Analysis Overview
Threat Level: Likely malicious
The file http://www.google.com was found to be: Likely malicious.
Malicious Activity Summary
Possible privilege escalation attempt
Creates new service(s)
Manipulates Digital Signatures
Executes dropped EXE
Modifies file permissions
Registers COM server for autorun
Loads dropped DLL
Enumerates connected drives
Checks installed software on the system
Drops file in System32 directory
Drops file in Program Files directory
Launches sc.exe
Drops file in Windows directory
Enumerates physical storage devices
Suspicious behavior: GetForegroundWindowSpam
Modifies registry class
Modifies data under HKEY_USERS
NTFS ADS
Suspicious behavior: EnumeratesProcesses
Suspicious use of SetWindowsHookEx
Suspicious use of FindShellTrayWindow
Suspicious behavior: LoadsDriver
Modifies Internet Explorer settings
Suspicious use of AdjustPrivilegeToken
Runs net.exe
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Kills process with taskkill
Suspicious use of WriteProcessMemory
Checks processor information in registry
Enumerates system info in registry
MITRE ATT&CK Matrix V13
Analysis: static1
Detonation Overview
Reported
2024-05-30 21:29
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-05-30 21:29
Reported
2024-05-30 21:39
Platform
win11-20240419-en
Max time kernel
553s
Max time network
557s
Command Line
Signatures
Creates new service(s)
Manipulates Digital Signatures
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.10\FuncName = "WVTAsn1SpcSpAgencyInfoEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2010\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubDefCertInit" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubInitialize" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{7801EBD0-CF4B-11D0-851F-0060979387EA}\$DLL = "Cryptdlg.dll" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{189A3842-3041-11D1-85E1-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.2\CallbackAllocFunction = "SoftpubLoadDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.27\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.4\FuncName = "WVTAsn1SpcIndirectDataContentDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2010\FuncName = "WVTAsn1IntentToSealAttributeDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.1\CallbackAllocFunction = "SoftpubLoadDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\CallbackAllocFunction = "SoftpubLoadDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2004\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "SoftpubAuthenticode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.16.1.1\Dll = "cryptdlg.dll" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{DE351A42-8E59-11D0-8C47-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key deleted | \REGISTRY\MACHINE\SOFTWARE\WOW6432NODE\MICROSOFT\CRYPTOGRAPHY\OID\ENCODINGTYPE 0\CRYPTSIPDLLVERIFYINDIRECTDATA\{C689AAB9-8E78-11D0-8C47-00C04FC295EE} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllFormatObject\1.3.6.1.5.5.7.3.4\Dll = "cryptdlg.dll" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2006\FuncName = "WVTAsn1SpcStatementTypeDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\DefaultId = "{573E31F8-AABA-11D0-8CCB-00C04FC295EE}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllPutSignedDataMsg\{DE351A42-8E59-11D0-8C47-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllPutSignedDataMsg\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubInitialize" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$Function = "GenericChainCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.30\FuncName = "WVTAsn1SpcSigInfoDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllRemoveSignedDataMsg\{C689AABA-8E78-11D0-8C47-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllFormatObject\2.5.29.32\FuncName = "FormatVerisignExtension" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2005\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2002\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{189A3842-3041-11D1-85E1-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.2\CallbackFreeFunction = "SoftpubFreeDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.11\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.11\FuncName = "WVTAsn1SpcStatementTypeEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.4.2\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\CallbackFreeFunction = "SoftpubFreeDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.4\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2001\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.15\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllRemoveSignedDataMsg\{C689AABA-8E78-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPRemoveSignedDataMsg" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\DefaultId = "{573E31F8-AABA-11D0-8CCB-00C04FC295EE}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2007\FuncName = "WVTAsn1SpcSpOpusInfoEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2222\FuncName = "WVTAsn1CatMemberInfoDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubCleanup" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{C689AABA-8E78-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPCreateIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2221\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2011\FuncName = "WVTAsn1SealingSignatureAttributeDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
Possible privilege escalation attempt
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\LDPlayer9_ens_com.roblox.client_25567197_ld.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\A32C4F80-98F5-46C3-A507-700D5A9555CA\dismhost.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\driverconfig.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\vbox-img.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\vbox-img.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\vbox-img.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | N/A |
Loads dropped DLL
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
Registers COM server for autorun
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-26c0-4fe1-bf6f-67f633265bba}\InprocServer32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-1807-4249-5BA5-EA42D66AF0BF}\InProcServer32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-26c0-4fe1-bf6f-67f633265bba}\InprocServer32\ = "C:\\Program Files\\ldplayer9box\\VBoxC.dll" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-1807-4249-5BA5-EA42D66AF0BF}\InprocServer32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-c9d2-4f11-a384-53f0cf917214}\InprocServer32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-26c0-4fe1-bf6f-67f633265bba}\InprocServer32\ThreadingModel = "Free" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-1807-4249-5BA5-EA42D66AF0BF}\InProcServer32\ThreadingModel = "Both" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-47b9-4a1e-82b2-07ccd5323c3f}\LocalServer32\ = "\"C:\\Program Files\\ldplayer9box\\Ld9BoxSVC.exe\"" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-c9d2-4f11-a384-53f0cf917214}\InprocServer32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-47b9-4a1e-82b2-07ccd5323c3f}\LocalServer32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-c9d2-4f11-a384-53f0cf917214}\InprocServer32\ = "C:\\Program Files\\ldplayer9box\\VBoxC.dll" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-c9d2-4f11-a384-53f0cf917214}\InprocServer32\ThreadingModel = "Free" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-1807-4249-5BA5-EA42D66AF0BF}\InProcServer32\ = "C:\\Program Files\\ldplayer9box\\VBoxProxyStub.dll" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-26c0-4fe1-bf6f-67f633265bba}\InprocServer32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-47b9-4a1e-82b2-07ccd5323c3f}\LocalServer32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
Checks installed software on the system
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files\ldplayer9box\VBoxNetNAT.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-util-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\msvcp120.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\ossltest.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-console-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Qt5PrintSupport.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\tstPDMAsyncCompletion.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-time-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\VBoxProxyStub-x86.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\ucrtbase.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxHostChannel.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-namedpipe-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-heap-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\msvcr100.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-processenvironment-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Ld9BoxSup.sys | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxCpuReport.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-rtlsupport-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Ld9BoxSup-PreW10.cat | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxCAPI.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-datetime-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\USBUninstall.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-debug-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\driver-PreW10\Ld9VMMR0.r0 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\tstVBoxDbg.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxRT.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\msvcp140.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-interlocked-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-crt-environment-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\dpinst_86.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-handle-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-crt-multibyte-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\platforms\qoffscreen.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Qt5WinExtras.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-synch-l1-2-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxDDU.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File opened for modification | C:\Program Files\ldplayer9box\api-ms-win-core-console-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\libOpenglRender.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\fastpipe2.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-string-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-private-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\driver-PreW10\Ld9BoxNetLwf.inf | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-core-timezone-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-conio-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\libssl-1_1.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-namedpipe-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\NetFltUninstall.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\ucrtbase.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-core-synch-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\fastpipe.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\driver-PreW10\Ld9BoxNetLwf.cat | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\api-ms-win-crt-convert-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\concrt140.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Qt5Core.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\Qt5Widgets.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\dasync.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\msvcr120.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\vbox-img.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\VBoxVMMPreload.exe | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-locale-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\x86\api-ms-win-crt-runtime-l1-1-0.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| File created | C:\Program Files\ldplayer9box\libOpenglRender2.dll | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagwrn.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setupact.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagerr.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagwrn.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Logs\DISM\dism.log | C:\Windows\SysWOW64\dism.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setuperr.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setuperr.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Logs\DISM\dism.log | C:\Users\Admin\AppData\Local\Temp\A32C4F80-98F5-46C3-A507-700D5A9555CA\dismhost.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\setupact.log | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
| File opened for modification | C:\Windows\Panther\UnattendGC\diagerr.xml | C:\Windows\System32\oobe\UserOOBEBroker.exe | N/A |
Launches sc.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\sc.exe | N/A |
Enumerates physical storage devices
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Kills process with taskkill
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\taskkill.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-1474490143-3221292397-4168103503-1000\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\dnplayer.exe = "11001" | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1474490143-3221292397-4168103503-1000\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-1474490143-3221292397-4168103503-1000\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\ldnews.exe = "11001" | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133615782294365832" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-0C65-11EA-AD23-0FF257C71A7F}\ProxyStubClsid32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-42F8-CD96-7570-6A8800E3342C}\ = "IDnDBase" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-F6D4-4AB6-9CBF-558EB8959A6A} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-32E7-4F6C-85EE-422304C71B90}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-6679-422A-B629-51B06B0C6D93}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-DA7C-44C8-A7AC-9F173490446A}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-EABD-4FA6-960A-F1756C99EA1C}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-7006-40D4-B339-472EE3801844}\ = "IGuestKeyboardEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-477A-2497-6759-88B8292A5AF0}\ProxyStubClsid32\ = "{20191216-1807-4249-5BA5-EA42D66AF0BF}" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-3618-4EBC-B038-833BA829B4B2}\NumMethods\ = "32" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-2354-4267-883F-2F417D216519}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-26F1-4EDB-8DD2-6BDDD0912368} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-F4F4-4DD0-9D30-C89B873247EC}\ProxyStubClsid32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-4974-A19C-4DC6-CC98C2269626}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-808E-11E9-B773-133D9330F849} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\TypeLib\{20191216-1750-46F0-936E-BD127D5BC264}\1.3\FLAGS | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-35F3-4F4D-B5BB-ED0ECEFD8538}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-8F30-401B-A8CD-FE31DBE839C0}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-42DA-C94B-8AEC-21968E08355D}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-5FDC-4ABA-AFF5-6A39BBD7C38B}\NumMethods\ = "64" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-1640-41F9-BD74-3EF5FD653250}\ = "IKeyboard" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-3E78-11E9-B25E-7768F80C0E07} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-0979-486C-BAA1-3ABB144DC82D}\NumMethods\ = "16" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-BCB2-4905-A7AB-CC85448A742B}\NumMethods\ = "18" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-44DE-1653-B717-2EBF0CA9B664}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-0FF7-46B7-A138-3C6E5AC946B4}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-7966-481D-AB0B-D0ED73E28135}\TypeLib\ = "{20191216-1750-46f0-936e-bd127d5bc264}" | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-2F05-4D28-855F-488F96BAD2B2}\TypeLib | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-C8E9-466B-9660-45CB3E9979E4}\ = "IExtPackManager" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-5A1D-43F1-6F27-6A0DB298A9A8}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-1F8B-4692-ABB4-462429FAE5E9}\ = "IDnDModeChangedEvent" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-61D9-4940-A084-E6BB29AF3D83}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-E8B8-4838-B10C-45BA193734C1}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-8690-11E9-B83D-5719E53CF1DE}\TypeLib\ = "{20191216-1750-46f0-936e-bd127d5bc264}" | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-23D0-430A-A7FF-7ED7F05534BC}\ = "INATNetworkPortForwardEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-34B8-42D3-ACFB-7E96DAF77C22}\ProxyStubClsid32\ = "{20191216-1807-4249-5BA5-EA42D66AF0BF}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-9641-4397-854A-040439D0114B} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-735F-4FDE-8A54-427D49409B5F}\ = "ICloudNetwork" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-2D12-4D7C-BA6D-CE51D0D5B265}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-7F29-4AAE-A627-5A282C83092C} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-E621-4F70-A77E-15F0E3C714D5}\ = "IPCIDeviceAttachment" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-5637-472A-9736-72019EABD7DE}\ProxyStubClsid32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-CC7B-431B-98B2-951FDA8EAB89}\ProxyStubClsid32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-07DA-41EC-AC4A-3DD99DB35594}\ProxyStubClsid32 | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-6679-422A-B629-51B06B0C6D93}\ = "IUSBDeviceStateChangedEvent" | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-44E0-CA69-E9E0-D4907CECCBE5} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-EE61-462F-AED3-0DFF6CBF9904} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-7193-426C-A41F-522E8F537FA0} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-CB8D-4382-90BA-B7DA78A74573} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-92C9-4A77-9D35-E058B39FE0B9}\NumMethods | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-58D9-43AE-8B03-C1FD7088EF15}\NumMethods\ = "21" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-BE30-49C0-B315-E9749E1BDED1}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{20191216-47b9-4a1e-82b2-07ccd5323c3f}\VersionIndependentProgID | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-3EE4-11E9-B872-CB9447AAD965} | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-9849-4F47-813E-24A75DC85615}\NumMethods\ = "13" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-416B-4181-8C4A-45EC95177AEF} | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-08A7-4C8F-910D-47AABD67253A}\ProxyStubClsid32 | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-E621-4F70-A77E-15F0E3C714D5}\NumMethods | C:\Windows\SYSTEM32\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{20191216-80E1-4A8A-93A1-67C5F92A838A}\ProxyStubClsid32\ = "{20191216-1807-4249-5BA5-EA42D66AF0BF}" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-80e1-4a8a-93a1-67c5f92a838a} | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-42DA-C94B-8AEC-21968E08355D}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-DA7C-44C8-A7AC-9F173490446A}\NumMethods | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{20191216-9070-4F9C-B0D5-53054496DBE0}\ProxyStubClsid32 | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\LDPlayer9_ens_com.roblox.client_25567197_ld.exe:Zone.Identifier | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Runs net.exe
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnplayer.exe | N/A |
Suspicious behavior: LoadsDriver
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe | N/A |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\LDPlayer9_ens_com.roblox.client_25567197_ld.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| N/A | N/A | C:\Program Files\ldplayer9box\Ld9BoxSVC.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\driverconfig.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument http://www.google.com
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffe6bc4cc40,0x7ffe6bc4cc4c,0x7ffe6bc4cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1788,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=1776 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2072,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2088 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2164,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2340 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3004,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3156,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=3052 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4424,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3732,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=2988 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe
"C:\Windows\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\MiniSearchHost.exe" -ServerName:MiniSearchUI.AppXj3y73at8fy1htwztzxs68sxx1v7cksp7.mca
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\Windows\System32\oobe\UserOOBEBroker.exe
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4948,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5036 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5024,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4772 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=4436,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4584 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=2620,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5056 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4768,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5088 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4316,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4912 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5176,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=4280,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5152 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5264,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5424 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=3716,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4760 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5412,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5116 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5592,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5108 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=5436,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5532 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=3728,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4792 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=4736,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5116 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=5492,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5220,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5488 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=5084,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5340 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=5304,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=4572,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5648 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=5384,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=5648,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=4884,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5588 /prefetch:1
C:\Windows\System32\oobe\UserOOBEBroker.exe
C:\Windows\System32\oobe\UserOOBEBroker.exe -Embedding
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\18.151.0729.0013\FileCoAuth.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=5208,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4776 /prefetch:1
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=5640,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=4112,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4500 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5068,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4488 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=5524,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4968 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=5088,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=4892,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=4560 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=4896,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5392 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=952,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5116 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=6052,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5272 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=6020,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6156 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=6284,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=6292,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6440 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=6460,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6584 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=6708,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6732 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=6468,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=7080,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=6420,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7068 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=7120,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=7532,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7568 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=7688,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7504 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=7824,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7840 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7984,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8000 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=7380,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7580 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=7980,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7100 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=4476,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=8076,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7352 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=5364,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8060 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=4744,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5772 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=5076,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8112 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=4852,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7116 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=5876,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=5972,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=8144,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8676 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=8804,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5912 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=8956,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8980 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=9100,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=9004,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9244 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=9136,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9384 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=9236,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9532 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=6080,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5272 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=6476,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7216 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=6492,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6900 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=6488,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9832 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=9968,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8380 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=6924,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=8348,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10220 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=9952,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=10380,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=10088,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=10676,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10692 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=10544,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8384 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=10652,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=10268,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9132 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=10288,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10060 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=9080,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10524 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=8996,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8632 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=8628,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=9148,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=9932,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=7528,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9888 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=10456,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8944 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=7764,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=7792,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8952 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=7724,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8420 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=7836,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7928 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=5796,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5756 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=5020,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5612 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=7908,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6828 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=7524,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=6104,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6120 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=6092,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=6224,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6628 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=8868,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8824 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=9204,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10692 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=7476,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=6096,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7816 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=6012,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=5788 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=8728,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8960 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=8740,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10188 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=9012,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --field-trial-handle=10580,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9992 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --field-trial-handle=7016,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6056 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --field-trial-handle=4108,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --field-trial-handle=9112,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9132 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --field-trial-handle=9412,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7224 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=9976,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8568 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=7456,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9260 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --field-trial-handle=9356,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9212 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=5372,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8944 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8524,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9208 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=8500,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6436 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --field-trial-handle=8484,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7572 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --field-trial-handle=9452,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7888 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --field-trial-handle=7900,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7880 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --field-trial-handle=7760,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6016 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --field-trial-handle=7500,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7068 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --field-trial-handle=7232,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9940 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --field-trial-handle=7636,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=7156 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --field-trial-handle=7220,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8248 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --field-trial-handle=7788,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=8724 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=133 --field-trial-handle=6580,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=6996 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --enable-chrome-cart --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --field-trial-handle=8068,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=10448 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=9212,i,851409753356322964,10599175381265658086,262144 --variations-seed-version=20240418-180204.077000 --mojo-platform-channel-handle=9716 /prefetch:8
C:\Users\Admin\Downloads\LDPlayer9_ens_com.roblox.client_25567197_ld.exe
"C:\Users\Admin\Downloads\LDPlayer9_ens_com.roblox.client_25567197_ld.exe"
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnplayer.exe /T
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnmultiplayer.exe /T
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM dnmultiplayerex.exe /T
C:\Windows\SysWOW64\taskkill.exe
"taskkill" /F /IM bugreport.exe /T
F:\LDPlayer\LDPlayer9\LDPlayer.exe
"F:\LDPlayer\LDPlayer9\\LDPlayer.exe" -silence -downloader -openid=25567197 -language=en -path="F:\LDPlayer\LDPlayer9\"
F:\LDPlayer\LDPlayer9\dnrepairer.exe
"F:\LDPlayer\LDPlayer9\dnrepairer.exe" listener=328378
C:\Windows\SysWOW64\net.exe
"net" start cryptsvc
C:\Windows\SysWOW64\net1.exe
C:\Windows\system32\net1 start cryptsvc
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Softpub.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Wintrust.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"C:\Windows\system32\regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" dssenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" rsaenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" cryptdlg.dll /s
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\vms" /r /d y
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\vms" /grant everyone:F /t
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\\system.vmdk"
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\\system.vmdk" /grant everyone:F /t
C:\Windows\SysWOW64\dism.exe
C:\Windows\system32\dism.exe /Online /English /Get-Features
C:\Users\Admin\AppData\Local\Temp\A32C4F80-98F5-46C3-A507-700D5A9555CA\dismhost.exe
C:\Users\Admin\AppData\Local\Temp\A32C4F80-98F5-46C3-A507-700D5A9555CA\dismhost.exe {39699FBC-2748-4AB7-BDEE-180930DE2A11}
C:\Windows\SysWOW64\sc.exe
sc query HvHost
C:\Windows\SysWOW64\sc.exe
sc query vmms
C:\Windows\SysWOW64\sc.exe
sc query vmcompute
C:\Program Files\ldplayer9box\Ld9BoxSVC.exe
"C:\Program Files\ldplayer9box\Ld9BoxSVC.exe" /RegServer
C:\Windows\SYSTEM32\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\VBoxC.dll" /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\x86\VBoxClient-x86.dll" /s
C:\Windows\SYSTEM32\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\VBoxProxyStub.dll" /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" "C:\Program Files\ldplayer9box\x86\VBoxProxyStub-x86.dll" /s
C:\Windows\SysWOW64\sc.exe
"C:\Windows\system32\sc" create Ld9BoxSup binPath= "C:\Program Files\ldplayer9box\Ld9BoxSup.sys" type= kernel start= auto
C:\Windows\SysWOW64\sc.exe
"C:\Windows\system32\sc" start Ld9BoxSup
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "Ld9BoxSup" -Direction Inbound -Program 'C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe' -RemoteAddress LocalSubnet -Action Allow
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "Ld9BoxNat" -Direction Inbound -Program 'C:\Program Files\ldplayer9box\VBoxNetNAT.exe' -RemoteAddress LocalSubnet -Action Allow
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"powershell.exe" New-NetFirewallRule -DisplayName "dnplayer" -Direction Inbound -Program 'F:\LDPlayer\LDPlayer9\dnplayer.exe' -RemoteAddress LocalSubnet -Action Allow
F:\LDPlayer\LDPlayer9\driverconfig.exe
"F:\LDPlayer\LDPlayer9\driverconfig.exe"
C:\Windows\SysWOW64\takeown.exe
"takeown" /f F:\LDPlayer\ldmutiplayer\ /r /d y
C:\Windows\SysWOW64\icacls.exe
"icacls" F:\LDPlayer\ldmutiplayer\ /grant everyone:F /t
F:\LDPlayer\LDPlayer9\dnplayer.exe
"F:\LDPlayer\LDPlayer9\\dnplayer.exe" downloadpackage=com.roblox.client|package=com.roblox.client
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x00000000000004D0 0x00000000000004C8
C:\Program Files\ldplayer9box\Ld9BoxSVC.exe
"C:\Program Files\ldplayer9box\Ld9BoxSVC.exe" -Embedding
C:\Windows\SysWOW64\sc.exe
sc query HvHost
C:\Windows\SysWOW64\sc.exe
sc query vmms
C:\Windows\SysWOW64\sc.exe
sc query vmcompute
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\..\system.vmdk" --uuid 20160302-bbbb-bbbb-54d7-bbbb00000000
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\leidian0\data.vmdk" --uuid 20160302-cccc-cccc-54d7-000000000000
C:\Program Files\ldplayer9box\vbox-img.exe
"C:\Program Files\ldplayer9box\vbox-img.exe" setuuid --filename "F:\LDPlayer\LDPlayer9\vms\leidian0\sdcard.vmdk" --uuid 20160302-dddd-dddd-54d7-000000000000
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe
"C:\Program Files\ldplayer9box\Ld9BoxHeadless.exe" --comment leidian0 --startvm 20160302-aaaa-aaaa-54d7-000000000000 --vrde config
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.ldplayer.net/blog/how-to-enable-vt.html
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x10c,0x110,0x114,0xe8,0x118,0x7ffe57a63cb8,0x7ffe57a63cc8,0x7ffe57a63cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1956 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2528 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3544 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3560 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4152 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1940,7593264580806926311,9202857695852219688,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1.25 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 202.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| GB | 142.250.187.238:443 | ogs.google.com | tcp |
| GB | 172.217.169.3:443 | ssl.gstatic.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 92.123.128.148:443 | tcp | |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| US | 20.189.173.16:443 | browser.pipe.aria.microsoft.com | tcp |
| BE | 88.221.83.235:443 | r.bing.com | tcp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | udp |
| GB | 142.250.187.227:443 | id.google.com | tcp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 154.108.199.185.in-addr.arpa | udp |
| US | 185.199.111.133:443 | user-images.githubusercontent.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 185.199.108.154:443 | github.githubassets.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| US | 172.67.154.238:443 | www.fuget.org | tcp |
| US | 172.67.154.238:443 | www.fuget.org | tcp |
| US | 172.67.154.238:443 | www.fuget.org | udp |
| US | 152.199.19.160:443 | ajax.aspnetcdn.com | tcp |
| US | 152.199.19.160:443 | ajax.aspnetcdn.com | tcp |
| GB | 143.244.38.136:443 | cdn.rawgit.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| GB | 142.250.187.227:443 | id.google.com | udp |
| GB | 142.250.179.238:443 | play.google.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 151.101.2.137:443 | code.jquery.com | tcp |
| SE | 92.123.135.98:443 | ak.staticimgfarm.com | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 2.17.251.4:443 | client.px-cloud.net | tcp |
| US | 104.18.32.137:443 | geolocation.onetrust.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 8.8.8.8:53 | 52.178.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.135.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.32.18.104.in-addr.arpa | udp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.178.2:443 | partner.googleadservices.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| GB | 146.75.74.114:443 | quickaccesshub.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| GB | 146.75.74.114:443 | quickaccesshub.com | tcp |
| US | 172.64.155.119:443 | ask-privacy.my.onetrust.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| US | 151.101.2.114:443 | dabu.askmediagroup.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| SE | 92.123.135.98:443 | ak.staticimgfarm.com | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 151.101.2.137:443 | code.jquery.com | tcp |
| US | 2.17.251.4:443 | client.px-cloud.net | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 104.18.32.137:443 | ask-privacy.my.onetrust.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | tcp |
| GB | 142.250.178.2:443 | partner.googleadservices.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| US | 52.216.106.37:443 | s3.amazonaws.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 104.18.4.165:443 | beacon.aimtell.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| US | 104.22.70.231:443 | cdn.aimtell.io | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| US | 104.18.5.165:443 | beacon.aimtell.com | tcp |
| US | 104.18.5.165:443 | beacon.aimtell.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| US | 172.64.155.119:443 | ask-privacy.my.onetrust.com | tcp |
| GB | 142.250.180.4:443 | t0.gstatic.com | tcp |
| GB | 216.58.201.100:443 | t1.gstatic.com | tcp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | tcp |
| US | 216.239.34.181:443 | analytics.google.com | udp |
| US | 35.190.10.96:443 | collector-px8zofp9vf.px-cloud.net | udp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 104.26.11.136:443 | roblominer.com | tcp |
| US | 104.26.11.136:443 | roblominer.com | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| GB | 157.240.214.35:443 | www.facebook.com | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.200.14:443 | apis.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | udp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| US | 151.101.2.152:443 | html.scribdassets.com | udp |
| US | 8.8.8.8:53 | cmp.osano.com | udp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| US | 151.101.2.152:443 | html.scribdassets.com | tcp |
| FR | 18.164.52.93:443 | cmp.osano.com | tcp |
| US | 8.8.8.8:53 | c.pub.network | udp |
| US | 151.101.2.152:443 | html.scribdassets.com | udp |
| US | 151.101.2.152:443 | html.scribdassets.com | udp |
| US | 104.18.20.206:443 | a.pub.network | tcp |
| US | 34.160.152.31:443 | d.pub.network | tcp |
| US | 151.101.1.194:443 | confiant-integrations.global.ssl.fastly.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 3.165.113.80:443 | cmp.quantcast.com | tcp |
| US | 8.8.8.8:53 | secure.quantserve.com | udp |
| DE | 91.228.74.166:443 | secure.quantserve.com | tcp |
| FR | 18.244.28.79:443 | rules.quantcount.com | tcp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| DE | 91.228.74.159:443 | secure.quantserve.com | tcp |
| US | 52.46.128.147:443 | s.amazon-adsystem.com | tcp |
| US | 34.160.152.31:443 | d.pub.network | tcp |
| FR | 18.164.52.93:443 | cmp.osano.com | tcp |
| US | 8.8.8.8:53 | 31.152.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.113.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.145.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.128.46.52.in-addr.arpa | udp |
| US | 151.101.130.217:443 | browser.sentry-cdn.com | tcp |
| BE | 92.123.50.203:443 | cdn.optimizely.com | tcp |
| US | 104.18.20.206:443 | a.pub.network | tcp |
| US | 34.128.128.0:443 | featuregates.org | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 34.128.128.0:443 | featuregates.org | udp |
| US | 34.160.152.31:443 | d.pub.network | tcp |
| US | 34.160.128.112:443 | api.floors.dev | tcp |
| US | 34.111.152.239:443 | optimise.net | tcp |
| US | 151.101.2.152:443 | imgv2-1-f.scribdassets.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| US | 34.111.152.239:443 | optimise.net | tcp |
| US | 34.128.128.0:443 | featuregates.org | tcp |
| US | 34.111.152.239:443 | optimise.net | udp |
| US | 35.186.247.156:443 | sentry.io | tcp |
| US | 34.128.128.0:443 | featuregates.org | udp |
| US | 34.160.128.112:443 | api.floors.dev | tcp |
| US | 104.18.20.206:443 | a.pub.network | udp |
| US | 34.160.128.112:443 | api.floors.dev | udp |
| US | 104.26.9.50:443 | freestar-io.videoplayerhub.com | tcp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | udp |
| FR | 18.155.129.54:443 | launchpad-wrapper.privacymanager.io | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| FR | 18.155.129.89:443 | launchpad.privacymanager.io | tcp |
| GB | 18.172.89.122:443 | geo.privacymanager.io | tcp |
| US | 34.160.152.31:443 | d.pub.network | udp |
| US | 8.8.8.8:53 | 6.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.89.172.18.in-addr.arpa | udp |
| US | 34.96.67.224:443 | cdn.siftscience.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| FR | 99.86.91.6:443 | consent.api.osano.com | tcp |
| US | 34.102.232.42:443 | hexagon-analytics.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| FR | 99.86.91.40:443 | api.intentiq.com | tcp |
| FR | 52.222.149.10:443 | sync.intentiq.com | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| FR | 99.86.91.40:443 | api.intentiq.com | udp |
| DE | 91.228.74.159:443 | secure.quantserve.com | tcp |
| US | 35.94.16.34:443 | pb-rtd.ccgateway.net | tcp |
| US | 35.94.16.34:443 | pb-rtd.ccgateway.net | tcp |
| US | 35.166.44.218:443 | a.usbrowserspeed.com | tcp |
| US | 172.64.146.152:443 | lit.connatix.com | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | tcp |
| IE | 18.200.48.33:443 | ads.yieldmo.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| NL | 185.89.210.244:443 | ib.adnxs.com | tcp |
| FR | 18.244.28.86:443 | hb.yellowblue.io | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| FR | 52.84.174.75:443 | config.aps.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 34.107.140.113:443 | s2s.t13.io | udp |
| BE | 23.55.97.75:443 | a.teads.tv | tcp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| DE | 23.67.137.210:443 | secure.cdn.fastclick.net | tcp |
| BE | 23.55.97.75:443 | a.teads.tv | tcp |
| FR | 18.244.28.79:443 | rules.quantcount.com | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | 42.232.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.149.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.140.107.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.146.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.48.200.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.174.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.16.94.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.199.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.44.166.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.97.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| GB | 172.217.169.65:443 | 964df0e66500400adef73acc7180dafc.safeframe.googlesyndication.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | udp |
| US | 104.26.3.122:443 | a.remarketstats.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| US | 107.21.124.38:443 | i.liadm.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| BE | 23.55.96.24:443 | contextual.media.net | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| US | 2.17.251.115:443 | qsearch-a.akamaihd.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| BE | 23.55.96.24:443 | contextual.media.net | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| BE | 23.55.96.24:443 | contextual.media.net | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | udp |
| GB | 2.21.188.27:443 | lg3.media.net | tcp |
| US | 134.209.46.18:443 | serving.roimediaconsultants.com | tcp |
| US | 8.8.8.8:53 | 115.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| FR | 18.164.52.93:443 | cmp.osano.com | udp |
| GB | 18.172.89.114:443 | assets.revcontent.com | tcp |
| US | 104.19.168.24:443 | auth.scribd.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | udp |
| US | 172.64.146.152:443 | vid.connatix.com | udp |
| GB | 2.21.188.239:443 | ads.pubmatic.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| US | 104.19.168.24:443 | auth.scribd.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| IE | 54.195.216.147:443 | trends.revcontent.com | tcp |
| IE | 54.195.216.147:443 | trends.revcontent.com | tcp |
| US | 151.101.2.152:443 | assets0.scribd.com | udp |
| IE | 52.208.252.17:443 | trends.revcontent.com | tcp |
| US | 8.8.8.8:53 | 239.188.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.216.195.54.in-addr.arpa | udp |
| US | 18.245.182.39:443 | cdn.auth0.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 198.12.235.197:443 | www.freegamegens.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 198.12.235.197:443 | www.freegamegens.com | tcp |
| US | 198.12.235.197:443 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| GB | 92.123.128.148:443 | tcp | |
| US | 13.107.246.254:443 | t-ring-s.msedge.net | tcp |
| US | 150.171.22.254:443 | ln-ring.msedge.net | tcp |
| US | 4.150.240.254:443 | arm-ring.msedge.net | tcp |
| BE | 2.17.107.99:443 | r.bing.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| BE | 88.221.83.194:443 | www.bing.com | tcp |
| BE | 104.68.66.114:443 | cxcs.microsoft.net | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| US | 198.12.235.197:80 | www.freegamegens.com | tcp |
| FR | 195.35.49.171:443 | gamynerdo.online | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| FR | 195.35.49.171:443 | gamynerdo.online | udp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| GB | 18.165.160.52:443 | sdk.privacy-center.org | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | tcp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | udp |
| US | 151.101.1.91:443 | roblox.en.softonic.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| US | 199.232.209.91:443 | softonic.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 18.165.160.52:443 | sdk.privacy-center.org | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| FR | 52.222.165.229:443 | www.datadoghq-browser-agent.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.180.27:443 | storage.googleapis.com | tcp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| GB | 142.250.178.2:443 | partner.googleadservices.com | tcp |
| FR | 52.84.174.75:443 | config.aps.amazon-adsystem.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| GB | 13.224.81.114:443 | api.privacy-center.org | tcp |
| GB | 13.224.81.114:443 | api.privacy-center.org | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 114.81.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| IE | 52.48.56.87:443 | ad.360yield.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| GB | 172.217.169.65:443 | a6604c308d698914bdd45e800f91d548.safeframe.googlesyndication.com | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| GB | 216.58.212.206:443 | ampcid.google.com | tcp |
| US | 8.8.8.8:53 | 118.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | udp |
| IE | 54.246.231.153:443 | rtb.gumgum.com | tcp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| IE | 18.203.106.185:443 | ce.lijit.com | tcp |
| IE | 18.203.106.185:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.231.246.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| NL | 89.207.16.204:443 | inmobi-match.dotomi.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 151.101.1.91:443 | en.softonic.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 204.135.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.244.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 52.89.130.134:443 | prod.tahoe-analytics.publishers.advertising.a2z.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| BE | 23.55.96.24:443 | contextual.media.net | tcp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| GB | 2.21.188.239:443 | ads.pubmatic.com | tcp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| DE | 162.55.236.224:443 | sync.richaudience.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| DE | 162.55.236.224:443 | sync.richaudience.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| GB | 2.21.188.27:443 | c21lg-d.media.net | tcp |
| US | 52.7.86.231:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| FR | 99.86.91.65:443 | api-2-0.spot.im | tcp |
| US | 2.17.251.37:443 | player.aniview.com | tcp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| GB | 2.21.188.27:443 | c21lg-d.media.net | tcp |
| NL | 89.207.16.140:443 | medianet-match.dotomi.com | tcp |
| US | 34.98.64.218:443 | us-u.openx.net | tcp |
| DE | 51.89.9.252:443 | onetag-sys.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| NL | 35.214.132.90:443 | u.ipw.metadsp.co.uk | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| BE | 23.55.98.169:443 | eus.rubiconproject.com | tcp |
| NL | 89.149.192.197:443 | ssbsync.smartadserver.com | tcp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 34.198.8.199:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| IE | 52.50.65.213:443 | jadserve.postrelease.com | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | tcp |
| BE | 23.55.96.24:443 | contextual.media.net | udp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| BE | 23.55.98.169:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 96.46.186.182:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 81.17.55.109:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 104.22.50.98:443 | spl.zeotap.com | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 18.158.184.198:443 | rtb.mfadsrvr.com | tcp |
| DE | 18.158.184.198:443 | rtb.mfadsrvr.com | tcp |
| IE | 52.48.56.87:443 | ice.360yield.com | tcp |
| IE | 67.220.228.200:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 52.46.151.131:443 | s.amazon-adsystem.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| IE | 63.33.74.9:443 | sync.crwdcntrl.net | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| GB | 2.21.188.239:443 | ads.pubmatic.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.229.248.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| DK | 37.157.2.228:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.9.89.51.in-addr.arpa | udp |
| IE | 54.216.45.174:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | 231.86.7.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.132.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.98.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.65.50.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 199.8.198.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 182.186.46.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.140.121.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.50.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.184.158.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.228.220.67.in-addr.arpa | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| DE | 18.158.126.136:443 | match.sharethrough.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 52.46.151.131:443 | s.amazon-adsystem.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| US | 172.64.149.180:443 | cdn.indexww.com | tcp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| IE | 34.251.19.157:443 | pm.w55c.net | tcp |
| US | 52.46.151.131:443 | s.amazon-adsystem.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 64.158.223.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.19.251.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 199.232.209.91:443 | softonic.com | udp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | udp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | en.softonic.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| US | 172.64.151.101:443 | dsum-sec.casalemedia.com | udp |
| IE | 52.48.56.87:443 | ice.360yield.com | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| BE | 88.221.83.248:443 | articles-img.sftcdn.net | tcp |
| BE | 88.221.83.248:443 | articles-img.sftcdn.net | tcp |
| BE | 88.221.83.248:443 | articles-img.sftcdn.net | tcp |
| BE | 88.221.83.248:443 | articles-img.sftcdn.net | tcp |
| FR | 13.32.145.54:443 | b-code.liadm.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| IE | 52.48.56.87:443 | ice.360yield.com | tcp |
| GB | 216.58.204.70:443 | 8876029.fls.doubleclick.net | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| US | 172.64.151.101:443 | dsum-sec.casalemedia.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| GB | 216.58.204.70:443 | 8876029.fls.doubleclick.net | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 248.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| IE | 54.246.231.153:443 | rtb.gumgum.com | tcp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | udp |
| IE | 18.203.106.185:443 | ce.lijit.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| IE | 67.220.228.200:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 52.7.86.231:443 | sync.srv.stackadapt.com | tcp |
| GB | 172.217.169.65:443 | 3fa5c75296139647236e5d26a647413b.safeframe.googlesyndication.com | tcp |
| IE | 67.220.228.200:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| NL | 89.207.16.201:443 | casale-match.dotomi.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 151.101.1.91:443 | en.softonic.com | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | 201.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| FR | 13.249.9.32:443 | sync.serverbid.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| US | 54.163.32.160:443 | sync.ipredictive.com | tcp |
| FR | 51.68.39.188:443 | dsp.nrich.ai | tcp |
| US | 169.197.150.8:443 | match.deepintent.com | tcp |
| US | 64.202.112.159:443 | b1sync.zemanta.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| JP | 124.146.153.170:443 | tg.socdm.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| JP | 124.146.153.170:443 | tg.socdm.com | tcp |
| DE | 91.228.74.244:443 | cms.quantserve.com | tcp |
| DE | 85.114.159.118:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | 170.153.146.124.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.159.114.85.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| DE | 162.55.236.224:443 | sync.richaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| FR | 99.86.91.65:443 | api-2-0.spot.im | tcp |
| IE | 52.50.65.213:443 | jadserve.postrelease.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| FR | 18.164.52.116:443 | s.ad.smaato.net | tcp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 18.207.58.146:443 | aorta.clickagy.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| US | 52.7.86.231:443 | sync.srv.stackadapt.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | 5.146.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.174.214.35.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 188.42.196.115:443 | ads.betweendigital.com | tcp |
| IE | 54.170.121.32:443 | ads.yieldmo.com | tcp |
| DE | 3.126.129.69:443 | match.justpremium.com | tcp |
| SE | 213.155.156.183:443 | d5p.de17a.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| FR | 141.94.242.204:443 | green.erne.co | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| FR | 141.94.170.64:443 | pixel-eu.onaudience.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.242.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 151.101.1.91:443 | en.softonic.com | tcp |
| US | 163.181.154.236:443 | www.ldplayer.net | tcp |
| US | 163.181.154.237:443 | www.ldplayer.net | tcp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| GB | 142.250.178.22:443 | play-lh.googleusercontent.com | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| GB | 142.250.178.22:443 | play-lh.googleusercontent.com | udp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| US | 104.18.31.49:443 | stpd.cloud | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | 6.4.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.38.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.31.18.104.in-addr.arpa | udp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| GB | 142.250.179.234:443 | content-autofill.googleapis.com | tcp |
| GB | 172.217.16.226:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | api.ldshop.gg | udp |
| SG | 8.219.223.66:443 | usersdk.ldmnq.com | tcp |
| FR | 52.222.169.85:443 | apien.ldplayer.net | tcp |
| SG | 8.222.176.52:443 | api.ldshop.gg | tcp |
| SG | 47.245.114.192:443 | invite.ldplayer.net | tcp |
| US | 8.8.8.8:53 | tagan.adlightning.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| FR | 99.86.91.39:443 | tagan.adlightning.com | tcp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | udp |
| US | 18.245.194.122:443 | c.amazon-adsystem.com | tcp |
| FR | 52.222.169.85:443 | apien.ldplayer.net | udp |
| US | 8.8.8.8:53 | hm.baidu.com | udp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| SG | 8.219.223.66:443 | usersdk.ldmnq.com | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| SG | 8.222.176.52:443 | api.ldshop.gg | tcp |
| SG | 47.245.114.192:443 | invite.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 39.91.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.194.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.223.219.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.176.222.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.114.245.47.in-addr.arpa | udp |
| FR | 52.84.174.75:443 | config.aps.amazon-adsystem.com | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| US | 18.245.194.122:443 | c.amazon-adsystem.com | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| US | 18.245.199.156:443 | aax.amazon-adsystem.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| GB | 23.49.161.153:443 | secure.cdn.fastclick.net | tcp |
| GB | 23.49.161.153:443 | secure.cdn.fastclick.net | tcp |
| FR | 18.155.129.34:443 | tags.crwdcntrl.net | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| IE | 63.33.74.9:443 | bcp.crwdcntrl.net | tcp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| NL | 63.215.202.178:443 | proc.ad.cpe.dotomi.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | udp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 52.222.145.16:443 | c.amazon-adsystem.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 18.245.175.26:443 | js.adscale.de | tcp |
| DE | 3.120.11.225:443 | ih.adscale.de | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | udp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | udp |
| DE | 157.90.33.121:443 | uidsync.net | tcp |
| DE | 157.90.33.121:443 | uidsync.net | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 172.64.146.152:443 | vid.connatix.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 104.18.41.104:443 | vid.connatix.com | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| GB | 2.21.188.27:443 | cs.media.net | tcp |
| US | 104.18.41.104:443 | vid.connatix.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 104.18.41.104:443 | vid.connatix.com | udp |
| US | 52.223.40.198:443 | data.adsrvr.org | tcp |
| US | 104.18.41.104:443 | vid.connatix.com | udp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| DE | 3.126.129.69:443 | match.justpremium.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 89.149.192.197:443 | ssbsync-global.smartadserver.com | tcp |
| DK | 37.157.2.228:443 | c1.adform.net | tcp |
| DE | 18.158.126.136:443 | match.sharethrough.com | tcp |
| FR | 18.164.52.116:443 | s.ad.smaato.net | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| NL | 35.214.244.63:443 | csync.loopme.me | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| IE | 54.170.121.32:443 | ads.yieldmo.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| US | 104.18.41.104:443 | vid.connatix.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | prebid-eu.creativecdn.com | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 8.8.8.8:53 | adx.adform.net | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | rtb.adxpremium.services | udp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| NL | 185.106.140.18:443 | rtb.adxpremium.services | tcp |
| FR | 185.86.139.85:443 | prg.smartadserver.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| DK | 37.157.6.232:443 | adx.adform.net | tcp |
| US | 104.26.9.178:443 | prebid-stag.setupad.net | tcp |
| US | 104.26.9.178:443 | prebid-stag.setupad.net | tcp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| US | 104.18.34.178:443 | mp.4dex.io | tcp |
| GB | 172.217.169.65:443 | 2e6da5173ccb5188dd564d985359ee93.safeframe.googlesyndication.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 8.8.8.8:53 | img.connatix.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| US | 74.125.132.120:443 | csi.gstatic.com | tcp |
| GB | 216.58.204.70:443 | 12325200.fls.doubleclick.net | tcp |
| US | 74.125.132.120:443 | csi.gstatic.com | tcp |
| US | 8.8.8.8:53 | 178.9.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.139.86.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.140.106.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | udp |
| GB | 172.217.16.225:443 | afs.googleusercontent.com | udp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 120.132.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 99.86.91.39:443 | tagan.adlightning.com | tcp |
| FR | 99.86.91.39:443 | tagan.adlightning.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| BE | 64.233.166.157:443 | stats.g.doubleclick.net | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 99.86.91.39:443 | tagan.adlightning.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| US | 216.239.34.181:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| NL | 81.17.55.109:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 8proof.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.180.27:443 | storage.googleapis.com | tcp |
| GB | 142.250.180.27:443 | storage.googleapis.com | tcp |
| GB | 142.250.187.196:443 | t3.gstatic.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.180.27:443 | storage.googleapis.com | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| DK | 37.157.6.237:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | adxbid.info | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DE | 18.158.126.136:443 | match.sharethrough.com | tcp |
| NL | 185.89.210.20:443 | secure.adnxs.com | tcp |
| US | 104.21.48.215:443 | adxbid.info | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| US | 35.244.159.8:443 | setupad-d.openx.net | tcp |
| NL | 89.149.192.197:443 | ssbsync-global.smartadserver.com | tcp |
| US | 34.149.40.38:443 | u.4dex.io | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DE | 57.129.18.113:443 | wt.rqtrk.eu | tcp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| NL | 89.207.16.201:443 | openx2-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.18.129.57.in-addr.arpa | udp |
| DE | 3.122.214.165:443 | ps.eyeota.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 89.149.192.197:443 | ssbsync-global.smartadserver.com | tcp |
| US | 34.149.40.38:443 | u.4dex.io | tcp |
| DE | 18.158.126.136:443 | match.sharethrough.com | tcp |
| US | 64.202.112.159:443 | b1sync.zemanta.com | tcp |
| US | 52.116.53.150:443 | 8proof.com | tcp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 104.26.9.178:443 | prebid-stag.setupad.net | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 52.73.253.107:443 | sync.ipredictive.com | tcp |
| US | 52.89.130.134:443 | prod.tahoe-analytics.publishers.advertising.a2z.com | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| FR | 54.36.150.184:443 | cookie-matching.mediarithmics.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| IE | 67.220.228.200:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| IE | 34.248.229.83:443 | match.prod.bidr.io | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| NL | 81.17.55.116:443 | rtb-csync.smartadserver.com | tcp |
| IE | 34.251.19.157:443 | pm.w55c.net | tcp |
| US | 52.7.86.231:443 | sync.srv.stackadapt.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| DE | 159.89.25.223:443 | node.setupad.com | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 34.98.64.218:443 | setupad-d.openx.net | udp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| GB | 2.21.188.239:443 | ads.pubmatic.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| BE | 104.90.25.54:443 | sync.teads.tv | tcp |
| IE | 52.50.127.192:443 | dpm.demdex.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.63.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.53.116.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.172.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.133.128.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.253.73.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.150.36.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.25.89.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.25.90.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.127.50.52.in-addr.arpa | udp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| NL | 185.106.140.18:443 | rtb.adxpremium.services | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 34.149.40.38:443 | u.4dex.io | udp |
| US | 8.2.110.113:443 | as.ck-ie.com | tcp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| GB | 89.187.167.9:443 | vid.vidoomy.com | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | tcp |
| DE | 51.89.9.252:443 | onetag-sys.com | tcp |
| US | 209.192.201.180:443 | user-sync.adxpremium.services | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 104.22.50.98:443 | spl.zeotap.com | tcp |
| IE | 54.216.45.174:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| GB | 89.187.167.2:443 | vpaid.vidoomy.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| DK | 37.157.6.237:443 | cm.adform.net | tcp |
| DE | 51.89.9.252:443 | onetag-sys.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | udp |
| IE | 18.203.12.114:443 | ap.lijit.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| NL | 188.42.196.115:443 | ads.betweendigital.com | tcp |
| NL | 145.40.97.66:443 | sync.a-mo.net | tcp |
| GB | 185.64.190.81:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 180.201.192.209.in-addr.arpa | udp |
| NL | 188.42.196.115:443 | ads.betweendigital.com | tcp |
| US | 8.8.8.8:53 | a.vidoomy.com | udp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| ES | 212.36.83.246:443 | a.vidoomy.com | tcp |
| ES | 212.36.83.246:443 | a.vidoomy.com | tcp |
| US | 74.125.132.120:443 | csi.gstatic.com | tcp |
| US | 74.125.132.120:443 | csi.gstatic.com | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| ES | 212.36.83.246:443 | a.vidoomy.com | tcp |
| ES | 212.36.83.246:443 | a.vidoomy.com | tcp |
| US | 209.192.201.180:443 | user-sync.adxpremium.services | tcp |
| US | 209.192.201.180:443 | user-sync.adxpremium.services | tcp |
| US | 74.125.132.120:443 | csi.gstatic.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 185.106.140.18:443 | rtb.adxpremium.services | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| FR | 52.222.153.181:443 | d3n1ms4uhtqgov.cloudfront.net | tcp |
| GB | 18.172.99.60:443 | d1arl2thrafelv.cloudfront.net | tcp |
| GB | 18.172.99.60:443 | d1arl2thrafelv.cloudfront.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| SG | 8.219.4.49:443 | middledata.ldplayer.net | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| IE | 34.255.242.185:443 | ad.360yield.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| IE | 34.255.242.185:443 | ad.360yield.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| IE | 34.255.242.185:443 | ad.360yield.com | tcp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.242.255.34.in-addr.arpa | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s.richaudience.com | udp |
| DE | 157.90.0.38:443 | s.richaudience.com | tcp |
| DE | 157.90.0.38:443 | s.richaudience.com | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 38.0.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| GB | 216.58.213.14:80 | www.google-analytics.com | tcp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 146.48.219.8.in-addr.arpa | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 104.18.41.104:443 | img.connatix.com | udp |
| US | 104.18.41.104:443 | img.connatix.com | udp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 8.8.8.8:53 | en.ldplayer.net | udp |
| FR | 52.222.149.101:443 | ad.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| US | 163.181.154.236:443 | en.ldplayer.net | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| US | 8.8.8.8:53 | advertise.ldplayer.net | udp |
| US | 163.181.154.248:443 | advertise.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 248.154.181.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.154.181.163.in-addr.arpa | udp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| US | 163.181.154.248:443 | advertise.ldplayer.net | tcp |
| FR | 52.222.149.101:443 | ad.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| US | 163.181.154.241:443 | res.ldplayer.net | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| FR | 52.222.149.101:443 | ad.ldplayer.net | tcp |
| US | 8.8.8.8:53 | alliance.ldplayer.net | udp |
| US | 18.245.199.3:443 | alliance.ldplayer.net | tcp |
| FR | 3.162.38.115:80 | apien.ldmnq.com | tcp |
| FR | 3.162.38.115:443 | apien.ldmnq.com | tcp |
| US | 8.8.8.8:53 | 115.38.162.3.in-addr.arpa | udp |
| FR | 3.162.38.115:443 | apien.ldmnq.com | tcp |
| US | 8.8.8.8:53 | www.ldplayer.net | udp |
| US | 163.181.154.235:443 | www.ldplayer.net | tcp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| FR | 3.162.38.36:443 | cdn.ldplayer.net | tcp |
| GB | 216.58.201.110:443 | www.youtube.com | tcp |
| GB | 216.58.201.110:443 | www.youtube.com | udp |
| GB | 172.217.169.86:443 | i.ytimg.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 104.18.31.49:443 | stpd.cloud | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | udp |
| US | 104.26.4.6:443 | cmp.setupcmp.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| FR | 18.155.129.69:443 | encdn.ldmnq.com | tcp |
| US | 8.8.8.8:53 | 86.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| BE | 2.17.107.226:80 | apps.identrust.com | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | usersdk.ldmnq.com | udp |
| FR | 52.222.169.29:443 | apien.ldplayer.net | tcp |
| GB | 142.250.200.14:443 | www.youtube.com | udp |
| SG | 8.219.223.66:443 | usersdk.ldmnq.com | tcp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | www.googletagservices.com | tcp |
| SG | 8.219.223.66:443 | usersdk.ldmnq.com | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 226.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.180.1:443 | yt3.ggpht.com | tcp |
| GB | 142.250.200.42:443 | jnn-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| FR | 99.86.91.39:443 | tagan.adlightning.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 18.245.194.122:443 | c.amazon-adsystem.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| FR | 52.84.174.6:443 | config.aps.amazon-adsystem.com | tcp |
| US | 18.245.175.156:443 | aax.amazon-adsystem.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| DE | 23.67.137.210:443 | secure.cdn.fastclick.net | tcp |
| DE | 23.67.137.210:443 | secure.cdn.fastclick.net | tcp |
| FR | 18.155.129.39:443 | tags.crwdcntrl.net | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| IE | 52.17.40.72:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 72.40.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.200.250.142.in-addr.arpa | udp |
Files
\??\pipe\crashpad_616_PSCUSJGUZUIRHVYH
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 228d3ffffaf32e92a4007c1ff2bd8ca5 |
| SHA1 | 0e85a1381930ca0f7118c693c7a3ab9a5c9d4682 |
| SHA256 | 8fc2440c08620c18692f5648f9a62627c7b5302d8b64248baf65829bbc0445fb |
| SHA512 | 886f675b7d079f1b20b76ee9601ab4e7d99c7d9cfca27b281d9bc3d4512ca7caa36542b589de2f07d567e6980e6c646c0be7f1fe1f9e8ffb20098291d86556af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | ded68321f78558854486dd7cc7fc7cf2 |
| SHA1 | 945557a4657934e4de1299522bf22221ce15b774 |
| SHA256 | cbb9b371cdd42a2e2c1bf311e572a15026537faccc2a22100abf18bb68416600 |
| SHA512 | 700bb3f99892e0749e2befb5cd7af7e564e9e62e962fad42c2f3f40df67cf5423e30989d5182625015b71d1fa90877ae06149f5417a9351ccd6327c4e68aaec1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9300d3043031e8a0e024806fa2f59530 |
| SHA1 | 7cf3ba34bcb47dd98b963b3debfd3d210ba114ab |
| SHA256 | 0a96c633ac10750b59dac447a2af63ed162a19ee8f33471dc73b8f5f818c4daa |
| SHA512 | b2e22b01adcad77c9770d9b25ec650c0c3531338d1f44711dcb3d4755d256256c7d9c927789a23587ad70ec3770396065dd6b6c09bb81b90b012aa24ddebbb99 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b93d75a899b1837d6eebcb7e1d579d8e |
| SHA1 | 0798f886fd64c8a67ae6c1b7fc16def45f63114d |
| SHA256 | 1223e2eedf4dec1655c207cb6bdd8640236bc56f33d690da1774330f7ac23d6e |
| SHA512 | 973e1f624d3509e1e5b4cda7f3949b3efaddc334156cf8191eb20ce596a221a5b61a8b2b44d67f12f8ed7ef0867618899d9cb8d3688900682ecffe8fc06e4905 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 07ee8c568699d14a836f80afe074f9fb |
| SHA1 | 9c44dc5a9607bd228fb308802ec8fa40c7207506 |
| SHA256 | 7d8c504fa4670c29a5d99a78cc3da219339a4f91cc7a84b6d79f85bd2d66ca7a |
| SHA512 | 8eb99c742f47a96752c19d82cbf007ae201934b9ed8c76c54a1eacc09ec0b987dedc9dc92be6f461df3b449b1b5cd57231ed7e6881d9062900733b6c000f60a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 62c6baf87973215f4d40837c6c737f25 |
| SHA1 | a77d69846870bc5d5d35f01dbc1e063da9b2ce46 |
| SHA256 | 8a50841d777e513fa3b8102fbfc56f8cac8f19f4086057287fb277437dabaa12 |
| SHA512 | 1c3c13bd2c66c6dbe8d79da3c8d688770460508f10e470bac67e32d184233b839e5b949283f7e292ca02f2372a75e99033fbf36c867a12667087162c18375047 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 28c6776fa406c1b79e69944f9a600d0f |
| SHA1 | 947db024e5729280b5a131acdb4a3ebda056dbb8 |
| SHA256 | 235eae300ada300fd9d8d112d1c6fba5dbc01c9fea951a37152e88404c449cc8 |
| SHA512 | 3262d8430a879d6ae00109acd26d1dbdfcdc3e613fc456a0f63fbabad6a043fe97c455bcab4513d29ff518b0a1b1c6457c97c98f4ff1122e6eb68c1605cf2cc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\e9c7e266-5f4a-4aa6-a1b8-c2070d81209b.tmp
| MD5 | c3a9a0db172a75bd9f90ca5fe4c5b8f8 |
| SHA1 | 645ed87302f4b64e71e65a0d984d91c68481768a |
| SHA256 | 1a8ca1d883fa7a451ca3ff8f311f3abcabd9f12854899b0a7a6543e943e0aeee |
| SHA512 | dd9e1bca15b56fdb5de60f9526d141ff8178087edbc11df90065adcf0aebc8e50b4869181494ab88913dc6f2445dc5499c4452018385c03c934c30ab0ec5af18 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 64f0d7650b98b7ccbe43cf4ca0ac7405 |
| SHA1 | 9cab70e148931e25f55d5a120c2ecd60a671c4ee |
| SHA256 | 14dffbf4885fe98eb7a591e165b3cbcad221d77c4503cd947b354f9822358108 |
| SHA512 | fbbfd3f3a32aecc1669d00d21f84f4f0840e7778d24bc922152b8cf039decfdb71347737f375a709507b310952c298c145426ddfa74381ff62fc383603f1611e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fa309ba153d16279274cee34e9df2b95 |
| SHA1 | 8bd81fe5f91d04521cb8f15bb1773723d8f503e2 |
| SHA256 | f0fef6b840bb98df75a1fc800e171e8a587fc8a863768e8d476faa0e710e7807 |
| SHA512 | 141bf74738a50323aa83a7bdc481d72aed43f0c454879cf09f19f1f51a172a100ce9f1b2e62d7ead486157d235acd2de4b9a736e6d557de4f9c514e13b5d410e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f20ab0e2597445335617c9787c30e81c |
| SHA1 | 2c9a4722f7e0a1f2f1ee5baa95a186d8f2c49c17 |
| SHA256 | 68d70daecb3a45dbec455e17ebff44e783f21cc4aeef485982a78b3876a6c76a |
| SHA512 | 4a93efae81a66d16b292efeecb049aba27c2e401f145725bdb3ed9dae4179a796b69850e8b30fb6b3f43433f5d222092683563d8b14aa6b9f9202a43b3f8f80a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a08dbb041fcaffa42f6affe4ba246a93 |
| SHA1 | f4c484189b585b369bb1444b3963c61751bcb978 |
| SHA256 | ef77f57f5e90934fc073e4b1b37e8a5fd6f60f57c37d0186b2d8eba05da3ac37 |
| SHA512 | bf4d3010d6c140bfdb23278a07c2e7b1d99e667db209fe70e38bc42d616a9e300c6b8aa5c05f1b24596ae98979f22a302e87105d95a45f1625bb1d67698ea02c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 82449b2b9083fa7d445fb01af3e2b162 |
| SHA1 | 1a7c793200f29a6a12bf0217cc3579c69cdb03b6 |
| SHA256 | 18c7e35c2c0c79cda5701736ba56189edea34e9cb7f1c5e94228b6fc354c8c45 |
| SHA512 | b0641a2d50b2a5e70b5ad59a203a6478708978e92266413bcd435c881dd08ffb2379509d0206ca64632709094f0d3d95a0bb18ed493f1f5059017fa94c2428c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | c7743963fc95d6968449e3077572da65 |
| SHA1 | 2092aaea1aabae70f0eef0dbc05ab75f30031f47 |
| SHA256 | 6333370ce505f8a7bdd8a7b6dbd4be5152f682c7db5d55844ff4fc2c8f769dc9 |
| SHA512 | 6d9d83915bd55fe5f5f006474caab586d664e3fdfb52351ac9515694c497bb8588b22461c68a6982703147566fff82793e94f3cdbca2fb9f8bf789bf417c4280 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cf3abbbc057404c99558a63c2de90596 |
| SHA1 | 5df3b24668bb390f3f0de930c50615cf986ecd85 |
| SHA256 | 7ff46824a0274ddf438e3dda3cf5850a5028a13a2bec2283a9ff66a65b63e3eb |
| SHA512 | be73f01ad13dbd32cd8f9f968006cb226d91a8fdc1503ecaf2ec204cce253a1e2b2685a4ba6edb920d0d093a75c89b846f3617e1e6a6eee438cec7975a9da759 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b610dd445a4053f40e8d5d442c924462 |
| SHA1 | bb12dd82885953b3781406dd2193e39141e4aebe |
| SHA256 | 54c66b37da88ae9097502c4d19d25fbc5b1ec529060f8a23e778fbde7f356e8e |
| SHA512 | 2d6f78302ab4be167020408a636915cff56abe28cdcae215a0457f44426685a17cb7d8e11ea48dac56abf4eda7af75eec7fd341c4d9fb022aee727a19561676a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | e28144c789ef9c5791bd60f91b7dd405 |
| SHA1 | a1a6a6be0027c8c3c3acf683dd94375e2567367b |
| SHA256 | 4db7470cc8933998cb98313d0bbd2d5d17bb42d656227e51042a651870349207 |
| SHA512 | f2cda116d275a6f4011bfdbcb3627c81167a20026dca1fa978ad5ffcfb2f06e4d15493e46dd789b19d7e7527128db9985358b0ab634669838a1a85b9b5ae0a73 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1dc2011d09bd5e2f2f032798ccfaeb98 |
| SHA1 | 7839a75067ba7064f9dcf2caefe0f75bf912313f |
| SHA256 | d88a257f76dd26854534ff5f1fd18796839dc09f88a5315ba1f67fcb1cf4822c |
| SHA512 | 118a4cba7fa77a33a1bfd449d6265eb9b2708d65741055e5b6701fbe6c02b2af230bddc02a050cc92cfe4f1be2b14084e0aa52ed4837907b2a7c496b4805f0fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\9b58a1e1-a5f9-4298-acc7-a84a7868a6f4.tmp
| MD5 | 58b176aec444542e50d44c2d447d8741 |
| SHA1 | 2691090c003dff36e9c13779f082a0eb069510d4 |
| SHA256 | 8819fbd78f22665dbaa935ce0cccb6f8508fb8dbf5c97e8ea1e33378bc4e62a8 |
| SHA512 | 02871311d51b51a38870fcddfa42f2792aaf144a8d02ec0fd69df77b19197dd4065c22dc0e20a8a29e10402ea94f156a3ff33e5bcab7a1d65384c2b33c5d92ee |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 448a9701eca05830da3687d27a770857 |
| SHA1 | 0f44d3944d09ae28f9050c1d9ccb24093df8aa3c |
| SHA256 | 4ebf6054822e8f829249d0bf115af5a961f699fe9b977ef2b62ebbad6c57a544 |
| SHA512 | bdf7d8d313a3bfe8dbed8a5a44c33b8dc088d2d3067ccc671718d9975018e9abea7b06b0ea281ccd2e425b5e2045c0ebd2022482109bdb98bceda650e809f703 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c49517ec05c482f855ce3ca8e2f5541b |
| SHA1 | 19ad58400096d14edf908fc02fc4dfb24824a85f |
| SHA256 | f85dac02355a9d0f269db4545f10a5b1fa33e6c72454e2e34ec5b2f39566b38c |
| SHA512 | 70e83603b9a6f64231dd1020d61b36f4533c17a10cc830d32b23e9f0ee4eda59e861516fe94147129604d8f9028914c9cfd9369c0c5101760c9e023e41986d44 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ee926af348805df933dbd836086bf52a |
| SHA1 | 67cc1e57253038cc5cbc0673bb1b8d0d5c73e5a5 |
| SHA256 | 1573ac2d6f0987feda2e33d5dd776a2593fbfe41e5456def1137e2e6f80b32f3 |
| SHA512 | 2039ab4bf3c812f8cf650ae4ff829c61d6b9d111bdb5cc5b31d791e72cf4fe9be2eaa7001d0cc5b121bf6c8c9102b672349726f9300924c6ef2378d219792391 |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val
| MD5 | d222b77a61527f2c177b0869e7babc24 |
| SHA1 | 3f23acb984307a4aeba41ebbb70439c97ad1f268 |
| SHA256 | 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747 |
| SHA512 | d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx
| MD5 | b5ad5caaaee00cb8cf445427975ae66c |
| SHA1 | dcde6527290a326e048f9c3a85280d3fa71e1e22 |
| SHA256 | b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8 |
| SHA512 | 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 36f03953827e5b0d4c7824c76975306d |
| SHA1 | 693c745ad507a310470431109338f28af80d5ed3 |
| SHA256 | 1e5be839e4193e491cec5be128e351f1cd5605e38f7257878c769a2e2cf366aa |
| SHA512 | 0f702d7433a363594f2b37542298c75e1cd05df60a967f250b5efbeb374afd4ad91dfb6ada14b70cebe9b2e1cde7c93860b9d16e1370af15d43cc26f1dcff60a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | e9bd833443157004a068c7d261220f3a |
| SHA1 | d0da3cd7dde9aeed92e37097ea48c5aeb58b0ce4 |
| SHA256 | 1212537261127575ba2331ea19d99d842c2e941302975d2bb19e38c5fae3f5d0 |
| SHA512 | 9ee1f6723aee78a0b36e0706778650aa9d263ee8000b7ff42db860a0a88e5803f73de7c3de41dd132d3eca077ecd6e970259b3027a962aaeb2efa4e919145e3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a3c58ea3209807aead8af63cdc0de5d3 |
| SHA1 | 80e6868c26dcf1033c367bf44d2f761998fd62fb |
| SHA256 | b2824ee464f7e4ae1909f519241d34a806e7d317603ba5f86d199e41bad2a0a0 |
| SHA512 | e66e451dc8ddfc8173078b8792f7cb524bcd0a58805621637d26597155ff5d5cfd6cabbf79ff09f7b99b97d4c0d4e540fc5f3843b744ea787b95591d6545c9f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8c1642fdc62188e64f661cb3974629f1 |
| SHA1 | 10b8cb9951e1ed231e0bfb9b6acb2074d355dfa5 |
| SHA256 | 6812f294b441d7d3677adb85c79141a6896d0b9b07009172bf4b4a7f0ff171bb |
| SHA512 | 3c5e73343485556873bae23efb962933b7e259a37c39afb5971793eec0dbf877243f86387fd017b3943660ff7c9f187c375275133dc71068821364a1bc42fb39 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 730d689e8764e66731aaca31ee0884ad |
| SHA1 | 201bf8d7a721081a457f9296b361a11c4dfeff43 |
| SHA256 | 5314899e48008387e2b4c11521b6859bb59f7c2fd5e581d962bd13f4e411be7e |
| SHA512 | 2bc6c1d701ffd96aade9dee0f2f2644a9b1bff4b78d99215486bc5153f9ce566ef1eefae019dcf48abecb82b016961b26dead3940c4d301a75ee2f6ba88b4101 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2b4a12d6f1499dbd710924bc71453119 |
| SHA1 | 12fa6688442097280cc95d103010b6aafa21b3b9 |
| SHA256 | 5f4d7a5595373f39ff2b336ba1b82257cc91e441d29ef3989e77951fd0062c2b |
| SHA512 | 8bf55c78fa9a316496dedc6d5d6db8c59d233031010a79a3d7f328bd4e69b664a779923d678ca683281dd27ed099b86ab79538d631a1e18a029b5d9cca7ce4fc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000038
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5ac0c1740f02c5a3f25e558ffcb1d78c |
| SHA1 | 64261d4992b1fe67bc754c3bb04bd9d74c0fa8bf |
| SHA256 | cd3e670c4c5b3464bcfc493c52d8ff1d4a297aebb6a5b5eaacc698caf229ebba |
| SHA512 | f7970f52318a3a67f538e6819e84f607a8f3571216594295c18e0354abb8292c37cc09eba1a1015546c3b06cc14418109366bd0169bfa0a4a4522b98d29d438a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c6925c39b414a919a345ec0cebfd8dfa |
| SHA1 | ba2dbe60e0310efbcb000c325f5b0cbd1e3f210e |
| SHA256 | 800918c36213447cdfa26ec5c2afc62362d835aa61bdbbacc259cbcd2d99da45 |
| SHA512 | fcec4e92fdbc66a32882b4481e9c167bd81a731f3809bbfc897a4992fc8830bbda7914d954b4fe2faf902d9bef9e1c43279cbfc2df4685c619a25b8c73fdd372 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000047
| MD5 | ffc507ab662c24424f3fcb9e8d2eecf9 |
| SHA1 | f447984c038d8ece67915c0492e8610894dbc255 |
| SHA256 | 0468c9bba7e5bb67ac35bc4f4609a257e6fc542e4faddcb494e285e60e9bf170 |
| SHA512 | 6cecb73607062e2f7280b2cd0f33c014b1fc5190c34120452bd297001b0ed585dc35a451fda300de6864098896a76006a6577ffcc98fd8c0b0d4ed7f961ebece |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000048
| MD5 | 7921d47fc65f6bd974520d767acf7142 |
| SHA1 | 65892a82d5201d2ea3614a5932c6905648200124 |
| SHA256 | 513e430802ed370e3b2e929b5c5a2a6064a52a8c852e61adf0ad91bf10e7e069 |
| SHA512 | 5014bf0b205499e77e915d1093148ae3625bd297e807c1f5c4738cea627b97b682c35e98849921ac743f18e9591152c098a60c240fd5236572c9e59685e81e80 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004b
| MD5 | 34471dcf910c0446623bb7b21f575f1b |
| SHA1 | e0b52674a6a47ea6b5997c91f8a82c119e097e4e |
| SHA256 | f1c8a9c9a93c6cac37ec74ff16ba50d50341632072c757edda4aa0c11fb5dfb5 |
| SHA512 | ba33cdb64d9a46bad753a67e1fef371f5894c3b60128436d043d42bf58061174546a24aacd90d06a695286f716d3b8554ecc62a6b8447a7a0790d875c09b712a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004c
| MD5 | 472dd4584ee999d777885d5a91102c2c |
| SHA1 | 735f9f0ea6d701bfde1efa80bd5c04649fcc10c4 |
| SHA256 | ab495a5657147b0b83c186a0c303cfb5fd5bf0e9dfefb6721c48694d2a7d8ec6 |
| SHA512 | ad6f6b00aac94f5eb1ace0ac700d517e360b266e8707efaabf62f6fef95bae51cbb28a4450c1da4466f2235f89c1fbdaa140198d96492ac65dab57e496326687 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f52c9a0b6f6c5c3e08ecd40026b67b34 |
| SHA1 | fde11c97cb12358f3f42f6122916dc51f963a8f3 |
| SHA256 | 62e54d0b1c46f3943c1d5a9db112900f1ec09e18b710002304b551e2a482b7d9 |
| SHA512 | 81d49376944292b5c4e7a6bf17a81edf6d3211f4b0fb79609fd5dd38606ca92deb1fe76416e4d8d5662d637db4842cc7d4b58df224be84ef6dc1ac21e328bedb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 1bc61e0d0cdbe0d45ba373134be51e9c |
| SHA1 | a55883cea6028be3ce1ce7ce8ccf850a241666fb |
| SHA256 | 6c895e7720cabdb42d90c8c1b5858709abd4d1a969222d100c3977acde4fe80b |
| SHA512 | 16f88ee1edf30c882fc98989ecbb91051642b0f5d42a154f3e679334d46b545a61a670c70adb2e6d9022212bc3fcabce88165d0266a461a4eca40bcd42aa309a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 83a59ce31fbba3e4825a613bcccd1165 |
| SHA1 | 589fc3c3dacf91496183c7462f1da988db53a630 |
| SHA256 | 02999317495286adcb4015efe65111448823fe0fee1a6640a8c430910bb2fc6d |
| SHA512 | a40afc401d2f677cab3a97c018934c995790259babdb675ff4c0b099b458d1ce62fd83603f2bb8b36faecadd8204da1b9f51c51989a7608d675726163bf0c2e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046
| MD5 | 2da6a857a0555e2074ce1c9f6ca36c7e |
| SHA1 | e8b4aaf31ca01ceedf55ee001294a1a6c2c9a309 |
| SHA256 | bb68f39be1b3ee57e4679de606a4e0dfe132bf90b5636f707cf0adaf3443ebe1 |
| SHA512 | 6c6c69b8ef18e27a15d51e405bb5d5f2df785002270728f00410e5e18905f5c898f0d4c7598b720ad66a4ccc8da9a2e138f2871a94cba8a736657dc366ac380b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000049
| MD5 | eb856afc582068f68bc3dbb589b19c70 |
| SHA1 | 5e718b9c674105c140e72200cd901d6471097aea |
| SHA256 | 30592900de834802e07b665ebc13a6a495956d248c8dc23aeb316dd877e5a7ec |
| SHA512 | 60f55078e15e80ea37d389620b2ef7df5cc7fc461d24f59383a1910140e7fd9e5b2551816641fbb7b16e262b41173c72e1e33a119af6d9feb28ddaa49e771a5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000050
| MD5 | 1f440270965c3803eefe5159e415be6d |
| SHA1 | 42a1611948c3f181f01792c91c5e51f13b6a67f4 |
| SHA256 | 0b25659996b5c43ae1774f83f74beaac5e4621a1d97a3d5822961c47134af4d1 |
| SHA512 | 82f1889af45d109f4674c57e77037defa3158059174995148efa8a96c62c4026c2edc9030b7c32350c1e89f29eac3b0eaf366f3d68d50c9cc63b79378930fec4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000051
| MD5 | af689599d630b31867752eb5c5d56660 |
| SHA1 | f879cd344dcd4fba424884930279f3005e528083 |
| SHA256 | a5a9cff00e6022e89d66df3cab73ac930fd577e9cf3196a4f7361732b928c33b |
| SHA512 | d144d9b4f1d47979f128698802594b8394e14c706adec17baf71ec3a587a884ee5b495e162e362ab6487a4edbbd67e54520a6d1a4744c39747f7030f953d18e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e
| MD5 | c29e1b76e59bf1c2cdf284448c538385 |
| SHA1 | 958c8dc19c877f522f156d13f73d28b0440364c0 |
| SHA256 | e733b2913f669e862e65435e7351545f60ea33254c74002f8a36fa7e5e6e23a2 |
| SHA512 | c84ee01e598862bcf0157fd215be34f84a192915a58e1d493764c111d5d95a08f96471a47e176e7249d117945fc17ebe62ba7bce22c477d53b6fee8040549f3c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004f
| MD5 | c0d1baf15a20a82ba17e64c92ed91821 |
| SHA1 | 8530822ce177f953ba8c661a2c9a98ca1b32d7bd |
| SHA256 | bc058c1cea049e0b1c37015699630ab7ef3a998e0c0d0dccc28b29ef801c46ce |
| SHA512 | c8a824cceaa12629611a91fccdad3c7dbbe6b2cbcf8586e1b049dde4de35031f9a966121f41d4bde1dddc3e1512d6137a82803758ca7047a37bb8d5f7e18686c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7756126b96a85b47a720234d71444cf7 |
| SHA1 | aba45aca648fdf029e2e8dc5ef147f2e54e69b16 |
| SHA256 | e58f2b74fc9d6224f62d31f7306503c629df619edc6ed9e2cbec8c25bc8d13fd |
| SHA512 | 3e4090d87bb44354fc72c3279ac24ae3ce39d3a9403aeef7372661211acf0021c23c9fe97210c2e8608abe2b6e2b9efc126e1a060b31970ae75c915088a45412 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e4884a37766a657f9aba502bfc19b37e |
| SHA1 | 972a973db55fa3fed44b9f110b5fd648c6550924 |
| SHA256 | 3c89fcf5b54338dc0efa0dea6c1580202c1233b5b3262affd5a1b26e5b1cba6d |
| SHA512 | c4a759a73461a1f858ac7c097bc322a2749b600034f7e2ff4353206648fb7b1e66367c2b4cf44bcc78f2f54998ec8d7cf8fd3f83619e60ae8a3ca007b68eeedb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 293efc374723bf586a143c39244560db |
| SHA1 | fc62847eb5655f646fad6653cc3363f39fa919b8 |
| SHA256 | b2c43eeef35e6c2e03d2c92dd80d87d10be4b171f185fdf31affa706230a18ba |
| SHA512 | feaafed3a52dab7c155198c18330f43c78402a1b1e0098ca30c323179d4ea8068969964fa3febea7ecc9072ab39bbcb92eeebc7a6a6100ab194dce303f0f087c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a9c22de8bed2dadcdd38c70b197a4f0b |
| SHA1 | bbf612a82ba155e641ee4848ea26c1652e7e6713 |
| SHA256 | a12f26d89d8691cb4a361dc214608223712e0c66905de1833da4177fd8291bdf |
| SHA512 | 2fbc7700ab371b033e77a7a4e4d4bf8f100508d57898a54b526fda9053c739827af5c14060816e27cf3e53f7e2f4fbf062b022c2e74c9b34f8e593c1e63b3ff9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c6b1ae58ad296495db96c2d7fe3ee191 |
| SHA1 | 3d1204f11a39d765cf8078e683a21f41ef29a627 |
| SHA256 | 3d6c3386963b6f8ad7db0ca3991d3fffd33985ee0b98b81efa96234954584501 |
| SHA512 | ba8834e578dde7296e8ecd697b42c90ff6eb43259b4e896750f5ad5734b043aad533c3e21aa874386e5bd1e1baa3028a4f7d77e44dba4e1f059c03feac6f3583 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 05e36113080206f3a87766cda2b470f0 |
| SHA1 | 63389f4f9840f40ed7a8084d5cab5eacd1681e1b |
| SHA256 | 02e9227e712fc7d6ab64afbbb288a3d551e85f857a4c42f74a8cdb071feaf546 |
| SHA512 | 9dd6644da797c1ae1e5c846a3225e503acbf75770cfa22bc5c103405fff01eb2a0d10b7f3cbdda9da87f382fe27179e71468c5047ba38e114c3384e758e1fac7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 084b22cf5601727cd55e7af727925faa |
| SHA1 | 9d555b04542994e734bc803952956f5ec7b32092 |
| SHA256 | 7b3ee3bce86434edbb06d961bd16d6fbc5152e9718a84af62f854579b8ce5b31 |
| SHA512 | 0885d1f39fc2400c5e4e4bf7fe6dbe003e1f684fe14163e6ee0c43a3ee0b0ae4d45e7d6255eb0739803c76e6709175ebce05f57aace7b2a534c79af81113acfa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036
| MD5 | 7a483288e82f48f8cdcdcc975544b5d5 |
| SHA1 | 595824817ad3b180cf0500ba4e2cee0f28d43da7 |
| SHA256 | d2dec720512133d14bfe30b6327f55fec8d64a171f7c0156edf1ef1e4f5b9404 |
| SHA512 | cfb70f3ba88f84a8fb9631af70ce8ebe3f4316c002dc822a4eb821610e377939c0675e75526d8b3fc370a375d78b96600927d4d002f0c89c67b6b83bb93e1c7a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000039
| MD5 | d413529469a95abf05319fb214ca5c83 |
| SHA1 | a89dc959e73055685a87117b6b0fc1ba6ea2872c |
| SHA256 | 57dc7cb00539cba6f39a51b2e3595a747d16b5ac1fca4141ce5427b4457607e7 |
| SHA512 | 4cf34b374c8b9eea3876ab1ae3dfd5c3902e4ff6f689c837fe4330cf4bf7884badded23d9ecfb00824b31cc90a8b1301d22e2ce15dffd1e52e395370bcef0309 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003b
| MD5 | b3be1c5bb9329719cc13de8e8d43a9ab |
| SHA1 | a042e8322bec3e562f691b4d921907a2ae5d2d9f |
| SHA256 | 58131a891cfc7083dca14a77c968d12ad5037f56f372fe260bbf5c3e55734d59 |
| SHA512 | a811dd969061f6a77b6505179938e88e0bfc05a1d9f240d9a4357053b19706c5ce5c592a53d510bb3248000c5d3d974f6c322030cecab4f995e06c6ec9f04a23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003d
| MD5 | 4a2def21289b59f724f19107718d047d |
| SHA1 | 81a46cb606812d632b47a3a8305242bc23e3a18c |
| SHA256 | 3ee02d15f461752eae2c846b50317b3c07861a8adc1901a289d64f90aa30fc1a |
| SHA512 | 75b7543cee8410feadcc0f32049bb9d7a0e5ca7e56f2ce01dee14b207c90040dc9031561c9721f823c5ff9beabb2974f9d80799b2354143b7e6f7f8c5bd168b0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000037
| MD5 | 6d6dd2216eb5d8418d70cc62d37e0ffc |
| SHA1 | 3e9b1415c7f34c63bfc01e31ea0e69d06e9d7f32 |
| SHA256 | 649b4254d596ec8a725b8f00dc8924ad333caedb8fb751e3dc4c98a4e8d8a651 |
| SHA512 | 65c5a72495a644e7a988f6db19f401cbe167862d27edb11987b248392c1650d322c7c136eb8067d8e3266a280ccdba8be6bc659c110b5ea5860b69162f6f6b63 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dc304bc4f827000c69b003a7cf0ff717 |
| SHA1 | e7ff627e3823bbc8bd1d536c1d7bf36d86402baf |
| SHA256 | f97fcc5197b4b79fb9c952bcbd225bc9dac752d379170cef1f5be6aa51685aa1 |
| SHA512 | 2eba5da403e182add5adf6514f0da02e7bc123272586750dce23cbdbe2057af7b4b11ab22dde360fa6e587be952fe224d06bce4b4e818de14983e35252ca5075 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 7041e7dc0d173e9620cbfa566c6e80ae |
| SHA1 | 679335c1bbaea10cc7c42091eeea15acbf4a533d |
| SHA256 | 64a702234fe755f1778253aa8eb54b441d0c35a034cc273c6b02ed49029ea079 |
| SHA512 | 7a896e1b4cecc9faa5c00f50256d61b13c847fd3c3774e3446445b55660062b142ff959e7a6f7abd45516641a0ea8fd6cb874495e6d6bf502f9bca3e97b194ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 24cd1230d3ab2721c1ac6e0cdd34c701 |
| SHA1 | 294d74893264c55d8584d7e58d4ed14cd95d939b |
| SHA256 | d3664bfbb12af60c66983a27c903932cf8a12094cd864b6733b2e78ff104420b |
| SHA512 | f91d52b08d3a227fc1cc65f305d2bab4c88345f1951ebef69d323df163b2f04d016edd2cf95f69d14fc28f4823bb2d4db9a0860d3ec088e63ce6c80b6403a99d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f0d86a9e547fcc99946ffbd68e27c112 |
| SHA1 | 4fd546dae54ec78a945892da02e7c411c3043fb3 |
| SHA256 | 6fa6f6488225770ef4065b413ddf3dff63fe5082a839b4527209d58497c74315 |
| SHA512 | d379a94b7936a880d7bf4efa1257569860e31a363f494cd2af2799576e2be9dd90bd7f1d96e88158fbeb6cb5ba03e7db445846a841ddabdad46f52a6e3c2da5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a27b09b44746307d4d9f5fa8bbf60826 |
| SHA1 | 7cf0ef3713b8f9a3b9e37291569e462aa5c10d62 |
| SHA256 | a2798779aa34bc86354b2c6e3beb5cd5e96d94fe99a5752f73da4d8fccac1c39 |
| SHA512 | 4659f02567570ef19a952f8d4629af6c15e2986c1d802c243efcb76ba40d90d5913bcc9da4d10bd5e1e754d28a4f3006ca61706123475df46ca50ba6d135e700 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 02f2a943e0c36452343d0247b80e92d2 |
| SHA1 | db62b24c9fdaa1bf539a925326fc8f1b05155456 |
| SHA256 | e931152a3a177ae0588ee37bbf3d294e2e1e77368bebd2756e93678a177d19a6 |
| SHA512 | d8ae16f657390a98985915f9c4b7799153137b4b1f65859bf0a76517b2dae2679f57cefa573cd2c3cf81549ab6159a3dbc517609202829c502aa5cc9fa071d03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1c96d43dd66d3f4dd0d6a0ed853826e3 |
| SHA1 | cbdeb69e580e6ccf981487466b8dd312b90c33ff |
| SHA256 | dba68f796729716af19d5b8d20b4ff2da005a43486f92ebf344be105203961b9 |
| SHA512 | 8b9e941a0409795488fdd6d9c34b3ded8f715c7d79487fe01992428e3565fbbfa1d657a80fe0a32d6ea544469f93fdd5f8a0dd073b54aa6c0f9bc9bdc174dab6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ac
| MD5 | f998b8f6765b4c57936ada0bb2eb4a5a |
| SHA1 | 13fb29dc0968838653b8414a125c124023c001df |
| SHA256 | 374db366966d7b48782f352c78a0b3670ffec33ed046d931415034d6f93dcfef |
| SHA512 | d340ae61467332f99e4606ef022ff71c9495b9d138a40cc7c58b3206be0d080b25f4e877a811a55f4320db9a7f52e39f88f1aa426ba79fc5e78fc73dacf8c716 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | cb2fc054a1e02eec7324855379acde01 |
| SHA1 | f052838e3ea046ee955c8f045f00e23252dfa47d |
| SHA256 | c7cd03395c40436d274f994267977ad736338726eecb54faba586b19d2911baf |
| SHA512 | 0e9c2bc026df7d3676e907c6858d9d660cc00cbc66d373fcc2a8491a384fd1a7c29b9f458ec8d9bf25bd562fc443f007ec58d30a7538dc55bc3753e906d9faf2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f0d44b8c966b52a4ff67f3fc61d66f5b |
| SHA1 | 02b712e35070b31e4b10280e92fa60ce26f81854 |
| SHA256 | 679e99b281d3529916ee13b8fc6f315c2824bcbe800b073936fd7fcf33c3357d |
| SHA512 | 5226d25d8178ff5de459261a8bd7d260a6a2e7862e5b5561224b7af18d671feea0f091b53f3b0e8d804ec52621a475e62de1cd0933ffc44afa02e54a8a2209c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 64765fe0be8528ab826f9884b9aa04b2 |
| SHA1 | ae42f7ef11ab3733e7314331602d104635052dac |
| SHA256 | a4b259db55710a690cdb866e60dbd8f56ff6230de1b6cee8b796ed089facb045 |
| SHA512 | a22db38071f9937a21aefca239e800151341b3e8cca2f1c118b87270d0e8189f5f8c37cbbd2b8cb1d138b4a8e45d93932b9388ec42e3f7867c1cfad78714d524 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 7f86951be40b8c47a7429be1c2e3a66a |
| SHA1 | 77869e10c1e3e6f45eb0535b75c7fbebe71e281c |
| SHA256 | b152b38772276bc4606aa875335bb728876c8b23cdfa26c711bbf0d169ace792 |
| SHA512 | 107d575c71d8e04e80d4acde96f1ceda7413def8e30f4356c0a44a4773939db0190f1ab2430d8e420190ba08b094641c0012aa09c7311ecfed559f48ee852690 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 07c6cf29db1c406d7f0fecf2a973bee9 |
| SHA1 | 67d94e65b051a54628447cfd4ed28301b0cadbb6 |
| SHA256 | a49c8a528d84af00fa8bb74d5dcdfe20be0022411d2e5c524effa17e5661b431 |
| SHA512 | 1a127eb67ac3e33fc69c633bda493ccf22327be380aa4b6ce6b95924bcc67f8fe022e7ea16da8c7ab78eda74cd5255b178a012ef6f126d56b5e46ad8e9886815 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 24a136f3c81087f7fe17939031169683 |
| SHA1 | 890261bc3eb2bf370be18329fc3ab25a17768943 |
| SHA256 | 99572f77e51cb57a50aa30bc8a5c9b88b9693fdc098bd3e7e4dd0787ce96b526 |
| SHA512 | ba8986086e5a43a98ab99d9b6852c6bf54de82d08f94e47266af4495a18163b3e7f346b4ea3591632c3777f594e82e57aad61e1a116185913f6698610dd20440 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 65871c789cbefcf8702c1ac4259d4b0d |
| SHA1 | d98db10e688373b797aa329999424c7a5978a28f |
| SHA256 | 6becd3b669187fbb9f8aafe09e786deba77b08319353eed4eb8dd6cbb5617529 |
| SHA512 | 4b312d4b004478761b05f10ceda7bba7b5c9c32660755e29dbd4fed7cb1c9468af8ae02c0c242d37f0b21b631d9e2efe10d97c018dc7e23a6f8b6c1b92ac5961 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b170f1b3898f90761d0e834d432a71b2 |
| SHA1 | 5bb42207860587fbcf18f584dd837226dbe06824 |
| SHA256 | 68e9eb2763ab6f2a90c769f524f5248041297fe7f3f4cdbd4d95eb14fe1c7a26 |
| SHA512 | 30e458963dd10b8828045665d6a1a9e9e295dec11cfbac0567b9df97b695d5f5eb7d092db198964c2d23d81abc28b030f6f139959dac25786711b569917b79c7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b7d67ef04a8ba609bf036d54e035b3dd |
| SHA1 | 9bf293806537cae1c46997c859b58100e0433e35 |
| SHA256 | 193896684c1bee977cb67a2eb2062b6e7622684857109b9bd9a383b3d2e7ef6e |
| SHA512 | c48fd34c3e1303615b89fc377cc1f7fdc39a60646be9a00d755b3f9f5f39977c5d051806280df91ed68794cca50722d811fdcf4d446234101846d27ace1b9d6f |
C:\Users\Admin\AppData\Local\Microsoft\OneDrive\logs\Common\FileCoAuth-2024-5-30.2130.3284.1.odl
| MD5 | ca9b90ce886177e34e2d8b68e8ecdf95 |
| SHA1 | 4dcb197bd7c73dba4003cd6bb5d0fea298a7894c |
| SHA256 | 61ab377753138babe5e4e538548466edec9859ade360d9881be26c4b3bfc60e4 |
| SHA512 | 209a8f20dc05bc821de81bac64e06009249e274b34438d31a940321cfd6e9c7b77b95278fb248117adbaabdc9bd677bd6e52930f96e21ac768371303699e5899 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1a5ee4b13580dd75d5f850a773820236 |
| SHA1 | 413d01b2238f429d5cc16a45d104bcb436e1f20d |
| SHA256 | 203346af55a0e1631c78a8eb3616000584813d12d9cf5c7d556b8f40281b8932 |
| SHA512 | 5f667e8fd08f94fae785e4bac401907a191230defeb1d90facc8a714031fab6112a2619f20067d4d17a1e63a97b7cce2cf622e99bdf4feaac0ee8bbe3d9a2c23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\26f7322b-6599-4d9d-8725-868141abf304.tmp
| MD5 | 805be3b1c5fcc7236b97a5f45b0851b0 |
| SHA1 | 773344bc77c4cda2eb46cec727d3da8ab8ecacee |
| SHA256 | d3b7ce4edf246956823dcd44b60a9c0cb6dbf60c0ea0cf6819b3eeaec70a2cd4 |
| SHA512 | 5d0380403f5c548692724a8b5a1b5c47d0090d9628ac688b6ac555d4609d22327fbc6b99a582cfa42227bc7ad04af884570611715af532234b134d84b45000c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e5934452e52b0043469e41c9fd7bc81f |
| SHA1 | 3436efac9ea56ef9a3f7ffa427c0ab9d48c4e65e |
| SHA256 | cfc465a2c1ea41502a2c4852aec270d82db27bdedf7e6cd29ea0996f85697fe9 |
| SHA512 | 8cfda439c8ecc7eba33eb0b88b9093aebc584cb8bb40650771e57e1c3ac333db4c8bdf2ba44a9fae6929f7a0df74bb15bf4aaade4dd66e7a525628f7deaa2903 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms
| MD5 | 2ff79ddc3ad2040ac7baab97d03cd7dd |
| SHA1 | 937b75e714a60e085e4713fc3cf1d9a71bd6bbd6 |
| SHA256 | ec0a1910af5bb8a11f964951460f121e2bac1b8329d34422a81707c205c81b53 |
| SHA512 | 8908f106de9f01b3259ab5eb4c2ac7b640c692f29574048c80c7f969a5bbed4bd4226aeaa12a8cb0a8d585bbe112f38bfbc6cb42676c917d7c8d6587781cae50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 683688704d2926cc8042f9a471128e69 |
| SHA1 | 5f653a22dc386fe4965fb99557040920fa45e244 |
| SHA256 | b01ad2d67cde6b024f0106ae44648b7f4a829811baa6ebdbb6b04ec973cc92a3 |
| SHA512 | d35195085b47ba79f2a35c5d3c2cc38746a55eca19dcc0b8c97bef71c4e3dfd0df22daa8c395f4c69b03db17a5065fe3b897e5ef264fe47e8d8c0191254f8894 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 384509a2b61c4bcc49ac158e83dc58db |
| SHA1 | af96b098435eb4533ecc79d07c2947a7d039c1ca |
| SHA256 | 10738af8b40fd16285e96d5a33cd3b3ad2a6d510c18107d2bc65f586f22bd0b6 |
| SHA512 | b55b8fc11bb5da8e01eced2541f6f2e9ae94da8c48b202fd34658fec8ddcecb4c68dac4ff17e60f0008787e2f8bb7a47f15d2e465be79c1e95546d343b309624 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d3
| MD5 | 6593fb08e941adbe4a342ba22ef78356 |
| SHA1 | 27348fbbd385f328960da9b5863cf8c28ee66069 |
| SHA256 | afd127c2f758872d2afd7a41f3ea0489f3cc11cd73ff4b9f200a75d89ded039f |
| SHA512 | c066004a823bf0408037b7fa4e2efc5d230bcdfd189f7cdbb67f9fa437feac7b6d4eb731b61a882559afb867505ea620dfbc757774b661dbd5784044340e5c91 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 93d8e8f3c8d0ce8cf152eeb0448e634c |
| SHA1 | 844385f742e2a81d220000e45653936794ffeab2 |
| SHA256 | 48971a786646676d9f210180481156c0f9135091e557a99d956fb5ff4868d3bb |
| SHA512 | fc203cf0c33798d9fcfb857a376adb7c992c17c8ec3708afe6122e22fc17e7e867b5cdcb296df00550fcc52b9de0476a9b3dc08c09796602d09ab0a5f541411d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a410c07a44f2ee26c51e0d0e19da4786 |
| SHA1 | 2809c07949b529cd8443166490c6cc405309430c |
| SHA256 | 48a8de3bac1f0c7fa335ca287e13052d332dcee637bd90f0cde71f3b87871630 |
| SHA512 | d9477f7fe2e150e034bdd884f50f29512c3ec2da1838f433b1b33488a9f0b783e117189c0139c8ef9592cb7a18b63345c03088576db652a9dd7728802206ca22 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c2
| MD5 | e70e65ec4f5beddfdeb18c27947ef6c0 |
| SHA1 | a3cba8ef92c7a06d204417276372389eb97c77b9 |
| SHA256 | d5f2dfac315c92bbd505bd53028fd406e82308fb114ebb75d47cee9a00654b0b |
| SHA512 | db6ea2a26ecbe55e8eaf9ad11bab315970a53d1402b7639cdab70ed51ec7a7d63c421ed558ffd59729f95248fb30b364ec1a7e71686a482f58523e255fe32112 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c0
| MD5 | 6fa1cace4c2e0e864f15d8f02f6e7cf8 |
| SHA1 | 1e958ce2a136f18b2345594f88a5f4e291b78716 |
| SHA256 | b5dbffa4060dc29d2a4f99b6320bdbcd2c4f4c415c5a95589d1ef3db2d6bdaf1 |
| SHA512 | ecbc862125f2cfaf14105f69ebc702d6e7d542de3904a4d53bee4e715823f40022825be1edbc7ef491e67391da7c4ef1a51fd200bc54c79ad2fd9dcca4b271cc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c9
| MD5 | 26088c06661d1fb4a002e2609404851b |
| SHA1 | 31293824e0579bc790426930cf73e9a0c71c0aa8 |
| SHA256 | 8e9b4a4680b498db825ef610e4e7c68bf3dbfe95383031c7531f1e6dbad454a8 |
| SHA512 | 3527d553940a6c91b5cef149df40bd5537e46d16442b5bce1e593e743014d3f25250ca8008d912b87b41745006e03e1c942be94a1590b36c1db72bd8ba23e12c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d0
| MD5 | 856a3daa268de8801e7cfd5b727b6de2 |
| SHA1 | 8e099b433518980e657c7541c49b498e6b83430d |
| SHA256 | b870ae3c5216311e1dd7b8662e01d1fa3326edc85a98a58247cd37b8cfca0be5 |
| SHA512 | 2f191ea906a3551576ab14e607fdde9930fcb15f15ffb40a8c5999ba07224bbb8ea69918db11d1cd719a3d57510edd466ad2b9199c6a45a48463b0020a2e6eba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c411946965a51c29fc47cf43112cf2a0 |
| SHA1 | 89c142fe363a827fa5bbb84aa109cea2bb5178b9 |
| SHA256 | 8e9de94c9220354a793e9ac34f76ae95440dccd9bbfdbfeefabe486e1e5e98f3 |
| SHA512 | c5b43b0a1df5f12566f633e11878310bdb5d843b3cd1a531409f2a6b5470cbdab557d650f02a166e21cddaa3abcae6d2cc76f94b08e113659ef201712ea83bb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\a341aed3-df42-40c5-9c33-5498638d1fbb.tmp
| MD5 | ecd4941383c6e5c1a68ee4813abbb09a |
| SHA1 | b8cab99810e381017271c3d8197237ab847e357d |
| SHA256 | 3461522c8b5a1451a04511d6ec23efa22dc403ad44d4d517ad872777bcb266da |
| SHA512 | fff355594349ff734a3cd7338325be921d05fc57c556abbd5ace65eef77e492001c6f9308aa04173154ba88bab5f319ce598555efbe22ecc372d9a1979aba4ae |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b4
| MD5 | 9425abce5f6b091adeb76b06d898040f |
| SHA1 | 09fb7148b19892c41d0a66536f9cbe646d4f3f60 |
| SHA256 | 295348cda6d8bd18ebb1f196a35b190bcc66bbd352bcb0b713d3ad4c79bea129 |
| SHA512 | 0fcbcbb468f0395b2bc4c53df762469685a10d90ef6183c2510ba2980d6bb49c2132bbf822a34d1266a8b95915d8273075ed8b0e78180d67989a05388276afaa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b3
| MD5 | 4067b5e8dd7284fee0dc79a2c3658735 |
| SHA1 | fc161e925bf0bf3960529078ecf1405ed17e7c52 |
| SHA256 | d4e3310538430d4962115bea47b5840f4030cfad6242df9892b4f5b23eabbc7e |
| SHA512 | cb46dd114b7d29ffb25b4ee35f1e02b85578094b9f34cc3589907d25169a776e4d253b97c9be210919e3199406b53923c225419cc16c674913c9a412b9a4c2bc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b8
| MD5 | 67e30bbc30fa4e58ef6c33781b4e835c |
| SHA1 | 18125beb2b3f1a747f39ed999ff0edd5a52980ee |
| SHA256 | 1572e2beb45d2de9d63a7e7fe03c307d175b2b232bad2e763623dceb747729ba |
| SHA512 | 271d4a65d25b0a5d2ff2fe8f3925fc165d9b4345893abfd919061d78ffc5ffe8890ded35e41274ad8b860f06264b027cfea6030ec9411a4e03bc6d7cb4d4d228 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ba
| MD5 | 2155f385101771026a23f3dc2808c97e |
| SHA1 | 550ba8b46e714011059de97b0f672f0349dcf8de |
| SHA256 | 4641db11da9224b6da70ab3719915060084de315ad9037ca51c566d7d161dcd1 |
| SHA512 | 653fa69902507e82f884910143a60305e2b3c6e4d7ef411273c4ca2a67cb144ef9a367963bdefb1f45e21af4193393bfcc16ea599289b6f45c923884b3fe39f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000b5
| MD5 | 68e70c2d7e5cd9da7171b837e540b441 |
| SHA1 | 5603f87248ed6d07b2bc82d1e6aeefcfd5349ea5 |
| SHA256 | b90819e293c210926a0c61da6248162e324c437608c21db9d4dbc077a660de0b |
| SHA512 | 704718ad8caca73f23581fd449f41a858e275a535ca8c901a5cbd09c51feff29a6cb86418c8a3d2dacfeab5d8d9c89d60f2a3f2dec1b430afa1d037908433bfe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bc
| MD5 | d1e2cbff223e683811a2e5627af7dff9 |
| SHA1 | f1e33454903614547c212907fdce98e612a6ac84 |
| SHA256 | f4063c8a18f9662382fcdc6de185b44f5781d361fcbb695a44a32267e54c0125 |
| SHA512 | 469a12f99a7509c360725e7ed495537e8b48c309f8f25fc74529b88098edef7e8071ae9a4fe8a332ed72ba305fdf4cad3561c5bde4bdf4d9d65c2b6330849c86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bb
| MD5 | 144854e84da83ffea974a51dc947756b |
| SHA1 | 50ad7fa26be4433392808f4e3f0f79ffc273cd78 |
| SHA256 | 8c008eb45d08a7cdb74767dc72e2e47dd33264487749dfcac472f8d9e1311c12 |
| SHA512 | 515d5343fd3da1fe397d6722bd6b1ef8fb5a971ba8f7ba351e5c022883f3f4a9b145c70e0e7c54e5b424047adaee997095667df62464781a9f684e74d752db11 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000ff
| MD5 | 5bb6fbaf0c60d8484054db863ddace24 |
| SHA1 | 9f2a1ea4f12ad8597a87ffbcac09ca169af93189 |
| SHA256 | f52acb3f9a347bfe5cdc32bb2512e2fa49e6609c99b4646e002d487012203a55 |
| SHA512 | ab2c63d85ed6dbebdb494762eb40e8f8bcd782e7b7061e2be4c84ce6ff14a4bfdac938148e0c4ed92f2e79e667128c1b1d5325becb562baca9776da02f037a90 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000da
| MD5 | 78c2b586d013f22c00a7fba84f1b17dd |
| SHA1 | 297e8185e03b95dc9ac1d3bd61d7fa6870af5e22 |
| SHA256 | 296967c3f68bf40c880602e4f9332488b55e6b901d7f9abb0190d391e2c1895e |
| SHA512 | 6904ac1bc42db7d8e0b7470369dbd2de6936f90af3e00c247d773ef2b8c20cd4ba54ca6fd3983f37052f8d74faed449d14d790ba500ad0ac72a3d72dca82a077 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000bf
| MD5 | 4a4be4463f201abc1badaf34b04aed83 |
| SHA1 | 626cf59c2266b6fda29c22872fdf66af0bbf5580 |
| SHA256 | 84a4f124b3b60cf8ecf6524b321df2f851f224311e3554bd16efb42c81653522 |
| SHA512 | b6a03976b38e06938570414b65c62f98fb1a1bf0d79a4fc7744ae785cd0ee520b44e676ff853d76f1f9e419715ab1b2108cde6286b4cd66850f68cd78c1237e5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c3
| MD5 | 43938921463080ab6ad15073c1131ec9 |
| SHA1 | 12138123cf8888d1d1a89a204b6eebe7feba83bd |
| SHA256 | ff2be8e1a72c8b3f3d18f4993b09f5b29bfc0c5164271c381c839043b840f947 |
| SHA512 | bcd9bd2442d0c8b169336b03ee1a3a4a1a5a75bdebff7d239ab8d9f07350bc875b06f5adece70d8bdf71a9d1cd02659e5953034c090d3654e2b077616d4d12e7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c4
| MD5 | 71474203d68661b534dc8bd155c5fde6 |
| SHA1 | 1e01530281efdb2900f5305c136475adae00845d |
| SHA256 | c2815e2e82ff72159021df734f65472a18741148bb4eb75e9a0220bdcf209b0c |
| SHA512 | 81aae5ef23a29ba45ef395bc97dab017e0c4c94f8f55e9db58da77aee718b40fb38874fa465138bdb3f300847255188754ba8a92508fe8dc3c712e52fc725422 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c5
| MD5 | eccfe137c2d5cf947210010dc75afd37 |
| SHA1 | df96d7e3e145e5569e02bf57f9ca94c419af92a1 |
| SHA256 | 79a739b7436ea3d182ae54c14586739b45ad90606ad91f3e027eed8b2cb23c9c |
| SHA512 | 55350f387463ff59e15419b102bcba438771bfd4f1f25ef4067d773b34f4cf064701977a6523c4732eea8b35ed1cb4c747e779791dd3ca1643ba1e6a2d2c6614 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000c8
| MD5 | 99f8f72cad36e464e4c9183df6debff6 |
| SHA1 | c2f69d134406fcf934da6af0151b53c31c784476 |
| SHA256 | 180eddd92b91e0653418556604b9a3329c3967a29240276d5fa3f9a92ab3b462 |
| SHA512 | 4c0735d9fd52ac5e62459a247ea374e579266de4e51740ef6c4ce62a4bd7d9dc997d238ed12b4d12a63c402efee5e6996009d0b3cf3c26709211ea92c111543f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000d6
| MD5 | 9c6b5ce6b3452e98573e6409c34dd73c |
| SHA1 | de607fadef62e36945a409a838eb8fc36d819b42 |
| SHA256 | cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc |
| SHA512 | 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d2e9fee4c93e299b_0
| MD5 | df1fd7dcf7cf575263f48001cd267835 |
| SHA1 | 0e3add58ff5a156019977d0def5f637593c77ade |
| SHA256 | e9d414c4ba9f8af1b9648f7053330e763a11f9673cb74cbc8cd925d6b2ed2bc3 |
| SHA512 | d13a78764fcc30fdd720488da6c5df94c9687e1625d511b256d6632977ef774c561f64baa77ffac56143a41b4074e50c591fef4880e35daa7f8ffe14cdf68f66 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | d6c5a95a5b0c3fcec5dce7a7b48b736d |
| SHA1 | ba6c5f1bd4c96c157114fc877c93908e657304b0 |
| SHA256 | 6cd0b9b03466e0a37326fae674c9c73d34c5adb50ed694c39ad11d78188ebbd6 |
| SHA512 | 4f9f210b2f5d33d2eafc74881c32e3e370a4e7975163ace0d04995f08574ee1eab76366950067d64f3e1cf793ee93ad63e3c9a07ea84ff499e0b344e1d69205e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 90732392cdf347c48ed31a8fb5f81e13 |
| SHA1 | 2f07b4f2a3e6385362b827290e84f6e16a8a720f |
| SHA256 | 2f4a4c0c4f78fb381fd8228b0e0f67ca11b4da474fa457726aaa9fd91d2a083f |
| SHA512 | 952453486ae8e5028b70142668bbac95dc71bc2c60eb3e532246fcaf1ad4cae2740437eb267787bcfca0fd98d184016d4bde95253ff7963f6eeef5ee03058bb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ff88a40b88f8d8f66c84e6c9988e72dd |
| SHA1 | 7d0fb9cb2c6dd2052a8e3cefa8907314055aac43 |
| SHA256 | 33c95b985ec1bc4f51a1b11ba5410a0125c0fc33d12dd60a0b1d4461cfc5d5c1 |
| SHA512 | 5245cf2a3af06041379a7e529e9ffb80529d67b6c44adf17742c85ad39897ad2493926bcb44eb7614e0a52d9093095a2aafe403f2d00076613d5742760d7dfb2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 842f9012e4075afd21836617155d1716 |
| SHA1 | fb492486334d49121e33f07097e05de8e7d86e5f |
| SHA256 | 529a92370ec3f5bace930feff9ee0797f0421c5cc8e58e17855a4061898a5310 |
| SHA512 | 97fb2bbb20fbcb34f57c17605255d2c97af86b72f8252f8f0cdbcd14e5a0ed8d1438ed6ee4cbffbf614379bfc9b17141dc5725c4ee6d306c67e921cc3288664e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | db109e7c16197b3087ea284583ec4fd0 |
| SHA1 | 777540ad58ecc5c07b78858e7c3ddb7e21036a69 |
| SHA256 | aff34d357dcb02add05ba6d8eae83a7ccfb47892e4969b4c5e5e7a2725ab6b09 |
| SHA512 | 405dfacccf959d521d659586712d229c8375cdd4c5403c91360a8057dd0886150eada3f4b9d2699c92f90a7c9ba2528914f4fc6b2d9150a2547ff60b31b12c2f |
C:\Users\Admin\AppData\Local\Temp\Setup\ds.dll
| MD5 | 7d5d3e2fcfa5ff53f5ae075ed4327b18 |
| SHA1 | 3905104d8f7ba88b3b34f4997f3948b3183953f6 |
| SHA256 | e1fb95609f2757ce74cb531a5cf59674e411ea0a262b758371d7236c191910c4 |
| SHA512 | e67683331bb32ea4b2c38405be7f516db6935f883a1e4ae02a1700f5f36462c31b593e07c6fe06d8c0cb1c20c9f40a507c9eae245667c89f989e32765a89f589 |
memory/6596-2972-0x0000000073A10000-0x0000000073A24000-memory.dmp
memory/6596-2971-0x0000000008760000-0x0000000008774000-memory.dmp
memory/6596-2973-0x0000000008D50000-0x00000000092F6000-memory.dmp
memory/6596-2974-0x00000000089E0000-0x0000000008A72000-memory.dmp
memory/6596-2975-0x0000000009D80000-0x0000000009DC4000-memory.dmp
memory/6596-2976-0x0000000009E60000-0x0000000009EFC000-memory.dmp
memory/6596-2977-0x0000000009F00000-0x0000000009F66000-memory.dmp
memory/6596-2978-0x000000000A4A0000-0x000000000A9CC000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bc0b625d8e60cb0179773232aa6ada35 |
| SHA1 | 2d4beccd35d6eb0849a862a31d2f3ae715086ab5 |
| SHA256 | abc364a6cd77f28efa1884408e8ad934808928aa69d4e01d7110b9d3e4847ac5 |
| SHA512 | 07fbe3a438306f82b85b10978e30743a223f009cf399460c9933871949202efbdbca37963a84d1734238e723422cef5eb15c7613009614f7d229d23f7e80884b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 52adde8a98de9db58cff996a3f31dcb7 |
| SHA1 | 0556c7f04ffcdd30396541c327d091314200265d |
| SHA256 | 5c8c3eed8c3aa5d90bc283fe464baeed734b18e48de81483d9111aacaf6829b9 |
| SHA512 | 3df569abdde9d9bbdb85c29dd6aeedd045d1ea70e979652dec679379a78ca26fe262c5459e60231e8f0bd3ab54ce890bd40fc3b11fbd8c037be96ec6de9d70e8 |
memory/6596-2997-0x0000000008C90000-0x0000000008C9A000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cd6a41712f9f9f8010984709f87bac01 |
| SHA1 | 2f5e18626efa454177dcb94716b4a6593a7830ed |
| SHA256 | 14208bec5591f99bd1826be511d9a6d955b9a480b3802a123aa9d0edbddcdc95 |
| SHA512 | c7a464382a074dec61216def0659f20152ac4fa834f05bacb4f02b7a09eed96eac7958b777f7976837dc0ab07d01a9485cc58b2d4f259d23318c3fc3ffa23608 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4237b8a63d7d3852894647f5721332a7 |
| SHA1 | ac1e38c49b3689c992dffe25e4672752435299bf |
| SHA256 | 1f5d904eab52fef89a7d6c6b353ee137dbeb63d9a42b5e80d7c9410081ff812c |
| SHA512 | d2867386389228cde5a8d532b31544c0a3718b6187e6385ea0ed71d275d7c03431c1626271de61866da808b0cb049d59f8375eb452b0af268ec0e6fb1f69db3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\c921573b8fb762a4_0
| MD5 | 0d64a9059ea730da3bd013d172bbe03a |
| SHA1 | a60c752fa39c00b45785704d4c8e650dc6c88851 |
| SHA256 | 3abe2b77c04aab76cffbccf4d5fd68683af7040f47ce2ef05e8c34b57afd4ec1 |
| SHA512 | cd5b8fd94e1d9535f4d51214c73f81a18c7dc29563970d3eab147fe9dda190fdd955659765d7dfeff5fbe95b04496a0940c58dd42268b5fd2cfaf67fc55c2b5f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\10325cf46d3b368c_0
| MD5 | 5ba9487f6c8ebd18127702ddcf2f0daf |
| SHA1 | e703929d6829e5edafe1266ef8d94532b168a260 |
| SHA256 | 310ea2bfee9ed7826522908ffaa45ab3390ccb189bab2bc5d1e23e845638c999 |
| SHA512 | 9f3a720aaaf46f9e5517eeb9f35f5d65f3b05cabaa3ae47b777097dff50ae13169bc178d8becaea52bab113a5ca3ebc8eb02c7e79507b32315b56cfab856b31f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b18eca4d8497f2883e1e0780b243e624 |
| SHA1 | 4c8c87dd0f43072c369d724ab3dfe218a2692acb |
| SHA256 | 73e0b038cd085414fd053a7cdac293439b5db1ac54de1d67eac54e2228d92161 |
| SHA512 | f70b08bab91d1a0314c6303c38a62f79bbc61d2b1ca50806508cf08a87f49c58254cb814617d67ef1a297e2d7b8df9eb910786868e51cd03875b9596cd697bfd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4e3f6463338c3126f198b559a0445a26 |
| SHA1 | d4252657cf35aff787c7646b7cee1a7ad2a7b61b |
| SHA256 | 055d2a21e7aed5e8b4e613a23b799e4680cf8a434e20762a7a30e4291809a0e5 |
| SHA512 | c83b411ca69c3c429c1c42ceebb56597dba919d0e4349b781f68e8ef2d23112f5793d1a7538e086ecb81106e2b149d196a2b99d9abd008e12ceeb55139c22ce0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c7a214a58da91f362d8766796088a3f1 |
| SHA1 | 67cc1d607ecc9bf416e60e6f3512488e8809cd25 |
| SHA256 | 964b724b7831ec7f3ab352dc124bfb71f760cf4734703e7f07c4dc9928174238 |
| SHA512 | 1c27502cfd00df7a8bdd262c2adfa4a39f5672ba0493e771435f1a3ad9fca92c86b59b1c099757384d2dc9803e121835f4dbc65b53727a88db86764bcee3a627 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c46b294ebb75cb41f3c232a063321c8b |
| SHA1 | 95e277a28352df2a501ef34104e424738521698b |
| SHA256 | a3ed4f910d76eaebd5d336915856274f229eb0166616136417c981901c329e53 |
| SHA512 | 1db6543c38b549af343f28a41546fe9d1e7c76ea4f310169425f2d936fa07aba7a3180aac56348768528a5a8fc31dd1de02fb195e90f9283b382eda90df70731 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 77115032fbbdd1904929a14b212ed94f |
| SHA1 | d8af9e43b2c9dc1720e11f226103f65dddaac3e8 |
| SHA256 | 4729b671c5e6309144a658ba09a3fd84876759d11cec4d48d96dd2f24f91e1dc |
| SHA512 | 222ff45b20d6ff6d3ee4b0f931bd6a9d2b3b704d393d74a4ac28e00bc4f76b5fb6a780c88c33b4eb9f2b48839eb52a07f78e1eb47dd8dafd1f021d4fee447ec0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ca7d8a35628c4902df2fa8ad6451c1ed |
| SHA1 | 16ec555a8ddd8f1be0da91f03f46c6ca9e777b86 |
| SHA256 | 24596587fd35c887e806a06f03c9704e4dff37d2297c9544fd4d5f5b1892e632 |
| SHA512 | 57a72ed2c98b2532f1420654c1d8e8d3238559b62e65f70ad5c64ff49c873876e041217c79de13cbe7892509391abc310956969f6da1eb65fab20f5af7902643 |
C:\Windows\Logs\DISM\dism.log
| MD5 | 7c699837607bbfb4251bd71b9d746885 |
| SHA1 | 8765bc2eb17938a20635f3ae6d5a9745e54d8807 |
| SHA256 | b5f122ba42177dd57c3e680fa283ea8e83446a77e53bdd511651fdac5b267676 |
| SHA512 | ba69c01a466d61a5b1af1e2e24d85a7b0be15172b90b5b126794ce6bf073532dfa348960d3d72eca2064ca89ed7f9cf15137423d31dadcce8183c86ce64d6285 |
memory/6896-3830-0x0000000002DB0000-0x0000000002DE6000-memory.dmp
memory/6896-3831-0x00000000059A0000-0x0000000005FCA000-memory.dmp
memory/6896-3832-0x00000000058F0000-0x0000000005912000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\__PSScriptPolicyTest_uptdi0np.42a.ps1
| MD5 | d17fe0a3f47be24a6453e9ef58c94641 |
| SHA1 | 6ab83620379fc69f80c0242105ddffd7d98d5d9d |
| SHA256 | 96ad1146eb96877eab5942ae0736b82d8b5e2039a80d3d6932665c1a4c87dcf7 |
| SHA512 | 5b592e58f26c264604f98f6aa12860758ce606d1c63220736cf0c779e4e18e3cec8706930a16c38b20161754d1017d1657d35258e58ca22b18f5b232880dec82 |
memory/6896-3838-0x0000000005FD0000-0x0000000006036000-memory.dmp
memory/6896-3842-0x00000000060C0000-0x0000000006417000-memory.dmp
memory/6896-3843-0x0000000006570000-0x000000000658E000-memory.dmp
memory/6896-3844-0x00000000065B0000-0x00000000065FC000-memory.dmp
memory/6896-3845-0x0000000007580000-0x00000000075B4000-memory.dmp
memory/6896-3846-0x000000006E6E0000-0x000000006E72C000-memory.dmp
memory/6896-3855-0x0000000006B20000-0x0000000006B3E000-memory.dmp
memory/6896-3856-0x00000000075C0000-0x0000000007664000-memory.dmp
memory/6896-3857-0x0000000007F10000-0x000000000858A000-memory.dmp
memory/6896-3858-0x00000000078D0000-0x00000000078EA000-memory.dmp
memory/6896-3859-0x0000000007950000-0x000000000795A000-memory.dmp
memory/6896-3860-0x0000000007B60000-0x0000000007BF6000-memory.dmp
memory/6896-3861-0x0000000007AE0000-0x0000000007AF1000-memory.dmp
memory/6896-3862-0x0000000007B20000-0x0000000007B2E000-memory.dmp
memory/6896-3863-0x0000000007C00000-0x0000000007C1A000-memory.dmp
memory/5368-3866-0x0000000005A60000-0x0000000005DB7000-memory.dmp
memory/5368-3875-0x000000006E6E0000-0x000000006E72C000-memory.dmp
memory/4076-3893-0x000000006E6E0000-0x000000006E72C000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 94425d0c772c62a47124cd59a1adcc31 |
| SHA1 | 87383c0529cc30ec1e872f0cd047179143df38c2 |
| SHA256 | 0577c170af34b968073c044fa2a846db6a85681ba0fba2743e240c4dcf4caead |
| SHA512 | efea9412f972bfc7ece7e17b8e44e3f97e70cd3a15a86bfbf68fbf7236be7ca1fa58132181280395c7c07503d686e2811bae974fa60e72352acbee6712c5077a |
F:\LDPlayer\ldmutiplayer\libeay32.dll
| MD5 | ba46e6e1c5861617b4d97de00149b905 |
| SHA1 | 4affc8aab49c7dc3ceeca81391c4f737d7672b32 |
| SHA256 | 2eac0a690be435dd72b7a269ee761340099bf444edb4f447fa0030023cbf8e1e |
| SHA512 | bf892b86477d63287f42385c0a944eee6354c7ae557b039516bf8932c7140ca8811b7ae7ac111805773495cf6854586e8a0e75e14dbb24eba56e4683029767b6 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcp110.dll
| MD5 | 3e29914113ec4b968ba5eb1f6d194a0a |
| SHA1 | 557b67e372e85eb39989cb53cffd3ef1adabb9fe |
| SHA256 | c8d5572ca8d7624871188f0acabc3ae60d4c5a4f6782d952b9038de3bc28b39a |
| SHA512 | 75078c9eaa5a7ae39408e5db1ce7dbce5a3180d1c644bcb5e481b0810b07cb7d001d68d1b4f462cd5355e98951716f041ef570fcc866d289a68ea19b3f500c43 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\dnresource.rcc
| MD5 | 70058f2d60daef1ccc7bbcba210f0ace |
| SHA1 | ef214ade419a724272ac82e9de5233d7c0afa64b |
| SHA256 | 43b26f40e04ae6854569a01803541245abffcd130f1345191afd8bf6b0ca7873 |
| SHA512 | a0b3ca59ffad882fbff69012023eaa8aadb77d3ff1252562e5480e7dc3c9336afb3c5f58fb435246ec48c758d3c9d17ae9ea8a28f9d4766fad1a4c672cbf9b9a |
F:\LDPlayer\LDPlayer9\ldmutiplayer\cximagecrt.dll
| MD5 | 66df6f7b7a98ff750aade522c22d239a |
| SHA1 | f69464fe18ed03de597bb46482ae899f43c94617 |
| SHA256 | 91e3035a01437b54adda33d424060c57320504e7e6a0c85db2654815ba29c71f |
| SHA512 | 48d4513e09edd7f270614258b2750d5e98f0dbce671ba41a524994e96ed3df657fce67545153ca32d2bf7efcb35371cae12c4264df9053e4eb5e6b28014ed20e |
F:\LDPlayer\LDPlayer9\dnmultiplayer.exe
| MD5 | f96c25bb4feee47fe4111660fa0706b3 |
| SHA1 | 284126ce4f80b6bfd6037f6137dee90c941e4eec |
| SHA256 | 9b5d44c60b18b36bcc1cc0e28585ae168d92239beda197d739c3e64edb229867 |
| SHA512 | b4297728f031863ccfb50de52d18f443d6ae893322e2f6b315497e187329275fbf41828867e614b35e9ff60ac6e3e1ae77d876fa8e131336c2d6a1fb6ff7db36 |
F:\LDPlayer\LDPlayer9\fonts\Roboto-Regular.otf
| MD5 | 4acd5f0e312730f1d8b8805f3699c184 |
| SHA1 | 67c957e102bf2b2a86c5708257bc32f91c006739 |
| SHA256 | 72336333d602f1c3506e642e0d0393926c0ec91225bf2e4d216fcebd82bb6cb5 |
| SHA512 | 9982c1c53cee1b44fd0c3df6806b8cbf6b441d3ed97aeb466dba568adce1144373ce7833d8f44ac3fa58d01d8cdb7e8621b4bb125c4d02092c355444651a4837 |
F:\LDPlayer\LDPlayer9\fonts\NotoSans-Regular.otf
| MD5 | 93b877811441a5ae311762a7cb6fb1e1 |
| SHA1 | 339e033fd4fbb131c2d9b964354c68cd2cf18bd1 |
| SHA256 | b3899a2bb84ce5e0d61cc55c49df2d29ba90d301b71a84e8c648416ec96efc8b |
| SHA512 | 7f053cec61fbddae0184d858c3ef3e8bf298b4417d25b84ac1fc888c052eca252b24f7abfff7783442a1b80cc9fc2ce777dda323991cc4dc79039f4c17e21df4 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\ssleay32.dll
| MD5 | 0054560df6c69d2067689433172088ef |
| SHA1 | a30042b77ebd7c704be0e986349030bcdb82857d |
| SHA256 | 72553b45a5a7d2b4be026d59ceb3efb389c686636c6da926ffb0ca653494e750 |
| SHA512 | 418190401b83de32a8ce752f399b00c091afad5e3b21357a53c134cce3b4199e660572ee71e18b5c2f364d3b2509b5365d7b569d6d9da5c79ae78c572c1d0ba0 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcr120.dll
| MD5 | 50097ec217ce0ebb9b4caa09cd2cd73a |
| SHA1 | 8cd3018c4170072464fbcd7cba563df1fc2b884c |
| SHA256 | 2a2ff2c61977079205c503e0bcfb96bf7aa4d5c9a0d1b1b62d3a49a9aa988112 |
| SHA512 | ac2d02e9bfc2be4c3cb1c2fff41a2dafcb7ce1123998bbf3eb5b4dc6410c308f506451de9564f7f28eb684d8119fb6afe459ab87237df7956f4256892bbab058 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcr110.dll
| MD5 | 4ba25d2cbe1587a841dcfb8c8c4a6ea6 |
| SHA1 | 52693d4b5e0b55a929099b680348c3932f2c3c62 |
| SHA256 | b30160e759115e24425b9bcdf606ef6ebce4657487525ede7f1ac40b90ff7e49 |
| SHA512 | 82e86ec67a5c6cddf2230872f66560f4b0c3e4c1bb672507bbb8446a8d6f62512cbd0475fe23b619db3a67bb870f4f742761cf1f87d50db7f14076f54006f6c6 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\msvcp120.dll
| MD5 | 50260b0f19aaa7e37c4082fecef8ff41 |
| SHA1 | ce672489b29baa7119881497ed5044b21ad8fe30 |
| SHA256 | 891603d569fc6f1afed7c7d935b0a3c7363c35a0eb4a76c9e57ef083955bc2c9 |
| SHA512 | 6f99d39bfe9d4126417ff65571c78c279d75fc9547ee767a594620c0c6f45f4bb42fd0c5173d9bc91a68a0636205a637d5d1c7847bd5f8ce57e120d210b0c57d |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libssl-1_1.dll
| MD5 | e8fd6da54f056363b284608c3f6a832e |
| SHA1 | 32e88b82fd398568517ab03b33e9765b59c4946d |
| SHA256 | b681fd3c3b3f2d59f6a14be31e761d5929e104be06aa77c883ada9675ca6e9fd |
| SHA512 | 4f997deebf308de29a044e4ff2e8540235a41ea319268aa202e41a2be738b8d50f990ecc68f4a737a374f6d5f39ce8855edf0e2bb30ce274f75388e3ddd8c10b |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libssh2.dll
| MD5 | 52c43baddd43be63fbfb398722f3b01d |
| SHA1 | be1b1064fdda4dde4b72ef523b8e02c050ccd820 |
| SHA256 | 8c91023203f3d360c0629ffd20c950061566fb6c780c83eaa52fb26abb6be86f |
| SHA512 | 04cc3d8e31bd7444068468dd32ffcc9092881ca4aaea7c92292e5f1b541f877bdec964774562cb7a531c3386220d88b005660a2b5a82957e28350a381bea1b28 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libcurl.dll
| MD5 | 2d40f6c6a4f88c8c2685ee25b53ec00d |
| SHA1 | faf96bac1e7665aa07029d8f94e1ac84014a863b |
| SHA256 | 1d7037da4222de3d7ca0af6a54b2942d58589c264333ef814cb131d703b5c334 |
| SHA512 | 4e6d0dc0dc3fb7e57c6d7843074ee7c89c777e9005893e089939eb765d9b6fb12f0e774dc1814f6a34e75d1775e19e62782465731fd5605182e7984d798ba779 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\libcrypto-1_1.dll
| MD5 | 01c4246df55a5fff93d086bb56110d2b |
| SHA1 | e2939375c4dd7b478913328b88eaa3c91913cfdc |
| SHA256 | c9501469ad2a2745509ab2d0db8b846f2bfb4ec019b98589d311a4bd7ac89889 |
| SHA512 | 39524d5b8fc7c9d0602bc6733776237522dcca5f51cc6ceebd5a5d2c4cbda904042cee2f611a9c9477cc7e08e8eadd8915bf41c7c78e097b5e50786143e98196 |
F:\LDPlayer\LDPlayer9\ldmutiplayer\7za.exe
| MD5 | ad9d7cbdb4b19fb65960d69126e3ff68 |
| SHA1 | dcdc0e609a4e9d5ff9d96918c30cb79c6602cb3d |
| SHA256 | a6c324f2925b3b3dbd2ad989e8d09c33ecc150496321ae5a1722ab097708f326 |
| SHA512 | f0196bee7ad8005a36eea86e31429d2c78e96d57b53ff4a64b3e529a54670fa042322a3c3a21557c96b0b3134bf81f238a9e35124b2d0ce80c61ed548a9791e7 |
F:\LDPlayer\LDPlayer9\dnplayer.exe
| MD5 | a723044f1c511790dd0ee3a3fa68c4cf |
| SHA1 | 670e6f907c2557c9685ad26c26d6d8fee5139942 |
| SHA256 | 861be3e240b075752d52c7b50c41bf22eab9314db4f11a20362c648198a0f2e4 |
| SHA512 | 0fa7da71864d1abdff83d3aa01597f5902c01899513b0333bcc5d756a15be02b8c5293b55c1d88e556010f53412a7dbd27b57b63b1074565f1f6de8e2952377c |
memory/2160-4006-0x0000000001A20000-0x0000000001A36000-memory.dmp
C:\Users\Admin\AppData\Roaming\XuanZhi9\ldopengl32x.dll
| MD5 | 6de0ef4a83aadebe5d7e07a64fc9d220 |
| SHA1 | f2162f30992ced0b882bfced0477ebf62b7ce186 |
| SHA256 | b7c4de833b0e2689724414802fbdda35d7cc1c4529eb95282fd0ffd175119008 |
| SHA512 | eebe007e0ece66c08138720bb46864470826a6b49a8edb1fd1593c4efade4bbf32c764d205383ef4745a738a1242f92e4c396abeb56e6ff9e785977ce8f646da |
memory/2160-4021-0x00000000362D0000-0x00000000362E0000-memory.dmp
F:\LDPlayer\LDPlayer9\vms\leidian0\sdcard.vmdk
| MD5 | 4d592fd525e977bf3d832cdb1482faa0 |
| SHA1 | 131c31bcff32d11b6eda41c9f1e2e26cc5fbc0ef |
| SHA256 | f90ace0994c8cae3a6a95e8c68ca460e68f1662a78a77a2b38eba13cc8e487b6 |
| SHA512 | afa31b31e1d137a559190528998085c52602d79a618d930e8c425001fdfbd2437f732beda3d53f2d0e1fc770187184c3fb407828ac39f00967bf4ae015c6ba77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 30b1e30cafbc22934154344bc4e3a887 |
| SHA1 | 761c9480ace6f8e50329ca0e1d4ad4f6eb381b7a |
| SHA256 | dae6a117ffe205f6dc37be8319af1f726eacfb9d6143844c7731462a0b1ada87 |
| SHA512 | 3f4c6806bb8793d4f359913bb7b4a6bcba42a744e77670fac280e6165eee352e3381d8f4ad3774ed8e1fced78f1cd9fbdcdd3a2898e7160818fb94714df3c681 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | d0f84c55517d34a91f12cccf1d3af583 |
| SHA1 | 52bd01e6ab1037d31106f8bf6e2552617c201cea |
| SHA256 | 9a24c67c3ec89f5cf8810eba1fdefc7775044c71ed78a8eb51c8d2225ad1bc4c |
| SHA512 | 94764fe7f6d8c182beec398fa8c3a1948d706ab63121b8c9f933eef50172c506a1fd015172b7b6bac898ecbfd33e00a4a0758b1c8f2f4534794c39f076cd6171 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7d3721339b0fdd84886de1451c80248c |
| SHA1 | 284404d5b6c05245cdee6fa1de575e97de315194 |
| SHA256 | 00f26934feb107b567b16dc3e4e8367312301fd829ea6e367ccc80076c77632b |
| SHA512 | 57fc9e16ee646a8e3b80e10848df1937edc8d1f4c80c1e27b71bd6f5e62c743024dbb0a6074b79e8d94cf72bc616f5a15f47cb6b6101735192f501d7e2862deb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000028
| MD5 | d562487169bb09f4bb454be4d1a63988 |
| SHA1 | 068b1c44270f59b3d67457c119cf98310026fd13 |
| SHA256 | caeafbbcac1361379f4238e30aa98af71269f5a533fd436682208d675a0ddd3c |
| SHA512 | a85f11664b00e6f677b3b5099746ec823b0c6bccb9821fa3ff75e7cef0d9658ff29d57e1ce9d2c9b3407668d03df84497e5b149cad7468037bd4cd69a07e5cab |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000027
| MD5 | 05e9679509b61424a07cc4d4efb7247f |
| SHA1 | db4fcfac1d89c7e4f0bdbea9023034b64a9dbd81 |
| SHA256 | 31798b2630a882be758010dfa51b12026c8fd81f0e4068b38fd739cac78cba0b |
| SHA512 | 1cbe7343e19b41f3f116a93d598d7b67779d29c6bc0a7b086d112dfcc76fee60811290b67b5d2561751700be483f6cd460b9b4c8325397813314ba064e4c2208 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002b
| MD5 | 89a574ff00e6b0ec61d995d059ce6e65 |
| SHA1 | aea09e96808ab77165ffa712eaa58b8f056d0bb6 |
| SHA256 | e5c29c139842fd487473d0824f2c01b374680fb35d22fa929686d17896602a44 |
| SHA512 | 30d0d40bd680e61968273155b740901cdfa66670fc2af6f23e44c6b998b67cc1fcd0b51bd5f9470f209f188e75d071355e592b2a7c97f4bfd15d07d455e0909d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | ade01a8cdbbf61f66497f88012a684d1 |
| SHA1 | 9ff2e8985d9a101a77c85b37c4ac9d4df2525a1f |
| SHA256 | f49e20af78caf0d737f6dbcfc5cc32701a35eb092b3f0ab24cf339604cb049b5 |
| SHA512 | fa024bd58e63402b06503679a396b8b4b1bc67dc041d473785957f56f7d972317ec8560827c8008989d2754b90e23fc984a85ed7496f05cb4edc2d8000ae622b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 40dd01979a7f3eb3fe904828d21124fd |
| SHA1 | 1de561273dd682069606e56aef1d19ae325fe55d |
| SHA256 | bd8220c357eed6f3b10c6440cca668a45fb87d59e537e124a272e62c54d8cac1 |
| SHA512 | 3bd77573f51096e6d0a95ff9ad4b8aca8d855998887aa70558eeac72c5048eb77909a7293a47e79a723938006cf1083ac0f4a449280c300907709f5b1ea5f848 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 5801a595d5bef5e0c59414e29bd1ee67 |
| SHA1 | 2bf3ff81ae833f90e00a9d36b2303fd907cc6052 |
| SHA256 | e5d9c8849c0eab2012e60ecc766c1ed7ad835ca5e0d08be93a50133f0bc6d654 |
| SHA512 | b149652329aa5452e5c420431c25a6ca4ceb6ac6151c12758d1c95c731d921ed1ba18a5431dbd3951b54a72618f492a87f8cc8a12b1d214189a9bbe783613c07 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2e3ca082e2aa957bd40e49b32ec8a016 |
| SHA1 | 233a1b75ff16222945a3c1ba2b20cad916a522f6 |
| SHA256 | 8b25c5b379b01fa58ce087d69742505a9d076cc46b28a0fbcef1320ef3e0610b |
| SHA512 | b0b65d18812d5b9d0d114f00a7cd436ba803d6529f983bbfe019887d7f9c0efeaafc87facb56363c059ff491c38dbac7a3dc9a9cc9edae2a4c728bee6842fb05 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1c7c9db55e3d1d640cab267b575a08f7 |
| SHA1 | 7454c0b5b90afb21b7ca33ea7d0bf845c586a870 |
| SHA256 | 23bbc705e7e810a82a667727f8edb54a95b90e6fc11fbfb9ac2ae2df0a7fdd45 |
| SHA512 | 784b8503ee1bd80d23c7242aa6a66873374b4618e85f844ac1c31f4a537d6f3686911fe0f67b94ec804afa304f1d89ae85e6409914959766142f6cabb4dbfc3a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ad7a423ecc68d16ee2d3aa9cf919431d |
| SHA1 | 678aa43625b57ac1aed030ee8531e08f3bf98807 |
| SHA256 | b0b8922c618617f3b3ea3b9ff0d72bf528efcde7713d10290e8620402d8d2400 |
| SHA512 | 08a30767978d742ebdebde31c839cd0fbf8bbaf2ccdbd740c4a3b7536720697eb5e897f8dcd417d0e8db85c2718a47abb5667bd9024c42945ba7d6a2801d5de5 |