Analysis Overview
Threat Level: Likely malicious
The file https://v.gd/k0GWgb was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
HTTP links in PDF interactive object
Enumerates physical storage devices
Suspicious use of SendNotifyMessage
Checks processor information in registry
Enumerates system info in registry
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of WriteProcessMemory
Suspicious use of SetWindowsHookEx
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Uses Task Scheduler COM API
Modifies Internet Explorer settings
Modifies registry class
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-11 18:26
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-11 18:26
Reported
2024-06-11 18:30
Platform
win10-20240404-en
Max time kernel
205s
Max time network
210s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\Slinky\slinkylmao.exe | N/A |
HTTP links in PDF interactive object
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Enumerates physical storage devices
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~MHz | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings | C:\Users\Admin\Desktop\Slinky\slinkylmao.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-1739856679-3467441365-73334005-1000_Classes\Local Settings | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\Slinky\slinkylmao.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe | N/A |
| N/A | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://v.gd/k0GWgb
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffc6cae9758,0x7ffc6cae9768,0x7ffc6cae9778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1572 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2012 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2100 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2980 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=2996 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3624 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3588 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5924 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5508 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5956 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5492 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5448 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5492 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5648 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=6100 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=6356 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6572 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6696 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6956 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=7092 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6596 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=7208 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7252 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7388 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7528 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7660 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=7952 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=7972 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8268 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=8412 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=8700 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=6404 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=8796 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=8536 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=9208 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=9820 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=10108 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=10180 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=10148 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=8740 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=11508 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=11636 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=11768 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=11904 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=12044 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=12188 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=12200 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=12196 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=12612 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=12644 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=12788 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=12804 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=12820 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=12852 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=13240 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=13632 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=13908 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=13956 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=13972 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=14352 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --mojo-platform-channel-handle=14484 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --mojo-platform-channel-handle=14616 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --mojo-platform-channel-handle=14808 --field-trial-handle=1656,i,9722401308887878746,12684619603516767831,131072 /prefetch:1
C:\Users\Admin\Desktop\Slinky\slinkylmao.exe
"C:\Users\Admin\Desktop\Slinky\slinkylmao.exe"
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Admin\Desktop\Slinky\Slinky.pdf"
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=C27EA6A487D7C180EA57F0F497A312AA --mojo-platform-channel-handle=1608 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=AE1351DD0AD403FA916D87C46F8747EE --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=AE1351DD0AD403FA916D87C46F8747EE --renderer-client-id=2 --mojo-platform-channel-handle=1636 --allow-no-sandbox-job /prefetch:1
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-browser-side-navigation --disable-gpu-compositing --service-pipe-token=C0EA623E5E27397BF1D691585FCA20F4 --lang=en-US --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;0,18,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;1,18,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;2,18,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;3,18,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;4,18,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;5,18,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553;6,18,3553 --disable-accelerated-video-decode --service-request-channel-token=C0EA623E5E27397BF1D691585FCA20F4 --renderer-client-id=4 --mojo-platform-channel-handle=2184 --allow-no-sandbox-job /prefetch:1
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=383752A7A770EE0B9653C13B3860EE76 --mojo-platform-channel-handle=2444 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=93C97CB75753616D7844DF88669934C9 --mojo-platform-channel-handle=2648 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --gpu-preferences=GAAAAAAAAAAAB4AAAQAAAAAAAAAAAGAA --use-gl=swiftshader-webgl --gpu-vendor-id=0x1234 --gpu-device-id=0x1111 --gpu-driver-vendor="Google Inc." --gpu-driver-version=3.3.0.2 --gpu-driver-date=2017/04/07 --disable-pack-loading --lang=en-US --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.10.20064 Chrome/64.0.3282.119" --service-request-channel-token=86E2240025729497A3100BD6394DDC1B --mojo-platform-channel-handle=1780 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.0.329722905\255893794" -parentBuildID 20221007134813 -prefsHandle 1684 -prefMapHandle 1676 -prefsLen 20747 -prefMapSize 233444 -appDir "C:\Program Files\Mozilla Firefox\browser" - {365e64c8-4e44-4db8-9646-bc0b8326ae2c} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 1764 1b19c1f7558 gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.1.1882688420\1313549141" -parentBuildID 20221007134813 -prefsHandle 2100 -prefMapHandle 2096 -prefsLen 20828 -prefMapSize 233444 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e4fcd41b-04d1-4fc5-9c10-7374d959676a} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 2120 1b189e72b58 socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.2.1113469406\298484885" -childID 1 -isForBrowser -prefsHandle 2772 -prefMapHandle 2876 -prefsLen 20931 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {38cbc685-ff31-4903-a5d3-c4f1e2c95337} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 2812 1b1a02ba658 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.3.726976713\2077879581" -childID 2 -isForBrowser -prefsHandle 3444 -prefMapHandle 3400 -prefsLen 26109 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {b598c024-3033-4793-ab89-ba1d33cb5f8e} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 3456 1b189e62858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.4.849274440\1978979951" -childID 3 -isForBrowser -prefsHandle 3620 -prefMapHandle 3640 -prefsLen 26168 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {4cb2441f-470b-4cdc-8704-1ac072c1a4ae} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 3400 1b1a287cb58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.5.1516469282\1811954963" -childID 4 -isForBrowser -prefsHandle 4148 -prefMapHandle 4740 -prefsLen 26249 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {6c473a97-6c10-4b9e-89e1-7006ef833cf8} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 4756 1b1a287c858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.6.343342425\340587432" -childID 5 -isForBrowser -prefsHandle 4764 -prefMapHandle 4756 -prefsLen 26249 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {81f5a71d-dbca-4321-a4e9-b8ee5f06077d} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 4848 1b1a2f4bc58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.7.1616768826\627010351" -childID 6 -isForBrowser -prefsHandle 5056 -prefMapHandle 5060 -prefsLen 26249 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {e285086d-2157-4c61-8346-c9efb2256958} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 5044 1b1a2f49e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.8.962284893\1730810875" -childID 7 -isForBrowser -prefsHandle 5548 -prefMapHandle 5544 -prefsLen 26328 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {338d406a-4a4e-4696-82ef-ddeda535479c} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 5556 1b1a24d8858 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.9.349949562\785942982" -childID 8 -isForBrowser -prefsHandle 2752 -prefMapHandle 5428 -prefsLen 26503 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {959ff2b7-ebc0-457a-bfea-91ce15b38850} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 3412 1b1a1431458 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.10.1917451338\845701586" -childID 9 -isForBrowser -prefsHandle 4428 -prefMapHandle 4420 -prefsLen 26768 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {fe121fb6-aa31-4c10-977e-7640497bf063} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 3932 1b1a4407e58 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.11.1629400571\422459357" -childID 10 -isForBrowser -prefsHandle 5848 -prefMapHandle 5460 -prefsLen 26768 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {e7a2f120-92b7-42e9-a23c-9e3e860a539c} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 5828 1b19f95e458 tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="6488.12.1365284730\1082531034" -childID 11 -isForBrowser -prefsHandle 6140 -prefMapHandle 6136 -prefsLen 26768 -prefMapSize 233444 -jsInitHandle 1320 -jsInitLen 246848 -a11yResourceId 64 -parentBuildID 20221007134813 -appDir "C:\Program Files\Mozilla Firefox\browser" - {daaabb14-1f4c-4c58-bd15-b3362543dca3} 6488 "\\.\pipe\gecko-crash-server-pipe.6488" 6052 1b1a460db58 tab
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | v.gd | udp |
| US | 104.18.12.120:443 | v.gd | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| NL | 23.63.101.153:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | 153.101.63.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.12.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.187.238:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.113.74:443 | www.mediafire.com | tcp |
| US | 104.16.113.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.179.234:443 | ajax.googleapis.com | tcp |
| US | 104.16.113.74:443 | static.mediafire.com | udp |
| US | 104.16.113.74:443 | static.mediafire.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| DE | 18.245.86.101:443 | cdn.amplitude.com | tcp |
| US | 8.8.8.8:53 | 74.113.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.86.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.82.161.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 52.43.12.95:443 | api.amplitude.com | tcp |
| GB | 172.217.169.42:443 | content-autofill.googleapis.com | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | 95.12.43.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| GB | 142.250.178.10:443 | translate.googleapis.com | tcp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | tcp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | udp |
| GB | 142.250.178.10:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.21.63.106:443 | www.ezojs.com | tcp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | 32.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.63.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 104.16.53.110:443 | cdn.otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 104.26.2.173:443 | www.mediafiredls.com | tcp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| FR | 35.181.89.222:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.89.181.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | download2389.mediafire.com | udp |
| US | 199.91.155.130:443 | download2389.mediafire.com | tcp |
| US | 199.91.155.130:443 | download2389.mediafire.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 172.67.142.121:443 | g.ezodn.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 121.142.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.155.91.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| IE | 52.17.40.72:443 | bcp.crwdcntrl.net | tcp |
| DE | 65.9.66.97:443 | tags.crwdcntrl.net | tcp |
| IE | 52.212.11.218:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| US | 104.21.87.79:443 | bshr.ezodn.com | tcp |
| US | 104.21.87.79:443 | bshr.ezodn.com | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.11.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.40.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.66.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.87.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 104.16.52.110:443 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | 110.52.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| DE | 18.157.230.4:443 | tlx.3lift.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| DE | 142.132.249.188:443 | ghb.adtelligent.com | tcp |
| DE | 52.222.236.48:443 | hb.yellowblue.io | tcp |
| NL | 145.40.97.66:443 | prebid.a-mo.net | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| US | 172.67.14.119:443 | prebid.smilewanted.com | tcp |
| FR | 35.181.89.222:443 | g.ezoic.net | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| IE | 54.72.64.29:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 18.173.210.195:443 | cdn.prod.uidapi.com | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 4a6b6d54dde1e449639870c4a85af968.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.230.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.236.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.249.132.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.14.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.64.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.210.173.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| DE | 51.89.9.252:443 | onetag-sys.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| GB | 142.250.179.234:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| GB | 172.217.169.65:443 | 4a6b6d54dde1e449639870c4a85af968.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 107.151.11.18:443 | ghb1.adtelligent.com | tcp |
| US | 104.18.22.145:443 | cadmus.script.ac | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | download1323.mediafire.com | udp |
| US | 205.196.123.11:443 | download1323.mediafire.com | tcp |
| US | 8.8.8.8:53 | 65.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.22.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.11.151.107.in-addr.arpa | udp |
| US | 205.196.123.11:443 | download1323.mediafire.com | tcp |
| US | 8.8.8.8:53 | 11.123.196.205.in-addr.arpa | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| DE | 162.19.138.119:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.138.19.162.in-addr.arpa | udp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | woreppercomming.com | udp |
| US | 3.161.82.15:443 | woreppercomming.com | tcp |
| GB | 172.217.169.65:443 | 4a6b6d54dde1e449639870c4a85af968.safeframe.googlesyndication.com | udp |
| US | 172.67.142.121:443 | bshr.ezodn.com | udp |
| US | 8.8.8.8:53 | 1x1.a-mo.net | udp |
| US | 8.8.8.8:53 | www.ovardu.com | udp |
| DE | 18.157.173.136:443 | 1x1.a-mo.net | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 172.67.174.4:443 | www.ovardu.com | tcp |
| US | 8.8.8.8:53 | 15.82.161.3.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | www.opera.com | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| DE | 18.158.93.133:443 | www.opera.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | csync.smilewanted.com | udp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 23.53.112.234:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 136.173.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.174.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.93.158.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.38.18.104.in-addr.arpa | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.112.53.23.in-addr.arpa | udp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| NL | 2.18.121.26:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | static.smilewanted.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| GB | 216.58.204.66:443 | cm.g.doubleclick.net | tcp |
| GB | 216.58.204.66:443 | cm.g.doubleclick.net | tcp |
| GB | 216.58.204.66:443 | cm.g.doubleclick.net | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 104.19.159.19:443 | assets.a-mo.net | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| NL | 89.149.193.85:443 | ssbsync.smartadserver.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 104.19.159.19:443 | assets.a-mo.net | tcp |
| GB | 216.58.204.66:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| DE | 3.122.62.224:443 | rtb.mfadsrvr.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| DE | 37.252.173.215:443 | ib.adnxs.com | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 216.200.232.249:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| GB | 216.58.204.66:443 | cm.g.doubleclick.net | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 18.245.31.128:443 | api-2-0.spot.im | tcp |
| NL | 154.57.158.116:443 | ads.stickyadstv.com | tcp |
| IE | 52.212.171.213:443 | match.prod.bidr.io | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| FR | 149.202.238.101:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| IE | 34.249.60.18:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 54.204.40.77:443 | sync.srv.stackadapt.com | tcp |
| US | 54.204.40.77:443 | sync.srv.stackadapt.com | tcp |
| US | 54.204.40.77:443 | sync.srv.stackadapt.com | tcp |
| US | 50.31.142.223:443 | b1sync.zemanta.com | tcp |
| US | 52.46.155.104:443 | s.amazon-adsystem.com | tcp |
| US | 23.200.189.62:443 | eus.rubiconproject.com | tcp |
| US | 172.67.40.173:443 | spl.zeotap.com | tcp |
| US | 23.200.189.62:443 | eus.rubiconproject.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 50.31.142.223:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | 26.121.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.159.19.104.in-addr.arpa | udp |
| US | 50.31.142.223:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.62.122.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.173.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.172.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.232.200.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.238.202.149.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.171.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.31.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.60.249.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 172.64.153.78:443 | mp.4dex.io | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.189.200.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.40.204.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.155.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.153.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | download1321.mediafire.com | udp |
| US | 205.196.123.9:443 | download1321.mediafire.com | tcp |
| US | 205.196.123.9:443 | download1321.mediafire.com | tcp |
| GB | 142.250.178.10:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| US | 8.8.8.8:53 | 9.123.196.205.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | track.wargaming-aff.com | udp |
| NL | 35.204.100.195:443 | track.wargaming-aff.com | tcp |
| NL | 35.204.100.195:443 | track.wargaming-aff.com | tcp |
| US | 8.8.8.8:53 | track.wg-aff.com | udp |
| NL | 35.204.100.195:443 | track.wg-aff.com | tcp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | trck.wargaming.net | udp |
| LU | 92.223.23.231:443 | trck.wargaming.net | tcp |
| US | 8.8.8.8:53 | join.worldoftanks.eu | udp |
| LU | 92.223.51.163:443 | join.worldoftanks.eu | tcp |
| US | 8.8.8.8:53 | cdn-production-opera-website.operacdn.com | udp |
| GB | 23.214.143.61:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 23.214.143.61:443 | cdn-production-opera-website.operacdn.com | tcp |
| GB | 23.214.143.61:443 | cdn-production-opera-website.operacdn.com | tcp |
| US | 8.8.8.8:53 | 195.100.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.23.223.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.51.223.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.143.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3619a373249be40e109a3d05be2cd903.safeframe.googlesyndication.com | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 142.250.69.3:443 | beacons.gcp.gvt2.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| IE | 52.212.171.213:443 | match.prod.bidr.io | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 54.204.40.77:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | odr.mookie1.com | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| DE | 3.122.62.224:443 | rtb.mfadsrvr.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| IE | 34.255.106.93:443 | jadserve.postrelease.com | tcp |
| IE | 52.49.80.160:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| US | 3.235.200.90:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | 3.69.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.236.160.34.in-addr.arpa | udp |
| US | 64.38.119.42:443 | bttrack.com | tcp |
| NL | 147.75.84.158:443 | pb-am.a-mo.net | tcp |
| GB | 185.64.190.81:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | sync.smartadserver.com | udp |
| US | 64.38.119.42:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| NL | 81.17.55.173:443 | sync.smartadserver.com | tcp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| NL | 145.40.97.67:443 | sync.a-mo.net | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | 93.106.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.80.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.200.235.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.119.38.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.97.40.145.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| FR | 5.196.111.72:443 | rtb-csync.smartadserver.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| DK | 37.157.4.29:443 | cm.adform.net | tcp |
| GB | 216.58.204.70:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | 72.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.4.157.37.in-addr.arpa | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 162.19.138.119:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | tcp |
| FR | 149.202.238.101:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| DK | 37.157.3.20:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 107.151.11.18:443 | ghb1.adtelligent.com | tcp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| DE | 3.122.62.224:443 | rtb.mfadsrvr.com | tcp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 54.217.19.5:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | dsp.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| IE | 52.95.125.22:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| DE | 91.228.74.166:443 | cms.quantserve.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.3.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.19.217.54.in-addr.arpa | udp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| FR | 141.94.171.215:443 | pixel.onaudience.com | tcp |
| FR | 141.94.161.158:443 | green.erne.co | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| SE | 213.155.156.184:443 | d5p.de17a.com | tcp |
| NL | 35.214.233.248:443 | csync.loopme.me | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 35.214.233.248:443 | csync.loopme.me | tcp |
| SE | 213.155.156.184:443 | d5p.de17a.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| FR | 141.94.171.215:443 | pixel.onaudience.com | tcp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| GB | 142.250.200.3:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| US | 8.8.8.8:53 | 22.125.95.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.159.114.85.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.171.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.161.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.233.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.156.155.213.in-addr.arpa | udp |
| DE | 79.127.216.47:443 | c3.a-mo.net | tcp |
| US | 142.250.69.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | lms-static.wgcdn.co | udp |
| GB | 93.123.11.62:443 | lms-static.wgcdn.co | tcp |
| GB | 93.123.11.62:443 | lms-static.wgcdn.co | tcp |
| GB | 93.123.11.62:443 | lms-static.wgcdn.co | tcp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.googleoptimize.com | udp |
| GB | 172.217.16.238:443 | www.googleoptimize.com | tcp |
| US | 8.8.8.8:53 | 62.11.123.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.236.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www-static.operacdn.com | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| NL | 79.127.227.46:443 | c3.a-mo.net | tcp |
| GB | 23.214.143.61:443 | cdn-production-opera-website.operacdn.com | tcp |
| US | 8.8.8.8:53 | cdn.cookielaw.org | udp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | 52.178.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | geolocation.onetrust.com | udp |
| US | 104.18.32.137:443 | geolocation.onetrust.com | tcp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| LU | 92.223.21.23:443 | tenor.wargaming.net | tcp |
| US | 8.8.8.8:53 | 137.32.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| LU | 92.223.21.23:443 | tenor.wargaming.net | tcp |
| US | 8.8.8.8:53 | 23.21.223.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.173.79.40.in-addr.arpa | udp |
| N/A | 127.0.0.1:51174 | tcp | |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | content-signature-2.cdn.mozilla.net | udp |
| US | 34.117.188.166:443 | contile.services.mozilla.com | tcp |
| US | 34.160.144.191:443 | content-signature-2.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | contile.services.mozilla.com | udp |
| US | 34.117.188.166:443 | contile.services.mozilla.com | udp |
| US | 8.8.8.8:53 | shavar.services.mozilla.com | udp |
| US | 52.42.69.239:443 | shavar.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | push.services.mozilla.com | udp |
| US | 8.8.8.8:53 | firefox.settings.services.mozilla.com | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 34.149.100.209:443 | firefox.settings.services.mozilla.com | tcp |
| US | 8.8.8.8:53 | autopush.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.107.243.93:443 | autopush.prod.mozaws.net | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.149.100.209:443 | prod.remote-settings.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | firefox-settings-attachments.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | 166.188.117.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.69.42.52.in-addr.arpa | udp |
| US | 34.117.121.53:443 | firefox-settings-attachments.cdn.mozilla.net | tcp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | attachments.prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | 53.121.117.34.in-addr.arpa | udp |
| N/A | 127.0.0.1:51183 | tcp | |
| US | 8.8.8.8:53 | dgg.gg | udp |
| IE | 52.142.124.215:80 | dgg.gg | tcp |
| IE | 52.142.124.215:80 | dgg.gg | tcp |
| US | 8.8.8.8:53 | dgg.gg | udp |
| US | 8.8.8.8:53 | dgg.gg | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| IE | 52.142.124.215:443 | duckduckgo.com | tcp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | duckduckgo.com | udp |
| US | 8.8.8.8:53 | 215.124.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | improving.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 20.223.54.233:443 | links.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| US | 8.8.8.8:53 | links.duckduckgo.com | udp |
| IE | 52.142.124.215:443 | improving.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | 233.54.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | external-content.duckduckgo.com | udp |
| IE | 52.142.125.222:443 | external-content.duckduckgo.com | tcp |
| US | 8.8.8.8:53 | 222.125.142.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cpstest.org | udp |
| US | 8.8.8.8:53 | cpstest.org | udp |
| US | 172.67.71.32:443 | cpstest.org | tcp |
| US | 8.8.8.8:53 | cpstest.org | udp |
| US | 8.8.8.8:53 | 32.71.67.172.in-addr.arpa | udp |
| US | 172.67.71.32:443 | cpstest.org | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 151.101.1.229:443 | cdn.jsdelivr.net | tcp |
| US | 8.8.8.8:53 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | code.jquery.com | udp |
| US | 8.8.8.8:53 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | code.jquery.com | udp |
| US | 151.101.66.137:443 | code.jquery.com | tcp |
| US | 151.101.1.229:443 | jsdelivr.map.fastly.net | udp |
| US | 8.8.8.8:53 | code.jquery.com | udp |
| US | 8.8.8.8:53 | 137.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.238:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www3.l.google.com | udp |
| GB | 142.250.187.238:443 | www3.l.google.com | udp |
| US | 8.8.8.8:53 | www3.l.google.com | udp |
| US | 8.8.8.8:53 | cpstest.org | udp |
| US | 8.8.8.8:53 | cpstest.org | udp |
Files
\??\pipe\crashpad_4296_HSCGRGHUYKOUWVTG
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 3ce8fb9a18846769d314fcc27f779379 |
| SHA1 | 9a1b8b63e176be0a935265abf3d02610d9f3ff6c |
| SHA256 | 042df7bff6facd4c08ed1fec7d6d550fd7aef434b3a4134f78119c79fd0e0c15 |
| SHA512 | c3d7e1c3c14d60c7a33ef233b2a4859d1be50859c1f2135e47bb7f35cd0645be746eb061b8725524cb6fc06be69080d4a977bd7615eb6a5d896d3aafae465bd6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e904de6ba318ab9423bef8b62bac32af |
| SHA1 | 9ae151be2df5ae6bf010edd23236585913027417 |
| SHA256 | afc3ff28e317930b5b9bb8c5fbaf9be47025c484cb0e4f95358da37fb23656bd |
| SHA512 | 90d84d195d18a02b04b585bdcf80547401fbcd3f6ffe6bdbbc6e15f0b3ace3e9630406dd6859e867e7bb95ad74c20b88ce630514a06fdefebbc1308fb9631b9d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | bb0f19570e7f03ef5e1117c59df57ff0 |
| SHA1 | 8d3d814bb4752ef2ed61e2f134bfc9820110c844 |
| SHA256 | 064e83ba9c8498bedcaa3d789307f50682023b0ee78eea9d67ec63959e024617 |
| SHA512 | c1e27a54e02841b1ff7e5a47f08441a5da4f9a76659ffe9185239685b4820c25e6c394eed240818c6504541a813b0655d9ddb167ebfce256447fe8f263926114 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6c3121ffa4a9230ee08d587ad52e5bee |
| SHA1 | 0d0a126c9a5a81b5807bffdbc8587a00a951011a |
| SHA256 | b91e9cf782a402f9c0dce69ec63f6e1ec324f2297f64683cb7c347dba3f85636 |
| SHA512 | 7f72079a7e1d5b95851907e15d5a69a55846d4e6e4d75bd21283ab72fb07c53be44a88edf6419f6b9a184c30541b73d8e18abbf74b474d930a033eb5712fb584 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0978d49d2ad7161ae600eab83a023aaa |
| SHA1 | a5d8fe28b96aa95e1b80193ed5a17ffbccb6bcef |
| SHA256 | a7bc8b3830a5d56333f88964529a17d89c6925e709b1f7b81b522bb5382e2a8c |
| SHA512 | 0bfdcf59aeceb3801c73c493e5e21ba3b94704272b44e5c458cd995030a5ff380e44e4b99ad210b16391b1946442f3ce1e81523e8d18fe503e25cf7edfc450e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b36441764107a7387381799918673d44 |
| SHA1 | c1bd9eb02e47d288cf58373d28b4b2dc121f78ea |
| SHA256 | 02e1a43b016ac740df786443faede49afcdeb2d8d3c6b116e82970e44afb41a3 |
| SHA512 | 0939804444805c5dd7ff83a578bae39519f8acadfc3cfe69a5784524782662e6826ddc05490948b7b3db705aba1991e0784869db1d35eb5ee2aa8b42b611661b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | 1ab4d30cb4551db49130669867f9b7e5 |
| SHA1 | d6323612fc9ee465cad83c49a42c64630fd3edcf |
| SHA256 | 9aafbcc5e08dc476afd95b5550bb8460f71c416cd7ef742fdc7368975198fc61 |
| SHA512 | 79551a2221786cadd1d058c49aada8b4d86d0c45fb8bcaa422dd6283cf745eee4d5a9fe2de85bfae3b795102f8a6f518caa48d0a15189606b9aee9b3f74cf5b2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 660c3b546f2a131de50b69b91f26c636 |
| SHA1 | 70f80e7f10e1dd9180efe191ce92d28296ec9035 |
| SHA256 | fd91362b7111a0dcc85ef6bd9bc776881c7428f8631d5a32725711dce678bff9 |
| SHA512 | 6be1e881fbb4a112440883aecb232c1afc28d0f247276ef3285b17b925ea0a5d3bac8eac6db906fc6ac64a4192dd740f5743ba62ba36d8204ff3e8669b123db2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 27c4d1004c7097b3a2d776b28e5d07e9 |
| SHA1 | ca96538e7f7ed4da609c5b8da5090d2588b1c249 |
| SHA256 | e26177180b76d76bd24e5f5e47e3323c031417cfb25c6c5eb8c11284032fe4b7 |
| SHA512 | 60c75c7b068f9cf24283622ee01423530da1cf444c8ad374da8c1e167db79129a72da64a0f887f8d7992ac32beeb443b79a0ec9e073a2e1ed8f1d946b934a30f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | 2549e1040ce97d2725a6c78d4c68aead |
| SHA1 | e1ea9c2399c3887f17be36a641309b9211e69fb3 |
| SHA256 | f00aebc5779a3eba9ecf50d5761072fbd3d5c354b013cc7d7fc4a586f69522d7 |
| SHA512 | 7149918a9540288ed7f9e530e955b60b247eff9b386b94595d8a8b41f13fc8f2a6b62d5b4660602270f8f32b42b174c538ca29ae7a5ee07ee44487230454afc9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | c6044be14af74c8841fc1d74a195fb20 |
| SHA1 | 0f4274c7d2695e353801a5eca83e9b65904da27a |
| SHA256 | d13f78dc91afda22d2bf6adf6731c0c322baa30deaa257d888aa9c40bf9dcbbf |
| SHA512 | 44977743b2c9921c6b6a31a2d81ca1caaaa687fbef1394cbdc2f22e9ef9c1f61071ea0a11764da2f7a769f4c6f632e28deec67b8948133f3d1fe483a62714fbb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | 777c1551bf6989a30f094b57eefecc46 |
| SHA1 | 154b936d9c19977bb32ffa34b1899bf32c557111 |
| SHA256 | 06f55ed38b53d447a9fa5645dc78b7586cdc3d6d376d63442094ec69d3c1d302 |
| SHA512 | 3523dcb2b34abe08a2a7778407a09f83a33376dd8313c3c078c06408aabd6ee8b4e48b9b89bf2cfab148046af9eb9f6572ff3ca9213048a7ea1cc961369e4522 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001b
| MD5 | 1044ace4706d342aa9e27214795cbae3 |
| SHA1 | 8710193fa073b330c32c4cd6b0ee2280a41a6ada |
| SHA256 | 654d8221f66fe634206a64b52561a39ee408899a26435aa2094ee681eedf94b4 |
| SHA512 | 92e2c52d5699210eace7ac263da4039fa010f64bdee4a3b6ab8f9817bc6113861324b3f98f8ef17534f3cc6841c9b142ac28c9c3030b5b0ff699686b7da67cb1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | cc5be6980747b0f25d48dc470d238b6d |
| SHA1 | 9fd1042bef7a4e1a54975633d96e3098e7edd1f3 |
| SHA256 | ead9886a077c995169db13458e512b7b6ef27d1f11f0ce0cb57034f0795f6e14 |
| SHA512 | ea3405f7f399a14e7d315c732334361a8450b4a3791ca56226d8e7064737c674cd9e81b6aeaa0abadf568deefb2f190df661de31092e4a987283515ca0eb2c42 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 7bd0b206cef730bc443d392b0970f293 |
| SHA1 | 2a0c9475ed2ce3b6bbb78bb61823ccebc7502504 |
| SHA256 | 4c6961d507d1d453e10a6f364857b07dfde8b0d9da9188122cbfe21cf0a7b0fe |
| SHA512 | 172cb67fb0911d6d0236a668002f9978bb30fba3686db35005608499fe0ce2de4aa297143034c3d67428ff7594dbf0af85996d11fa2a5374e8fdd400a18b4a33 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b9f5b6f1db647654defdac7dd76e2eb8 |
| SHA1 | dc8a7cd32770be50427d02d37b5d8848faa79d80 |
| SHA256 | 57bb35dc6c3492880d1a95b8d68771517b4353c7e727160abf298d561a7ff0c3 |
| SHA512 | 1ad7237d0deff566c72c7a8b85250d0aab210265b9e6393c3a7aa237a0eed524203d3b31c2ce461922554a7764bd696d1b430cf7abc30b15bfdaf0eeffbd8175 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8f991c449a43ee1c880fc4300ac1972c |
| SHA1 | 89c0c4ce06d880f106a3092c96dcb4d1a64d0e1a |
| SHA256 | 6012a2cf9a663c996bf18002e859444a427678343bf6fec410434a804479a9ae |
| SHA512 | 478378bd1132db16189f6371a46a9451ea33fc1e2930a3ffb47c963cafbb2989f2be21fce041ffe0c3e2e02fe08474c4f2f9a8875cf4db190d873ba90f5dd708 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 508e824d3156b1b9accfd2458e71fe79 |
| SHA1 | 29b3af534bf9f50352d55eb26431db97f27f4cbf |
| SHA256 | 2485dd1f05b35a2dc5851deca2fa9887bd9fbd95bb44c981d0b7a5b58a92f676 |
| SHA512 | 3ca1d894f854d748e1ea016a8fbf3bbecf277f527683c5fc61a5be1f06bd4043b757c406d64fd901937d8fe8be43cb4cbf369764b952689dcc1ba133a19f8f7e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001d
| MD5 | 6619ccf29526e74060dd92091f2da23b |
| SHA1 | 5212412b26f3bb9b0e19a8f528c2f8501a163ed7 |
| SHA256 | 3a8ec3bb7755733de7df8a2774c7aebfe8d950dfb13972e9c0df09f3e1a65f7c |
| SHA512 | 8bfe339ffccbec2d3c9d980d8cb24418d7afd4e9cfb24f00388f1300dca6d3dc65ebdc17f253aa7b7cdea2e54aa4459173049d46462ffee1b2ceb2c0842bd438 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d4c49e6e44dea71810a88f7e33c90a11 |
| SHA1 | 5360a5d11142e6f7502c3b9854e6d7957609c848 |
| SHA256 | d31766583585acb37e38566d55e2004d1da95d2578cb07409000011812272e9a |
| SHA512 | 9ac942230b226d6b36d12128b7eee830fd81e968e345e669b8d644a67bd6dc5a00659b0f8a33c58b457342127b454656d5283ede1657b68ae4770a72b5b7a0bf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 2d9f034fe011a3626c641622da4e1fe2 |
| SHA1 | e79ffce5333c61d94a36ccaf9cf1a72e03268656 |
| SHA256 | 34b2d6b896be4a5c8771e65da5d9342ef5f69880e9948b6a9522c06ca50efc00 |
| SHA512 | 703dae4d2a4f7ece62ef72c964d232b229964ca84638c916804a983bab85c5da30a2af269359261c3044a56e362341f442e0137eeef6f82ddb4fc97b358fd580 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a
| MD5 | ce1093c800c0933d7c9674eda75790d8 |
| SHA1 | 371c2dcde092f51b18852e2617bc6c0c176f5873 |
| SHA256 | 57781a723db9a2483067bcbc89d1f30f7e2f22ae2d18aab1e45ad894d8cdab89 |
| SHA512 | fdbb31c607cc9a4bd75c42cbc552fb40d82e53804d156244ed2daa124c75e1680b908589f7a3ad8888b9b03ebfd1f4b3e83e19f84e3a746cf210d0b8a1678533 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 921929cbc8c2d62109f578e494e979a4 |
| SHA1 | cf65d09f81e41ba94c4e9c51c76cfe15df80c24f |
| SHA256 | 8f184e54d1b81685244f80c46bd5e1aaffab263f1e05a8ffa53a89a7604b979e |
| SHA512 | 04886c7f1e4f0f081ae211ef3f308e588e70efe69ecea5668d4792ea64a74cc21ec1090eba09b5fb3066569caefaf4f31c5099368d41a5dcda5d919c8741496f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | f6730e124243aebdb6388f864bb329ca |
| SHA1 | e0cee077ea84f4c322762333f957e95b4dd9e261 |
| SHA256 | ccfd326ee67b42af9deb4c89ad51e7e72e0a21476a8517a29faef4f46ef1bb44 |
| SHA512 | ee72c0bf2691ebf4aca75125dc6b51e75899aed69a5831dd77b6b016c67a9daf2f84adf048af2cc98d7a07b0112307fdbf4e0bb25dbc457257279ede297500df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5afacc3505d7945ddbad6b584d15c92c |
| SHA1 | 8f1b7f852e207f652a8ede97185f7005b6402dcb |
| SHA256 | bcf43d7ece4c69f09810ce883660cbe3c9b0a64d534397fafc3d08a08c4db88a |
| SHA512 | dfd14282eae7f0533196d0eeb885d5186457fa9fb49fcfe34bfe52b9f0525ae8d405176a04562260eae98a1307b6c9d820e4a031f1ec74b643d1af2110e2d6f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | bb6196d59abcbd678c2584af2fa8f232 |
| SHA1 | 9fabf3596620bff5202d0919c47a0127fc4e6225 |
| SHA256 | 2bbf17eeb4ab9b929a75506d0d2a23f32640a784bc4572aeae02ebc2a3a2f618 |
| SHA512 | 1a0bb7accafb0f9ed93423ba37810619927e98ef431cfe89590a3f4e95111b5b271fcb6b7dda460b893f8f03005bc79cad3b84f0e3df3a8ae6f1c6f8151dab2a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002e
| MD5 | e9d809a1d7fd30047317fbd43fae61e9 |
| SHA1 | f787ab2f19856948bd9ea7aae25f45b2a8d08d8e |
| SHA256 | 0ba8c1a3ea7999dc49680abfe030219c514214972d20197ccf7def509471b72d |
| SHA512 | e91109af437dfb88f8f97df5795a25e4efaf1a2fcf9ffff8410f19a815bcf80f62e21fe9d5de7e5b6df5e983eef8393c806e5df48353547a02b81c0780fefc50 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | af9197941fe566efe8d2fdfa8b48a377 |
| SHA1 | 58f9a5e78b8d18d3a8d9bb8833124d41fb78668a |
| SHA256 | a34335afa951946bb5931a562bd4490d4c1cbcf040fb495f2b757f3b98741d3e |
| SHA512 | 00601e06243f6e70ff0a7c1624d484208871184353c07a61b83ba29c25982b2aacd78f7efa457a15c34ef5bd2d25b5baae1dacbabc824fb0870f83f3905765c3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | db8d9febac2f84f78e065e2bde9f0fa8 |
| SHA1 | 72a55c295a623f20443f25d71910d6c24be70790 |
| SHA256 | 8ccd6d2ba12aed485e8ea43829e357b82980d71c86b78c765c5e37c2ee903cd2 |
| SHA512 | efffe7f07d024eb752980fca2b8d0948109a21ae04b7628ff073a957ef4dce0c257a7218b95b65124f55fe1f49ac4b50e7aece657cb642a3c5119173da39d65f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bb9747ddd52c2f22b34390fd05e7f5c7 |
| SHA1 | d4e1e29f94b8605ba444c4a379893890c5595973 |
| SHA256 | c82aa13f78463b42b3c987c234022ff57448b13fe7f831f2d39bfbb5399811b3 |
| SHA512 | 3fc997e3593242a9ffed78e6ff4a269cd5461a9e71acf3fe80ec0b9499e8c03789d0403d32e3b22fe4648095b1c817dca5f2aad378e1f22ceacfce32b6b4e689 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | faeaacf32a31c57675b477b411c2cf90 |
| SHA1 | 3b6d811f18ae007db4fd0b30f3c916d66cac9d35 |
| SHA256 | 547a8d8bd940f5f888efd80b116e102b6a1c0f128264750db8fcc009b470c255 |
| SHA512 | 4f6340d5b6979cb552c157647e02388fd76a8a7d1bdfef90567cfbc5090e2415c4b5cf17aef6c6f672f82e44c3caf220f566c9393ef0ed1a5a45682220a9aa68 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a0a28da0ebdc08a2dbfbeb553c7bcb29 |
| SHA1 | c7bfb78ab4b9506a13ce82a48ec316d89ed1f6c8 |
| SHA256 | 952bdeb8a186ef70783071ea8a3c857820066d316247295c6bffe59cb497d88f |
| SHA512 | c89458250fae785083c0bf8c9111ac14086a5f851bf8ed38ee03e3dc2f7f716727282efbbad3beb9003711505337a2ca6d6310e3b0bcbb83088cf0e9bcfdbb1b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 7f53c6c9e2ddbe6e4db4518a829acf13 |
| SHA1 | 25ff807fd44dc0b1b8a9412e6ab3bc7843fc9d3d |
| SHA256 | e2a9cf160b7bb363e8d098dff79b0ff9c7d23ff5a5b60e3b4e57cc7d287f466a |
| SHA512 | c4f936f93af20988f348168c5d3fee7d9c9816ebed27e1f46e67382115aa205abe39e516ca9dc4c2d6586c4f63edbb80f79c6466a5aa25bb6c9764813f667f69 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | 1751371fa694301d23bec6f3dca723f2 |
| SHA1 | f3375b139480e365607b1e7f4a3135c8692f0bad |
| SHA256 | b075fb69f248bf79764db0f4e4aedfd8c6a97ceeee7a03d1d6eef95ecb731429 |
| SHA512 | 09003c6864b455909264d84750650da0359d73790939d4f5b543e598fd79f62954509e64106b5a058fdde7d591a8d1fefd2b90844c34e215c74a6cca627e0a8a |
C:\Users\Admin\Desktop\Slinky\slinkylmao.exe
| MD5 | 5bfdbb28cc7fed82bf415edac9c9eb83 |
| SHA1 | c04b108edbb95b75dc1496bed342b937f37fa17a |
| SHA256 | 12affb37160cf0bb5fe284c7f65ddeea23a788f4d35fbf158a4877c99640e8c3 |
| SHA512 | ff52df5c58fbee9dd555f373bb1a4b520e36f6a76e1b6ed345015cbd0adf1a3927dd79afe1b92e76b439d1221865b72a34a9023fad3c0c1f849e6a90e4352ae3 |
memory/4132-1069-0x00007FF61E170000-0x00007FF61E2F1000-memory.dmp
memory/4132-1132-0x00007FF61E170000-0x00007FF61E2F1000-memory.dmp
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\datareporting\glean\pending_pings\5d1a11bd-7c81-409e-b3e6-78b3bfdd7d6e
| MD5 | fc95afb83cf468fd6b6d0b9b867587e5 |
| SHA1 | 550efc3387e61720dfa909a66b99b79ab809dfd0 |
| SHA256 | e1446f7cb2d80c602447d7a8033b4d5093821b0ee18b4ec5ee4d1e6c1bfa6391 |
| SHA512 | 2bed09673abcc182f1e181ddd8f9c6d1a8de736d03a184c6d390d0b2783a9ee16ce34d45e9bef7b57661d16aa52c1d2f5b873d3c4cae3715b290eac2664b4fe5 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\datareporting\glean\pending_pings\858d495d-1653-4124-ac0e-ceb4cb3df759
| MD5 | f950f724a0c30864f70005163cac5df5 |
| SHA1 | 903e79d6dea2ad8bbff5efcd32ddfab93f241d72 |
| SHA256 | 6a19e8a957082ce50282c650f0f314e02c715bc9a3c7ac78835f90d3a1747eab |
| SHA512 | ae5a1a45c4906c479e4f41ed3747dfd3d989cac527eecd79a9cf6d7ffc79ad59c9c5054583e71aba196cf6b9f98d9d5f8ebe3e02fda3194a084edb84572bde60 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\datareporting\glean\db\data.safe.bin
| MD5 | 05b27debfda2b170277478a268e2eb4e |
| SHA1 | bee17da358ffee47d6a456c070a7b2bc6c0dfab6 |
| SHA256 | 98f930097bffeb0a7878c461ddaa6f53e9b56fe78224d735ea5abb896b9f72ae |
| SHA512 | 4335667805323445b391d82590e6ac04ea09af705e7d44784b1bf9b9a99d0ba6bfbc107d601ac782a7ce0355c99a7e9823975472b88438eaf6808117036c80b6 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\prefs.js
| MD5 | ac7597035eeed10e57fcac48c7048aed |
| SHA1 | db458ac3cafed61d35d5d53eb69220bcbc571d0a |
| SHA256 | 8138e766255e03301fe6ea29d2bca7fa00044d0e7081f0a164c998df6e321b21 |
| SHA512 | feb5985910ff6776775362357e560a4c80f85f41ce679bdde328bb8eb1d64383d8173978789e7c5fbb44efd03005fa8e06395f799f383d2fd718b6bfc1a0703e |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\41eh5pdr.default-release\cache2\entries\DED23BB33EA3C88FAD1C0A1CD53916E0D8C424D3
| MD5 | c3eb6db192a84bcecfed7591833e60dc |
| SHA1 | d6d8e4c1244dae74fb7cd059ba9d525b7ecd565c |
| SHA256 | 2767d7ddd8f056055fbe5853a1dabf1a8ceb03b7b3d9c18e5e37aa81d8e6b4dc |
| SHA512 | 985fd630583234fd8ec61f3bc6b84c36577b07d02490b0c3fe3d89f49cf29534d8bcf894ed74cb7408b377b0df2983d321447693c1aca3d13ad378e6c0e3a102 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\prefs-1.js
| MD5 | 458c0898bff8dd0d5f01368e7ada16c9 |
| SHA1 | be4ce2e9f35126fd1109f9a86c76d54772c17658 |
| SHA256 | dd33371be500cca851c32bfe1a53d173c707d8bed5e108a5823cf1c30c316985 |
| SHA512 | c4188b3177ad4a1dce1e807d562df78eb8beab111b1b33666963c88674ed2d10e540bc99fb7201a02e290923f08581b304dc4793470fc98a4d666d30c4e8d0e7 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 4d534848f8a02118f9c4a93a80f1a091 |
| SHA1 | fc8dd57e98fc0fbd2b08c778d23641c6695f4f73 |
| SHA256 | 7614d3fdc3fe6b913a15d7ad2cdf7eceeac97e2a15f619d9151d985f3407ad41 |
| SHA512 | b0a32ce0841d9d26a4e6566c95ac4c377bfe37dc511b87a1814cedb85d8fc190bece48db4ffc7d650efb9c1090be17486f6fead95304e380f325acc268ab78aa |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\storage\permanent\chrome\idb\3870112724rsegmnoittet-es.sqlite
| MD5 | 637e42544bf4e4e5c858d87fceb302a2 |
| SHA1 | 1d747ea0d89437cd39d02c76ed70df3b7c505ee1 |
| SHA256 | 5a519846989ec4eed303d9fe8b5554410b502177bb6b4199c6cf25290a4913c2 |
| SHA512 | bde691d8015773707c4445155ba1ad419033c335bb11ca325b9c249e8aed83fefd096bab28806213ad368508e2a5be362c4a5a8038dae40246a8bf0a246cb8cb |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\41eh5pdr.default-release\cache2\doomed\17588
| MD5 | b47ad74a16789cd55914d2866cfbe7cf |
| SHA1 | 4a4ca6e2308c0243b49ba006b99703b351db2e9a |
| SHA256 | b0fc2032bedaca0c769496b48a25d8bed43f4dbaa1be7df6ec1a797fab9411f4 |
| SHA512 | c80e0adf55b62673d2dd3056ff0537ab4d8112c0f2a9caee6ad17df66262d035c7ce114523083d222b66afce28e308d38788cc38df62687a6582fec2959818ff |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | bc0f1730a096427aeb8675efd800b4fe |
| SHA1 | 0fa2bfdde1c2b33041fda8b3acfa0fa50ac5beff |
| SHA256 | 55f420abd1b8792dbebd5fe6ca8bf8aa2456c6852e21195cc105f7b7252c9fa3 |
| SHA512 | adbdeef255c5883df06cf894f2fe3b0f22aa676fa9c3441a0f7428fd3b8ac93cfb32f52a90abc78d0232a168e61e3421f9c0c269b96e0a69a4529fd0a1792880 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\41eh5pdr.default-release\cache2\entries\72779262F51125F7D9363F9C1907C6A5E323B59C
| MD5 | 319260efad4f1cd65d801349750a6e61 |
| SHA1 | 1a8cabeaa7b4d8f4c7121d49640e3c901cbda65b |
| SHA256 | f9d6b4f4d5c32cc9d24019020eb20fe288199e1621bd95a8a135227cfc1e5780 |
| SHA512 | 0bce902c1a5ada9276f5367b77fa054f907f40c23e6155239486f0e4638b0162de98ddd3204635a9ca535818501afa230f9e6811238297f1b732e3a69f6982cd |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\prefs-1.js
| MD5 | d70ec343ed6a9a5bd1794b9763eef8cc |
| SHA1 | 5394adeb53277558354f287be7b57677f331a53f |
| SHA256 | 118f4ea85b298cc32fd2113974fa2aa9dd37fc12c8926eb5a3d364fd07f9039d |
| SHA512 | ef6f1138f21e72029e363e207cad7cb91bb2c1b64afd15da4edd0a53440b1c931ccf4623a9ccb2d20362e7d012c18d9825918636302218578029809c7b51c8de |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\41eh5pdr.default-release\sessionstore-backups\recovery.jsonlz4
| MD5 | 6aefb77ec0a21f8200186b4c01b84937 |
| SHA1 | e2bdb9dd724a05191c4fc80d22e921f98bd21215 |
| SHA256 | 89e909b16aefa4046c83d39e8d1027a1e583afe4fd2e7c15937262303ea72089 |
| SHA512 | 3e9aa905d36248c03aa0d6b4f85a8ed6893a676d9511847832425f6280b28c0cc5838b71c8dcb72a7c37fe435b1258e8bd9d4d45da5061dbbad470ea8bdaea71 |
memory/4132-1630-0x00007FF61E170000-0x00007FF61E2F1000-memory.dmp
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\41eh5pdr.default-release\cache2\entries\82DBD8F017BE5541607D0F73FCB1D0193C405068
| MD5 | f13105a9e2f66aaf1a3cb38fa8afc8d4 |
| SHA1 | 41334064db8912a37dc8c8ed032fc29c12150272 |
| SHA256 | 744958b31889fbecbc589055cb0f4d41751a16bc9eea7f9d6fd74484a00cb87b |
| SHA512 | fb0690d67f5212e8921f1a4eb3f4637e1f5559aaa00b4736adb61aa49ef7b9e5969a7f20c1fc1b0aa05c388f6e3211f5280e684ff6c52f3fe0cc26713f688a08 |