Analysis Overview
SHA256
f86c484b6bef1a7339c26e9e0f261794d476883f9b2a69c3f2357500e36c3446
Threat Level: Known bad
The file Launcher.exe was found to be: Known bad.
Malicious Activity Summary
Modifies WinLogon for persistence
UAC bypass
Disables RegEdit via registry modification
Themida packer
Drops desktop.ini file(s)
Sets desktop wallpaper using registry
Drops file in Windows directory
Unsigned PE
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Suspicious use of AdjustPrivilegeToken
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Modifies data under HKEY_USERS
Checks SCSI registry key(s)
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-15 18:00
Signatures
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-15 18:00
Reported
2024-06-15 18:04
Platform
win7-20240611-en
Max time kernel
121s
Max time network
122s
Command Line
Signatures
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
| N/A | N/A | N/A | N/A |
Processes
C:\Users\Admin\AppData\Local\Temp\Launcher.exe
"C:\Users\Admin\AppData\Local\Temp\Launcher.exe"
Network
Files
memory/2336-0-0x000000013FC30000-0x00000001406FE000-memory.dmp
memory/2336-1-0x000000013FC30000-0x00000001406FE000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-15 18:00
Reported
2024-06-15 18:02
Platform
win10v2004-20240611-en
Max time kernel
102s
Max time network
104s
Command Line
Signatures
Modifies WinLogon for persistence
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit = "C:\\Windows\\system32\\userinit.exe,C:\\Windows\\winnt32.exe" | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
UAC bypass
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA = "0" | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
Disables RegEdit via registry modification
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-2447855248-390457009-3660902674-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools = "1" | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
Themida packer
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Drops desktop.ini file(s)
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Public\Desktop\desktop.ini | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
| File opened for modification | C:\Users\Admin\Desktop\desktop.ini | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
Sets desktop wallpaper using registry
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-2447855248-390457009-3660902674-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\AppData\\Local\\noescape.png" | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\winnt32.exe | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
| File opened for modification | C:\Windows\winnt32.exe | C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\DISK&VEN_DADY&PROD_HARDDISK\4&215468A5&0&000000 | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\HardwareID | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\CompatibleIDs | C:\Windows\system32\msinfo32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CDROM&VEN_QEMU&PROD_QEMU_DVD-ROM\4&215468A5&0&010000 | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\HardwareID | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\CdRom&Ven_QEMU&Prod_QEMU_DVD-ROM\4&215468a5&0&010000\CompatibleIDs | C:\Windows\system32\msinfo32.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemSKU | C:\Windows\system32\msinfo32.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\ECFirmwareMajorRelease | C:\Windows\system32\msinfo32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglow = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\AccentColor = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Themes\History\AutoColor = "0" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColorBalance = "89" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationAfterglowBalance = "10" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentColorMenu = "4292311040" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133629480846569430" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationColor = "3288365271" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationGlassAttribute = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (data) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\AccentPalette = a6d8ff0076b9ed00429ce3000078d700005a9e000042750000264200f7630c00 | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Accent\StartColorMenu = "4288567808" | C:\Windows\system32\LogonUI.exe | N/A |
| Key created | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\ColorizationBlurBalance = "1" | C:\Windows\system32\LogonUI.exe | N/A |
| Set value (int) | \REGISTRY\USER\.DEFAULT\Software\Microsoft\Windows\DWM\EnableWindowColorization = "64" | C:\Windows\system32\LogonUI.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-2447855248-390457009-3660902674-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\msinfo32.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\LogonUI.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\Launcher.exe
"C:\Users\Admin\AppData\Local\Temp\Launcher.exe"
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Windows\system32\msinfo32.exe
"C:\Windows\system32\msinfo32.exe" "C:\Users\Admin\Downloads\DisableUse.nfo"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff8ff7fab58,0x7ff8ff7fab68,0x7ff8ff7fab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1620 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2188 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2248 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2940 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3052 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=3884 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3888 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4564 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4460 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4800 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4764 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=4696 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=4832 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5004 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=4808 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3268 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=5048 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=5224 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=5444 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=5552 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=5696 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=5880 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=6024 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=5868 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=6072 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=6360 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6504 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6648 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=6916 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=7104 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=7356 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x150 0x32c
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=7532 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=7332 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=7080 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=7112 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=7844 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=7856 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=7900 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=7912 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=7920 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=7672 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=7536 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6600 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=8608 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=6100 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=6368 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=8832 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=8860 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=8996 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=9036 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=6372 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=9340 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=4884 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=9056 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=7200 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --mojo-platform-channel-handle=6632 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --mojo-platform-channel-handle=7276 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5396 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7888 --field-trial-handle=1848,i,2522593681134875871,18032710945841839572,131072 /prefetch:8
C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe
"C:\Users\Admin\AppData\Local\Temp\Temp1_NoEscape.exe-Download-main.zip\NoEscape.exe-Download-main\NoEscape.exe\NoEscape.exe"
C:\Windows\system32\LogonUI.exe
"LogonUI.exe" /flags:0x4 /state0:0xa3911855 /state1:0x41c64e6d
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 13.107.21.237:443 | g.bing.com | tcp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 240.221.184.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 142.250.187.238:443 | clients2.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.31.95.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.58.20.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| GB | 142.250.187.238:443 | consent.google.com | tcp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | lh5.googleusercontent.com | udp |
| GB | 172.217.16.225:443 | lh5.googleusercontent.com | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | maps.googleapis.com | udp |
| GB | 142.250.187.234:443 | maps.googleapis.com | udp |
| GB | 142.250.187.234:443 | maps.googleapis.com | udp |
| US | 8.8.8.8:53 | maps.gstatic.com | udp |
| GB | 172.217.16.227:443 | maps.gstatic.com | tcp |
| US | 8.8.8.8:53 | 227.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.187.250.142.in-addr.arpa | udp |
| GB | 142.250.178.14:443 | encrypted-tbn0.gstatic.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| GB | 142.250.187.195:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| GB | 216.58.212.214:443 | i.ytimg.com | tcp |
| GB | 216.58.212.214:443 | i.ytimg.com | tcp |
| GB | 216.58.212.214:443 | i.ytimg.com | tcp |
| GB | 216.58.212.214:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.212.58.216.in-addr.arpa | udp |
| GB | 216.58.212.214:443 | i.ytimg.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | static.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 216.58.213.6:443 | static.doubleclick.net | tcp |
| US | 8.8.8.8:53 | jnn-pa.googleapis.com | udp |
| GB | 172.217.16.234:443 | jnn-pa.googleapis.com | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-vtbn0.gstatic.com | udp |
| GB | 142.250.180.14:443 | encrypted-vtbn0.gstatic.com | tcp |
| GB | 142.250.180.14:443 | encrypted-vtbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | spinpasta.fandom.com | udp |
| US | 199.232.212.194:443 | spinpasta.fandom.com | tcp |
| US | 199.232.212.194:443 | spinpasta.fandom.com | tcp |
| US | 8.8.8.8:53 | static.wikia.nocookie.net | udp |
| US | 8.8.8.8:53 | services.fandom.com | udp |
| US | 8.8.8.8:53 | www.fastly-insights.com | udp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| US | 151.101.2.91:443 | www.fastly-insights.com | tcp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| DE | 74.120.188.194:443 | static.wikia.nocookie.net | tcp |
| US | 8.8.8.8:53 | script.wikia.nocookie.net | udp |
| US | 8.8.8.8:53 | 194.212.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.188.120.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacon.wikia-services.com | udp |
| US | 74.120.189.195:443 | beacon.wikia-services.com | tcp |
| US | 199.232.208.194:443 | services.fandom.com | tcp |
| US | 199.232.208.194:443 | services.fandom.com | tcp |
| US | 8.8.8.8:53 | www.fandom.com | udp |
| US | 74.120.189.195:443 | beacon.wikia-services.com | tcp |
| US | 8.8.8.8:53 | fastly-insights.com | udp |
| US | 151.101.2.91:443 | fastly-insights.com | tcp |
| US | 8.8.8.8:53 | mad-v4.pops.fastly-insights.com | udp |
| ES | 151.101.134.91:443 | mad-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | db813910-494c-4467-9c15-1ca9f902700e.eu.u.fastly-insights.com | udp |
| US | 8.8.8.8:53 | 14.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.208.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.189.120.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.134.101.151.in-addr.arpa | udp |
| US | 151.101.194.91:443 | db813910-494c-4467-9c15-1ca9f902700e.eu.u.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | astral-v4.pops.fastly-insights.com | udp |
| US | 151.101.194.91:443 | astral-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | ewr-v4.pops.fastly-insights.com | udp |
| US | 151.101.210.91:443 | ewr-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | any-v4.pops.fastly-insights.com | udp |
| US | 151.101.66.91:443 | any-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | 91.194.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.210.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | secure.quantserve.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| DE | 91.228.74.200:443 | secure.quantserve.com | tcp |
| BE | 108.177.15.154:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ams-v4.pops.fastly-insights.com | udp |
| NL | 151.101.38.91:443 | ams-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | rules.quantcount.com | udp |
| DE | 52.222.191.32:443 | rules.quantcount.com | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 151.101.193.229:443 | cdn.jsdelivr.net | tcp |
| DE | 52.85.92.116:443 | sb.scorecardresearch.com | tcp |
| US | 8.8.8.8:53 | kteb-v4.pops.fastly-insights.com | udp |
| US | 151.101.46.91:443 | kteb-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | pixel.quantserve.com | udp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| DE | 18.155.153.43:443 | cdn.amplitude.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | seg.ad.gt | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cdn.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | pub.doubleverify.com | udp |
| US | 8.8.8.8:53 | cdn.jwplayer.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | b-code.liadm.com | udp |
| US | 8.8.8.8:53 | cdn-gl.imrworldwide.com | udp |
| US | 104.22.4.69:443 | a.ad.gt | tcp |
| US | 104.22.5.69:443 | a.ad.gt | tcp |
| DE | 52.85.32.41:443 | c.amazon-adsystem.com | tcp |
| DE | 52.222.191.54:443 | cdn.adsafeprotected.com | tcp |
| US | 104.18.167.224:443 | pub.doubleverify.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| DE | 52.222.191.125:443 | cdn.jwplayer.com | tcp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| DE | 18.155.145.89:443 | b-code.liadm.com | tcp |
| DE | 52.85.92.84:443 | cdn-gl.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | 91.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.15.177.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.38.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.191.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.doubleclick.net | udp |
| US | 8.8.8.8:53 | dub-v4.pops.fastly-insights.com | udp |
| US | 8.8.8.8:53 | 229.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.92.85.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.46.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 224.167.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.32.85.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.191.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 125.191.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| IE | 199.232.26.91:443 | dub-v4.pops.fastly-insights.com | tcp |
| GB | 216.58.204.78:443 | www.doubleclick.net | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | ads.servenobid.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | elb.the-ozone-project.com | udp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| US | 104.18.43.178:443 | elb.the-ozone-project.com | tcp |
| IE | 34.255.151.166:443 | ads.servenobid.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | p.ad.gt | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | ids.ad.gt | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | pixel.adsafeprotected.com | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 172.67.23.234:443 | p.ad.gt | tcp |
| DE | 52.85.32.41:443 | c.amazon-adsystem.com | tcp |
| IE | 52.210.38.122:443 | dpm.demdex.net | tcp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| DE | 37.252.171.85:443 | secure.adnxs.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| US | 172.67.36.110:443 | cdn.hadronid.net | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| IE | 34.255.96.248:443 | pixel.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | marketingplatform.google.com | udp |
| DE | 52.222.184.53:443 | aax.amazon-adsystem.com | tcp |
| US | 104.22.4.69:443 | p.ad.gt | tcp |
| GB | 216.58.201.110:443 | marketingplatform.google.com | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| DE | 18.155.153.80:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | iah-v4.pops.fastly-insights.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| US | 151.101.182.91:443 | iah-v4.pops.fastly-insights.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| US | 44.239.184.8:443 | ids.ad.gt | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | launchpad-wrapper.privacymanager.io | udp |
| DE | 54.230.206.7:443 | launchpad-wrapper.privacymanager.io | tcp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | api2.amplitude.com | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 44.236.216.210:443 | api2.amplitude.com | tcp |
| DE | 184.30.211.26:443 | secure.cdn.fastclick.net | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | pixels.ad.gt | udp |
| US | 8.8.8.8:53 | launchpad.privacymanager.io | udp |
| DE | 52.85.92.52:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | secure-dcr.imrworldwide.com | udp |
| US | 172.67.23.234:443 | pixels.ad.gt | tcp |
| DE | 52.222.191.107:443 | launchpad.privacymanager.io | tcp |
| US | 8.8.8.8:53 | 84.92.85.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.26.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.43.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.145.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.50.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.151.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.64.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.36.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.38.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.131.71.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.96.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.184.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.184.239.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.206.230.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.182.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.211.30.184.in-addr.arpa | udp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | e49hxzsdfr33hfk9r7sdsktipbp0j1718474506.nuid.imrworldwide.com | udp |
| IE | 52.31.152.0:443 | secure-dcr.imrworldwide.com | tcp |
| DE | 18.155.145.13:443 | e49hxzsdfr33hfk9r7sdsktipbp0j1718474506.nuid.imrworldwide.com | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 151.101.193.229:443 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | connectid.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| DE | 52.222.186.8:443 | cdn.prod.uidapi.com | tcp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | cm.ctnsnet.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | casale-match.dotomi.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| DE | 18.155.153.23:443 | connectid.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 52.17.93.114:443 | match.prod.bidr.io | tcp |
| US | 35.186.193.173:443 | cm.ctnsnet.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | tcp |
| NL | 89.207.16.140:443 | casale-match.dotomi.com | tcp |
| IE | 34.250.160.0:443 | pm.w55c.net | tcp |
| US | 52.46.155.104:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bru-v4.pops.fastly-insights.com | udp |
| IE | 54.239.33.159:443 | aax-eu.amazon-adsystem.com | tcp |
| BE | 151.101.10.91:443 | bru-v4.pops.fastly-insights.com | tcp |
| IE | 52.49.45.15:443 | bcp.crwdcntrl.net | tcp |
| IE | 52.49.45.15:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | geo.privacymanager.io | udp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| DE | 52.85.92.46:443 | geo.privacymanager.io | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | esp.rtbhouse.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 35.190.39.111:443 | esp.rtbhouse.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | cpt-v4.pops.fastly-insights.com | udp |
| ZA | 151.101.226.91:443 | cpt-v4.pops.fastly-insights.com | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| DE | 3.122.213.30:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | 9f60185257a4412d656c33a065e5b976.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| DE | 52.222.191.125:443 | cdn.jwplayer.com | tcp |
| US | 8.8.8.8:53 | ats-wrapper.privacymanager.io | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| GB | 172.217.169.65:443 | 9f60185257a4412d656c33a065e5b976.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| SE | 23.34.232.19:443 | cs.media.net | tcp |
| DE | 18.155.153.115:443 | ats-wrapper.privacymanager.io | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| DE | 18.155.145.39:443 | s.ad.smaato.net | tcp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | 52.92.85.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.191.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.152.31.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.216.236.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.145.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.186.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.93.17.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.160.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.10.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.33.239.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.45.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.92.85.52.in-addr.arpa | udp |
| IE | 34.246.73.71:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | 111.39.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.226.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.213.122.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.209.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ssl.p.jwpcdn.com | udp |
| GB | 172.217.16.225:443 | tpc.googlesyndication.com | tcp |
| SE | 23.34.232.193:443 | ads.pubmatic.com | tcp |
| US | 151.101.194.114:443 | ssl.p.jwpcdn.com | tcp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| IE | 54.154.50.245:443 | ms-cookie-sync.presage.io | tcp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| DE | 52.85.92.72:443 | static.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | placement-prd.jwpltx.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | match.deepintent.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| DE | 18.154.168.101:443 | placement-prd.jwpltx.com | tcp |
| DE | 18.154.168.101:443 | placement-prd.jwpltx.com | tcp |
| DE | 18.154.168.101:443 | placement-prd.jwpltx.com | tcp |
| DE | 18.154.168.101:443 | placement-prd.jwpltx.com | tcp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| JP | 211.120.53.203:443 | tg.socdm.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 50.31.142.31:443 | b1sync.zemanta.com | tcp |
| US | 50.31.142.31:443 | b1sync.zemanta.com | tcp |
| NL | 89.149.193.100:443 | ssbsync.smartadserver.com | tcp |
| DK | 37.157.2.229:443 | c1.adform.net | tcp |
| US | 169.197.150.7:443 | match.deepintent.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 54.145.233.160:443 | sync.ipredictive.com | tcp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| US | 54.145.233.160:443 | sync.ipredictive.com | tcp |
| US | 54.147.95.198:443 | sync.srv.stackadapt.com | tcp |
| IE | 34.241.205.192:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | entitlements.jwplayer.com | udp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | gw-iad-bid.ymmobi.com | udp |
| FR | 152.199.22.243:443 | entitlements.jwplayer.com | tcp |
| US | 47.253.61.56:443 | gw-iad-bid.ymmobi.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| GB | 142.250.200.10:443 | imasdk.googleapis.com | tcp |
| BE | 104.68.78.171:443 | secure-assets.rubiconproject.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| JP | 211.120.53.203:443 | tg.socdm.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| GB | 142.250.187.193:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | 115.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.232.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.145.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.73.246.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.194.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.232.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 245.50.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.92.85.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.168.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.205.241.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.150.197.169.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.95.147.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.22.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.233.145.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.15.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.78.68.104.in-addr.arpa | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| SE | 23.34.233.229:443 | eus.rubiconproject.com | tcp |
| DE | 52.222.191.10:443 | prd.jwpltx.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 142.250.200.10:443 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | assets-jpcust.jwpsrv.com | udp |
| GB | 216.58.204.70:443 | s0.2mdn.net | tcp |
| GB | 142.250.200.2:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | 203.53.120.211.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.61.253.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.233.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | sync-amz.ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | crb.kargo.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| DE | 3.70.67.155:443 | crb.kargo.com | tcp |
| IE | 54.239.33.159:443 | aax-eu.amazon-adsystem.com | tcp |
| IE | 34.242.166.188:443 | sync-amz.ads.yieldmo.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| IE | 54.239.33.159:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | cs-tam.yellowblue.io | udp |
| US | 50.31.142.31:443 | b1sync.zemanta.com | tcp |
| IE | 99.81.214.85:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| IE | 54.77.210.117:443 | cs-tam.yellowblue.io | tcp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| IE | 54.239.33.159:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 151.101.130.49:443 | sync-tm.everesttech.net | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 104.18.25.173:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 63.32.136.184:443 | ce.lijit.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | m.media-amazon.com | udp |
| GB | 172.217.169.34:443 | www.googletagservices.com | tcp |
| BE | 104.117.77.48:443 | m.media-amazon.com | tcp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 35.244.159.8:443 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | ts.amazon-adsystem.com | udp |
| BE | 104.117.77.48:443 | m.media-amazon.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| DE | 54.230.206.116:443 | ts.amazon-adsystem.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 216.239.32.3:443 | csi.gstatic.com | udp |
| US | 151.101.2.114:443 | assets-jpcust.jwpsrv.com | tcp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.67.70.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 188.166.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.214.81.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.210.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.136.32.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.77.117.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.206.230.54.in-addr.arpa | udp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 8.8.8.8:53 | s2.paa-reporting-advertising.amazon | udp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| DE | 18.154.168.90:443 | s2.paa-reporting-advertising.amazon | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev | udp |
| DE | 18.155.153.83:443 | tungsten-service.prod.eu.adsqtungsten.a9.amazon.dev | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 52.46.155.104:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 52.46.155.104:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | live.primis.tech | udp |
| US | 172.64.146.152:443 | capi.connatix.com | tcp |
| NL | 147.75.84.158:443 | prebid.a-mo.net | tcp |
| DE | 18.155.145.100:443 | live.primis.tech | tcp |
| US | 8.8.8.8:53 | pbs-cs.yellowblue.io | udp |
| US | 172.64.146.152:443 | capi.connatix.com | tcp |
| US | 8.8.8.8:53 | 114.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.168.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 158.84.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.145.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.146.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | loadus.exelator.com | udp |
| US | 8.8.8.8:53 | thrtle.com | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 34.232.47.153:443 | thrtle.com | tcp |
| IE | 34.254.143.3:443 | loadus.exelator.com | tcp |
| DK | 37.157.5.133:443 | cm.adform.net | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| SE | 23.34.232.19:443 | contextual.media.net | tcp |
| US | 69.173.151.100:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 3.214.1.233:443 | aorta.clickagy.com | tcp |
| US | 8.8.8.8:53 | load77.exelator.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| GB | 195.181.164.19:443 | load77.exelator.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| DE | 18.197.7.178:443 | rtb.mfadsrvr.com | tcp |
| US | 216.200.232.249:443 | sync.mathtag.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| FR | 149.202.238.101:443 | ssbsync-global.smartadserver.com | tcp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | sync-pm.ads.yieldmo.com | udp |
| IE | 52.213.240.31:443 | ads.yieldmo.com | tcp |
| IE | 52.213.240.31:443 | ads.yieldmo.com | tcp |
| IE | 52.213.240.31:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| DE | 18.197.7.178:443 | rtb.mfadsrvr.com | tcp |
| DE | 18.197.7.178:443 | rtb.mfadsrvr.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | cs.seedtag.com | udp |
| SE | 23.34.232.19:443 | contextual.media.net | udp |
| US | 216.200.232.249:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | hb.trustedstack.com | udp |
| US | 104.16.186.87:443 | cs.seedtag.com | tcp |
| US | 8.8.8.8:53 | public.servenobid.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | wikia-d.openx.net | udp |
| BE | 104.117.77.25:443 | hb.trustedstack.com | tcp |
| US | 8.8.8.8:53 | 3.143.254.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.47.232.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.151.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.1.214.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.164.181.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.7.197.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.238.202.149.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.232.200.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| DE | 18.155.153.52:443 | public.servenobid.com | tcp |
| US | 151.101.129.108:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | 31.240.213.52.in-addr.arpa | udp |
| NL | 35.214.209.216:443 | csync.loopme.me | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 8.8.8.8:53 | medianet-match.dotomi.com | udp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| NL | 89.207.16.201:443 | medianet-match.dotomi.com | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| SE | 23.34.233.229:443 | eus.rubiconproject.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| NL | 89.207.16.201:443 | medianet-match.dotomi.com | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 8.8.8.8:53 | 87.186.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.77.117.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.153.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| GB | 142.250.187.195:443 | id.google.com | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| GB | 172.217.169.46:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.110.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 22.113.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.204.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | codeload.github.com | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 216.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.197.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | udp |
Files
memory/1140-0-0x00007FF72FBF0000-0x00007FF7306BE000-memory.dmp
memory/1140-1-0x00007FF72FBF0000-0x00007FF7306BE000-memory.dmp
\??\pipe\crashpad_4756_JFRBHDBAZRZILIPN
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | cd513588de64e9b727f13d3fa33f7aee |
| SHA1 | a723ef2c517d4ac749e09f22a6bc16ed91d29a4f |
| SHA256 | d396b1611818e43f37273b231a6b26e96ba8116c91db074d1e07de30ecce9018 |
| SHA512 | bb1b76b2e4fc6ad07d0d1114601303df9577a2ffabaaea1b45b293f94f9e56a67ed4d1c7c43baf6a4e3d2a38b15c8e08fc97d82787ec88da5250da94b19510da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b63cc92621a9cf46ba432faee64402f5 |
| SHA1 | 636ac3728a8a6ba040c7d9e3295f57011a51ff9f |
| SHA256 | 5ec160f0063c26f4d6f224a2a840d10be6420b12fa0badf6dbabc27a6b455501 |
| SHA512 | 85ace3fc015b1b1835ddbe4526f65fe4e7dd47efb78e1b9858692c00dd80165e59fb110a1811e19570c0eb320f583b27ec884ca4e6806d443309a3b9eed0090d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 45badd3af8d121f36f5df6e12fe7ae5e |
| SHA1 | 9359ed33de366d604e1750e420086c0793bbbc5b |
| SHA256 | 3916ed3db1b215300f9c86ab67bdd9c960c71638a6941f06c86aec7299ba7fb1 |
| SHA512 | c3f9592eb6733ff05aa759cd5b99a099f8bc1be73757c4fada52154c5f905fc529df18c3f97c21a50706a655b65800343c0142249052a2d2f566455fc8b1b07d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | b702bb64be7e5ff85214a8771dea56f3 |
| SHA1 | ec3d98894f8749da1526f092c24cef4955e3e786 |
| SHA256 | 0db6cfe661a7d52d77295d6e46688e71e818c435987171b9190eac322a8f72f7 |
| SHA512 | 88f61c2130ddef13347c2d3598e4f770cc3a79433de835aaf9144c355fde3da86332b017eeb5388e39be716e018f763f3d25e52130038ee4c7b17282177d3077 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | 94275bde03760c160b707ba8806ef545 |
| SHA1 | aad8d87b0796de7baca00ab000b2b12a26427859 |
| SHA256 | c58cb79fa4a9ade48ed821dd9f98957b0adfda7c2d267e3d07951c2d371aa968 |
| SHA512 | 2aabd49bc9f0ed3a5c690773f48a92dbbbd60264090a0db2fe0f166f8c20c767a74d1e1d7cc6a46c34cfbd1587ddb565e791d494cd0d2ca375ab8cc11cd8f930 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt~RFe57e01f.TMP
| MD5 | ced5aef99b2431207d9a96b3f4556749 |
| SHA1 | f2d9ef184faae3ef6ad82da93fdef8b2d1deed98 |
| SHA256 | 0d869480844f3577ce8e7d4def3ad3ed9359048870ccd94dc61bfb5c1f71ed5d |
| SHA512 | 125b57cffe72572353704932a6a0ba6e2612e98dcde2f78e6116f86e3392bac39168ebc496d6dab212f90da83fb0afdc1089f8b0e6349b3c6ccb305efc5b3cb4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_spinpasta.fandom.com_0.indexeddb.leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | aafb44bc777ce0be2f07c91cd83cf71a |
| SHA1 | 1958f15e9e0f68ac3082acac954e09a420a56d92 |
| SHA256 | 9974a01bd586baed11e9252891ea26d6d7ba67d6277bf2f5305a466632cca74d |
| SHA512 | baf60e235c908d1e4dc37b4224a8952db22802f50b9d6fb6d84b4e6576d63ff854853b9b03dda46a546a8ffac33084be671fde89e60b392ee8ee1435b561b161 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.fandom.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 6e21e16e1d447243ab839f74bd71e234 |
| SHA1 | 224f3bd358b5d25380e5704e0a81f4338a011044 |
| SHA256 | d73b4ccf53a2b6ef4c4e08e7f96dea67fc5c8bc2480dececed0e70dfe7a654e4 |
| SHA512 | 08339d7420afd3b8a5f66d2885012bd083beb039379d555e198459ef73b5f633ba4b671e3d2107ce4c0239ede90d789bf744efed9920b66cf72ab63adf76f48b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1e7dd88886f06b2f969b40ef95983de8 |
| SHA1 | ac742da9d884003cb740ecb05ca776214fe4ce3a |
| SHA256 | 981b10e95d5cfc5d8ee88fb734eb0ef18bb3ea94182f5868a4cbeb9ca48f804d |
| SHA512 | 8789a5bd6b1866a3407093eecdd9b17fab1c99fb1aaf806fd9df4324f779c5585ae743c9a5c61a2eee90d883d1a1444bac193a0a71c818a1315f2a40c2494cc6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | f0c27286e196d0cb18681b58dfda5b37 |
| SHA1 | 9539ba7e5e8f9cc453327ca251fe59be35edc20b |
| SHA256 | 7a6878398886e4c70cf3e9cec688dc852a1f1465feb9f461ff1f238b608d0127 |
| SHA512 | 336333d29cd4f885e7758de9094b2defb8c9e1eb917cb55ff8c4627b903efb6a0b31dcda6005939ef2a604d014fe6c2acda7c8c802907e219739cf6dab96475b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | dd242f4737b2737ecad98bc2028b544a |
| SHA1 | 065a4e6f50f16e5986df7f582d4839e59c4338a4 |
| SHA256 | cc8950f8d690094464d97041d919cab9ec3af790437c6e3febb754e245171cd6 |
| SHA512 | b393c7f0da53d9ae875743cb564b223b2031767844db1de296b6e652492bc29f8e19bae002b66e987c00b11009ac7df0bff7a36d661f7846e8bd8c9a0957a272 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | bb82f6b975721f7516c470271507feb1 |
| SHA1 | 992a23f0dbd86734402fd9a29706436bc76fba1d |
| SHA256 | 495e8e7f53579ef9db3cde689bd31c4665ef84d900eed9f4a58887637eb26e69 |
| SHA512 | 371f71a1b5376e5befc6fbb3d4cd1c2530aea5a87be2da08c8d0efad4b4aab338c2aee40880ece4442f284fc26ee94a8bd11cbd3cf2cc9f80c44a4e0ba9db036 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | e0fccaa0e570df54fd0e81d3f3716e4c |
| SHA1 | a1af40d357ea21debaa565be33a74f5fd9937c52 |
| SHA256 | 4b92450597fbf7d2087825710c3c47b09b5bfea3e00ece83062b87763ee7e7de |
| SHA512 | 726793d1632a4b4b0c3c15a0864ab611b32017fa8d07129f32bfaa0f13238648b0066d113185c0ed92ff20c2c1e089ae1fefe069840c5d4a27ddd2967cecc042 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | fcc96cae3b271628475e31290298ea6f |
| SHA1 | d248210290717be34a932275c1d05464cad9ead4 |
| SHA256 | 2b91b24af59041ebb3e0cc33fb734ef7c0dae9ce8ceb3429ff68f83460a41fa5 |
| SHA512 | 8e91a711dbf62fec91f816291fbd73e492b1fbebd3bb1324753bc5c634089a7fecb02f6d9e10ac717281fa55e5019181140cc04c5b6f7bc4bf562d92f8bc456f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe583505.TMP
| MD5 | 09b697a56d9f4b4ffc0e739193620ed4 |
| SHA1 | 1cbc8905f1ceef993c58d6e87475dae2a5bb77d2 |
| SHA256 | 9f18c6b1ea38b704204a5cbdc06f87307b238db41241c3df33d6710b636b7923 |
| SHA512 | 2ecad2832d18d4f11cc703881b19d03b010e5a9863520abfd950ad3e2cd85f553e519200759d2796ec894214adc618b466aed6687e7b9f6b8fbd736381b7310b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b3dcabcb795ce9f5aa6c3ee1ebb25552 |
| SHA1 | 304f263a6880e17f09df4aabe9ee757e6d5d4551 |
| SHA256 | 1acbd6825621cc76bb0d33e95fb4cfc8a520e3cdbebaedad9d8d48e01fb46b79 |
| SHA512 | a7ba007a6e78e254cf9df22035d80a018b08d45bedf6eed81716c686a1fd6ba2e4499e3b599574ef44284621b77bf5ca7aea61620c11ca43cd556ddc383aca72 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 6734d9b7f9bbb56f51bdfd69f637b8a3 |
| SHA1 | 204a9ff72fc66316fe94f3ef7ffe4875c42dc284 |
| SHA256 | e2d296163da88899bd43710ddb1e54fedd92322827966cfd23537b39f3a91695 |
| SHA512 | c54703aa57a40b2a0bd108ae7c5c86390867c28e978dac485cc735636355f1c04b7e8841ce11b8838e85b86e181f2a4dd9d033560e7b406f4ddb23509ba9e56d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | 87c2b09a983584b04a63f3ff44064d64 |
| SHA1 | 8796d5ef1ad1196309ef582cecef3ab95db27043 |
| SHA256 | d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0 |
| SHA512 | df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | 69d3914a712a4610e7237d2df17c476c |
| SHA1 | ef5542cbbd05325e617fde5ce83e65bc01a070d6 |
| SHA256 | 0783188721ceb7285d463bd29fda050498b301a84f74ea603cf6d364f0c0f52f |
| SHA512 | 8ebb53e5e565aba680a2f4ec95c73bcc943504ce17cf73a90ef5dc37bb7d3cea912fba8ea20a45c0aa3b8804d789b044f940b057e9e31a7458f05e322a59712e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 249b0de3d74b3884972b196617b574c0 |
| SHA1 | cdd95b4e9ab1ae8f29c9ecbaf0ed1989d09b86af |
| SHA256 | 38af6a677b432df7570d0811c1ab8f2bca749438ed89f51f301913434e5058cc |
| SHA512 | c9f084f686b0a618b7447c98f9f0162fb2d0e553652aa0cee324cf9b250d2d538d168d57c3617b84cc0cca042a648bb8a18cc242d1cde151e3749bd0d2e7e3ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000015
| MD5 | 04de8a9fa3884e240a8163f2b4e999b9 |
| SHA1 | 569a0b316bc74e30267ab711dbfe8140e1dae774 |
| SHA256 | f1b83275dabc5d7f03019a987abf0e6ef5bc18675799d81fb2348ce3ef29be32 |
| SHA512 | 1c6d557868e2714fea9b90ec05c1f4c10aa2704e5e6df60e687ac9f9e51f17101fa50cc47ead698e4073c5f5e508fd246b6a7d9073bea38e17c800c966fa53f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001a
| MD5 | e83d2cc3ae5aa608538432695f2812ec |
| SHA1 | 76284674c3a38a313fa0234df4872e1120a3bce5 |
| SHA256 | 87ddab4115f08954e1037a7d4a6b94c5c8528122eed7b90d007b91f057030e55 |
| SHA512 | 994340836cbfc52b4244ee1196adaf0bf19f987e3ea064f1faad3aef0ba7dbadc77a3d4d08c70fd73dbfa03140ffce15ad5f8bd67179bf492ed4127aceafa6bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000029
| MD5 | 9e3954e384c5af053acffd96b63a7289 |
| SHA1 | 74be79c98f6daafdff906e9a2fb3f44246fb94da |
| SHA256 | 3cdc949b2b68103b862b14487c5cb36e138ef9bc7cbf23b2a90849c28cf606c5 |
| SHA512 | b16235a6be76e0281971ad173bb782b9df275839e15267ce54e45c40d30836055b2be31c7f273a91203ea4de94ade39b0f11d7e9c57bfd0d38f4054ab7f53fc0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002a
| MD5 | 3e0379fa3f0f53026f5db1397280925d |
| SHA1 | c0e0f3c1456fdf51ccfee7412c2fe8d6512a368f |
| SHA256 | c5aa76c615cbb43f20f84d8b941f99700669670ce344ed0347db9ce7c2571f18 |
| SHA512 | 2b198f0f5defe2f494326af7c3e06ce5daf588eb386c365cb4b39a8d9fa8c91fc9872290fe8bcdd114ec178634a9e15e381f78d3a46d82e7887ce8bd566367be |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000028
| MD5 | 3dda883b89b1f31dd1e8e0be2d4250e9 |
| SHA1 | ff69000e8307afcb2b4db7d6117b47975f9de06a |
| SHA256 | e60268695e6c66a62ad318850e45954bb22d21f2ae62fe9f0c5490dcb1e69f9b |
| SHA512 | 25176c5acc9cf658129508ccc1b7fc8e93777cc59a404caf06a0e0eeb7c10b5276923aa51d56a99ebfd45d9f05b16f598794fb31ea0aa39565770b3c3b8c8c43 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002b
| MD5 | 71d7561833574cd74f345b379e31948b |
| SHA1 | add3759c792417cf250f76fd34fbd6184842bf37 |
| SHA256 | 262b061e49d4d14b6a48151e1c5d3424df2231ec2d2d8d21bb64e0182b1aaaef |
| SHA512 | 800c7427953168d44f550b3d8d7b5e82419615b87feac9f2efeeca2c7d7e6dfc1e74a4573dc4d772d8cc6dcc2241bac33964fbda3318aa5ac947cc73788a81c4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00002c
| MD5 | 03230dd42f79a152d4167da777b25930 |
| SHA1 | 5fb12828c21013decbdcaaa6a0b172958319a4b8 |
| SHA256 | b38bb176acfe61a3ebaa9dd41cf299f0ebfe364762b213ef8281f750eedcbbb1 |
| SHA512 | 79a24a7c52a0023e285266b22dbe9e53aa276f8dd1db93545eab857510d6bfa7f1bae76d3cd09910e9362e32a341ea679d54fe1abca6965976c204279eb2871e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old
| MD5 | 35880824832550b8dfc4170289777e3d |
| SHA1 | ad6046e24722e7ccd38d9660af6038114cce895f |
| SHA256 | 3d5607f168bef1281ad4a8304a0fb9d5b6676ead26d2f119f72e85a2fb7b3713 |
| SHA512 | d06c3e56e5e5e789d2e16e9be1820a07f4ebef0848d5e127155f32b4d362b2c37fbe8ace53234e4e9437d158a40e82e52f078eed0fbb2b99024f1f358301918c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\LOG.old~RFe5854e1.TMP
| MD5 | ea25fcfd3ba14ab8a729f66b0e5c276e |
| SHA1 | 2a05c2e6e367e21ebd064e41700b757e45cf8d4c |
| SHA256 | b268651cc246f88c96ea74f31173819998320408122fcb726ce0d9ae705e5a12 |
| SHA512 | c6ae6dd9a0c7bd6487e14db6a5723601602d94c72436364acefea2b361c2472f8021f03545ce3349aada61cb0f11b0cf322e0b485ef503c44f28ead9ab1704cb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt
| MD5 | e05b8519a5a3a9c4100669813061a6d0 |
| SHA1 | bdfeb1d65fb7658e0e70ed6730532c6f99d99598 |
| SHA256 | a63eb7e41b13918b6ef104c0b1bb55dfb07720bb313d23400b56cff497659bce |
| SHA512 | 2d310dca30b7c83c9aa7baf496cf5ef009d125871dc00b0712835cf5e2dd383295439465dc20951f786f57b9ef716826d68546ff401548b4f04b9c22f36699ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_www.youtube.com_0.indexeddb.leveldb\000003.log
| MD5 | 3f70b55c0ea959b562f18b8f9f26e65f |
| SHA1 | a234b2720f76579c941a1e33cd5ad0428f4966f7 |
| SHA256 | 535dd40fa42901d9710dd0a6d44f88625b8c82707372c117d21ad6a02869a1bf |
| SHA512 | 610c26d97744e3593874e7b4e4cd0e5d3b8f6e32ae31cf90302f8d63eedc44bbd7d2515200614eb90e62ce71223117538198c8d781f3e149412dd825d0eba8da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 10a00020fcc54d69bb2f0c801467b458 |
| SHA1 | 5b7c7945292c409ffe38e49daf9bbd50917d6cc5 |
| SHA256 | c6fd9428dfc81078e4c28ac6c0237c1f09c78f6ed9526006b66e893fa0ad943e |
| SHA512 | 5d5e65a66312181f9d38daadb4b019598752782f6bfea2eb97a77a3367c4017f4ca81f371f8fbbb1f0b270d9f351c7a918e82e6fed37542fcd6a05c70a5b81c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 04dc9ce89307ac6a8c982447f93726af |
| SHA1 | 2a5974d0f7ca4f2d21692c06c541fa564b9e04c7 |
| SHA256 | 89b198f360999a8609d13fd0063c2dffe1324fef09c183d158509d4fce6061ba |
| SHA512 | f2ee0ea1e827a9d598e8f3b28dc76764dfeb782b8d7192503ba1aa0cdf6fc3e2c62876744b482414f02aaed2a13d904e3d185c53631a48188903158f80f549b9 |
C:\Users\Admin\Downloads\NoEscape.exe-Download-main.zip.crdownload
| MD5 | 6da84fd648c8811cc112f4fffe20a24d |
| SHA1 | ba4f8d7fb51ee0a31b068cca51d5e5388c4b081b |
| SHA256 | 7b55dfab141eb69abbe47267e396fe8ee6bc4054fc8d4a5d91049b950c7d84aa |
| SHA512 | 0ba4c4379b77b465aa13af7ec295a9e7cc1421cff76e735890f46228af2f500202f879468322ad59b6d6ab06710828536ffcddee23093adf82498a365fee6bdb |
memory/7032-1241-0x0000000000400000-0x00000000005CC000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a2fb95c0a5240286c41e7ab7f9b25f56 |
| SHA1 | f548cdda65469e2e60e54603f0c9062698386bae |
| SHA256 | 774ca39e552a2a950323050633d84ab9ad05cf0cf9b0771d9113542e64110642 |
| SHA512 | 181ecd2b62559b12d56e3706c9ac71c2cceef0aab7eb16d62cbd4609ce0e51c2fd9325bc24315c1a4d5dbbdef874e1e45cde53b1f052e12e2bcbb71e53a7d67c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 7cf05f969a0c9cedb849a8f6d18fd83a |
| SHA1 | 11119cfb27f850c996ec1c20338df07170373f8c |
| SHA256 | ef0df563b6199d409a29a5d44b8b01e1b73d6c41eccf22b0248fc482f3961ecd |
| SHA512 | 98387867b76e8e05d38211472096d32e33e41d2e02e69b9e84b38ca856fdf657fa1482354af0262240b962f9de8751d1ce1ee3728201097f721bd074a0d5ce87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 3f92f0ea742a7ba7b861b7a33c23d374 |
| SHA1 | ee46e5df1b7176a077a6dfdb5f9fa819d747998b |
| SHA256 | 60f2c1ef008d4f536d46f36b9949c0b85e7d7c88f8032056c5be49bc203ea04e |
| SHA512 | c21ff7be6b8014a74e1c8d8ee34fa2253bb377995a979015402121ac56c1ddf91bfd4d071d4912e6f6c2289592f421b61d33451fdac1d62c0f9ff40d6191b157 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f325365ecb6e3433ffccaf4a2da594bd |
| SHA1 | 92d9016a1f7c1e5836831907009c1134980c8a0e |
| SHA256 | 77690e32da6b807c7173bd12bc60fdee693ac325aabb5190c4b830712b8218e1 |
| SHA512 | a01495f4275520d953c2b235bf425d8e96ac5fcf4f7d7b4167b8a5f5e0600d8103c84b3e1d5003205c79d735835bb180e38df2749c9ff0b4f796fb1663be46b1 |
C:\Users\Public\Desktop\ᅸᒥᢉ≛൘⒫ၒẩᚦ⏡ᳩᒘዋᰰ⧳ᬓᨅ℧᭲⍫⌁ጧ൦ዏၵḈ៸♷
| MD5 | e49f0a8effa6380b4518a8064f6d240b |
| SHA1 | ba62ffe370e186b7f980922067ac68613521bd51 |
| SHA256 | 8dbd06e9585c5a16181256c9951dbc65621df66ceb22c8e3d2304477178bee13 |
| SHA512 | de6281a43a97702dd749a1b24f4c65bed49a2e2963cabeeb2a309031ab601f5ec488f48059c03ec3001363d085e8d2f0f046501edf19fafe7508d27e596117d4 |
memory/7032-1446-0x0000000000400000-0x00000000005CC000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 11341f2a41c77f00731df66a12d25096 |
| SHA1 | 8b2b4374e6e3b56756982abf1e1ebf77aaf21d86 |
| SHA256 | 860ec690bf9215a07f74b8cdc8592fb69c1ebc6d6d499df56d7aef34b5b3a01b |
| SHA512 | e3207ff83c0cd53c1c66f2f4d763655a4553e96ac89b02169bdacf60f19ecf9fb10ad3ae6f90143f5206ce686b6d763f7fcb3f36258bb2f042e78cd339978b33 |