Analysis Overview
SHA256
0ed1b5bee0261bf97c9fccb3c80217388c0b12936b2626bb3eda630acfb76268
Threat Level: Likely benign
The file image.png was found to be: Likely benign.
Malicious Activity Summary
Resource Forking
Enumerates physical storage devices
Suspicious use of WriteProcessMemory
Suspicious use of FindShellTrayWindow
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SendNotifyMessage
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Suspicious use of AdjustPrivilegeToken
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-10 14:27
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-10 14:27
Reported
2024-06-10 14:30
Platform
win7-20240221-en
Max time kernel
118s
Max time network
119s
Command Line
Signatures
Enumerates physical storage devices
Suspicious use of FindShellTrayWindow
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\System32\rundll32.exe | N/A |
Processes
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe "C:\Program Files\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen C:\Users\Admin\AppData\Local\Temp\image.png
Network
Files
memory/1912-0-0x0000000001EE0000-0x0000000001EE1000-memory.dmp
memory/1912-1-0x0000000001EE0000-0x0000000001EE1000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-10 14:27
Reported
2024-06-10 14:30
Platform
win10v2004-20240426-en
Max time kernel
150s
Max time network
153s
Command Line
Signatures
Enumerates physical storage devices
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133625033109308799" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-711569230-3659488422-571408806-1000\{D86A4D49-C5F6-4E26-BEDE-EF6A757AF11E} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\image.png
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa17f1ab58,0x7ffa17f1ab68,0x7ffa17f1ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1760 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2164 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2192 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3112 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3136 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4380 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4056 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4548 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4488 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4980 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4736 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4632 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4656 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=4964 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5036 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=4916 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=2668 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5516 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5636 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x428 0x2ec
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5752 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6084 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=4056 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=4240 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6132 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6112 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=3364 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6068 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=4616 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=4956 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=6156 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=6580 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6800 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=6744 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=6976 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7108 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7400 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7404 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7268 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7732 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7260 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=8144 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=8316 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=7544 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=5956 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=7684 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=8660 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=8856 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=8440 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=9292 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=8916 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=8904 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9772 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=9420 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=10076 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=8556 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=8508 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=8584 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=8984 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=9156 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=8380 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=8648 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=9068 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=3332 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=9320 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=6024 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=6532 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --mojo-platform-channel-handle=5552 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=6528 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=5284 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --mojo-platform-channel-handle=3492 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=8852 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=8344 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=5872 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=8332 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6848 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=6124 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=6220 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=5880 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=5564 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=8528 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=7548 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=9160 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=3316 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=9924 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=8892 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=6384 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=9936 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=5060 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=6844 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --mojo-platform-channel-handle=7976 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --mojo-platform-channel-handle=9888 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=6700 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --mojo-platform-channel-handle=6916 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=9648 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=9488 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=6512 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --mojo-platform-channel-handle=6772 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=5836 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=7036 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --mojo-platform-channel-handle=4176 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --mojo-platform-channel-handle=4572 --field-trial-handle=1928,i,18301570445091792724,7552222172384500890,131072 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.205.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.150.49.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 170.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 172.217.16.238:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 172.217.20.174:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 142.250.187.206:443 | clients2.google.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ogs.google.com | udp |
| GB | 142.250.187.238:443 | ogs.google.com | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| GB | 172.217.169.3:443 | ssl.gstatic.com | tcp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| GB | 142.250.180.3:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 142.250.179.246:443 | i.ytimg.com | tcp |
| GB | 142.250.179.246:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| FR | 172.217.20.206:443 | www.youtube.com | udp |
| FR | 172.217.20.174:443 | www.youtube.com | udp |
| GB | 142.250.179.246:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | 246.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| FR | 172.217.20.206:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | 233.143.123.92.in-addr.arpa | udp |
| NL | 74.125.8.103:443 | rr2---sn-5hne6nzs.googlevideo.com | tcp |
| NL | 74.125.8.103:443 | rr2---sn-5hne6nzs.googlevideo.com | tcp |
| US | 8.8.8.8:53 | rr4---sn-5hne6n6l.googlevideo.com | udp |
| NL | 74.125.8.169:443 | rr4---sn-5hne6n6l.googlevideo.com | udp |
| US | 8.8.8.8:53 | 103.8.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| NL | 142.250.27.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 169.8.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.27.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 142.250.200.2:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.213.6:443 | static.doubleclick.net | udp |
| US | 8.8.8.8:53 | yt3.ggpht.com | udp |
| FR | 172.217.20.193:443 | yt3.ggpht.com | tcp |
| US | 8.8.8.8:53 | 193.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | youtube.com | udp |
| GB | 142.250.200.46:443 | youtube.com | tcp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| FR | 172.217.20.193:443 | yt3.ggpht.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.67:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | google.com | udp |
| GB | 142.250.178.14:443 | google.com | tcp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rr2---sn-5hne6nzy.googlevideo.com | udp |
| NL | 172.217.132.167:443 | rr2---sn-5hne6nzy.googlevideo.com | udp |
| US | 8.8.8.8:53 | 167.132.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.210.23.2.in-addr.arpa | udp |
| FR | 172.217.20.174:443 | www.youtube.com | udp |
| FR | 172.217.20.174:443 | www.youtube.com | tcp |
| FR | 172.217.20.174:443 | www.youtube.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 35.201.106.130:443 | filehippo.com | tcp |
| US | 35.201.106.130:443 | filehippo.com | udp |
| US | 8.8.8.8:53 | cache-05.filehippo.net | udp |
| US | 8.8.8.8:53 | sc.filehippo.net | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | tcp |
| US | 8.8.8.8:53 | cdn-magiclinks.trackonomics.net | udp |
| US | 3.161.82.43:443 | sdk.privacy-center.org | tcp |
| BE | 104.68.82.93:443 | sc.filehippo.net | tcp |
| BE | 104.68.82.93:443 | sc.filehippo.net | tcp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| FR | 142.250.201.162:443 | securepubads.g.doubleclick.net | tcp |
| DE | 13.224.186.120:443 | c.amazon-adsystem.com | tcp |
| DE | 13.32.121.125:443 | cdn-magiclinks.trackonomics.net | tcp |
| US | 8.8.8.8:53 | c.aaxads.com | udp |
| GB | 142.250.180.2:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | cdn.firstimpression.io | udp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| US | 8.8.8.8:53 | ecdn.firstimpression.io | udp |
| US | 8.8.8.8:53 | l3.aaxads.com | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | udp |
| US | 3.161.82.43:443 | sdk.privacy-center.org | udp |
| US | 104.22.54.232:443 | c.aaxads.com | tcp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.106.201.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.82.161.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.82.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.186.224.13.in-addr.arpa | udp |
| GB | 2.21.189.145:443 | widgets.outbrain.com | tcp |
| US | 13.33.218.24:443 | www.datadoghq-browser-agent.com | tcp |
| US | 8.8.8.8:53 | www.aaxdetect.com | udp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| DE | 23.212.217.221:443 | l3.aaxads.com | tcp |
| DE | 99.86.4.77:443 | ecdn.firstimpression.io | tcp |
| GB | 142.250.187.219:443 | storage.googleapis.com | tcp |
| DE | 99.86.4.102:443 | ecdn.firstimpression.io | tcp |
| FR | 142.250.201.162:443 | securepubads.g.doubleclick.net | udp |
| US | 103.224.212.213:443 | www.aaxdetect.com | tcp |
| DE | 23.212.217.221:443 | l3.aaxads.com | tcp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| DE | 13.224.186.120:443 | c.amazon-adsystem.com | tcp |
| GB | 108.156.39.27:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| US | 8.8.8.8:53 | contributor.google.com | udp |
| US | 13.33.173.196:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | tcheck.outbrainimg.com | udp |
| US | 8.8.8.8:53 | widget-pixels.outbrain.com | udp |
| DE | 23.88.8.125:443 | push-sdk.com | tcp |
| GB | 2.21.190.8:443 | tcheck.outbrainimg.com | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | 125.121.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.54.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.189.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.218.33.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.217.212.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.4.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.4.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.212.224.103.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.173.33.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 125.8.88.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.190.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | log.outbrainimg.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 50.31.142.191:443 | log.outbrainimg.com | tcp |
| BE | 74.125.71.156:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| DE | 157.90.33.122:443 | uidsync.net | tcp |
| US | 151.101.1.91:443 | cache-05.filehippo.net | udp |
| US | 8.8.8.8:53 | mv.outbrain.com | udp |
| DE | 157.90.33.122:443 | uidsync.net | tcp |
| FR | 199.232.170.132:443 | mv.outbrain.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | mcdp-chidc2.outbrain.com | udp |
| US | 50.31.142.127:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 50.31.142.127:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 8.8.8.8:53 | rock.defybrick.com | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.33.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.170.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.142.31.50.in-addr.arpa | udp |
| DE | 18.245.31.49:443 | rock.defybrick.com | tcp |
| US | 8.8.8.8:53 | flint.defybrick.com | udp |
| US | 54.83.110.109:443 | flint.defybrick.com | tcp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| DE | 18.245.86.71:443 | api.privacy-center.org | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| DE | 37.252.171.149:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | f120a8051e084b70d1541617c29df703.safeframe.googlesyndication.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| DE | 52.222.236.9:443 | hb.yellowblue.io | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 54.73.231.133:443 | ad.360yield.com | tcp |
| GB | 172.217.169.65:443 | f120a8051e084b70d1541617c29df703.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 49.31.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.110.83.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.86.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| DE | 18.245.86.71:443 | api.privacy-center.org | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.97:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.179.97:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | cd.connatix.com | udp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| US | 172.64.146.152:443 | cd.connatix.com | tcp |
| FR | 142.250.201.162:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | 149.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.236.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.231.73.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.146.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cds.connatix.com | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 172.64.146.152:443 | cds.connatix.com | udp |
| IE | 34.253.176.232:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | qsearch-a.akamaihd.net | udp |
| US | 8.8.8.8:53 | warp.media.net | udp |
| BE | 2.17.107.80:443 | qsearch-a.akamaihd.net | tcp |
| BE | 23.55.96.24:443 | contextual.media.net | tcp |
| GB | 2.21.188.27:443 | warp.media.net | tcp |
| US | 8.8.8.8:53 | 232.176.253.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.188.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| BE | 23.55.96.24:443 | contextual.media.net | udp |
| US | 8.8.8.8:53 | lg3.media.net | udp |
| US | 8.8.8.8:53 | hblg.media.net | udp |
| IE | 52.48.59.220:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 35.244.159.8:443 | us-u.openx.net | tcp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | prod.tahoe-analytics.publishers.advertising.a2z.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 34.213.18.242:443 | prod.tahoe-analytics.publishers.advertising.a2z.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| IE | 63.33.33.194:443 | rtb.gumgum.com | tcp |
| US | 172.64.146.152:443 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | media.net | udp |
| GB | 142.250.187.202:443 | content-autofill.googleapis.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | mybestsearches.com | udp |
| US | 8.8.8.8:53 | ins.connatix.com | udp |
| US | 104.18.41.104:443 | ins.connatix.com | tcp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| US | 104.18.41.104:443 | ins.connatix.com | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | tcp |
| GB | 2.21.188.27:443 | cs.media.net | udp |
| US | 8.8.8.8:53 | 220.59.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.33.33.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 242.18.213.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| IE | 52.18.100.34:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| IE | 54.239.38.253:443 | aax-eu.amazon-adsystem.com | tcp |
| DE | 91.228.74.159:443 | cms.quantserve.com | tcp |
| DK | 37.157.2.229:443 | c1.adform.net | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| IE | 34.251.183.115:443 | match.prod.bidr.io | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| NL | 185.89.210.46:443 | secure.adnxs.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| GB | 18.172.89.86:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| GB | 2.21.188.239:443 | ads.pubmatic.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| DE | 18.159.181.185:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 34.197.100.197:443 | cs-server-s2s.yellowblue.io | tcp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | img.connatix.com | udp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | udp |
| US | 104.18.41.104:443 | img.connatix.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 172.64.146.152:443 | img.connatix.com | udp |
| US | 8.8.8.8:53 | cks.connatix.com | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| GB | 142.250.187.202:443 | imasdk.googleapis.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| IE | 54.220.241.253:443 | ads.yieldmo.com | tcp |
| US | 104.18.41.104:443 | cks.connatix.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.100.18.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.38.239.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.183.251.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.181.159.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.188.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.89.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.100.197.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.209.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.241.220.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | rtd-tm.everesttech.net | udp |
| US | 151.101.2.49:443 | rtd-tm.everesttech.net | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | 81.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | inmobi-match.dotomi.com | udp |
| NL | 89.207.16.140:443 | inmobi-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | pl.connatix.com | udp |
| US | 172.64.146.152:443 | pl.connatix.com | tcp |
| US | 172.64.146.152:443 | pl.connatix.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| BE | 23.55.98.169:443 | eus.rubiconproject.com | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| GB | 2.21.188.221:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | pubads.g.doubleclick.net | udp |
| GB | 2.21.188.221:443 | acdn.adnxs.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| IE | 52.16.255.71:443 | ms-cookie-sync.presage.io | tcp |
| IE | 52.16.255.71:443 | ms-cookie-sync.presage.io | tcp |
| IE | 52.16.255.71:443 | ms-cookie-sync.presage.io | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| US | 54.167.241.185:443 | sync.srv.stackadapt.com | tcp |
| US | 54.167.241.185:443 | sync.srv.stackadapt.com | tcp |
| US | 54.167.241.185:443 | sync.srv.stackadapt.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | 140.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.98.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.188.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.255.16.52.in-addr.arpa | udp |
| SE | 142.250.74.67:443 | csi.gstatic.com | tcp |
| SE | 142.250.74.67:443 | csi.gstatic.com | tcp |
| US | 172.64.146.152:443 | pl.connatix.com | udp |
| SE | 142.250.74.67:443 | csi.gstatic.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| FR | 51.68.39.188:443 | dsp.nrich.ai | tcp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | 185.241.167.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.39.68.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| DE | 52.29.151.185:443 | sonata-notifications.taptapnetworks.com | tcp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | 185.151.29.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| SE | 213.155.156.183:443 | d5p.de17a.com | tcp |
| NL | 89.149.193.104:443 | rtb-csync.smartadserver.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| IE | 52.212.11.218:443 | sync.crwdcntrl.net | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | 183.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| NL | 64.158.223.137:443 | casale-match.dotomi.com | tcp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| IE | 34.249.158.11:443 | pm.w55c.net | tcp |
| US | 8.8.8.8:53 | ads.avct.cloud | udp |
| US | 8.8.8.8:53 | 218.11.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.158.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| FR | 141.94.161.190:443 | green.erne.co | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 104.18.25.173:443 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| FR | 146.59.148.16:443 | pixel-eu.onaudience.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| FR | 141.94.171.216:443 | pixel.onaudience.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 190.161.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.148.59.146.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| GB | 172.217.16.226:443 | adclick.g.doubleclick.net | tcp |
| GB | 172.217.16.226:443 | adclick.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | www.avast.com | udp |
| BE | 104.68.68.143:443 | www.avast.com | tcp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 8.8.8.8:53 | static3.avast.com | udp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| US | 104.19.177.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.177.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.177.52:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | 143.68.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.177.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.52.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.go-mpulse.net | udp |
| US | 8.8.8.8:53 | assets.adobedtm.com | udp |
| BE | 23.55.96.141:443 | s.go-mpulse.net | tcp |
| GB | 2.21.189.25:443 | assets.adobedtm.com | tcp |
| BE | 92.123.52.22:443 | static3.avast.com | tcp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 172.64.155.119:443 | geolocation.onetrust.com | tcp |
| US | 8.8.8.8:53 | static.hotjar.com | udp |
| US | 8.8.8.8:53 | mstatic.avast.com | udp |
| DE | 18.66.102.106:443 | static.hotjar.com | tcp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | www.nortonlifelock.com | udp |
| NL | 20.50.2.44:443 | mstatic.avast.com | tcp |
| IE | 34.250.112.230:443 | dpm.demdex.net | tcp |
| BE | 23.55.96.68:443 | www.nortonlifelock.com | tcp |
| US | 8.8.8.8:53 | c.go-mpulse.net | udp |
| US | 8.8.8.8:53 | 141.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.189.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.155.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.2.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.102.66.18.in-addr.arpa | udp |
| BE | 23.55.96.141:443 | c.go-mpulse.net | tcp |
| US | 8.8.8.8:53 | script.hotjar.com | udp |
| DE | 13.32.27.54:443 | script.hotjar.com | tcp |
| US | 8.8.8.8:53 | symantec.demdex.net | udp |
| US | 8.8.8.8:53 | cm.everesttech.net | udp |
| IE | 54.228.184.13:443 | cm.everesttech.net | tcp |
| US | 8.8.8.8:53 | oms.avast.com | udp |
| IE | 66.235.152.156:443 | oms.avast.com | tcp |
| US | 8.8.8.8:53 | znb3hblkjhhpwrz9k-gendigital.siteintercept.qualtrics.com | udp |
| US | 104.17.209.240:443 | znb3hblkjhhpwrz9k-gendigital.siteintercept.qualtrics.com | tcp |
| US | 8.8.8.8:53 | trial-eum-clientnsv4-s.akamaihd.net | udp |
| US | 8.8.8.8:53 | trial-eum-clienttons-s.akamaihd.net | udp |
| US | 8.8.8.8:53 | siteintercept.qualtrics.com | udp |
| BE | 2.17.107.184:443 | trial-eum-clientnsv4-s.akamaihd.net | tcp |
| BE | 2.17.107.16:443 | trial-eum-clienttons-s.akamaihd.net | tcp |
| US | 8.8.8.8:53 | 230.112.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.96.55.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.27.32.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.184.228.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.152.235.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.209.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x5s5cjyccfv3qzthbx4q-ppj2ql-6bb16e3d9-clientnsv4-s.akamaihd.net | udp |
| US | 8.8.8.8:53 | 191-101-209-39_s-2-17-107-16_ts-1718029817-clienttons-s.akamaihd.net | udp |
| BE | 2.17.107.177:443 | x5s5cjyccfv3qzthbx4q-ppj2ql-6bb16e3d9-clientnsv4-s.akamaihd.net | tcp |
| BE | 2.17.107.16:443 | 191-101-209-39_s-2-17-107-16_ts-1718029817-clienttons-s.akamaihd.net | tcp |
| US | 8.8.8.8:53 | 684dd311.akstat.io | udp |
| US | 8.8.8.8:53 | 177.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | privacyportal-de.onetrust.com | udp |
| US | 103.224.212.213:443 | www.aaxdetect.com | tcp |
| DE | 23.212.217.221:443 | l3.aaxads.com | tcp |
| US | 104.18.32.137:443 | privacyportal-de.onetrust.com | tcp |
| DE | 23.212.217.221:443 | l3.aaxads.com | tcp |
| US | 8.8.8.8:53 | 137.32.18.104.in-addr.arpa | udp |
| BE | 23.55.96.141:443 | 684dd311.akstat.io | udp |
| DE | 37.252.171.149:443 | ib.adnxs.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 50.31.142.191:443 | log.outbrainimg.com | tcp |
| DE | 23.88.8.125:443 | uidsync.net | tcp |
| US | 50.31.142.127:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 8.8.8.8:53 | 05ef11e697cedd7b0bb5e2c288c8d812.safeframe.googlesyndication.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | udp |
| NL | 142.250.27.84:443 | accounts.google.com | tcp |
| DE | 157.90.33.122:443 | uidsync.net | tcp |
| DE | 157.90.33.122:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| BE | 74.125.71.156:443 | stats.g.doubleclick.net | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync.outbrain.com | udp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| IE | 34.251.183.115:443 | match.prod.bidr.io | tcp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 64.74.236.31:443 | sync.outbrain.com | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | cdn.adnxs.com | udp |
| US | 151.101.1.108:443 | cdn.adnxs.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | 31.236.74.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | businesssearches.net | udp |
| NL | 63.215.202.137:443 | medianet-match.dotomi.com | tcp |
| DE | 35.156.10.230:443 | rtb.mfadsrvr.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| NL | 188.42.191.196:443 | ads.betweendigital.com | tcp |
| US | 8.8.8.8:53 | 137.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.10.156.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.191.42.188.in-addr.arpa | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 54.167.241.185:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | triplelift-match.dotomi.com | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| US | 151.101.1.44:443 | trc.taboola.com | tcp |
| NL | 89.207.16.204:443 | triplelift-match.dotomi.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| NL | 185.89.210.46:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | 44.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | tcp |
| GB | 216.58.213.3:443 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c76.gcp.gvt2.com | udp |
| SA | 34.1.52.129:443 | e2c76.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 3.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 172.217.169.3:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 129.52.1.34.in-addr.arpa | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| GB | 142.250.178.14:443 | google.com | udp |
| US | 8.8.8.8:53 | bat-to-exe-converter-x64.en.softonic.com | udp |
| US | 151.101.1.91:443 | bat-to-exe-converter-x64.en.softonic.com | tcp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 3.161.82.43:443 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | softonic.com | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | www.adsensecustomsearchads.com | udp |
| US | 151.101.1.91:443 | sc.sftcdn.net | udp |
| FR | 142.250.179.78:443 | www.adsensecustomsearchads.com | tcp |
| US | 8.8.8.8:53 | 91.209.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| GB | 142.250.178.2:443 | partner.googleadservices.com | tcp |
| GB | 142.250.187.219:443 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| DE | 18.245.86.71:443 | api.privacy-center.org | udp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| IE | 34.246.197.125:443 | id.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | brightcombid.marphezis.com | udp |
| IE | 52.212.164.83:443 | ap.lijit.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | udp |
| FR | 142.250.179.78:443 | www.adsensecustomsearchads.com | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | 874e6603ac282b288abb3682491204ed.safeframe.googlesyndication.com | udp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| GB | 216.58.212.206:443 | ampcid.google.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | 83.164.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.241.63.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 178.128.135.204:443 | brightcombid.marphezis.com | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | 206.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.135.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.9.89.51.in-addr.arpa | udp |
| IE | 34.251.183.115:443 | match.prod.bidr.io | tcp |
| US | 35.244.159.8:443 | u.openx.net | udp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| NL | 185.89.210.46:443 | secure.adnxs.com | tcp |
| US | 54.167.241.185:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | match.deepintent.com | udp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 52.87.131.177:443 | sync.ipredictive.com | tcp |
| US | 169.197.150.8:443 | match.deepintent.com | tcp |
| US | 64.202.112.63:443 | b1sync.zemanta.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| JP | 211.120.53.201:443 | tg.socdm.com | tcp |
| US | 8.8.8.8:53 | 198.233.247.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.15.104.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| IE | 34.247.233.198:443 | usersync.gumgum.com | tcp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| IE | 54.239.38.253:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| JP | 211.120.53.201:443 | tg.socdm.com | tcp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 18.233.139.76:443 | aorta.clickagy.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| DE | 138.201.8.249:443 | sync.richaudience.com | tcp |
| DE | 138.201.8.249:443 | sync.richaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| DE | 18.245.31.16:443 | api-2-0.spot.im | tcp |
| IE | 54.171.168.223:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | 177.131.87.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.150.197.169.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.53.120.211.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.139.233.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| DE | 51.89.9.254:443 | onetag-sys.com | udp |
| US | 2.17.251.37:443 | player.aniview.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| NL | 46.228.174.117:443 | tcp | |
| DE | 35.156.10.230:443 | tcp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| N/A | 74.121.140.211:443 | tcp | |
| NL | 69.173.156.148:443 | tcp | |
| N/A | 80.77.87.163:443 | tcp | |
| NL | 69.173.156.148:443 | tcp | |
| NL | 35.214.209.216:443 | tcp | |
| US | 8.8.8.8:53 | udp | |
| N/A | 96.46.186.182:443 | tcp | |
| NL | 89.149.193.104:443 | tcp | |
| NL | 89.149.193.104:443 | tcp |
Files
\??\pipe\crashpad_4872_PSVAIMFVTXKMVHEX
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e7057528d3c4174e94364f1c029891f4 |
| SHA1 | f20d1441c47256944699b0220c013869c05babdd |
| SHA256 | 5012038c01c03906e1bc742c5ff1d68072664c7717bb6c7e755a4388ab343a8e |
| SHA512 | db2f1d0df879aeb94144d2741abb14b2cbcba97a8e1a3cda0d4a357afca79c2f9d33ce35ca20717e4aa17f0471cd31596f2462100aa491a26e4d65bfdeb015f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\fd4e0ece-ac9c-451d-87bc-4ec71969bf46.tmp
| MD5 | 3872b7455e0e9d2e0f3d641a69110b20 |
| SHA1 | 125f15c267efa2214e5816c449a651088e17a359 |
| SHA256 | 845d7da5d9740b5c0014b03f970935d6840762683f19af7c79e59faf7547aa58 |
| SHA512 | 75130bd71ab060b7cf7ab02c2c1290a39ba05ba34b411d4ffdf745abfc2eacd57e9bd3f55c50aad3985e7dcda244337bf8ea3717f9e8bb21077e0943bb593de5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\a36cd31d-f4a8-4e9b-bec8-db20fa23e2d6.tmp
| MD5 | cba8622ea86a9e84bc0f9e949285457f |
| SHA1 | 8551143a3e4c9d9678d098a17482432798b900cc |
| SHA256 | abff29f527866ad7f812d7bd009ddb08739f623419ded825f3838b17fd091db3 |
| SHA512 | a39f1df08fd67b8f5f631173101901fd82db1ac585dd39482fa7c252c0832c7fa579e27ef46ccfa612f6ffa9a8ba85c6662d0f18797df1a02880d1a034f11c82 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 7dceba73572a9626439dd1a2278c94e2 |
| SHA1 | 92b39e9bcecf1385c03488e52a1b52b89439d8fd |
| SHA256 | ee9aea2e89c2d8ff0d8113a56c1a818e5cd1fac1e7ac0ae2cb838e33a5589e49 |
| SHA512 | 64a0527b99a1b77cb4073266e8bddbf64fccce1b6e4450597b72538e11c983794e41ad16801d530fa1f0bc886efb60f4a6a5ce433fa5104e385743f7cabde4bb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | dbdd50d7cd8861b09bc41081e1452b42 |
| SHA1 | 2e5963596c5149cb4e5d1b97a33017e5e79a1da5 |
| SHA256 | 29801be0ff8df5bda9e3c75c1bd76e45a97245ed331fc2b1cdee5af19eb92593 |
| SHA512 | 70b36ba4ea8dfd9137d58e4c18c4ac3469a8adc97c2232c615879f54f734fbef8e590f2a3998a07f3cc6b879b5c6ae6472f605c1db71f60b352bac11e8979eab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 94275bde03760c160b707ba8806ef545 |
| SHA1 | aad8d87b0796de7baca00ab000b2b12a26427859 |
| SHA256 | c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968 |
| SHA512 | 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57c65d.TMP
| MD5 | 44d6070059491e1f7c79ff19caeee589 |
| SHA1 | b39bbf2790534a5f68f2ae021cb639421b5820a1 |
| SHA256 | 52f794d9439115f28cdb26dd83f68e70978b36c7d181fb5bffaa3d7740bfad1c |
| SHA512 | 413ebb6724f868a56e3d22f33ba50f126951744a791bcdf216e2d3cfe8b2fb990c4f508c7244566c878a9c26f0578365cfed295f10a2594a221e181b91f80820 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 316051540b26204f0534eb4258e38c87 |
| SHA1 | d7f8bc25c3c94e2cc209983f164fa3f7789a28aa |
| SHA256 | 328f78bb3370df50699e8ba5e30c15658344c87b3d28db030d2419b1cf8146e6 |
| SHA512 | 9b65046141818b9c7b2d719898e1dc5fe79bba1427021f150956fc2253d15548d5d7af2c7266218475ff902d605458d84dccc66c41509e5361bdd50d0f01cc92 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 49d38061c6a48e12740b8451953f8147 |
| SHA1 | f841ffe73b17670e00b3fa0107d0e07073355067 |
| SHA256 | 9039da1ddd18da4e3ada8edbfe672a1183d834501aeab3d89b849d9dd177c04f |
| SHA512 | e9db062c1d1dd78524161d554f5dcedb24c3ec67f6cf82e1f0bf014d91574ed31654a2840b1414fffc5120a2613353fe6b1280f328462dc7a93abe726e24d5f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f4cc4920c08505f9861758519f4a6dc9 |
| SHA1 | b0cb81c3ec2259c68b533cb14fd82eaeaa13e448 |
| SHA256 | 028adf4dba42c585adf8e6f370080ac4be267e6207afc1b060c3f96d13d09180 |
| SHA512 | 05f0e37ea52aeee7551784b4554edf1d491da90f8de0987277bc2a06a9fdbabdfda912e6529087f892a53284330cd61a06fb24082a69df5bc4c63e7b49ed311c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | f64c0d06d45f86ee11ec8bca72e0e12b |
| SHA1 | 33eb5123e4b407cfc0e1987f694a62eddf24875c |
| SHA256 | 2fee139efec641d9ed4893bd1213e5e2a4f1084b9ab97ae336e1ab33529148d4 |
| SHA512 | e23f4133b949ca592688ee6681b2f1a39ba8e5b48686a2a3a0abaa16ae36af479adf875cfbdb0457ce1e77853872a820affb0dfeda9411a856a094cc4f458e42 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 031fd55af6837d51e06118df80367651 |
| SHA1 | 8c9b027653706c81f552bbe6ba4af79086bcbe54 |
| SHA256 | 83efd57fea01065e86900fb45dfdd064bda70c30a33d807e13bae1c36bef2b6b |
| SHA512 | 0792037841eae33146ec6a373fd8ad549b92205e00197b2f89c839dab6512225710bd0eca88c0e0a32961e66b47012779962f6cf98cf2f5c5985e0ac1707ac54 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | fa1a68d4b40ff7279f714c32094929b3 |
| SHA1 | 9722adc71654ba945c9b214609ff524fe3e23973 |
| SHA256 | 7ce8a3c0fb4482c2acc8435d5b300d307312e2c5e1d97a8ccf16b4136eeae582 |
| SHA512 | 5037a607952028410a39d5ade97679e7d803a75abe21cc575577bde8e4bb8712d8555fffc43774f0d61229d6245a54f739ca9d12fac3b72905eda8ab1f8bb513 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | e79765ac756876f4b3d749d51def5e13 |
| SHA1 | 30e12904d38910e3d92aae6f1f14a23bb8672f0f |
| SHA256 | 032fc59089148294d974d8bf8df4221d08af654faf727d0b0d2bfff8475a1e8c |
| SHA512 | 3a1e28524a0de753da5167ae66c8b3f5a17ff1d0ececc3b3d8bc1cf9280cc5efee17d716f41a3f26a03532d4b82a5270611077031878ffd7fa6ab8563b376cc6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4872_1984311240\Icons Monochrome\16.png
| MD5 | a4fd4f5953721f7f3a5b4bfd58922efe |
| SHA1 | f3abed41d764efbd26bacf84c42bd8098a14c5cb |
| SHA256 | c659d57841bb33d63f7b1334200548f207340d95e8e2ae25aac7a798a08071a3 |
| SHA512 | 7fcc1ca4d6d97335e76faa65b7cfb381fb722210041bdcd3b31b0f94e15dc226eec4639547af86ae71f311f52a956dc83294c2d23f345e63b5e45e25956b2691 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4872_1332969210\Shortcuts Menu Icons\Monochrome\0\512.png
| MD5 | 12a429f9782bcff446dc1089b68d44ee |
| SHA1 | e41e5a1a4f2950a7f2da8be77ca26a66da7093b9 |
| SHA256 | e1d7407b07c40b5436d78db1077a16fbf75d49e32f3cbd01187b5eaaa10f1e37 |
| SHA512 | 1da99c5278a589972a1d711d694890f4fd4ec4e56f83781ab9dee91ba99530a7f90d969588fa24dce24b094a28bdecbea80328cee862031a8b289f3e4f38ce7a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir4872_1332969210\Shortcuts Menu Icons\Monochrome\1\512.png
| MD5 | 7f57c509f12aaae2c269646db7fde6e8 |
| SHA1 | 969d8c0e3d9140f843f36ccf2974b112ad7afc07 |
| SHA256 | 1d5c9f67fe93f9fcc1a1b61ebc35bda8f98f1261e5005ae37af71f42aab1d90f |
| SHA512 | 3503a0f4939bed9e1fd5e086b17d6de1063220dffdab2d2373aa9582a2454a9d8f18c1be74442f4e597bdba796d2d69220bd9e6be632a15367225b804187ea18 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000021
| MD5 | 0bd999c2c81bf947c534fbfc130b85e1 |
| SHA1 | 73e080f025b01ae0450a041552743ab1cf452cbc |
| SHA256 | 7bef6271860d665d878fed0e709398a6026940a3a7408d9137e4f9f54af469c0 |
| SHA512 | 7e1e0e37e6ca88d56a36b4858a7d1c8b0a550f0a0211802c956f4351053f3ce0d36cc06e0413d838c89510421ff4907682424217f1356f9b66ae567a3730c27f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001c
| MD5 | 52c11498c7b62200b2eaad6e044a3a9c |
| SHA1 | 053e3c71de096a11aa3403ec3747ae21be8026b4 |
| SHA256 | 19fefaa1afb5eabbca7e26bf75082224c4343acc80d295eb1f8b637cc94f0c75 |
| SHA512 | 245f3bb8d4c340ca4db5e2c17b67273ebdffe4525e454d415415d2e7f4c95418508679cdb28762825556046a32be4b6ade933010c60bfa2117497c3c3548c3f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9aecebd470af16e6f4b3e7b4ffaf169a |
| SHA1 | 151a9b227b15ba32f8174a6ceb95d6db4d6dda96 |
| SHA256 | 8b2c309e66c9dd8d7d49f85d4badeafffba42e4f3e59a24110abd46bade50ee6 |
| SHA512 | 204aff4f55d4a03071328d87a09b074d428c2ba778e6ce3c8d670135bba7b3e52a4d4ecfa8e25d85078d0b409d1f8973a74106cdeebb7b8537f0832532d2fd77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5ec516b695554879ce5fa4a6ced0071d |
| SHA1 | a6cf7e880f82d37d2b837436d8097fca823e0558 |
| SHA256 | fc68e66e811eea0ae95848442292e97fe46eb8fbed765452ed1785c3a4d809cf |
| SHA512 | fd801ac016a89b967283a374099d2edf834ea34c24e571ef700d3bded4b5cc5d09a49fac4adb3e0d3b712efbe2d4782ef28164cba74f3122f287df3901d65c5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | a228f07dfffc46350a468c14d51e4ac6 |
| SHA1 | a83c8637c24d365a9dc871da2064a4ddfc669e58 |
| SHA256 | 8597129a24db0b46bc24969a4af6d48faa7c8e8e51f17d36ee988c9e794c9877 |
| SHA512 | 8353299bcf479f613d8a10a42e4e849ec1b42fc3b20a9988081087f3daf87b3a63ac71564788d1277a5232d70daa420a6d04bb016bb488994459e781b60c40ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe585cb1.TMP
| MD5 | 93bb32b95ce15f5f5d1a86fa3f0d9ba6 |
| SHA1 | d73575c9047997c36e9dc2a0002fb84466827b3a |
| SHA256 | ddcdfc187df2c24f49ca49acbf509097088e899a1420fa110529dc1529dde23f |
| SHA512 | f6e00822eee2387198c6ca102dcfe9f8e283e8c7ad1b136b0f4ecc149d3847f5159091de57767b16de8f18e5b5b2bf7f05e1459dd1b5c26f125579876c039a3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 3ca5e9a2a8bf58e743d8badd9fb65bd9 |
| SHA1 | 2ec1ebd6f6b21191588a24bd185522ea571a12e7 |
| SHA256 | ef73233cf6a4e2f3520e67937fb23f98d23761c3f7654866b00c4971bf9695c4 |
| SHA512 | 542301cdf9db62684b6011eb64e200c53c9c02410ee37185de891b22637563d0595ed45f86a794716768ba84a8676cc680fe3bcbdaaa3591f5cebe41652b52d0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6fa9169a43881d1bb0407b9b0f9720d0 |
| SHA1 | 9a2ca68c63e9bc00f45615e793d6c744a3ad5e4c |
| SHA256 | 4516c5eed0560fd925e5cb080df665fd3a1930da2d256309e88e70a7e4d8e8c7 |
| SHA512 | f25327985d373e771e30195432a577a33dd6fcfc8ef64cfe058d495042273ff4428d8015bcd74e1ebc004c9afcce79927c37bd780f8f0f50afc3e3ffdf51ee9d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 777bae9fdd0932d49d4953885b90869d |
| SHA1 | 05cc14f332fbd5c6011a69daa44282b6f1533673 |
| SHA256 | 1ab7e3a8c5892c476953c315adb593fd8d468318594fcad448e7c3e68df5491c |
| SHA512 | 817d7ee2dec66715d77b07dc0268cc03b8229c27afdf65b4afefd654ec0ac4e367b009e8ab9c5071a6f0961b38de11f759fb08a6929ab3b2cbeda0571691e001 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | c7f9704d580df1e5e7129aa2aa2059dd |
| SHA1 | 9811e4bb55891cb4b839d8145b7bb67f12ff476c |
| SHA256 | 2685c0c1de064d2e6451eb2d3fa468035ac2dbcf742daced715b203cad2af9f5 |
| SHA512 | 4c2200a0995e40e4400459353f3f19fe1af36373d73cf6519a28a91c8601629ab63eefcd6dd121363b798e675b5cb86d43af88a0725e1b144b04b329d976e74c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\157c5fb5-6a0c-431e-99ea-448730c18824\index-dir\the-real-index~RFe589f68.TMP
| MD5 | d44a1d6ae3cd47381ee2164d32e434d4 |
| SHA1 | 93b0f869df26770539fc7a4324ab7f9d60a2a62f |
| SHA256 | fe66741ffb28207e1f17718c27fbd7370c062469344247b580bf1c635010d787 |
| SHA512 | 047d74ac1b6eb9e4d1074cce6751a8dbd4021c88975a5c5aa47798b05337582c337072347a29e64417673f4a8e96bbb35fc5d0ef0ec2e3cc99e1a9876e680e4d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\157c5fb5-6a0c-431e-99ea-448730c18824\index-dir\the-real-index
| MD5 | a856cdb8eca9313942aafee5e4a10c5e |
| SHA1 | d8a2c7ee4ae705f2cc412af56082e05d894a1813 |
| SHA256 | c8cc318a31265dae68f26256cdc84f13764bbbfc15722f30e3f70c08d9342553 |
| SHA512 | 1bc2b7772ebc081bafa0dc3cba564d02b22cbe99e24c1a7fd53b0cc3ed756b5aea5e6c3bd27308408ba1191e171d5fcf7e877bda0d646c06b0016943023b7cfa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_filehippo.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004d
| MD5 | 8b37bb42b1577b08892393df19f534c8 |
| SHA1 | e12eaa944bff9ccd0687ac54811a3ada4a5d21e9 |
| SHA256 | 6cc9e87df3ba27d6dd288a0593a4f70a17ecb0bf5cac0a591ff72f355a9f454b |
| SHA512 | 9dba0d070832cecab4c2aa922bd07395b7493845926a5bed5c5f86d61c3b2fff1f6fa12069b7b7abe4f15cd58775ffa238aa36c47e100d7ca544abb3bc1a29b7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_filehippo.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\6298eabf-8cb2-4cef-89fc-44e1306d65a6\index-dir\the-real-index~RFe58eba3.TMP
| MD5 | b4301fb4285ff7f001dacaf1684a76b1 |
| SHA1 | 86b13ef0d48b1f97635da46e17606fd6a5138a33 |
| SHA256 | c121ea9517452984cb9b321ecd387cb2b51442e434554b8f82725435d17fcfed |
| SHA512 | e17e9b6e0a9c8d01e332cff01aa8c5300ce2ac408b2a50de3415ab6827a34672a626287b358699ab8f7d887678952c45545cd473820c7df42c9b18cc2a65382f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 793dd29d50d58f0431128ba3349a0515 |
| SHA1 | dc395e5637a20b397fd0944dabafc060a97cbaf7 |
| SHA256 | 8e5738da0396adb7b804f85675b6e5cfbbb880ed326d90b07384d6f57eee92a6 |
| SHA512 | 528906b383e6ca9b5602c40e73d22e992fe3ff69475e97e7d1cc42b0b1c18991ca0b02972aa509c0d71f9645826a6d606fed77df6d0c7e4ae5c3daecac40fde9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 62f0256881bcf669c6651582cbd711d0 |
| SHA1 | 3d2f254f03acc0719129414bd385a66c084ea742 |
| SHA256 | 7b8acfd172f235a230233f2950f677a297726e784195413981d8760043e483fc |
| SHA512 | 3959005cd31eb70ff1c6acfc97f68c21a79ac8af575a93188ee12d35257040018f9204ded721e64cc88ffe0f1117c34adef17c645ea2a83257f3865dab569600 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\6298eabf-8cb2-4cef-89fc-44e1306d65a6\index-dir\the-real-index
| MD5 | cac18edb614e6392422dde87fa8a055b |
| SHA1 | 892ded9a06d57d0e168b7ef3af04d50c8f163f2f |
| SHA256 | e2948c221e5610c1c12ccf6aab50fb3232ad4b60396d1bab863a03c17f177086 |
| SHA512 | 1b10d5601338d72765fe326bd7c753e373f3a96a5a5a8be42a356f174814a0c322447231022c0da231e4b580732a7a8cb3f05ac770a8163b491e201727df063e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | c68b11e8a43aacd39437ab12ac26217e |
| SHA1 | 62c44b642a25e5d95a8bb91fbcbfc8a34d220c34 |
| SHA256 | 58da936a1750604c94dba000bffd518faa5a32ecebfcebb7c7cae57c543474a1 |
| SHA512 | 44f23cdb61ac3e55c0cdd6ef2556a56b12dce685936fa67c7c8c21e6e50f64a250ae4fd310997ef4dc9d9cfd34a0aef1e89eaef2ee4e1de485a5682a245e170f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ff02d7730959485b7ecc46ccc5057d11 |
| SHA1 | bb120a206cb77d68c4bde0846aa4da92057f7cae |
| SHA256 | a84c5e07354360d129ef3b8d170a7285fdb241850f8bc081560c53415df97379 |
| SHA512 | 84d4e7314bec301c1f90f30568dca6f689ad64da094b9571bda5a8d62b412a89888ac1c135d75b053b81197699635fcd157add0deb19d8137dbeac7f18c78fbb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 0747b55fe07374b5767e5b1c7caa453a |
| SHA1 | bcc6e2f16cd0cae273cfe5f14c96e3d9fd88f257 |
| SHA256 | 912c6a070ad9da8ae977a6c1bf36b188e94e6aa7de6c0ee3ccfb0e77c64f8972 |
| SHA512 | 44a0e5d822c6101b0933654a7988225509fe42fe9735649e76ec6bdcecc7f1992731c04762bb8d99d892761a570e7484a6c1fb64b468dccb1d962e52c36305a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b99d5a3f3662636808aad7767792acaf |
| SHA1 | 4b58b07c045496dbe2b3fe086fa5697ad127f39f |
| SHA256 | 40a3f4345ce07d2348a0a4d63e699567f09bdc57eefe6eb127b0b308ed7c733d |
| SHA512 | 7824bac8ede1f26bfe246c71b65a9a75665589c5a0260df02edb53ce78a9a4e3828ec88523877607de0f3a0b173f2312f1a38e5c0666aa138ee3127a68e32cdc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000040
| MD5 | 0b63c1132870a72d36e8bf87fad354f2 |
| SHA1 | 8f92fc171e4f86dae784d9324c3d35b93f75ec84 |
| SHA256 | 8d037e317f6ff628f06d04139f5bebd8d5c0607f7a756c38c15813a2af1d2ead |
| SHA512 | 3498331109c061b3565be5c1e0c89d0f2593c16bc3a1ccf6efa4a5e0835e48d7a4fe2712ed1249ccfe99b3a23e861a5f3478425b5346ebb482813ac03a946954 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000046
| MD5 | ce1093c800c0933d7c9674eda75790d8 |
| SHA1 | 371c2dcde092f51b18852e2617bc6c0c176f5873 |
| SHA256 | 57781a723db9a2483067bcbc89d1f30f7e2f22ae2d18aab1e45ad894d8cdab89 |
| SHA512 | fdbb31c607cc9a4bd75c42cbc552fb40d82e53804d156244ed2daa124c75e1680b908589f7a3ad8888b9b03ebfd1f4b3e83e19f84e3a746cf210d0b8a1678533 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c0d1f69e378aba3841e4fa4777f3c26b |
| SHA1 | 03985477a6914ba19aece157988b54486d59dc1d |
| SHA256 | 839dc399ddcf314d4646bc57c9d0d6d79bb0c26efde51401643da6b52a3e511a |
| SHA512 | ff6db205361d9a14c7b63737ac88bffdac0f97572f92bc2b7522a209ceb8de707fa8b5747edee1e36fc28576efaf56e988978b021ab4aa3dd6203af18cb8ec00 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000063
| MD5 | 9c6b5ce6b3452e98573e6409c34dd73c |
| SHA1 | de607fadef62e36945a409a838eb8fc36d819b42 |
| SHA256 | cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc |
| SHA512 | 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1d8770492c7efdaf548f94c1f4334a37 |
| SHA1 | 7379e6195cfef78e8b35958c42d8d6ab1a99622b |
| SHA256 | 04dd28fe6680ffd7fc566d82ebc8bc0372f2a18d2923ca02c814d01f8312d82d |
| SHA512 | c71e4acbc4591805ca8f5a5541d6ad6cc58d75969ae55411de835afcb7f625039632b84f62c540089eb7849f3d24acfcc7519e66eccbf66ab675996c365a7bb4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000089
| MD5 | 9a9ea9fc5cfc7413046a53d83eb14605 |
| SHA1 | 78527144f2833d696921a1545b5dbccfe6a0519c |
| SHA256 | e05287fffe968cd3a5cc691452d3888fcaf4ca6161599b834ae1c8e2abdf1dba |
| SHA512 | 2aa15554602f29f872c7b123b7384b2ca45f9bc01c5478982d255466c3448559c5396fa1f65bb69eec913847a0b4da5ecc56652fa314cd5de764310b031e57a7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008a
| MD5 | 15a833e358fdd43fee23febf163f23a8 |
| SHA1 | 2f4c48c9874c44b9c72fa126489e6076980e8068 |
| SHA256 | 3346f3aae3e9711090505b57c765dcd188f6b11cd106a3c6f4df96a894416a23 |
| SHA512 | d7ae20e4a771c18f26667f0e9ad2d5712ead90c802d482ed356228db8d0ea6c8e6e59c2b5ef287f998b202517fb81565bca7d51c204e9165ab44f19d40ad41a7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008c
| MD5 | df2e1c48828159a8911f2afb36ceb5db |
| SHA1 | 19880497a1047327448de9be1772f69a206a7622 |
| SHA256 | 4859e7f20daed6d194f558e387b8cdbfe0375c8172bc9085c3c8829cb645f190 |
| SHA512 | 9f252aabb0648ce88099b1b3c2cd862cb7a9c87fad667244c1772e10ae93a0934dda83adf58d46fb88a7c333e9c9eb6e381cadf940d44d3903ea7c59494c689d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008d
| MD5 | 029906fdb38d9e2886ad088ead3ace71 |
| SHA1 | 0e3a907e4a80ce588243eca456860894db9349ec |
| SHA256 | ac73c263a64eeff958a215e736ea10f6cd6970d73385d39a202350c2815cb628 |
| SHA512 | c384755fb9faf2b20a0b602a740a4206a675c8a95f3002993feed5b56698ee5fd6b54275273a63778e6ef5ef4f29b3a8509089165eda8c5d315cf1e84b6be4dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9853e4a15c5401e45cd9df6727e14ade |
| SHA1 | 425cf21b8ed83dd4bb56832ce885acf20f1b4349 |
| SHA256 | 0dbfaae1c0d96169984ed22913c5ae1a5fc4f0bdc1451b8d440d9f49c7113bde |
| SHA512 | d88e754d44cdc01624f53ff94c54f55868b4418cb20f16423f898e247999949d7b47e82d7a5030a34f896901c0c92b06db513c7dbaf120abb5dd70b82bff5ceb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000092
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 2a64677f04eded358cc93aaa46850cb2 |
| SHA1 | 954b441efaa032b5459fa237883a8c3306eeb9af |
| SHA256 | 0d58a241b5c1549dc70fb2723c50c0777d13273dbbb34ef4e73447c02dad4f26 |
| SHA512 | e6568a5bf3bcba97c7f77f0e8a7bc584e52ca0868f4483cc535719862e2f57d6d81bf80ffd41ba712af8e887f8c912d7dbe028b77ae77323ca56dab8b8eb9600 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 998e22cae65d5f2e18ea6b9e67712097 |
| SHA1 | 3a68800700d23f07a38342e134368ed9ff746883 |
| SHA256 | 72c0be5a18a2344e0cd8162b86a88eb532a94964db5f8152e5a84dc480a0dea2 |
| SHA512 | 6532d478b3bfefd4f082584d26e21cba9506a3aa47611312d3207c6cd7a88739437d0fa86fa7ef1edd8c1b8ae1ddd35206663c9b0c741e947e9bac3a2e83fc6c |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-10 14:27
Reported
2024-06-10 14:30
Platform
macos-20240410-en
Max time kernel
149s
Max time network
131s
Command Line
Signatures
Resource Forking
| Description | Indicator | Process | Target |
| N/A | /System/Library/CoreServices/loginwindow.app/Contents/Resources/LWWeeklyMessageTracer | N/A | N/A |
| N/A | "/Library/Internet Plug-Ins/JavaAppletPlugin.plugin/Contents/Resources/Java Updater.app/Contents/MacOS/Java Updater" -bgcheck | N/A | N/A |
Processes
/bin/sh
[sh -c sudo /bin/zsh -c "/Users/run/image.png"]
/bin/bash
[sh -c sudo /bin/zsh -c "/Users/run/image.png"]
/usr/bin/sudo
[sudo /bin/zsh -c /Users/run/image.png]
/usr/libexec/xpcproxy
[xpcproxy com.apple.loginwindow.LWWeeklyMessageTracer]
/System/Library/CoreServices/loginwindow.app/Contents/Resources/LWWeeklyMessageTracer
[/System/Library/CoreServices/loginwindow.app/Contents/Resources/LWWeeklyMessageTracer]
/usr/libexec/xpcproxy
[xpcproxy com.oracle.java.Java-Updater]
/usr/libexec/xpcproxy
[xpcproxy com.apple.gkreport]
/usr/libexec/gkreport
[/usr/libexec/gkreport]
/usr/libexec/xpcproxy
[xpcproxy com.apple.systemstats.daily]
/usr/libexec/xpcproxy
[xpcproxy com.apple.newsyslog]
/Library/Internet Plug-Ins/JavaAppletPlugin.plugin/Contents/Resources/Java Updater.app/Contents/MacOS/Java Updater
[/Library/Internet Plug-Ins/JavaAppletPlugin.plugin/Contents/Resources/Java Updater.app/Contents/MacOS/Java Updater -bgcheck]
/bin/zsh
[/bin/zsh -c /Users/run/image.png]
/Users/run/image.png
[/Users/run/image.png]
/usr/sbin/newsyslog
[/usr/sbin/newsyslog]
/usr/bin/pluginkit
[/usr/bin/pluginkit -e ignore -i com.microsoft.OneDrive.FinderSync]
/usr/sbin/spctl
[/usr/sbin/spctl --assess --type execute /var/folders/pq/yy2b5ptn4cz739jgclj4m1wm0000gp/T/OneDriveUpdaterB516C108/OneDrive.app]
/usr/libexec/xpcproxy
[xpcproxy com.apple.sysmond]
/usr/libexec/sysmond
[/usr/libexec/sysmond]
/usr/libexec/xpcproxy
[xpcproxy com.apple.audio.systemsoundserverd]
/usr/sbin/systemsoundserverd
[/usr/sbin/systemsoundserverd]
/usr/libexec/xpcproxy
[xpcproxy com.apple.pbs]
/System/Library/CoreServices/pbs
[/System/Library/CoreServices/pbs]
/usr/libexec/xpcproxy
[xpcproxy com.apple.audio.AudioComponentRegistrar]
/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar
[/System/Library/Frameworks/AudioToolbox.framework/AudioComponentRegistrar -daemon]
/usr/sbin/spctl
[/usr/sbin/spctl --assess --type execute /Applications/OneDrive.app]
/usr/libexec/xpcproxy
[xpcproxy com.apple.newsyslog]
/usr/sbin/newsyslog
[/usr/sbin/newsyslog]
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | mobile.events.data.trafficmanager.net | udp |
| US | 20.189.173.23:443 | tcp | |
| US | 8.8.8.8:53 | api.apple-cloudkit.fe2.apple-dns.net | udp |
| US | 8.8.8.8:53 | apis.apple.map.fastly.net | udp |
| N/A | 224.0.0.251:5353 | udp |