c9f5ab5e38f3767ac7a40a7059e391005cdc3cd7e74749fbdd33cf6cd9394554e785944a6347d61495a8e99cf206a8fb5d2a9fe0ca17e87e00b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004d
| MD5 | 3b5763ff3c03c02caa3050452b1ac613 |
| SHA1 | 79fbdb33e1b7560261888d80c0ba63682b5aef47 |
| SHA256 | d0771b243264e247e043456d0d1aa3b3c30ce271400e9e395d39edec075730f8 |
| SHA512 | 8adb099d9241e48fbe1f8e8185c9f90d41cafa4fba0d6558284392041b9deed90b8bbb1481330c8ee9aeb77577ac4837e6e85c296468241d135b8193249a6784 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f
| MD5 | bb17328ea9084d2687d710849e3abdb4 |
| SHA1 | 154443b35c0ad0d1728522f2fa2438d3d3f2a0f0 |
| SHA256 | 8014cb012c65d04180c0e3633684001c4b6d5272c7d55954e0754b921e6faea7 |
| SHA512 | 18265f337f29ae89c646e911dbd7eede9216353b7c0ba3661241f6d89665ce38f8a7027ab1733da5a7e743594c24563a2f43e6e3ee1861b5948dd2e9e6800ef5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000050
| MD5 | 3e9b83d23375b4c5d2221437ea833486 |
| SHA1 | f67f2e28ab8fc83fad63ef5f647c1323b90e3b77 |
| SHA256 | 2749fb340a3d6e4138f5713b8a0258898ee5d454c82e76aabbada513bb7864d0 |
| SHA512 | 6e94695f6145ad334afdbeac2fd0891391f681c0691b899127d5fd39ca1a9c1c33ef1f880b330f61af78057738553b431f1586c32725d12d4c3d0f6d49c7165e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005a
| MD5 | fcb414a8eea6c336731fcd50903e6ce9 |
| SHA1 | fc0208d26edc18c8b028e24baffbe89085dafce2 |
| SHA256 | 8f592670bc4e3d1a3bc53cbb095b2a27763b7dee70fad6f8c1e0428893b26a96 |
| SHA512 | 8309ef3af9915262ef1d55cb9ff0ba8378d970d0b3473adf9e75edb5384462acd1c42f795d4c3fa0b45bdddb93750e937263710165c44f0dcccd1eb4424fde40 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000069
| MD5 | 37ae397ce6a552e78b137c0eeff45014 |
| SHA1 | 159063b33b248a4f4bd6b289ad3dcddbaa70427e |
| SHA256 | 3934c934d83eab7421e65405da6cd20d5e7f075da91a0cca1bb4743ae06811a1 |
| SHA512 | 1e2ae1dab8f7795bfdc3d291ad7ef510487a77a527fbfd7d15489497b8e54a9950e0a49cdda6e3684f643640e3971d8b1d75a61b5422c650fe9613f8ae687a96 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005e
| MD5 | 05a47f9e469d408c629f931cd33ff8b2 |
| SHA1 | 823f21f7b1d456db889c3afea393f0d2b9581c38 |
| SHA256 | 6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38 |
| SHA512 | 676e4baa85cc3e9175e87f505f47cf637bb2a7f8be3ec45d6b194063fe42b4819a8f7fd4af54ca4d77adc02bb3ca5244c9dd946442070ee29d678240f1c39c88 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005d
| MD5 | abe083d96b58eb02ada8b7c30d7b09f2 |
| SHA1 | 61447d66d13a8c8f4335696777a85c438c46f749 |
| SHA256 | db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9 |
| SHA512 | d17e095a6f0871fa0c9cddde08f87a63589574eb23f3dca7430ea23fd6ff5c3523e9807dc0ed0cf9c874e1a37046461e79ee47e1e9aa64513fff25bdd48c3696 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2a4c33dce6348cc6_0
| MD5 | 810161e7d36897cafab3d20920ebbcb5 |
| SHA1 | 5ed377d2c57e207de7b0a97e48a2c3e06bd2eba0 |
| SHA256 | 81cb26a6c40e1b2273d02923317d362cd5af09b5d1affabc700c2c60aac964f3 |
| SHA512 | 4cc46335bd8e6b8ca573f81be093b35ab3e2b8d26de3e22840dc225d8342b0b1e73cd7214a94cabb3cd538ed12cbcfead46103d45b0bc3fd937608f13cd229ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a4b51ea10882f9b1_0
| MD5 | 31b05ecf6b933f194a2379a5b301a6bd |
| SHA1 | 6dcddd591ae73f72a88840e42969330b963c6b13 |
| SHA256 | cbed0310af47bce3ee32e38674f601cf8effa4a29abbcdbe3c9746604bb396ad |
| SHA512 | 05c20541acc6dc0ad7cb0f4149cd127fed5788178dd0be202cc2b10e88b8274c786f2d6ddaf1e511064f639c8d6ba3b63d57199c080dbe8db797309bc26cc9f5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\980d932cae8adf52_0
| MD5 | 13b9a627fbcb2a68c8c79e0080b1df40 |
| SHA1 | 4f1ca68792f207eb7441c375622c8f066ce14865 |
| SHA256 | 4cc97365e2444bab7ed47d3228546b86da051d297eff1a77d8305b97408a4313 |
| SHA512 | 1b339ffbf7e0ee83724c7a34181c83dc196593d781725ad0e4054a00899d2bd677c214786423c0570d8a01476e28869c67d12897b359ddf508d6ebc9648f1037 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\54a70f8378e6c0e5_0
| MD5 | 7b0d76915ac5f53a73f56cb07fb34b84 |
| SHA1 | 84955867178ef304a13243496db05b3209d8cc94 |
| SHA256 | 99c0dc2eeca1e48f9c9b3d3d56419b9bf346d59b241a1ffa1c6d247a7856de92 |
| SHA512 | 64582f7cb45cb7fa5e826af9b873788431f77263f33804b3d8cf10f716182cd91159d570644acbba6cacbb26d4a97098be873e8da10d3f0906dd10458f652f0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\2c3f57d534034344_0
| MD5 | 5f508cc045c1bfc875bdff45033ad9c2 |
| SHA1 | 7fa04b884e25d251cbd397365d5e15ad0f261e18 |
| SHA256 | cc1a045660c6011e99519b00046489fa2adc2ef3f9e56f130559a655da167b3c |
| SHA512 | 4046d4291131128500aac7b39ceb3698ffbc9a2df5943413120cad85e7a14f72036d913296db71f87b4e2bd4b3500c4fff88c09496caa7085c1730d0f805a808 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\abf66747a7f2c9a5_0
| MD5 | 57693e39d71a7667c8b79f43a004597c |
| SHA1 | 23e2403ef699fcf232955df6198fa72ef1fdbef4 |
| SHA256 | 9869daa46dc24d452af1d2462b358b173368ceb4bd87f8324810b1d6ef6e3297 |
| SHA512 | 58e0d339fbbae1d33d48df5f28f11095394ebae53201a55cec254e1cbdc4c6d2abda424e5f78f00fa88aa3d09cac20d30c0bf631d50d81e68a7c634687b403cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\dcfbf5866581fe86_0
| MD5 | 677dbe4bd87cdbaece066023945fb627 |
| SHA1 | 189ff081ec7f9a28cebdc6d4922ada832aeda00d |
| SHA256 | d5ab1c5c3f45fd6c2f0a3f333b0d2a3e4fc05299a7bb61e1d7a4b53638894096 |
| SHA512 | bf8c7d5ace6e916d4b0cde6a4c4e3b8fcea8ae4d8315a34095218160441d179cdee7b4252f8008f8f510d1c98f1c3f56a19508d3eccdfe748b47f49f1a0d42a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\817ce9caadf38099_0
| MD5 | 8a8eb6245491eae4ec4b4354b5a37b81 |
| SHA1 | ced818f380dff722432cf31be74163dbd9baf4c5 |
| SHA256 | 1b8fc29662472285b4d0c0bcaaff632b8413c6e87e0163491f5661b389d85782 |
| SHA512 | c1b765ce5a26d6aeae28fc8c47b8831d7d901eab9ff932b760ec5f61898d5578fafce38f65a2e6ae182b3cc3c8b79ce86687632bb47749d78f42bf8e37e555cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\319db842949b5380_0
| MD5 | bebb91b4a1087fc3b0d41ea59c0b475d |
| SHA1 | 4c0a2a41323cce98bd788df0bdc4d0b5b5957ec9 |
| SHA256 | dd90531ba9ad5e608fbd6fb665fb5dd28d7638a82c81298eceb2ee619bd2ac11 |
| SHA512 | 64881a7b406c5d4f0e0dd756c6373def19defb139eef28882520d924a1b612428e05c7145a2772a2c1560a55eaa16a1c8452dc347040335af68b0752c8cf4b42 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\4afdf6a8cace1a79_0
| MD5 | 1963c4c25af0c43ade44ea9da14c321b |
| SHA1 | c6ae9b9e17b11c5b32bd91280a3cbd85e12fde21 |
| SHA256 | 5e1e6bb3c94ac331e55af4ffbf34b697c31af5652f7fa44399e1ae0f94d85d51 |
| SHA512 | 7cffffe1c0ebad34e4a1a3c408cfc074885994ca4b1392a8b103e7974c45767cc058e18f353f5ad8ce955ef835a07a170b271d3d9865ba2433d2f584af6a3a3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000059
| MD5 | b11d31d95c626c34e8b738d185a00a97 |
| SHA1 | c893a17219597955837ddc3aab66a0e32a836582 |
| SHA256 | 93d7692b6962a08a88456c7a0a9d443d236b7db9e39c7bd9c6a0198d6c3c14a0 |
| SHA512 | 1efb37eaa320987504a8512e559accd2c354913972ec6f9e6152debeb46ec2c3c885b421b0971395436216195bf704cd8967dc36497ccc7f8ba633f6533f6843 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000053
| MD5 | 8d8f2f01677b55e7757869c0fd297c0b |
| SHA1 | e2ab21ad0020511e62df927e2818462cdaa83667 |
| SHA256 | 51ce433e8152433fd88e0df2932abd279ff6227ee91efce4b420c84294304ff2 |
| SHA512 | 6e65a7bf65cda5668adc55fb6775712536ab5b7e138b2d54017a89bc20755259c86753060d66de230d5a0ecab6d718394360169fbad808b9e0b61795bf91149d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000054
| MD5 | a6a566cb329f1d8061e3389867fd2881 |
| SHA1 | c062617e77c4895e671248f61741d8fbe2ec77c2 |
| SHA256 | b1b25b38d00027bafa7ce0415ad75aac61af9c63c1c639edba2215a3ab301fe2 |
| SHA512 | 2e7c0e5b94796ae1459c750d972bca67e15fe930d0bbb9fd8b026f430a72e02ae38e8ccf623db06ea83f6d541ca9ba66699f491f686c370265209205e3e9e954 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | d2e483d606f6023b1d527f154f03f92b |
| SHA1 | eeb926eb617d6efeb8f35facbcdb830bf1999f52 |
| SHA256 | d1f5fa80c2c72096f185710ec3a424f71846fb777e755e9bf6a7a7ee1f0740c1 |
| SHA512 | ff998762ee5dd553a72e51f2a9c28dc62cb606753f5319491ab9c6ad21d181fc7367baa05226282eca6975444a22e55c5cecd440b3647ddd7809980ca6d01d9e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000066
| MD5 | 950eca48e414acbe2c3b5d046dcb8521 |
| SHA1 | 1731f264e979f18cdf08c405c7b7d32789a6fb59 |
| SHA256 | c0bbe530abfce19e06697bc4358eb426e076ccdb9113e22df4a6f32085da67a2 |
| SHA512 | 27e55525ade4d099a6881011f6e2e0d5d3a9ca7181f4f014dc231d40b3b1907d0d437b0c44d336c25dd7b73209cd773b8563675ac260c43c7752e2d2d694d4d9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 853f9dd72b9a2168828315fe953271ca |
| SHA1 | 09f0c5de5f2306d298be65723ec8bb9780aeee60 |
| SHA256 | 8a99f42581bd7dda99295c9c7c60d992bb6d602e5da968592a93f335117271d8 |
| SHA512 | 4cb954e3e3ba533726121e6b23407d5f0b74856fc4ce5787b88a2a8dbb55fdd712a58a33cc95749234f409f072f0a130443f0de593e3b2ac31791830cba6315e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9d3ea888fd574a7bec06bfc3cb7ef26f |
| SHA1 | 9cb2626e05674111a766551be8a9dac46b25e4e7 |
| SHA256 | f3b4ea339fd004e0d8f5596a231e37ff4b3a543fc0998f67da202717cf048745 |
| SHA512 | 1a088f402a6fbbf34779b6517a43b3b60113520fc584e9c22700e7ace7a92c09d3dc8827e3270bc3a139bb17858a2ea66412d20a64ec22ddb2d1bbeb01f96356 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | cad4353434d77f57ac07ae2c7aef206b |
| SHA1 | 313282759ae0aafc7141e5a3e9483b5278093016 |
| SHA256 | 2ec085f28632fbdebf691cac71611633b658bb29d116a4b232366ebdfebde345 |
| SHA512 | 5e610b5d734530299643af0664bd62da2c46536976e68132d30ec10e35fd8abefabca8173788c3cdf6cf9ec4c764eb6eb515fdf1fedd12f4bf80402e7ddf1250 |