Analysis Overview
Threat Level: Likely malicious
The file https://github.com/pankoza2-pl/malware was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Writes to the Master Boot Record (MBR)
Drops file in Windows directory
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetWindowsHookEx
Suspicious use of SendNotifyMessage
Runs regedit.exe
Delays execution with timeout.exe
Suspicious use of FindShellTrayWindow
Uses Task Scheduler COM API
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Checks SCSI registry key(s)
Modifies data under HKEY_USERS
Modifies registry class
Opens file in notepad (likely ransom note)
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-05-26 08:15
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-26 08:15
Reported
2024-05-26 08:27
Platform
win10-20240404-en
Max time kernel
630s
Max time network
618s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\Monoxidex64.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
Writes to the Master Boot Record (MBR)
| Description | Indicator | Process | Target |
| File opened for modification | \??\PhysicalDrive0 | C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\rescache\_merged\1601268389\715946058.pri | C:\Windows\system32\taskmgr.exe | N/A |
| File created | C:\Windows\rescache\_merged\4183903823\2290032291.pri | C:\Windows\system32\taskmgr.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_QEMU&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
Delays execution with timeout.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\timeout.exe | N/A |
| N/A | N/A | C:\Windows\system32\timeout.exe | N/A |
| N/A | N/A | C:\Windows\system32\timeout.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133611850268638716" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 = 14001f50e04fd020ea3a6910a2d808002b30309d0000 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\IconSize = "16" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = ffffffff | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 00000000ffffffff | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 = 14002e803accbfb42cdb4c42b0297fe99a87c6410000 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\NodeSlot = "1" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings | C:\Windows\system32\taskmgr.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell\KnownFolderDerivedFolderType = "{57807898-8C4F-4462-BB63-71042380B109}" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\Shell\SniffedFolderType = "Generic" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616257" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000007800000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 00000000ffffffff | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\MRUListEx = ffffffff | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\1\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" | C:\Windows\system32\NOTEPAD.EXE | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-873560699-1074803302-2326074425-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots | C:\Windows\system32\NOTEPAD.EXE | N/A |
Opens file in notepad (likely ransom note)
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\NOTEPAD.EXE | N/A |
| N/A | N/A | C:\Windows\System32\NOTEPAD.EXE | N/A |
Runs regedit.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\regedit.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\taskmgr.exe | N/A |
| N/A | N/A | C:\Windows\regedit.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\NOTEPAD.EXE | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\Monoxidex64.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Windows\system32\osk.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe | N/A |
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/pankoza2-pl/malware
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffec93f9758,0x7ffec93f9768,0x7ffec93f9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1516 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1824 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2092 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2896 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2900 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5028 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5016 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4952 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=4436 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5492 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5504 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5356 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3612 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4700 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4508 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5448 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5780 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5756 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6072 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5536 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=2980 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=2964 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5116 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\New Text Document.txt
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\killmonoxide.bat" "
C:\Windows\system32\timeout.exe
timeout /T 55 /NOBREAK
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=4640 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=5776 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=2988 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=5420 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6264 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6400 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6572 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=6620 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6716 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7096 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=6988 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7252 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7256 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7656 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7908 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=8048 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8228 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8252 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=8516 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=8400 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=8780 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=8668 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=9084 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=9228 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=9384 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=9504 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=8352 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=10076 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=10208 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=10220 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=10500 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=8636 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=10556 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=10592 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=10780 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=10844 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=10952 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=11012 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=11028 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=11312 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=11584 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=10096 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=11168 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=11688 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=11724 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=11952 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=12016 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=12024 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=11916 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=12032 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=12040 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=12048 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=11896 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=11884 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=11716 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=11828 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=11844 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=11720 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=11960 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=11592 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=12068 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=12076 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=10976 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=11728 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=11780 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=11792 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=12136 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=12180 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=10744 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --mojo-platform-channel-handle=12208 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=14812 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=12824 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=13256 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=13220 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x3c0
C:\Windows\System32\NOTEPAD.EXE
"C:\Windows\System32\NOTEPAD.EXE" C:\Users\Admin\Desktop\killmonoxide.bat
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\killmonoxide.bat" "
C:\Windows\system32\timeout.exe
timeout /t 30 /nobreak
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=12492 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\Desktop\Monoxidex64.exe
"C:\Users\Admin\Desktop\Monoxidex64.exe"
C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe
"C:\Users\Admin\AppData\Local\Temp\俘嫻屍椰珄倌厪碲夅尵璙鶍騙枳騿骂.exe"
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Windows\System32\NOTEPAD.EXE
"C:\Windows\System32\NOTEPAD.EXE" C:\Users\Admin\Desktop\killmonoxide.bat
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=14596 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --mojo-platform-channel-handle=14564 --field-trial-handle=1760,i,16248846143132822507,14335860224780675391,131072 /prefetch:1
C:\Windows\regedit.exe
"C:\Windows\regedit.exe"
C:\Windows\system32\osk.exe
"C:\Windows\system32\osk.exe"
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\killmonoxide.bat" "
C:\Windows\system32\timeout.exe
timeout /t 30 /nobreak
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Program Files\7-Zip\Lang\ru.txt
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Program Files\7-Zip\Lang\va.txt
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Program Files\7-Zip\Lang\zh-tw.txt
C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe
"C:\Program Files\Common Files\microsoft shared\ClickToRun\MavInject32.exe"
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 154.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 22.112.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | raw.githubusercontent.com | udp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | stackoverflow.com | udp |
| US | 172.64.155.249:443 | stackoverflow.com | tcp |
| US | 172.64.155.249:443 | stackoverflow.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| NL | 23.63.101.152:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | cdn.sstatic.net | udp |
| US | 172.64.147.34:443 | cdn.sstatic.net | tcp |
| US | 172.64.147.34:443 | cdn.sstatic.net | tcp |
| US | 172.64.147.34:443 | cdn.sstatic.net | tcp |
| US | 172.64.147.34:443 | cdn.sstatic.net | tcp |
| US | 172.64.147.34:443 | cdn.sstatic.net | tcp |
| GB | 142.250.178.10:443 | ajax.googleapis.com | tcp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 8.8.8.8:53 | i.sstatic.net | udp |
| US | 8.8.8.8:53 | www.gravatar.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 192.0.73.2:443 | www.gravatar.com | tcp |
| US | 104.18.41.33:443 | i.sstatic.net | tcp |
| GB | 172.217.16.225:443 | lh3.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | 249.155.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.101.63.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.147.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.178.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.73.0.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pub.doubleverify.com | udp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.18.166.224:443 | pub.doubleverify.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| BE | 74.125.206.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 104.18.166.224:443 | pub.doubleverify.com | udp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 104.18.166.224:443 | pub.doubleverify.com | udp |
| BE | 74.125.206.84:443 | accounts.google.com | udp |
| BE | 74.125.206.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 84.206.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.155.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.166.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | stackoverflow-privacy.my.onetrust.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 104.18.32.137:443 | stackoverflow-privacy.my.onetrust.com | tcp |
| US | 8.8.8.8:53 | f2019b903c46ceab572ec04e01345661.safeframe.googlesyndication.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 172.217.169.65:443 | f2019b903c46ceab572ec04e01345661.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 137.32.18.104.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | clc.stackoverflow.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| GB | 142.250.187.226:443 | googleads4.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.10.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.58.20.217.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.49.178.192.in-addr.arpa | udp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | www.howtogeek.com | udp |
| US | 3.222.102.97:443 | www.howtogeek.com | tcp |
| US | 3.222.102.97:443 | www.howtogeek.com | tcp |
| US | 8.8.8.8:53 | static1.howtogeekimages.com | udp |
| US | 8.8.8.8:53 | launchpad.privacymanager.io | udp |
| US | 8.8.8.8:53 | cdn.adsninja.ca | udp |
| US | 8.8.8.8:53 | unpkg.com | udp |
| US | 8.8.8.8:53 | cdn.sentinelbi.com | udp |
| US | 8.8.8.8:53 | launchpad-wrapper.privacymanager.io | udp |
| US | 8.8.8.8:53 | dn6rwwtxa647p.cloudfront.net | udp |
| BE | 74.125.206.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| GB | 143.244.38.136:443 | cdn.sentinelbi.com | tcp |
| IE | 18.66.171.99:443 | launchpad.privacymanager.io | tcp |
| GB | 143.244.38.136:443 | cdn.sentinelbi.com | tcp |
| GB | 143.244.38.136:443 | cdn.sentinelbi.com | tcp |
| US | 104.17.246.203:443 | unpkg.com | tcp |
| GB | 143.244.38.136:443 | cdn.sentinelbi.com | tcp |
| GB | 143.244.38.136:443 | cdn.sentinelbi.com | tcp |
| US | 104.22.4.69:443 | a.ad.gt | tcp |
| IE | 18.66.171.45:443 | launchpad-wrapper.privacymanager.io | tcp |
| GB | 216.58.204.66:443 | www.googletagservices.com | tcp |
| US | 3.162.143.183:443 | dn6rwwtxa647p.cloudfront.net | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 3.162.142.187:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | d15kdpgjg3unno.cloudfront.net | udp |
| US | 3.162.143.6:443 | d15kdpgjg3unno.cloudfront.net | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 97.102.222.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.246.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.143.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 187.142.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.143.162.3.in-addr.arpa | udp |
| GB | 142.250.187.206:443 | analytics.google.com | tcp |
| BE | 64.233.166.155:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| GB | 216.58.212.206:443 | ampcid.google.com | tcp |
| US | 3.162.142.187:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | geo.privacymanager.io | udp |
| US | 3.162.140.50:443 | geo.privacymanager.io | tcp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | sqs.us-east-1.amazonaws.com | udp |
| US | 8.8.8.8:53 | nebulousgarden.com | udp |
| BE | 64.233.166.155:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 3.239.232.84:443 | sqs.us-east-1.amazonaws.com | tcp |
| US | 104.18.25.111:443 | nebulousgarden.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | cdn.unblockia.com | udp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| US | 3.162.140.74:443 | cdn.unblockia.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| IE | 18.66.171.73:443 | static.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | sentinelbi.com | udp |
| US | 54.157.59.36:443 | sentinelbi.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 54.157.59.36:443 | sentinelbi.com | tcp |
| US | 54.157.59.36:443 | sentinelbi.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | loader.unblockia.com | udp |
| IE | 18.66.171.125:443 | config.aps.amazon-adsystem.com | tcp |
| GB | 142.250.187.206:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | 206.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.166.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.232.239.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.171.66.18.in-addr.arpa | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 104.18.25.111:443 | nebulousgarden.com | udp |
| NL | 23.218.48.210:443 | secure.cdn.fastclick.net | tcp |
| NL | 23.218.48.210:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| US | 8.8.8.8:53 | t.unblockia.com | udp |
| US | 3.162.140.109:443 | tags.crwdcntrl.net | tcp |
| IE | 18.66.171.63:443 | t.unblockia.com | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| IE | 18.202.122.123:443 | bcp.crwdcntrl.net | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 3.162.148.221:443 | aax.amazon-adsystem.com | tcp |
| US | 3.162.148.221:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| NL | 63.215.202.146:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | 36.59.157.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 125.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.48.218.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.122.202.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.148.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | p.ad.gt | udp |
| US | 8.8.8.8:53 | ids.ad.gt | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| NL | 185.89.210.90:443 | secure.adnxs.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 81.17.55.97:443 | sync.smartadserver.com | tcp |
| US | 104.22.5.69:443 | ids.ad.gt | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | hb.minutemedia-prebid.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| GB | 142.250.178.2:443 | cm.g.doubleclick.net | tcp |
| US | 104.22.4.69:443 | ids.ad.gt | tcp |
| US | 104.22.4.69:443 | ids.ad.gt | tcp |
| US | 8.8.8.8:53 | krk2.kargo.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | pbs.nextmillmedia.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | exchange.kueezrtb.com | udp |
| US | 8.8.8.8:53 | exchange.cootlogix.com | udp |
| US | 8.8.8.8:53 | hb.undertone.com | udp |
| US | 8.8.8.8:53 | g2.gumgum.com | udp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | ex.ingage.tech | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 104.18.34.178:443 | mp.4dex.io | tcp |
| IE | 52.210.1.200:443 | hb.minutemedia-prebid.com | tcp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| DE | 3.124.210.62:443 | krk2.kargo.com | tcp |
| US | 51.81.244.188:443 | pbs.nextmillmedia.com | tcp |
| US | 51.81.244.188:443 | pbs.nextmillmedia.com | tcp |
| DE | 18.157.230.4:443 | tlx.3lift.com | tcp |
| NL | 145.40.97.67:443 | prebid.a-mo.net | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | tcp |
| US | 3.162.140.63:443 | hb.yellowblue.io | tcp |
| US | 162.243.167.132:443 | exchange.kueezrtb.com | tcp |
| US | 162.243.167.132:443 | exchange.kueezrtb.com | tcp |
| US | 178.128.132.116:443 | exchange.cootlogix.com | tcp |
| US | 178.128.132.116:443 | exchange.cootlogix.com | tcp |
| US | 3.162.140.11:443 | hb.undertone.com | tcp |
| IE | 52.215.82.168:443 | g2.gumgum.com | tcp |
| IE | 52.215.82.168:443 | g2.gumgum.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 104.18.27.216:443 | ex.ingage.tech | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| US | 8.8.8.8:53 | c.4dex.io | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | report2.hb.brainlyads.com | udp |
| US | 104.22.4.69:443 | ids.ad.gt | tcp |
| US | 104.22.5.69:443 | ids.ad.gt | tcp |
| US | 178.128.132.116:443 | exchange.cootlogix.com | tcp |
| US | 8.8.8.8:53 | seg.ad.gt | udp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| US | 8.8.8.8:53 | check.analytics.rlcdn.com | udp |
| US | 8.8.8.8:53 | pixels.ad.gt | udp |
| US | 172.67.23.234:443 | pixels.ad.gt | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 104.18.27.216:443 | ex.ingage.tech | tcp |
| IE | 18.66.171.80:443 | check.analytics.rlcdn.com | tcp |
| GB | 142.250.178.2:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 104.22.4.69:443 | pixels.ad.gt | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.1.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.210.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.230.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.50.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.27.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.82.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.167.243.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.244.81.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.34.241.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.92.84.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.228.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 834a4bda2f1f334bb116638c42105e78.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | prod.tahoe-analytics.publishers.advertising.a2z.com | udp |
| US | 34.216.46.127:443 | prod.tahoe-analytics.publishers.advertising.a2z.com | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | trace-eu.mediago.io | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | tcp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 35.244.159.8:443 | u.openx.net | tcp |
| SE | 104.73.92.22:443 | cs.media.net | tcp |
| US | 64.74.236.63:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| DE | 52.29.54.89:443 | match.sharethrough.com | tcp |
| US | 35.244.159.8:443 | u.openx.net | udp |
| NL | 81.17.55.109:443 | ssbsync.smartadserver.com | tcp |
| SE | 104.73.92.198:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | sync-amz.ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| IE | 54.78.106.82:443 | sync-amz.ads.yieldmo.com | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| IE | 54.217.112.90:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| IE | 34.241.181.187:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.244.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.46.216.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.92.73.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.236.74.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.54.29.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.92.73.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.106.78.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.18.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.112.217.54.in-addr.arpa | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | cs-tam.yellowblue.io | udp |
| IE | 52.18.156.159:443 | cs-tam.yellowblue.io | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 54.171.72.23:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | udp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | targeting.unrulymedia.com | udp |
| IE | 34.255.242.185:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | prebid.cootlogix.com | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 159.65.239.132:443 | prebid.cootlogix.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | sync.kueezrtb.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | cdn.undertone.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | cs.ingage.tech | udp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 165.22.188.128:443 | sync.kueezrtb.com | tcp |
| US | 54.167.184.132:443 | sync.srv.stackadapt.com | tcp |
| US | 54.167.184.132:443 | sync.srv.stackadapt.com | tcp |
| US | 54.167.184.132:443 | sync.srv.stackadapt.com | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | cs.seedtag.com | udp |
| US | 8.8.8.8:53 | cookies.nextmillmedia.com | udp |
| IE | 54.246.18.125:443 | pr-bh.ybp.yahoo.com | tcp |
| DK | 37.157.6.233:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| DK | 37.157.6.233:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 52.4.249.44:443 | cs.ingage.tech | tcp |
| US | 52.4.249.44:443 | cs.ingage.tech | tcp |
| US | 52.4.249.44:443 | cs.ingage.tech | tcp |
| IE | 18.66.171.69:443 | cdn.undertone.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 54.167.184.132:443 | sync.srv.stackadapt.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 3.215.34.242:443 | cookies.nextmillmedia.com | tcp |
| US | 104.16.186.87:443 | cs.seedtag.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| IE | 54.170.121.32:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | 187.181.241.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.156.18.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.72.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.242.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.139.4.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.239.65.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.188.22.165.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.184.167.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 125.18.246.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.6.157.37.in-addr.arpa | udp |
| IE | 34.247.205.196:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| BE | 23.14.90.112:443 | csync.smartadserver.com | tcp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| DE | 162.55.236.225:443 | sync.richaudience.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | ads.us.e-planning.net | udp |
| IE | 34.255.48.153:443 | match.prod.bidr.io | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| NL | 193.3.178.4:443 | ads.us.e-planning.net | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.249.4.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.186.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.34.215.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.121.170.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.205.247.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.236.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.132.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.48.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 64.74.236.63:443 | b1sync.zemanta.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| IE | 52.17.40.72:443 | sync.crwdcntrl.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 162.55.236.225:443 | sync.richaudience.com | tcp |
| NL | 34.91.62.186:443 | um.simpli.fi | tcp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | gw-iad-bid.ymmobi.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| DK | 37.157.6.243:443 | cm.adform.net | tcp |
| US | 47.253.61.56:443 | gw-iad-bid.ymmobi.com | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | sync.cootlogix.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| DE | 162.55.236.225:443 | sync.richaudience.com | tcp |
| US | 159.223.124.226:443 | sync.cootlogix.com | tcp |
| BE | 2.21.16.25:443 | contextual.media.net | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| GB | 185.64.190.79:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | pool.admedo.com | udp |
| US | 64.74.236.63:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| BE | 35.210.53.219:443 | pool.admedo.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | se.semasio.net | udp |
| DK | 77.243.51.122:443 | se.semasio.net | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| BE | 23.14.90.112:443 | csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ced-ns.sascdn.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| BE | 23.14.90.98:443 | ced-ns.sascdn.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| IE | 34.255.48.153:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 2.17.251.11:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 52.202.159.116:443 | cs-server-s2s.yellowblue.io | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| IE | 18.66.171.115:443 | api-2-0.spot.im | tcp |
| IE | 108.128.74.207:443 | jadserve.postrelease.com | tcp |
| DE | 52.29.4.131:443 | rtb.mfadsrvr.com | tcp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.40.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.62.91.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.61.253.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.16.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.124.223.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| BE | 35.210.53.219:443 | pool.admedo.com | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| DE | 52.29.4.131:443 | rtb.mfadsrvr.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| NL | 81.17.55.170:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 154.57.158.115:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.8.8.8:53 | usr.undertone.com | udp |
| US | 8.8.8.8:53 | pixel.advertising.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | cw.addthis.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | beacon.krxd.net | udp |
| US | 8.8.8.8:53 | tags.bluekai.com | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| US | 3.162.140.102:443 | usr.undertone.com | tcp |
| IE | 52.51.22.204:443 | dpm.demdex.net | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | tcp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| BE | 104.68.81.91:443 | cw.addthis.com | tcp |
| BE | 23.55.96.210:443 | tags.bluekai.com | tcp |
| US | 104.22.31.209:443 | csync.smilewanted.com | tcp |
| US | 8.8.8.8:53 | idsync.frontend.weborama.fr | udp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| IE | 34.250.160.0:443 | pm.w55c.net | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad4m.at | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| NL | 89.207.16.140:443 | casale-match.dotomi.com | tcp |
| DE | 91.228.74.166:443 | cms.quantserve.com | tcp |
| US | 172.67.74.129:443 | ad4m.at | tcp |
| US | 3.162.140.102:443 | usr.undertone.com | tcp |
| US | 3.162.140.102:443 | usr.undertone.com | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| DE | 52.29.4.131:443 | rtb.mfadsrvr.com | tcp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | pxl.iqm.com | udp |
| DE | 91.228.74.166:443 | cms.quantserve.com | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 104.18.41.104:443 | capi.connatix.com | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| US | 3.229.202.201:443 | pxl.iqm.com | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | 11.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.74.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.4.29.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.159.202.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.140.121.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.22.51.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.81.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.31.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.160.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.146.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.74.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | wt.rqtrk.eu | udp |
| US | 8.8.8.8:53 | ads.avads.net | udp |
| DE | 57.129.18.121:443 | wt.rqtrk.eu | tcp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| BE | 2.21.16.25:443 | contextual.media.net | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 154.57.158.115:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| IE | 18.66.171.40:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 172.67.74.129:443 | ad4m.at | udp |
| US | 8.8.8.8:53 | euexchangesync.digitaleast.mobi | udp |
| US | 8.8.8.8:53 | a.audrte.com | udp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| US | 34.95.81.168:443 | euexchangesync.digitaleast.mobi | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 34.128.133.112:443 | ads.avads.net | udp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.202.229.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.18.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.133.128.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.81.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| FR | 141.94.171.216:443 | pixel.onaudience.com | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| NL | 89.207.16.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| SE | 213.155.156.168:443 | d5p.de17a.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| FR | 141.95.171.142:443 | green.erne.co | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| DE | 52.28.224.92:443 | sonata-notifications.taptapnetworks.com | tcp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| FR | 51.255.68.171:443 | dsp.nrich.ai | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| DE | 3.120.214.218:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| FR | 51.255.68.171:443 | dsp.nrich.ai | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | udp |
| FR | 141.94.171.212:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | 216.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.171.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.224.28.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.68.255.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.214.120.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.32.239.216.in-addr.arpa | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | udp |
| US | 8.8.8.8:53 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cookie-matching.mediarithmics.com | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | tcp |
| FR | 54.36.150.186:443 | cookie-matching.mediarithmics.com | tcp |
| GB | 216.58.204.66:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| DE | 79.127.216.47:443 | c3.a-mo.net | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | 212.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.150.36.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| NL | 79.127.227.46:443 | id.rtb.mx | tcp |
| US | 8.8.8.8:53 | ts.amazon-adsystem.com | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 3.162.140.7:443 | ts.amazon-adsystem.com | tcp |
| SE | 104.73.92.22:443 | hbx.media.net | tcp |
| US | 8.8.8.8:53 | 6.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 104.18.36.54:443 | vast.doubleverify.com | tcp |
| US | 8.8.8.8:53 | gcdn.2mdn.net | udp |
| US | 8.8.8.8:53 | cdn.doubleverify.com | udp |
| US | 8.8.8.8:53 | vtrk.doubleverify.com | udp |
| BE | 23.14.90.107:443 | cdn.doubleverify.com | tcp |
| US | 8.8.8.8:53 | tpsc-video-eu.doubleverify.com | udp |
| US | 172.64.145.17:443 | vtrk.doubleverify.com | tcp |
| GB | 142.250.179.238:443 | gcdn.2mdn.net | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 8.8.8.8:53 | s.e-planning.net | udp |
| US | 8.8.8.8:53 | r3---sn-aigl6nze.c.2mdn.net | udp |
| NL | 193.3.178.1:443 | s.e-planning.net | tcp |
| US | 8.8.8.8:53 | u-ams03.e-planning.net | udp |
| GB | 74.125.168.136:443 | r3---sn-aigl6nze.c.2mdn.net | tcp |
| NL | 193.3.178.3:443 | u-ams03.e-planning.net | tcp |
| NL | 193.3.178.3:443 | u-ams03.e-planning.net | tcp |
| US | 8.8.8.8:53 | 7.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.145.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.44.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 96.46.186.182:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | tpsc-ew1.doubleverify.com | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | dmp.adform.net | udp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | dmp.v.fwmrm.net | udp |
| US | 8.8.8.8:53 | aa.agkn.com | udp |
| US | 8.8.8.8:53 | beacon.krxd.net | udp |
| US | 8.8.8.8:53 | usermatch.krxd.net | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | udp |
| NL | 154.57.158.115:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 64.74.236.63:443 | b1sync.zemanta.com | tcp |
| DK | 37.157.2.229:443 | dmp.adform.net | tcp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| US | 3.231.143.23:443 | dmp.v.fwmrm.net | tcp |
| IE | 54.171.37.181:443 | obgpm76tt0a0sgozk8l.redinuid.imrworldwide.com | tcp |
| US | 34.235.77.249:443 | i.liadm.com | tcp |
| IE | 54.171.139.95:443 | aa.agkn.com | tcp |
| US | 8.8.8.8:53 | 136.168.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.3.193.in-addr.arpa | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 182.186.46.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.139.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.37.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.143.231.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.search.spotxchange.com | udp |
| BE | 2.21.18.175:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| GB | 18.134.84.20:443 | 1f2e7.v.fwmrm.net | tcp |
| NL | 154.57.158.115:443 | ads.stickyadstv.com | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 3.162.140.109:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 20.84.134.18.in-addr.arpa | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| GB | 142.250.187.226:443 | googleads4.g.doubleclick.net | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| GB | 172.217.169.2:443 | ade.googlesyndication.com | tcp |
| GB | 172.217.169.2:443 | ade.googlesyndication.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | prebid.adnxs.com | udp |
| NL | 185.89.208.11:443 | prebid.adnxs.com | tcp |
| NL | 185.89.208.11:443 | prebid.adnxs.com | tcp |
| US | 8.8.8.8:53 | 2.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.208.89.185.in-addr.arpa | udp |
| NL | 185.89.208.11:443 | prebid.adnxs.com | tcp |
| GB | 172.217.169.2:443 | ade.googlesyndication.com | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| GB | 74.125.168.136:443 | r3---sn-aigl6nze.c.2mdn.net | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 178.128.132.116:443 | exchange.cootlogix.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 178.128.132.116:443 | exchange.cootlogix.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| IE | 34.247.205.196:443 | usersync.gumgum.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 130.211.44.5:443 | tpsc-ew1.doubleverify.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 159.65.239.132:443 | prebid.cootlogix.com | tcp |
| US | 172.64.145.17:443 | vtrk.doubleverify.com | udp |
| GB | 142.250.179.238:443 | gcdn.2mdn.net | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | bid.g.doubleclick.net | udp |
| BE | 74.125.133.156:443 | bid.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| BE | 104.68.68.28:443 | servedby.flashtalking.com | tcp |
| US | 8.8.8.8:53 | 156.133.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | secure.flashtalking.com | udp |
| US | 8.8.8.8:53 | cdn.flashtalking.com | udp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| BE | 2.21.16.54:443 | cdn.flashtalking.com | tcp |
| GB | 216.58.204.66:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | ox-rtb-us-east1.openx.net | udp |
| US | 34.95.78.255:443 | ox-rtb-us-east1.openx.net | tcp |
| US | 8.8.8.8:53 | 54.16.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.68.68.104.in-addr.arpa | udp |
| GB | 142.250.187.226:443 | googleads4.g.doubleclick.net | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 255.78.95.34.in-addr.arpa | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 142.250.178.2:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | d9.flashtalking.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | tcp |
| IE | 3.248.100.153:443 | d9.flashtalking.com | tcp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 8.8.8.8:53 | data.ad-score.com | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.100.248.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.115.211.130.in-addr.arpa | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 8.8.8.8:53 | insticator-d.openx.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| GB | 35.178.41.118:443 | ad-events.flashtalking.com | tcp |
| US | 34.98.64.218:443 | insticator-d.openx.net | udp |
| US | 8.8.8.8:53 | 118.41.178.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| BE | 74.125.206.84:443 | accounts.google.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| BE | 74.125.133.156:443 | bid.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ox-rtb-us-east4.openx.net | udp |
| US | 34.95.113.183:443 | ox-rtb-us-east4.openx.net | tcp |
| US | 8.8.8.8:53 | 183.113.95.34.in-addr.arpa | udp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 104.18.36.54:443 | vast.doubleverify.com | udp |
| GB | 142.250.179.238:443 | gcdn.2mdn.net | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | udp |
| US | 172.64.145.17:443 | vtrk.doubleverify.com | udp |
| US | 8.8.8.8:53 | tpsc-video-eu.doubleverify.com | udp |
| US | 8.8.8.8:53 | images-na.ssl-images-amazon.com | udp |
| BE | 23.14.90.89:443 | cdn.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 3.162.149.161:443 | images-na.ssl-images-amazon.com | tcp |
| GB | 74.125.168.136:443 | r3---sn-aigl6nze.c.2mdn.net | udp |
| US | 8.8.8.8:53 | 89.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.149.162.3.in-addr.arpa | udp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| BE | 74.125.206.84:443 | accounts.google.com | udp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 159.65.239.132:443 | prebid.cootlogix.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | exchange.kueezrtb.com | udp |
| US | 104.18.36.155:443 | dsum.casalemedia.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| US | 130.211.44.5:443 | tpsc-video-eu.doubleverify.com | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | udp |
| US | 149.28.57.102:443 | exchange.kueezrtb.com | tcp |
| GB | 142.250.179.238:443 | gcdn.2mdn.net | udp |
| US | 172.64.145.17:443 | vtrk.doubleverify.com | udp |
| US | 8.8.8.8:53 | 102.57.28.149.in-addr.arpa | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 8.8.8.8:53 | s.richaudience.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| BE | 74.125.133.156:443 | bid.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | unified.adsafeprotected.com | udp |
| IE | 3.248.168.32:443 | unified.adsafeprotected.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | fw.adsafeprotected.com | udp |
| GB | 216.58.204.66:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | r4---sn-aigl6ns6.c.2mdn.net | udp |
| IE | 54.217.133.31:443 | fw.adsafeprotected.com | tcp |
| GB | 74.125.105.9:443 | r4---sn-aigl6ns6.c.2mdn.net | tcp |
| US | 8.8.8.8:53 | 32.168.248.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.133.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.105.125.74.in-addr.arpa | udp |
| DE | 46.4.139.58:443 | s.richaudience.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| GB | 74.125.105.9:443 | r4---sn-aigl6ns6.c.2mdn.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 54.157.59.36:443 | sentinelbi.com | tcp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | hb.minutemedia-prebid.com | udp |
| US | 8.8.8.8:53 | krk2.kargo.com | udp |
| NL | 185.89.210.90:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | g2.gumgum.com | udp |
| US | 34.149.50.64:443 | s.seedtag.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | exchange.cootlogix.com | udp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| IE | 34.249.133.39:443 | hb.minutemedia-prebid.com | tcp |
| IE | 108.129.15.138:443 | g2.gumgum.com | tcp |
| US | 147.182.212.145:443 | exchange.cootlogix.com | tcp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| DE | 54.93.153.110:443 | krk2.kargo.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 39.133.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.15.129.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.153.93.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.212.182.147.in-addr.arpa | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | tagan.adlightning.com | udp |
| CH | 13.224.103.126:443 | tagan.adlightning.com | tcp |
| CH | 13.224.103.126:443 | tagan.adlightning.com | tcp |
| US | 8.8.8.8:53 | 126.103.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | warp.media.net | udp |
| GB | 172.217.16.226:443 | googleads.g.doubleclick.net | udp |
| SE | 104.73.92.22:443 | warp.media.net | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| GB | 142.250.178.2:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | hblg.media.net | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| BE | 2.21.16.25:443 | contextual.media.net | udp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | rtb0.doubleverify.com | udp |
| US | 130.211.44.5:443 | rtb0.doubleverify.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 70.42.32.191:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev | udp |
| US | 8.8.8.8:53 | sq-tungsten-ts-eu.amazon-adsystem.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| IE | 3.254.236.173:443 | sq-tungsten-ts-eu.amazon-adsystem.com | tcp |
| IE | 18.66.171.60:443 | tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev | tcp |
| US | 8.8.8.8:53 | 173.236.254.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.32.42.70.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtbc-ew1.doubleverify.com | udp |
| US | 130.211.44.5:443 | rtbc-ew1.doubleverify.com | tcp |
| US | 130.211.44.5:443 | rtbc-ew1.doubleverify.com | tcp |
| US | 192.178.49.195:443 | beacons.gcp.gvt2.com | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| US | 54.84.92.154:443 | report2.hb.brainlyads.com | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 216.239.32.3:443 | csi.gstatic.com | udp |
| US | 34.95.113.183:443 | ox-rtb-us-east4.openx.net | udp |
| US | 8.8.8.8:53 | d9.flashtalking.com | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 34.98.64.218:443 | insticator-d.openx.net | udp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| US | 8.8.8.8:53 | servedby.flashtalking.com | udp |
| US | 8.8.8.8:53 | ad-events.flashtalking.com | udp |
| GB | 172.217.169.2:443 | ade.googlesyndication.com | udp |
| IE | 34.251.139.47:443 | d9.flashtalking.com | tcp |
| BE | 104.68.68.28:443 | servedby.flashtalking.com | tcp |
| GB | 13.43.53.179:443 | ad-events.flashtalking.com | tcp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| IE | 34.251.139.47:443 | d9.flashtalking.com | tcp |
| US | 130.211.115.4:443 | data.ad-score.com | tcp |
| GB | 13.43.53.179:443 | ad-events.flashtalking.com | tcp |
| GB | 13.43.53.179:443 | ad-events.flashtalking.com | tcp |
| GB | 216.58.201.98:443 | googleads4.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | 179.53.43.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.139.251.34.in-addr.arpa | udp |
| GB | 172.217.169.2:443 | ade.googlesyndication.com | udp |
| US | 34.98.64.218:443 | insticator-d.openx.net | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | udp |
| US | 147.182.212.145:443 | exchange.cootlogix.com | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 185.89.210.244:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | 244.210.89.185.in-addr.arpa | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 185.89.210.244:443 | ib.adnxs.com | tcp |
| GB | 142.250.179.238:443 | gcdn.2mdn.net | udp |
| US | 8.8.8.8:53 | fw.adsafeprotected.com | udp |
| IE | 52.51.110.75:443 | fw.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | 75.110.51.52.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sqs.us-east-1.amazonaws.com | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 3.239.232.43:443 | sqs.us-east-1.amazonaws.com | tcp |
| BE | 64.233.166.155:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.187.206:443 | analytics.google.com | udp |
| US | 3.239.232.43:443 | sqs.us-east-1.amazonaws.com | tcp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| US | 8.8.8.8:53 | 43.232.239.3.in-addr.arpa | udp |
Files
\??\pipe\crashpad_1268_AZIAKRPWWOJSWIDA
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bd9dab6cb071e6e8006472736861e5cc |
| SHA1 | f2f8ceb0f46e8bb838acc9932192783f8a65bc72 |
| SHA256 | 13c482b657c9094d519b4e2b1e1c822528adfa06d2069721ec199a6ec748a50e |
| SHA512 | 40ae3022a20ec53c2c10f41bac252e51feff69dfb35ee2faecfb9d9ccc1c37b6f93c61e8fdd92f856215372f6476164c7d3a56bf4d72e6f4841968998fec65ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 353f6fdf80df51cfdb237bdfb10d1d40 |
| SHA1 | 64dfb3ee70815d1b6775c9c5871365bdeb730352 |
| SHA256 | 11583eda201915ac957b77c756afabab14a8f3636a918dcbd10ec4f846d0ce1e |
| SHA512 | 95ef727baab241efc4c22aecfb315585f036d47ffb378deb5829a97122c6cd53cd07083c152848331d2ada0d9418e127a0651acaac90dc1b871819d1a64cd0d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\1a2ef69e-1896-430b-be7f-fbb374f27d4e.tmp
| MD5 | 77ed1d5bcaf9f58be9d0d4a1e6bf4c59 |
| SHA1 | f5375947cea5daaa21b3ad63952de5305bee3710 |
| SHA256 | c113bc2b47f07aa62a94d9c8d81b0b829979fa965bba1a9902752aed3b3eb180 |
| SHA512 | a91c835d11db3d57eef862125eeb7953b0565f2674a6e4a3c710e20c849604bd6829fa4cfc2014db08102d466abc7425cbb953e9213b9fa4dc96ec4d21dc75fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | c50ca0b54cf712785e9509196dbd28a9 |
| SHA1 | af3326702beac9b599da71983fc180d3de5bc955 |
| SHA256 | 670154c1f1e6cfc465403e7edbb3d2f5f44db3a9d237fb06ea46a2d0e6420c47 |
| SHA512 | 79b14416b47030997cefbb8e273b2d57da6a78c49afbb07c25928a350fb570c344ce2bb1f4b73ca9e1c89b55f96404f2e70d3c8dce203f136b10bdb84e78a506 |
C:\Users\Admin\Downloads\Unconfirmed 205974.crdownload
| MD5 | 692361071bbbb3e9243d09dc190fedea |
| SHA1 | 04894c41500859ea3617b0780f1cc2ba82a40daf |
| SHA256 | ae9405b9556c24389ee359993f45926a895481c8d60d98b91a3065f5c026cffe |
| SHA512 | cfdd627d228c89a4cc2eac27dcdc45507f1e4265eff108958de0e26e0d1abe7598a5347be77d1a52256de70c77129f1cd0e9b31c023e1263f4cf04dbc689c87e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1baea93561890a839663d2fe4fce8435 |
| SHA1 | 7a1e00f01a58b0a8f3d2f4522ee793e0ab98d2a4 |
| SHA256 | e4f5b32f0cb90812153b11de9e37db8174a4734c739808c66544a92a0192cf3b |
| SHA512 | f6c7e1383468d551d92dfc2d74f2ada00d0e149767b9323feb0bf3f9d5b3e03d748d57f3c3c7db6d8f70cfcb405e2a476992c5d5e3238ab7168d1d0816e89af7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dbce84c3d074262c5f1a9530625e8075 |
| SHA1 | 3c16b1f9d02505d65072db0944d708113f9f71f2 |
| SHA256 | 6c17176a5899c2f65611b779ea61b2d2af2d840d9574a65695f5915eab12661e |
| SHA512 | 83428257b184dbbb2b64cad914bb1a509197aaaea0a4b411cf6a0e20b5120fbd1e8ef3dd06ac4fed4f3ee2182763201c60951ec33114ddd0f52ff8f7b7543a49 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 6789f54fca3bf47ff24a2f97093d0371 |
| SHA1 | 80a85110aee1310333c775f82f453c6ca4edef7f |
| SHA256 | 288e7fea0e92faf7246dc838d3be79faf00eb9393263e6f860d4855439ccf959 |
| SHA512 | 8950a696b63a3dcc63f914e0d1407d003df414bb0cd6f80318733d43ec6b0f096ec5e4f9d0eb442217ba8f4e02d937bb88e87f26da4ae7acb7450675abf61e52 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe582f97.TMP
| MD5 | 09369ab72bb30cf3bfa522f8f764f640 |
| SHA1 | 63cbaa2d44533c27665939c734c418317bc99deb |
| SHA256 | 931772f5c468ce035cec3255a6218796428f2c17cb67abaf2c891a7a49d035a3 |
| SHA512 | 94ec663fda37ac9e72084d08d99b6fea21b52f5327c0e5a461b1936522c0c5f0bf7180ae988df0d9110591bbcc14a6f7731ebca9d2e73025c7275ea5ac0d30d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ff133d27fd405c721a860e3eaa5d32fc |
| SHA1 | f21ceea525670c37f217579e2c6c19e958170a5d |
| SHA256 | baab970ba3514d5254892d8ce9ec237de5acb52b796168b0ff19212b3ad3f69a |
| SHA512 | d9934510beb6c5e79baec06fb734dd1207f02717289cc09511dff6a0f6af82c67d1d68f232b516e83f2a33421591e4448f069266353d85bf49f5e70cb7fe09ce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c9fc7635a3f43c5637033dc0e6e37c62 |
| SHA1 | 65d30add60c6d74701dabe2e1df7626d3fcd9bab |
| SHA256 | 0f4f2327d0e0c851cf1fb6531746ab29cf48b5af9cd83c759a9cf178c905c276 |
| SHA512 | 43cfeab81621e1f5883d5f55d622ae152f4e084f86d087f377a226a11295129151e0311ac5575f491635db8550bdefcc97dde8fdda575faa63e9602987305a36 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 348aa3e3b2297813870779ba19db20aa |
| SHA1 | 619228cb30868dea94ce3cf00481351582e7f1bb |
| SHA256 | c7487867c3517065e116cf616c5bd1a730b66f4873581579d22753fca30eb80f |
| SHA512 | ff3ef7fad69c994eeec5c9a4d2b221f5647465d0224d973a61cb23c23ae94aa8a1f148c2ba49d73a44c21c879b0f157994797dfb496e149f2fd1e75690e337a7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 590c72c771751cdbebddae8bdd31f315 |
| SHA1 | a5c0cc6246c85416d7f29ca4479e9da946212ef7 |
| SHA256 | 494769792239fe52954d12616dc88469f6e78ca3b572d00d182143693466093d |
| SHA512 | 333d2b6b4d7a5dd8c43621e81aa7af46d8b5a04a6a1d64bacc07ef8dd5ee02dec782998dedcee4bb33dfe45604fb20b700d0791b6a21b8f9283a785b0775e607 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 12772d3ca227be7c76407a00e0e5b3a4 |
| SHA1 | 9a16edc55393f3e558320c1c8a5abded4547d6fd |
| SHA256 | 3f9e481fd134256aaaa08e19d6b70f688a199ed20334eae6c366fe57c5b10119 |
| SHA512 | 3fb128db76879905e8b1f3270693c165c74354d9d1a6ee850fc74c12caacf37e040a291db566894d22e0b44192c6875a4870bb76398ce2bfaeddf32b4f4a4bbd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a722e14be8b7baf92690f4a4c1472d7f |
| SHA1 | 941603ce77d37f29af35bbef6cc3dd6a8b93125d |
| SHA256 | 3a0828fedf3f71f5ef9789be57af7bfc6ad95e57c49bbeb3516020e0d2b2827a |
| SHA512 | 9b58551cc559553eb46ad3efbe28d9cd21dbd1edbafbd1d178648aeb94cc566f8b800f44bf1bda55d197c3cc31704aa7991908b14f3a1b49b0bba27a4120e188 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 57afe8f1190cf8f1797ac71113b7652d |
| SHA1 | 2544dd474170054304377c727d22c921ceed6ca6 |
| SHA256 | 61f1c0c52a575fb4796efe6f674369525896e556f29cd0df873ccdc613438ae1 |
| SHA512 | 5f4ecb1a8747035175efa8b6600863741e5be18ab15fdcf1d7d077d0526ea09e10e31b1065d66d6c5285400b973a21a53bc6f393e9fa391cb5dc1add1aabf964 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e1f3e4953381b62429e9c991a4a9f93c |
| SHA1 | e940a9c04daeccf7677413a67c2ae65ba4382f32 |
| SHA256 | 817172b3e2fbab5afc0f5e9b049b1c56d97a4378de3e0b9a4d5309f8567c1c86 |
| SHA512 | 0289836c0646c5cd7bd489a9c140bae33b5382f14e7c50f5f8b478247a5d4148693548abb01d50c1fda388920a8fe726cdee06de07d786fb075fcd0177b8e8d5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 109576c6e80f6f800c5491a39f66d7ad |
| SHA1 | 5b6c755d8499675f2bb95aeaef3256d0a6ab4d7a |
| SHA256 | 54a7cf9805632bebd7dac923c94675a059dd6efde5233c7bde72505a32c0fc90 |
| SHA512 | b63fcf9c1490952407090e7af858cf0199c15e0eb90eae290f792f4b68810dc63503bb9a21d04c597f0492ef7edfb0f69d8a83fa491f8b220c3d4f67287ab916 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 17a7a30ead88e17bc243bc65042bbe30 |
| SHA1 | 622bff3c7591a23c3dee5906e675f27922b860fb |
| SHA256 | be99e726e654d525fd63d380a4bac93b3472700e2e3f917b1a3589f9ad2381b9 |
| SHA512 | ac307e3c0f377236b45f8b5e55ec53e831a642efcbfdacdeeba45526c01ad8f78b5ca863875dc76555e872821809b0fc5c31c96dbb291f2584f517fb46450beb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 16440158aedc6d226efe945d4feb8869 |
| SHA1 | 21537b3f0b6f729dbc4ccae9807104447a431bee |
| SHA256 | 38b262a2fece6338d4e46eeaae031db00342936b607c7cd7a26fa6c46400262a |
| SHA512 | d7fe39fa6ee5f4dddaae590e17512d78a8b043b90aca954649ac9503ee640c339fffb7b02ccf20b04e0498324f74a4d35ed15749e4edf9ce5af4697cef195ef2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e5b3271b40e0cd80bf25fab4e2f7f02c |
| SHA1 | 4d4126be10e8ce933130958b8aca319b1d4797f4 |
| SHA256 | a861c3f6bcef648eb66cddf263f07b274a52d201c33389242bb829127c2f5dd7 |
| SHA512 | 9d7cb18f6f48273596c9717be1d3e851f3c8e0c2a88991ee3f0642bb8564376ce9ba66dd37f66cf637f8354b9d8fac2c5f5fa78c051919ab404d7bda08c9b532 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 45267722798e2546cee9ddcf60779b52 |
| SHA1 | a510c27de1c649cabc1f6d1ff652eb4c920952e9 |
| SHA256 | 67d7fe6dab9e4fbdcbdfebe007a0fd50248e4c805a9dbea5259defacda6bcaf7 |
| SHA512 | a55e1faff61035b716f05720c424512501c2d109c3a2e73435510d7b2d7bb99f01bc595b222a077687d7a239b3bee70db4e885b1aa3a55f8995b9a4181ebcdeb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a00fc41bfc8892d8972f94c0d25a8062 |
| SHA1 | c743f94722a9d48619d8383f7bef7586ee1c8e85 |
| SHA256 | a09ee2c4fd440007e2556ca5965c25bf2a62027fc33b4a55a29f59aa1c065e49 |
| SHA512 | 4a8615c2c1dd017cb464e4c24d0bacf616a98464febcfa6d31c148ac407fdff943bb403b45c7f4f17f9e05f0e8db1767de2be3534e250070f5126a37b8058883 |
C:\Users\Admin\Desktop\killmonoxide.bat
| MD5 | 387f8f8d58e278ec74f659d808317f45 |
| SHA1 | 7c3d493e4c744f54954ab38290f0ae16ad40193b |
| SHA256 | 1d7b429198c7cfb8e749facaf8ed16177257945e531c088ccdb6e3b337e25bad |
| SHA512 | 988b01800fcbb5ae37077db0a71775ef99fded823772f61f0508f4cf092dac771c0151268a288e4437d93bceccf791790d8a6fb49bb786654193ee302d771cd4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 7a035d0d0b26e2054a4e725d275eadf2 |
| SHA1 | 4a00b2879a0d7da744796757da3e7a9e38e026cb |
| SHA256 | 63924ee8262e82212921180f33340b8c5c133dfe33caa9732c9189ebe3395a7f |
| SHA512 | 97a0a1ae5581a8db3ec09d405238a016b89202e9ebf80c13fffc1f0ba427f2fd3f495a0471c82a5cab5d95136441d8dc8a880a8211dcf73b0a1ec5c44ab67668 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 868dd56c90b69a23654a8dda636a7053 |
| SHA1 | 51ee9bb6d8ff2e9379ce45ac0b89bd2883f18740 |
| SHA256 | 96e6486fde3297223126ec6cf1cb7c0386fd47d32c586daece694996e6174aa5 |
| SHA512 | a2a438d9a8bd8b8c064cc3f5e8f55563cfa08db65ffb57060f0139ba98e956b223424c17b1091cb6b5f07f732ceb975cc1095d9b57cc631a53ca44a2578d98a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9bd393fd7fe53a449bb00ff198b78aee |
| SHA1 | af3b395551f3f2be27445db466ccca81d89d2470 |
| SHA256 | a6b3861389402b7b3653a9e1f059a04a0fb19893b2a33527a7cb3a6e64c9562e |
| SHA512 | 437e3130932af068f1a228adcb3583ea65250e1ca154fb8e2009e6ccc322feeedad16aa15a11f34de590208779575876314cfac85b9aacd7869984714f288b4e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e3deac84da353832c72cfb2b77d127d1 |
| SHA1 | 7e99b90addacd4e8dfbd7770b851cb5954171496 |
| SHA256 | 1f23a926a746d7e3df1f369b2d30937d74241eca0bc5562da76f86b10a34b9bc |
| SHA512 | 443823ed7eb39f39a237b00e5fb98961ba5672b746a1a94beb9b917e2cafe9b69fc5640d9a6869832beb406882cd5b7f498b4ee9b8eb1d87920bd752100d2381 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_prebid.a-mo.net_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005b
| MD5 | 249b5e08938ed2b4d1fdb5abc862f98c |
| SHA1 | b36ec41b366da5a23064dea80f8c8d20f00f16ed |
| SHA256 | 1d92ca5c36faafb862d629e406972c9177cb18fdbe755c3d484d447a356ad245 |
| SHA512 | 8bc18be9a29cb7b79e7dc4b59a651073a2dde398e83726ca712e55a1f9dc0e09967e547433408d5fe598d933df300b3a0e728104e6041fe497d76312fb0ab1e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 261808473a4a187829539c786a75bc62 |
| SHA1 | 99f2eff6d1f6bb8aa84b072f729420afb3618a33 |
| SHA256 | 86eb0c092d1818fdf69bf5a81727d24c6d67fbdcc05ad552b474da28c4f40020 |
| SHA512 | 74686fe2019be8a6927e0394c3deef121bd3909922e9a584ef1a95c88c78b9ae459c1b15c876e18b6458b3f257469be95dbdb5080900887e25fd918bb71fdd63 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | eaff72fdd2fe14fd0aab6d830557d8ea |
| SHA1 | 37aa29d58bb2019d48349286e88451be9e304ce9 |
| SHA256 | c97476cc321236555a0ea10d2803d338d4400a746f82b123e88716ae8423cd46 |
| SHA512 | 89d01a5254253283dcd8ca40f0784728c62b7c9b844cf701bcc5a7e16f046169238a81488e23c777a6c4741eab1b8489398c31c2e43fc59f3dba766bbb7ec6cb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000069
| MD5 | d4ea0902cbf078060c816a3fdcb95ae7 |
| SHA1 | 1a913046f8ce0cb8de6f6e5da95e12207dcc1a3e |
| SHA256 | db8f4fbe5be8df3c749304fd86230d318ca3429626c7adbb972314afdcfba8c5 |
| SHA512 | 45b91616d51632b1b2c77795a8dee8d6929fc9dcbdd53fbf523ff43b09ba631a1a4ee250607909274566133a5ff1360fed9cdd84bd2913d1065650849806f04a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ad38bc4e0c5d3fa3e27a866f1062d893 |
| SHA1 | f45e92fd6c898004013400435b96161eb582ee00 |
| SHA256 | 2c835d65ce0af1f4b60573f885724fd58a7a11e0f7b6cee7a5ca1061cd4056f8 |
| SHA512 | f366375df376fd826abfd235254a6bc3529bec1d4c32c228dc9cf488f3cc42e0ed86421191e5e5444b37a7e055ce83091c6c50e06886a7cfa661b1c2426154bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006b
| MD5 | c18d63e979f8e2184c0beb7c905dccfb |
| SHA1 | 8a199cfa45d1d85a2ad21f152b658350ca6fe624 |
| SHA256 | 1fd592cbe08eaa4fd4b718bd3a303e82040f51d0033adacff1a28f113a4730db |
| SHA512 | 5af407a9a331b8eba1aceb010267170ced48c6bfd8cb5078835afc46811316f7d315a19485060fdad7647aeedd434f2edd1227910bcb1a203723fbccbcada2f3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00006c
| MD5 | 7067e18f2f54c42a33c03998c98a6d38 |
| SHA1 | cca1859760b8ed5cf39754d709519bd1e24959af |
| SHA256 | aac885464b640acdd3eaa11718d573b514b9d8f062db708091e8fc35b396da29 |
| SHA512 | c4c4c305fc6e44eac8bc304bd5fb93a798a40b006a505c9aa081b223504bdf9c982b9bf3a8a323e41a76b12566d7079a8c86b845f0d0bb9852c2dc533d457563 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 01b7241cba53d1adb60f8e43b9d0ef76 |
| SHA1 | b1aa80d29571db2b87709b1e40062d17f77bc118 |
| SHA256 | 1759f48bc8d17d76ce5e7fa3663706fb574fe1e11f0b2ce45a51dcff49d99eb0 |
| SHA512 | cf4d6ec95634bff7296a22c078df2b601b48dfe940eb4e93a1ebd641793304f9efbb479034f9f7fed9f27ec8216b101b9561e2e0dfea5c31de7c01ae857ba842 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 79d6f19ac72eebb46f37e5eed18ae9dd |
| SHA1 | b7ae3482f306fda6d39b27183c385ae9b6bea001 |
| SHA256 | ebe891ac00d22594a0ce19f1cf8b7829155796f2d7fc0ce2421d71537c3e1145 |
| SHA512 | f5f96e8ad9881e9705ef54b2aa3941c1f707e4c33c5e4c232d3e9cf178e0c808604113acb855a4e17e7f30044de85bf793321059b6a91e7031034e99be08362d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000071
| MD5 | 6ff03a5f53100a928e1467a2e569eaef |
| SHA1 | c4553180c0aef62f8ef71e74dee8d5086db97f30 |
| SHA256 | 6ddaaebb721de798bb02796929f538cc1e1c4f508f1471c96e90dfaaae4aedef |
| SHA512 | 0fc4cd318cb2f090f6efc18d8889b82e40edae4fed5781dc90f5ad7904ddc347a5b062293750141e11082b1fab51977d151ee8f43f30e0b8cd7e55a4dffb6684 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000087
| MD5 | 30bd6dbd709912b4ba1657cddbb9f0e6 |
| SHA1 | 9cb25b01f8e30c8fb0cf1f0f5d331ad41ff19dbd |
| SHA256 | e1a92d2745aa5802125ce100c7a76e0798d8fe7ee40ad4f3fa2d4654ecc28a5c |
| SHA512 | 0c17cf472f765efbed0c0be72f56f121ac014b0efb6dca6b6732a6dc714c5654c8655a818f7c86d7cb754b93c222197ea8bd37fd415efc276f888305209b3d4c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dc5700db620bdea21b80916b0104fb09 |
| SHA1 | 5be3cded7a68b94f10d6f9b8f1b7e0ab3997acfa |
| SHA256 | bc5eeec06d8cb7760dda14d464329cb0c079ae597a91ddc36f81bfedd45ad85a |
| SHA512 | fff9779901a5023e3cdaa251e19b65a9c1c36e853bd6a8f1ed3cbb60eda5f9821e0b8e2ebb85e974b27982fe8fefd6655c87742b4eb5d7671f0ed2ab9c067784 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005f
| MD5 | 810fae5f789e59a67eb7d17eb4827b16 |
| SHA1 | ef8f11ce5d87e47e25ba7203ce435dc41a19e010 |
| SHA256 | feaf05f1a488ba4c478dbde800718fe345da07f7e1d28076ec953eb8172c14e5 |
| SHA512 | 280d402aac03ed30b9f42fa1f281eb8d567a78c52653e37141240aacfdca610387ff6ac8b237efa4a4c02b6aebb81345b79fc488a658ca4ef525bd379e65806d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b
| MD5 | cfba6ecf9db4655112cc400a9dada870 |
| SHA1 | b0e414bec21599505988b601c24427ba7b271d43 |
| SHA256 | 090ef5053db9952f8a42eda3cdaea90a5e80966a41dbc2e6f39d95176b6f6f74 |
| SHA512 | 63b7dbfbf409e67cd11d5c5cc2570d7006eafbb28b0cdba0ba4c432984ad3183575dbe2bb88c6708d537ae2e27f4e957600601d40debd95a8ea911198ba59772 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000060
| MD5 | 49295de6ccd23cf80b6418a2d209868f |
| SHA1 | 42a955b4560bb22cb9b5b39577f7a691ea345018 |
| SHA256 | d5a29c73c6200af2ed6918a61106e649b92098ecd476830d725ed4d2ea5a8efa |
| SHA512 | 2954ab185fd84a08933bb6e79d91e301021fce4e632b477e765c172cacf72913561e101ed2f7e66bfbdc5946b35f2b63eb2b6f878e0afc9d26ffe71ee112a1c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b8f1bfffe70073b688fc10bfffe88044 |
| SHA1 | 22f0bea7c93bcbec90ad5f4cec65438aa5b32c53 |
| SHA256 | dabc39ebed70332c21e954fdab0e44eaedde57e5e4d7001945a7afbc8209edd8 |
| SHA512 | 6f56376356cd81803fa1c8bdbeade65365c0e4b5b2141e9b5eea6cbc54155024bf420c820b6a74a61611d3bd670e33f24e0e9c298c184c2bb84392ed48bdd1b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000095
| MD5 | e847d6808e8af46f349214f18e1ba2c3 |
| SHA1 | 8b0d9f66f5fb294a215ee974129354f1693f3350 |
| SHA256 | e9f4fd3071ca85f695e02deb19ce226f518da5be7c6f44a37cf86d90372244f7 |
| SHA512 | 3f3e270813ac60b4723d9ebacf67402e8f0435c2b963f434f7e318a3156737e7a891b79a424898732ab15468d9e36714d56267555d032ad72dd1e4469309fadb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00009b
| MD5 | 68cfc3db75dbf49d8567f3cb31041965 |
| SHA1 | bd15e367c9118b51339535d7d67a75a68626cb9e |
| SHA256 | 92f003978fbca36d468db65e1783ffb8bc53186a4bc5924bada7db7d59782ae4 |
| SHA512 | 92450b2b35082b147ff54d15749c8b72ae556dcb35cca5e8bfa8a358eb810250f1213cd63761aa1b343389508de8ad35d023c861d3a9984ccabbca9ac480230d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a4
| MD5 | d84862513956cbe61aeb4ebbfdd3355a |
| SHA1 | 14ab269df17cb0333b1556ce120d587324479f6b |
| SHA256 | a18b26912ab9e034923cc64fbfdb59d682500f2c556456930e480b6bd69e33b5 |
| SHA512 | d04ca96d72595f1e291a6ce96f092c1707064800103cde733512a186c1b22e089b63690a0c53965c97248dd782731b22fa2d27b8ee3ae112647382f1c06d1a9d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5590ed743806a5043ac376d5535f0b74 |
| SHA1 | 79415328c44204e82ca7280a487b0ea0e8651d04 |
| SHA256 | 4660a0ce34f251a2c8e00ec61fd944c8be1bb7fea41efe47ae22cbed58dd539b |
| SHA512 | 42d26e9f4f78e500166c8e2baee214a85fa8b62e219e79d7f4d4a37cafc3dbff50360af386eaadfdcccd175668038085bc19207536d18a8aeb1a881133c1e814 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4296bb26ed4b92e4540d3d7eabe225d4 |
| SHA1 | 4eeca7b02a44c9ef16e64f15500a6783abc6edbb |
| SHA256 | bce1e030c44c99c9e442f7b9ffcf6d70154d4d9187c793676aa25519830d27e1 |
| SHA512 | 9c3b796338f1a54b070898eb84109e21515a6497ffa7d8ed4ca28825aba844b47ede08296d860d8d9b4c8e1f10ffa3b24e3d8afca46a9cd6a1787e1f233a25fb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000055
| MD5 | 806d1273f2a7702b8be593e82a71ee39 |
| SHA1 | 189c8aac0f5c610949d81cc1f6e9ab72d47d36f4 |
| SHA256 | 9e064a173bbfa4092fea520c8f39cba4767336400388792d52ea2d2084020b39 |
| SHA512 | 14605c165d26e1a58dfb23aa1c59455e235d0d59b0cd3b8be2157962e364c4211e296c203ba19ac520df62b86f3a6c2822d828bf9dde090b8888dd43aa74a548 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000056
| MD5 | 2e023a843ea2f5b2040177e389a852f9 |
| SHA1 | 71d94ce3f9164ceab5bf7236ef71d527ddcee100 |
| SHA256 | 63cde3a79566b37a672fde354b720d899536ab8269d7afb2ae2fe60179509e0b |
| SHA512 | e7667a4d46a41332aba1ea4d5867143ac6d43be54532ff009a8a7d8bdc8e284488657619fed6db9f9c03b15e955eab53066350114f1db0b34be830d3fd4e3786 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b90649060bf03ea07a3c518bf5a4a40b |
| SHA1 | c08c421bf916f08f7a4074356a88be865c681dec |
| SHA256 | 9a9f9f21e17c7e30ca1d9a7fa4c1b1ff6f42cebc1d57f73a660aa560ecf56793 |
| SHA512 | 84705e899f9b1726ebcc25938f07b2c98711574b372b99173783e0f9afa63c0d1c1394ffb1da4147a13c1ab278b93fc7c59a9ab1093c4baabda6f63b1f5476df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5f6b53ea1e165817d5838f183d86c068 |
| SHA1 | b67aa86d5812a08b95c31bb669f02045cee8f342 |
| SHA256 | b66a6b7de040a4c039f2a1a8f9abe445c66c1fcb126a422c140b57258e1a0c06 |
| SHA512 | 55284b57905a5dd1dd2d415e96bb22f5fb5e502a43875e45260700baf48f4cee77dc5a8eaf6d8cebfce7a71449b30206484a89c9b199dacee57613d35d625c64 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2e663af1d4294d2e3955fb51c68de297 |
| SHA1 | af58a0c8e6f1335be00242670f85353abd0a0417 |
| SHA256 | 8f77a5423417c49d1ba1266cbc068a61c2a0df795db50a2d91877a4cde84ca77 |
| SHA512 | cf03faf7b3cef59992e5044317f2938e2664319c747930b592c1e9927a529db01397e0bb4efd76a9bb9921c21aa51f2dad6e1e63dd1cfa3d6182dcb129540d21 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_prebid.a-mo.net_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | 8ee32c7a38d21b280f749b5e08c7b7e6 |
| SHA1 | 35048ae526f53e5b00abb117155b1e84e5e2ac91 |
| SHA256 | 6958b32070a9dd54da180786875ef5ad916810ab33fcead247525ab92f0cffad |
| SHA512 | 61c71cbc54520eab4fb431fc5b37ad514ce8670d44eb99fcdc4d28a4d7985eb767d88a2d9f25c03bafaef7a58a4a4a726288e01c2112304ec60e642bcc766f26 |