Analysis Overview
Threat Level: Known bad
The file https://drive.google.com/file/d/1jRzD-yRtqzV2T-jkoZI_LUKkrIrpcX_u/view?usp=sharing was found to be: Known bad.
Malicious Activity Summary
Discord RAT
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Network Share Discovery
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Drops file in System32 directory
System Location Discovery: System Language Discovery
Browser Information Discovery
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SetWindowsHookEx
Suspicious use of SendNotifyMessage
Suspicious behavior: EnumeratesProcesses
Suspicious use of FindShellTrayWindow
Modifies data under HKEY_USERS
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of AdjustPrivilegeToken
Suspicious use of WriteProcessMemory
Modifies registry class
Enumerates system info in registry
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-17 12:47
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-17 12:47
Reported
2024-08-17 13:07
Platform
win10v2004-20240802-en
Max time kernel
1129s
Max time network
1144s
Command Line
Signatures
Discord RAT
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Desktop\New folder\Client-built.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\New folder\Client-built.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\New folder\Client-built.exe | N/A |
| N/A | N/A | C:\Users\Admin\Desktop\New folder\Client-built.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | drive.google.com | N/A | N/A |
| N/A | drive.google.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Network Share Discovery
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Browser Information Discovery
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Desktop\New folder\builder.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133683724655629235" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\LogicalViewMode = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\Mode = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 03000000020000000000000001000000ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202020202 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\MRUListEx = ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupView = "4294967295" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\3 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 020202020202 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\LogicalViewMode = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:PID = "14" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Mode = "4" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell\KnownFolderDerivedFolderType = "{885A186E-A440-4ADA-812B-DB871B942259}" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\Mode = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1092616193" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\IconSize = "48" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 02000000000000000300000001000000ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\FFlags = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\Shell | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a000000a000000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1092616193" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\FFlags = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByDirection = "1" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupView = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupView = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\MRUListEx = 00000000020000000300000001000000ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7} | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\3\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:PID = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0000000001000000ffffffff | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5 | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5C4F28B5-F869-4E84-8E60-F11DB97C5CC7}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupView = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\3\NodeSlot = "5" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-523280732-2327480845-3730041215-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\ComDlg\{CD0FC69B-71E2-46E5-9690-5BCD9F57AAB3}\GroupByKey:PID = "0" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/file/d/1jRzD-yRtqzV2T-jkoZI_LUKkrIrpcX_u/view?usp=sharing
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7fff220ccc40,0x7fff220ccc4c,0x7fff220ccc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1564,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1560 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2140,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2168 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2220,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2236 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3108,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3172 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4584,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4596 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=1032,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4736 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=3320,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3144 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5084,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=960 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5000,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=4004,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5228,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5032 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5332,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=3184,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5288 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5608,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5336 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5636,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5784,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5680 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5792,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5928 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6052,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6076 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6084,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6220 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=4900,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6612,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6584 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6748,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6776 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=5856,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6596 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6752,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7036 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=6416,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7160 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=7040,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7524,i,10825295381509865177,11367817205477426387,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4608 /prefetch:1
C:\Users\Admin\Desktop\New folder\builder.exe
"C:\Users\Admin\Desktop\New folder\builder.exe"
C:\Windows\system32\NOTEPAD.EXE
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\New folder\New Text Document.txt
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7fff220ccc40,0x7fff220ccc4c,0x7fff220ccc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=2044,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2040 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1960,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2080 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2292,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2308 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3188,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3224,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3232 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3752,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3732 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4860,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4872 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=5080,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5100 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4824,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4828 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=3292,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3324 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4884,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3296 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=4712,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5056 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=4600,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4740 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5344,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5300 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5324,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5552 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5488,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5328 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5468,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5464,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5808 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5500,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5908 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=5268,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6268 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6296,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6276 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6292,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6424 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6284,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=3516,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6280,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6804 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=5452,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=6216,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7120 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7316,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6596 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=7124,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7208 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=6684,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6816 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=6660,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=3304,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3468 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6620,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7328 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=5428,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6348 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6656,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=6372 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=6692,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7492 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=6628,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=6636,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7736 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=6380,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=6396,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=7980 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=7608,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8100 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8200,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8224 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8328,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8448 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=8456,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=8588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=8344,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3528 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5088,i,423932905049715533,10470201216385446802,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=860 /prefetch:8
C:\Users\Admin\Desktop\New folder\Client-built.exe
"C:\Users\Admin\Desktop\New folder\Client-built.exe"
C:\Users\Admin\Desktop\New folder\Client-built.exe
"C:\Users\Admin\Desktop\New folder\Client-built.exe"
C:\Users\Admin\Desktop\New folder\Client-built.exe
"C:\Users\Admin\Desktop\New folder\Client-built.exe"
C:\Users\Admin\Desktop\New folder\Client-built.exe
"C:\Users\Admin\Desktop\New folder\Client-built.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.150.49.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | drive.google.com | udp |
| FR | 142.250.179.110:443 | drive.google.com | tcp |
| US | 8.8.8.8:53 | 73.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| US | 8.8.8.8:53 | docs.google.com | udp |
| US | 8.8.8.8:53 | 234.75.250.142.in-addr.arpa | udp |
| FR | 216.58.214.174:443 | docs.google.com | tcp |
| US | 8.8.8.8:53 | 0.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.214.58.216.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.17.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.58.20.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | easyupload.io | udp |
| US | 104.26.2.69:443 | easyupload.io | tcp |
| US | 104.26.2.69:443 | easyupload.io | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | platform.twitter.com | udp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 104.26.2.69:443 | easyupload.io | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 151.101.65.229:443 | cdn.jsdelivr.net | tcp |
| FR | 172.217.20.162:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | e2c5.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | beacons2.gvt2.com | udp |
| PL | 93.184.220.66:443 | platform.twitter.com | tcp |
| US | 74.125.197.94:443 | beacons2.gvt2.com | tcp |
| KR | 34.64.233.111:443 | e2c5.gcp.gvt2.com | tcp |
| KR | 34.64.233.111:443 | e2c5.gcp.gvt2.com | tcp |
| FR | 172.217.20.162:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | syndication.twitter.com | udp |
| US | 8.8.8.8:53 | 69.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.220.184.93.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.24.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.233.64.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 94.197.125.74.in-addr.arpa | udp |
| US | 104.244.42.8:443 | syndication.twitter.com | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | tcp |
| US | 74.125.197.94:443 | beacons2.gvt2.com | udp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | cdn.adapex.io | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | connectid.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 104.21.234.176:443 | cdn.adapex.io | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| GB | 18.245.162.54:443 | connectid.analytics.yahoo.com | tcp |
| GB | 18.245.255.11:443 | cdn.prod.uidapi.com | tcp |
| US | 104.244.42.8:443 | syndication.twitter.com | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| US | 8.8.8.8:53 | twitter.com | udp |
| US | 142.250.68.227:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | cat1.hbwrapper.com | udp |
| US | 8.8.8.8:53 | ssc.33across.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cloudflare.com | udp |
| US | 151.101.65.229:443 | cdn.jsdelivr.net | udp |
| US | 134.122.30.244:443 | cat1.hbwrapper.com | tcp |
| US | 8.8.8.8:53 | api.rlcdn.com | udp |
| US | 8.8.8.8:53 | idx.liadm.com | udp |
| US | 104.16.132.229:443 | cloudflare.com | tcp |
| US | 8.8.8.8:53 | cat2.hbwrapper.com | udp |
| US | 34.149.20.76:443 | ssc.33across.com | tcp |
| US | 134.122.30.244:443 | cat1.hbwrapper.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | g2.gumgum.com | udp |
| US | 34.230.157.150:443 | idx.liadm.com | tcp |
| US | 34.120.133.55:443 | api.rlcdn.com | tcp |
| US | 68.183.18.251:443 | cat2.hbwrapper.com | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| IE | 54.72.115.46:443 | g2.gumgum.com | tcp |
| US | 8.8.8.8:53 | targeting.unrulymedia.com | udp |
| IE | 3.248.137.96:443 | ads.yieldmo.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | prebid.smilewanted.com | udp |
| US | 8.8.8.8:53 | secure.quantserve.com | udp |
| IE | 52.48.160.192:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 104.22.30.209:443 | prebid.smilewanted.com | tcp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | boot.pbstck.com | udp |
| DE | 91.228.74.244:443 | secure.quantserve.com | tcp |
| DE | 3.121.186.27:443 | btlr.sharethrough.com | tcp |
| FR | 51.178.195.208:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 104.22.0.93:443 | boot.pbstck.com | tcp |
| US | 104.22.0.93:443 | boot.pbstck.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| GB | 52.84.90.126:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | cdn.browsiprod.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| IT | 23.33.64.246:443 | secure.cdn.fastclick.net | tcp |
| IT | 23.33.64.246:443 | secure.cdn.fastclick.net | tcp |
| GB | 18.164.68.61:443 | cdn.browsiprod.com | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| US | 8.8.8.8:53 | grid.bidswitch.net | udp |
| GB | 18.245.143.118:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | rules.quantcount.com | udp |
| US | 8.8.8.8:53 | cdn.pbstck.com | udp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.42.244.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.234.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.162.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.255.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.68.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.132.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.223.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.20.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.133.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.115.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.30.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.137.248.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.157.230.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.30.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.18.183.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.160.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.195.178.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.0.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.186.121.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.50.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.90.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.9.89.51.in-addr.arpa | udp |
| IE | 34.240.120.53:443 | ice.360yield.com | tcp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| NL | 147.75.34.153:443 | prebid.a-mo.net | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| GB | 18.245.187.38:443 | rules.quantcount.com | tcp |
| NL | 185.89.210.20:443 | ib.adnxs.com | tcp |
| US | 104.22.1.93:443 | cdn.pbstck.com | tcp |
| US | 104.22.1.93:443 | cdn.pbstck.com | tcp |
| US | 8.8.8.8:53 | events.browsiprod.com | udp |
| US | 8.8.8.8:53 | yield-manager.browsiprod.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 54.68.177.133:443 | events.browsiprod.com | tcp |
| GB | 13.224.245.85:443 | yield-manager.browsiprod.com | tcp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | pixel.quantserve.com | udp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| NL | 63.215.202.178:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | intake.pbstck.com | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| US | 104.22.1.93:443 | intake.pbstck.com | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.68.164.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.64.33.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.143.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.34.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.120.240.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.1.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.187.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.245.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.177.68.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 178.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | 82.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.229.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 205.47.74.20.in-addr.arpa | udp |
| US | 104.22.1.93:443 | intake.pbstck.com | udp |
| US | 8.8.8.8:53 | file.io | udp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 142.250.68.227:443 | beacons.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | www.file.io | udp |
| GB | 18.245.218.117:443 | www.file.io | tcp |
| US | 8.8.8.8:53 | hb.vntsm.com | udp |
| FR | 185.93.2.251:443 | hb.vntsm.com | tcp |
| FR | 185.93.2.251:443 | hb.vntsm.com | tcp |
| US | 8.8.8.8:53 | 117.218.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.2.93.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.107.55.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | hb.vntsm.io | udp |
| US | 8.8.8.8:53 | hb-vntsm-com.global.ssl.fastly.net | udp |
| US | 151.101.1.194:443 | hb-vntsm-com.global.ssl.fastly.net | tcp |
| US | 104.22.47.142:443 | hb.vntsm.io | tcp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 8.8.8.8:53 | analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| BE | 142.251.5.154:443 | stats.g.doubleclick.net | tcp |
| US | 216.239.32.181:443 | analytics.google.com | tcp |
| FR | 185.93.2.251:443 | hb.vntsm.com | tcp |
| FR | 172.217.20.162:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cdn.exelator.com | udp |
| GB | 143.204.176.91:443 | cdn.exelator.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| FR | 172.217.20.162:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 194.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.47.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.5.251.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mydmp.exelator.com | udp |
| IE | 34.254.143.3:443 | mydmp.exelator.com | tcp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| GB | 52.84.90.86:443 | config.aps.amazon-adsystem.com | tcp |
| IT | 23.79.91.48:443 | secure.cdn.fastclick.net | tcp |
| IT | 23.79.91.48:443 | secure.cdn.fastclick.net | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 8.8.8.8:53 | onsite-tag-logs.apps.nielsen.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | analytics.twitter.com | udp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 3.33.220.150:443 | match.adsrvr.org | tcp |
| US | 3.230.85.140:443 | onsite-tag-logs.apps.nielsen.com | tcp |
| US | 104.244.42.195:443 | analytics.twitter.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | udp |
| NL | 63.215.202.178:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | load.exelator.com | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | 91.176.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.90.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.143.254.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.91.79.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.220.33.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.42.244.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.85.230.3.in-addr.arpa | udp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 104.18.22.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cdn.edkt.io | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 34.120.111.33:443 | cdn.edkt.io | tcp |
| GB | 18.172.154.232:443 | aax.amazon-adsystem.com | tcp |
| FR | 51.178.195.208:443 | prg.smartadserver.com | tcp |
| FR | 51.178.195.208:443 | prg.smartadserver.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | elb.the-ozone-project.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| DE | 18.197.60.108:443 | btlr.sharethrough.com | tcp |
| DE | 18.197.60.108:443 | btlr.sharethrough.com | tcp |
| DE | 18.197.60.108:443 | btlr.sharethrough.com | tcp |
| DE | 18.197.60.108:443 | btlr.sharethrough.com | tcp |
| US | 8.8.8.8:53 | apex.go.sonobi.com | udp |
| US | 8.8.8.8:53 | track.venatusmedia.com | udp |
| NL | 147.75.102.143:443 | prebid.a-mo.net | tcp |
| US | 104.18.3.179:443 | elb.the-ozone-project.com | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| IE | 52.48.109.185:443 | track.venatusmedia.com | tcp |
| US | 69.166.1.8:443 | apex.go.sonobi.com | tcp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | 145.22.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.111.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.69.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.154.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.60.197.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.3.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.102.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 185.109.48.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | f0e0ff84968dd7e3ecd77a8205e1cbb9.safeframe.googlesyndication.com | udp |
| FR | 142.250.179.66:443 | ep1.adtrafficquality.google | tcp |
| FR | 172.217.20.193:443 | f0e0ff84968dd7e3ecd77a8205e1cbb9.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cdn1.vntsm.com | udp |
| FR | 185.93.2.248:443 | cdn1.vntsm.com | tcp |
| US | 8.8.8.8:53 | 66.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.2.93.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| FR | 216.58.215.33:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | tcp |
| FR | 142.250.179.65:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.179.65:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 33.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 34.120.133.55:443 | api.rlcdn.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 104.18.3.179:443 | elb.the-ozone-project.com | tcp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| NL | 147.75.102.143:443 | prebid.a-mo.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 151.101.1.108:443 | acdn.adnxs.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 216.200.232.249:443 | sync.mathtag.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 54.145.138.99:443 | sync.srv.stackadapt.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| GB | 23.36.168.202:443 | ads.pubmatic.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| IE | 63.33.29.231:443 | sync.crwdcntrl.net | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.168.36.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.138.145.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.232.200.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.29.33.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.1.166.69.in-addr.arpa | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | bc-sync.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 3.33.220.150:443 | match.adsrvr.org | tcp |
| US | 172.64.151.101:443 | ssum.casalemedia.com | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 52.3.208.189:443 | api-2-0.spot.im | tcp |
| GB | 13.224.222.60:443 | eu-west-1-cs-rtb.openwebmp.com | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 104.17.43.93:443 | gum.aidemsrv.com | tcp |
| IE | 52.50.96.133:443 | match.prod.bidr.io | tcp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 52.3.208.189:443 | api-2-0.spot.im | tcp |
| IE | 52.50.96.133:443 | match.prod.bidr.io | tcp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 54.145.138.99:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| IE | 52.50.96.133:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| IE | 34.251.11.52:443 | ap.lijit.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| IE | 108.128.166.156:443 | jadserve.postrelease.com | tcp |
| IE | 52.50.96.133:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| GB | 23.215.239.190:443 | secure-assets.rubiconproject.com | tcp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| US | 23.20.238.102:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.108.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.43.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.96.50.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.208.3.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.11.251.34.in-addr.arpa | udp |
| GB | 92.123.143.216:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| IE | 108.128.166.156:443 | jadserve.postrelease.com | tcp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| GB | 23.215.239.190:443 | secure-assets.rubiconproject.com | tcp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| US | 104.17.43.93:443 | gum.aidemsrv.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.238.20.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.166.128.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 172.217.20.196:443 | www.google.com | tcp |
| FR | 172.217.20.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| FR | 142.250.178.142:443 | clients2.google.com | udp |
| FR | 142.250.178.142:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | 142.178.250.142.in-addr.arpa | udp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 8.8.8.8:53 | www.file.io | udp |
| GB | 18.245.218.117:443 | www.file.io | tcp |
| US | 104.22.47.142:443 | hb.vntsm.io | tcp |
| US | 8.8.8.8:53 | hb.vntsm.com | udp |
| GB | 143.244.38.136:443 | hb.vntsm.com | tcp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | tcp |
| US | 104.22.5.69:443 | a.ad.gt | tcp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | udp |
| FR | 216.58.214.174:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | mydmp.exelator.com | udp |
| IE | 34.254.143.3:443 | mydmp.exelator.com | tcp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | onsite-tag-logs.apps.nielsen.com | udp |
| US | 44.219.64.149:443 | onsite-tag-logs.apps.nielsen.com | tcp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 149.64.219.44.in-addr.arpa | udp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 8.8.8.8:53 | track.venatusmedia.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 104.18.3.179:443 | elb.the-ozone-project.com | tcp |
| IE | 52.48.109.185:443 | track.venatusmedia.com | tcp |
| NL | 147.75.102.143:443 | prebid.a-mo.net | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| GB | 18.154.87.148:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | apex.go.sonobi.com | udp |
| DE | 18.157.230.4:443 | tlx.3lift.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| DE | 18.199.162.64:443 | btlr.sharethrough.com | tcp |
| US | 69.166.1.8:443 | apex.go.sonobi.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| NL | 81.17.55.112:443 | prg.smartadserver.com | tcp |
| NL | 81.17.55.112:443 | prg.smartadserver.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 142.250.179.66:443 | ep1.adtrafficquality.google | udp |
| FR | 172.217.20.162:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | bd2d36451639fbb0612b3e466b8bf7f8.safeframe.googlesyndication.com | udp |
| FR | 172.217.20.193:443 | bd2d36451639fbb0612b3e466b8bf7f8.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 148.87.154.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.230.157.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.162.199.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | choices.truste.com | udp |
| US | 8.8.8.8:53 | pixel.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | ad.adsrvr.org | udp |
| US | 8.8.8.8:53 | de2-bid.adsrvr.org | udp |
| US | 15.197.133.55:443 | de2-bid.adsrvr.org | tcp |
| US | 15.197.133.55:443 | de2-bid.adsrvr.org | tcp |
| GB | 108.156.39.38:443 | choices.truste.com | tcp |
| GB | 108.156.39.38:443 | choices.truste.com | tcp |
| US | 44.227.240.179:443 | pixel.adsafeprotected.com | tcp |
| US | 44.227.240.179:443 | pixel.adsafeprotected.com | tcp |
| GB | 99.86.116.119:443 | ad.adsrvr.org | tcp |
| GB | 99.86.116.119:443 | ad.adsrvr.org | tcp |
| FR | 142.250.179.65:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.65:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | static.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | st.pubmatic.com | udp |
| US | 8.8.8.8:53 | 38.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.133.197.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.116.86.99.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.240.227.44.in-addr.arpa | udp |
| GB | 52.84.90.96:443 | static.adsafeprotected.com | tcp |
| NL | 185.64.189.221:443 | st.pubmatic.com | tcp |
| NL | 185.64.189.221:443 | st.pubmatic.com | tcp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| US | 52.200.216.138:443 | dt.adsafeprotected.com | tcp |
| US | 52.200.216.138:443 | dt.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | choices.trustarc.com | udp |
| GB | 18.244.140.88:443 | choices.trustarc.com | tcp |
| GB | 18.244.140.88:443 | choices.trustarc.com | tcp |
| GB | 18.244.140.88:443 | choices.trustarc.com | tcp |
| US | 8.8.8.8:53 | 96.90.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.216.200.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.189.64.185.in-addr.arpa | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 104.18.3.179:443 | elb.the-ozone-project.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | udp |
| NL | 147.75.102.143:443 | prebid.a-mo.net | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 3.33.220.150:443 | match.adsrvr.org | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| US | 54.164.250.202:443 | sync.srv.stackadapt.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 74.121.140.211:443 | sync.mathtag.com | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | 88.140.244.18.in-addr.arpa | udp |
| US | 69.166.1.34:443 | sync.go.sonobi.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| IE | 3.248.137.96:443 | ads.yieldmo.com | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| US | 54.164.250.202:443 | sync.srv.stackadapt.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| IE | 108.128.166.156:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| DE | 51.89.9.254:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 3.33.220.150:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | eu-west-1-cs-rtb.openwebmp.com | udp |
| US | 104.17.43.93:443 | gum.aidemsrv.com | udp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| DE | 162.55.233.28:443 | sync.richaudience.com | tcp |
| GB | 23.215.239.190:443 | secure-assets.rubiconproject.com | tcp |
| IE | 52.210.135.1:443 | match.prod.bidr.io | tcp |
| GB | 92.123.140.19:443 | player.aniview.com | tcp |
| GB | 13.224.222.56:443 | eu-west-1-cs-rtb.openwebmp.com | tcp |
| US | 44.195.106.120:443 | cs-server-s2s.yellowblue.io | tcp |
| FR | 217.182.178.228:443 | ssbsync.smartadserver.com | tcp |
| IE | 3.248.137.96:443 | ads.yieldmo.com | tcp |
| IE | 52.210.135.1:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| IE | 54.77.174.117:443 | ap.lijit.com | tcp |
| US | 52.45.172.157:443 | api-2-0.spot.im | tcp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 3.33.220.150:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| NL | 185.89.211.84:443 | secure.adnxs.com | tcp |
| DE | 51.89.9.254:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| GB | 23.46.73.76:443 | eus.rubiconproject.com | tcp |
| DE | 162.55.233.28:443 | sync.richaudience.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 202.250.164.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.140.121.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.239.215.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.135.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.178.182.217.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.106.195.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.172.45.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.73.46.23.in-addr.arpa | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| DK | 37.157.3.26:443 | cm.adform.net | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 172.240.45.78:443 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | ssp-sync.criteo.com | udp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| US | 8.8.8.8:53 | odr.mookie1.com | udp |
| US | 34.160.236.64:443 | odr.mookie1.com | tcp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 78.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.3.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.236.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.233.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| GB | 23.36.168.202:443 | ads.pubmatic.com | tcp |
| US | 172.64.151.101:443 | ssum.casalemedia.com | udp |
| US | 172.64.151.101:443 | ssum.casalemedia.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| DE | 18.195.234.25:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| FR | 54.38.113.5:443 | pixel.onaudience.com | tcp |
| NL | 34.91.62.186:443 | um.simpli.fi | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 104.18.24.173:443 | a.tribalfusion.com | tcp |
| NL | 35.214.247.69:443 | csync.loopme.me | tcp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| SE | 13.50.192.155:443 | d5p.de17a.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| FR | 141.94.242.226:443 | green.erne.co | tcp |
| DK | 37.157.6.231:443 | c1.adform.net | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| IE | 52.215.155.11:443 | cm.adgrx.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| FR | 54.38.113.7:443 | pixel-eu.onaudience.com | tcp |
| IE | 63.33.29.231:443 | sync.crwdcntrl.net | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| DE | 3.75.62.37:443 | cms.analytics.yahoo.com | tcp |
| FR | 51.178.195.217:443 | rtb-csync.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | 25.234.195.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.63.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.242.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.62.91.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.247.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.155.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.192.50.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.195.178.51.in-addr.arpa | udp |
| GB | 23.36.168.24:443 | hbx.media.net | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| DE | 18.199.162.64:443 | btlr.sharethrough.com | tcp |
| US | 69.166.1.8:443 | apex.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | 24.168.36.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 45.55.107.24:443 | file.io | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| FR | 142.250.179.106:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 106.179.250.142.in-addr.arpa | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| DE | 37.252.171.52:443 | ib.adnxs.com | tcp |
| NL | 81.17.55.112:443 | prg.smartadserver.com | tcp |
| US | 69.166.1.8:443 | apex.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | google.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| FR | 142.250.201.174:443 | google.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 195.201.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| FR | 172.217.20.163:443 | beacons3.gvt2.com | tcp |
| FR | 172.217.20.163:443 | beacons3.gvt2.com | udp |
| FR | 142.250.201.174:443 | google.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | dt.adsafeprotected.com | udp |
| US | 216.239.32.181:443 | analytics.google.com | udp |
| US | 52.21.10.172:443 | dt.adsafeprotected.com | tcp |
| US | 8.8.8.8:53 | 172.10.21.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gateway.discord.gg | udp |
| US | 162.159.136.234:443 | gateway.discord.gg | tcp |
| US | 8.8.8.8:53 | 234.136.159.162.in-addr.arpa | udp |
| US | 162.159.136.234:443 | gateway.discord.gg | tcp |
| US | 162.159.136.234:443 | gateway.discord.gg | tcp |
| US | 162.159.136.234:443 | gateway.discord.gg | tcp |
Files
\??\pipe\crashpad_3604_FLWSNMWOGORQZQIL
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 9e7b9f277615df7a5e0be788e6a73145 |
| SHA1 | 47875f6401159c7df687cf32845bf72390a64acc |
| SHA256 | 4adae07df64c85a88491f24b1e76f98950af2d05369a1dd7e4b4b8813da823a6 |
| SHA512 | b059c85b3e74848c20ffb862e0e6ca9fa47838c0fc91442b3058b7efa1fd485dfb6656eeb3cbb503efb0d7de6e44db4bec6be9610de724f4f921c4ca157d7f86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 86569d6237faebb0c5f89378c920eef0 |
| SHA1 | d5ba9ef13e070462286500df6175ed32f51aa010 |
| SHA256 | e11baefe08cde87b8d285398eaf662488cb412bf71e33ecba8f656235e994a1a |
| SHA512 | 6de00fd3c4a945975c39bac31efdbe1f4763be03b35da5024ba2ca243d0238219f6df6f612603762390389b054fce3705a24bf8216389768a9f152c0d243055f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 069f25665435daf34bb15c61482b74cf |
| SHA1 | 4e4d19b27533a1231109f13dc06fc15543434b43 |
| SHA256 | c6c6ad7819d75a0f9060a6d26f9922674e9a9e64892ed8620f7caf17372fb732 |
| SHA512 | 55b9bfe5d63f13d4ead9b64ef81dd14a0e9ebe501fdd42831552b6be590a5e2d36fe0755a9ab6770c1eba9bc50034ac75c4131f5ce76a55b9ecc474bd78cca5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 0747a60998802c522abc41b93dc46125 |
| SHA1 | bd66e00c88cb7e2c89a1252b3722ebcc37db0976 |
| SHA256 | b27a10081458b819eb4c4ea0f73bf2b00dfd192ec3652af3c4f183144c90e597 |
| SHA512 | e799887ca29beb8de1343847f61b28fdcabcacd3fe9c1061315c75991a6e249adc36d6d446216ea7cb2dab2c30bc2acce5188a61c27a9c3324648ea11146e263 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 24b1ce46454ba311cac84539d89d8ecb |
| SHA1 | 936d0a61e00a62f5503213174c73d083cfa58e68 |
| SHA256 | f28b02f67f858816d6386c8bfa01e3333edf6ec2b886b9301dfc9e1eeb9390bb |
| SHA512 | b4acfd70143cb6d56b8f424571aa63cf5633c4594768a6d3c1a6e4ab579885c7889c4c009a6a397165635c34626a23c552b1f6fc43b455a787c45afa68de80ec |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6f4a78e5a18e5ce2328a318edd97e2e4 |
| SHA1 | 4898d615aea2db3bdd7152e042bd3cbd0d2d9c95 |
| SHA256 | c33dae4bae1b5b4026c033aa10a3f1cfba44528c9fa222dd7150a0a5e5a66c00 |
| SHA512 | 66ff01b87ac1da5164c7270ed1fca6e2c8d02356ff556b8dae03d47b2eecd2e812e54f04dad0f1153933e74045d4561d1d8f7ca6ef7b329ccfe547f9f51b4523 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a5c7609ef03f10422e9dc42364199008 |
| SHA1 | 67fac11184442dc3664d5919ad8abca5df1c78cb |
| SHA256 | bb4e836f0dd8f330830c734eeacf9879b5449d1fac0e7edf7c51b4d459e4ea45 |
| SHA512 | cedcb00beced73e0a78cacec67ba248485dc12785acf417f26894a6beea382afc95f9780f4f21bc860a915062ba589f4c8118bbd2d0316daf02981a14e67a44a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9e9c50151d37d07096b5892b8142d613 |
| SHA1 | 75fb129ff1a90c55424431d8dd8eb4249b5aec7b |
| SHA256 | c25db6913db612c1fcb35a4d72badf8e798c1938201b7a8c018db5ae188e0e26 |
| SHA512 | 3ae393e3ceba629443eef8adadc12bec99444eda6dd990b80dad48f3628801ab59c039864a75cd1ffe85d4cd7538420d1e18452f773909ae9b872dfa90137f7c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8782778be3d651e335e1fc717b97a70b |
| SHA1 | 2cb70ffb4b466bb88835a3ce29e6a275858b5303 |
| SHA256 | d63f6d5c7b6a8d82094e7ba4272fa46c1cb4b1ca3fe7def9738067c40feee715 |
| SHA512 | 34149b0986d13c9c3126ec00d495209409cff66a661156157d210afc5b8b5c4b032c1429ea568f5322dc02d38a5aa1fca360ee8589dc61e410ac3e266b23b0a4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 859912edc137005b4ff7098bd89d8943 |
| SHA1 | eb129f416e908fb465eb8ff62875fcf35aa74ff0 |
| SHA256 | 923707406ea547429baef4e478016b02f4fa3239cebe8271347929a0edd0b7fb |
| SHA512 | b9b7495725f978248f2263e70be70919eaccb978ef4568fe10441d1edec62688360de8c7ba7cd7033e67672666db97a0761a040fee56250ffbc4342589746ee1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a313c649b6d532e7213b63c1631026b9 |
| SHA1 | 009870f06138fbb91f8fd70382bb28b51430b43c |
| SHA256 | bd82b44eec02943044a12f2ac6f6babd977d9204c0e0dbd25c9895113dd06644 |
| SHA512 | 98843f9db9cdc919e9008317eb17ec75bdc984f5f69b886b985f3f08844625a13143a1e9ecba2f68856e85f0bacefb438abbae0ecdaba536dfd6ab8dff8421cf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9ffc4c95d0d4af0b19a0fb5000e6e871 |
| SHA1 | a2ebb1c358cefd595074ff6a5e65f1621bca5b1f |
| SHA256 | 2a97e189710d3e22692288b69cec4ae3086c701b31be5a4b5d543c7bd902a3b9 |
| SHA512 | 9d93df1980c6407671633f9223e1fb0b740feee21dd71a058fae78aaf2ea5bec94d137c4e98e57300500f31302d1e6b65aeb3a0dd3faf209976763adedeb0bbc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 438cf0d143f9e6213311b2bdb23161a3 |
| SHA1 | bcd144cec6d104909e64531aeb30b2f24b1f71e0 |
| SHA256 | a20d0ab877127ac3aeb884037f566dcc1b2c15694f90c4041850b8daae4ca309 |
| SHA512 | 406a94949501a4fab135cf450926f5f04584ab694da8f0cd347263aa29c1f74f7717891ab5b4c261d7501ea4363440f14bf98b6b47888a30790719400709f144 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bef01c7f23b1b443d8f02d5495eeea69 |
| SHA1 | 084aef96a5e3911c50fe3653645e508b8f1cc56a |
| SHA256 | b818601d1ee23ec33ddfc16034b733b9ce49f84ae65e88d7b752ff9d0102b519 |
| SHA512 | e2721f405f453666e39bc217738a4770f8b202c6e0d2210413b436af69b4f362b39a3464b630563c05f66dd0ad3a82c22ccbe87cf10f10c5aa14d898c5820cc9 |
C:\Users\Admin\Downloads\release (1).zip.crdownload
| MD5 | 0e6e5181871377b46c5341495b138c21 |
| SHA1 | 1872e76ddf134b904e3b97edd4aaef8835dab7bb |
| SHA256 | 7fb7c3607375c2a599f58eb818506a1088006cf0bd38018317563cafd9c3ccee |
| SHA512 | 311149b6b7335826accbdaf880178cc811a3caed19b483490a0e68ef93b5b17acd63fd1e7a842e143c47a5c85b8856d2580ad6d72c1efbc2bfac26448067bbc5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 87c29a6b87ecd3ff0b258f2ea1cbb138 |
| SHA1 | 9415a4245a862cc7d73d6843528addbd2a67779b |
| SHA256 | d21b5f995718dda0e5cad89100fd44e566f427c2ed17394b9205631239b6b693 |
| SHA512 | ff639085137599ca5187b62a4247375ff7c9b5e0221b45e109199397cd33b3cb16f8f82183219d3e3cb984d3b0be38294aa55e4b259de661bf01f8a047ef4021 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e8e49a25caacc72d927a43dde020f394 |
| SHA1 | b1959c3dea8445485103823990aa818b0c9071f5 |
| SHA256 | 635f143b36c73ecf36cab5370620a6943d3f5bc52e27fde3af760cf4223bff30 |
| SHA512 | eb318c93ca8d74acafecf371a52e4274360f1de8e9e49a81863226ed40d8a3a1b929e53506c93763aaab155d82ea4feb3042e363dd4a3cf4cec6da3e2c9d79dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c1b7276f02c92839e744280938c5f7ca |
| SHA1 | 0cced45a9c1557b4d8d1b592725022c4b5412e5e |
| SHA256 | c2ddeef75046bf6e26be9e087090647ad6979bac92fd091c178f0cf224bab15f |
| SHA512 | 1b5014ae645866a40ad20b3256b870a8890f7145b34dd6dc17d926b506657d6a9cdf79b960d0d26a789b6749368119b96ed6482397e7b5cc1a3f2ce828df6591 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e50945830ec38b2092bcd13431a54558 |
| SHA1 | d027c7a374ca1bf93762739f0e48979aa79247ff |
| SHA256 | da22d58ebdcbdde1563c3ec2cf455b698da213d10bba695a87b4c126b8fdaeb4 |
| SHA512 | 38be7e8639b725cfbb5a8eaad810cd99a9170ea290f975b3632d19ded8d3a4aad8f454587ea1812de660907b4d1d674149bc35193eb894a9677b63062ea383c6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1a40b1d902c10bc2df591a8af167692d |
| SHA1 | c8137673a1837a7e8fdf75c43075635d87e36a4f |
| SHA256 | 84185d9e279cf724722816a3bd3218bbfddff7a6b25c31298fef721564611d9d |
| SHA512 | da032b2d588a567099f958a484b2db712ee2ece9209bb2ace85bf0d295ad66a230807de8f32b602ebfb477fbd2e0d2e0de2ba84d8cc2e53f481d870f0600e26d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f6a30f48eb3a1bb75e4bbed9de8e352d |
| SHA1 | 4c0c4b11ca09d0d80e0bde8858b2d0a2fc969334 |
| SHA256 | 17b233b917cd90ebf31996c11a66154ab79db889b8c07a876df439d5ce12aa4d |
| SHA512 | 3402a007462b8bf0f27eed692fc77f3eb4615be3e20e182423429fdaa340ee78a38c3dbb9a5b64d73fcf82c696124b763e763ed6a51fd09e2af66accf69e05ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | fcbe116d69b31861c13586ba04d40320 |
| SHA1 | 46b6a547d05ade3b8d585e7228d59f745126ae2d |
| SHA256 | ea18cb90e6b4453723acd78971518f367d25cc64f382470fa2330316d8bcab2f |
| SHA512 | 39b0c40037c7df0c2de0aeec681207cfb37996165f73c9c9f6aabbc19b22ec4fdceaad76bbe8d4e341b90a7ac8f0137276d59835836f1d3dc365045a08040331 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\DawnCache\data_1
| MD5 | 59b8d4e45a4e509db0fd9ff185e2c6bc |
| SHA1 | 9556d4c04f71a16314dd48051ec9d8523889a2f1 |
| SHA256 | 89aaa65b1e4e28e255b2aeca73441bde28cc29d553411dc0593ef4fce0fa8af2 |
| SHA512 | 49eae6427cd4e479dc912040094b848c74775222b562e4cbde9485b98d9cdafcdce588af5857fd13886b0b8ada9e2a0f924e68224fa7b4873415e7372f93676e |
memory/5264-536-0x000000007458E000-0x000000007458F000-memory.dmp
memory/5264-537-0x0000000000C90000-0x0000000000C98000-memory.dmp
memory/5264-538-0x0000000005CF0000-0x0000000006294000-memory.dmp
memory/5264-539-0x0000000005660000-0x00000000056F2000-memory.dmp
memory/5264-540-0x0000000074580000-0x0000000074D30000-memory.dmp
memory/5264-541-0x0000000005840000-0x000000000584A000-memory.dmp
memory/5264-542-0x000000007458E000-0x000000007458F000-memory.dmp
memory/5264-543-0x0000000074580000-0x0000000074D30000-memory.dmp
memory/5264-544-0x0000000006A00000-0x0000000006B22000-memory.dmp
memory/5264-547-0x0000000074580000-0x0000000074D30000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | efc82f8314de2fb0909127cebb38a019 |
| SHA1 | ffeb52cdf0bffa888270847d4981cc96ba448c14 |
| SHA256 | 9836d53d4914279fb42e48acea940dc78d94b2ba4866e0731a528c65ff131d2a |
| SHA512 | 89d234d0dbecccda14e5fadb343a7b80a4ce464e270d1e17488b66bf707da13c0f0de30ce9f4a20746c5951c31fe776e9d618712fa6a842749555dd1cc2b0866 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version
| MD5 | ef48733031b712ca7027624fff3ab208 |
| SHA1 | da4f3812e6afc4b90d2185f4709dfbb6b47714fa |
| SHA256 | c9ce8dbbe51a4131073db3d6ceef1e11eaca6308ad88a86125f221102d2cee99 |
| SHA512 | ce3a5a429e3796977a8019f47806b8c0671b597ead642fcbfbe3144e2b8112d35a9f2250896b7f215d237d0d19c5966caf3fe674165a6d50e14cb2b88c892029 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db-journal
| MD5 | 8304f41f1fd433f06bd30b7dbe05dd83 |
| SHA1 | f4cfb919540c4f4778f9144087efdbd4824b41d4 |
| SHA256 | d4cbffe002efddf743914ef2b474389a6b5992c97d6d0facf9e33c1bf2c50182 |
| SHA512 | f60724855c1e89cd1d189f702a4c0e0e3a051b09b0c99d332cc8c605b506981f6e164da7c9cca5889a7d9211d40531dbee3357af38ccfd90c2db85133b296123 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | d31cbb8014c727c9bc8ca1f67bc21190 |
| SHA1 | 4d82bead78f7e798e65e2ce07015ba6c5fbcb37f |
| SHA256 | d800789d2a4f2f66461ccfc8a01a351293d85a90119b2cbcf1eb2d67b28b6199 |
| SHA512 | 3b05c87d6c98cd0d9ab9133ed549ef8ded203100cbea4785df2748213871c5635c89ae9d9ca879f4d2821208093658da56ef62b6e7f324e776aa49cfe7abbbf3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 7820201f0db0c706a0ea5bb7ce018ef2 |
| SHA1 | 6d116650afbb3b25bfd6226c7d5ee00dd1fe4515 |
| SHA256 | 04f262a5cce0399379de17e5635f1e1acaf4371afe981edaaf792625a682c44a |
| SHA512 | bfecb88d8852c413525e1e1bdb3eb69c97a10e4ff67ae3ca5eb97fff5a2ee369a1b80a0d314440a375d0f9e950e0e970a6de6afed09062d8523ca28ac878946f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | c9720635bc34667579a8c3cbbd16972c |
| SHA1 | b3fe23d277d17a9cd9c96cb2768071595b4eb88d |
| SHA256 | bd7e024f076629fd19a3074fc1037922d52184ae30aaaaa84a50ee671b6521b1 |
| SHA512 | 49076416a91dfd0c5689bbd236b0a0a1d997a36451ebb2c834b35878f3eec9c15a516077b735ec7c06df9653cb0f127abe68abcba8022566fcff2c20a0e7218d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | c876cf3e75501448685361e4e21d90bb |
| SHA1 | 5f71215dcf962edec8fe08989695ec4a2455ebe6 |
| SHA256 | 3073b8355f2ecd349d8715585aa4f18cf31c90a625a19d7806a026fe05f5f44a |
| SHA512 | ea8214eec9d210ad100dfc22518c380dee8b9faad387cbdf720a8629ec3ad0f278948bffa0755fccda05763713626e74cf0617325e77b3531e9e7994d7b4ea3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000f
| MD5 | cf1caf4178c7786ee87efb0dd408108a |
| SHA1 | 332427e2a9eaef7771f849ac1ebcbe49204c2a94 |
| SHA256 | 45fd633c2c43380594cc42d08c130596308eb687d3cb068d84e9dcf41934b788 |
| SHA512 | d6fe2c035f10532280770ca88c7603fd3a37fa29e6cc04669a2359844c30dd36c78028c9bac19b89e7a2ee05432b44f123277b1baf025cc08fc9389b4d0972b6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 6c0daa90ea5e7dd0581744958216d8e7 |
| SHA1 | 0a562b2fbbd27fb07cd1daae855a1a63624dcda7 |
| SHA256 | 9d750fc101e5a7d2b63e370136413c28170e21c024497afed62dcf09e4b08ff2 |
| SHA512 | c93eb5c4f82f610f941bd480743c4eb7e7a508b88ca3fc50fed69ed95abad19c217e22973038d899e657f9bc021e8669616444c07748cba9d9aae07b482d559e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | e1c894bf3fbd58b78d850ce33d6f3983 |
| SHA1 | 08d182fede0e0f35c2d3937dad01b695f7f805d9 |
| SHA256 | 4e3e0243085becdecfd2e3cbbaa3ac44c3f66b994315796dcf7a6b9e09d703ad |
| SHA512 | 177508aaf0b27631c3d038cd4652e93a879095f7e0bd6d295be33790dd16a91015eb0b84627a349c76c8b30029e03c4c41b199f5f680a39ca4439800db750792 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | ae6ac02109e73ee782ce15ae6c78824b |
| SHA1 | ceaf15791748d1602c6cd07375109606458da1f6 |
| SHA256 | 84f6004112a219cecbf7dc75127ccd823d218270df137fc81471ee8f143061f5 |
| SHA512 | 00c91757bd913c957726ccf28de29d04f9ee8ebb89042abca69e7309f1b7275bcff06fe4724eca834fc8f18937f49eb670ca22ee0cb04cb801a3bb7a9d9ecdb3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | c4aa6c4042e42e10d2bee578a0c80ca0 |
| SHA1 | eb2401a13a18599ed21de712b737f23060e7e555 |
| SHA256 | e26efbb6ad21fea59aeab027ea7c8d60c331f9920015b6bf56a280bc65471f02 |
| SHA512 | ce0d2d59829e9d1933275a2107effcb1460564d0bac83bbaf61675f06496d4077b923fb3dae51301ab75cb98710497638344e82b3c4a93bf4c34ec311a58a1da |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | c85140502c89b2f4a8f58ce6a0b5ffe4 |
| SHA1 | 80c2451c8e09fe539c7ad97cbf1f41e85bdaab4e |
| SHA256 | 3c04e4fd7ce015f89e448fff19f01d65fdc0a073afc5de46d44008e249f7314d |
| SHA512 | b8fbea4d3046d2ade5e267fda9326535309fe5065e8645f244be3044bee0769fa24a40a2724e33f04aa0e3f5864f94486dda154fd53e704ba0fef1caf6ba4e4a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | ed76b3230fad7ddbc073911373d8b828 |
| SHA1 | e03350537c19495628ea3c3827254483b14bcf10 |
| SHA256 | c277c9967f04a3483e9142dfcdea2656d7300d00e66f116de284e894d262460b |
| SHA512 | 70867212462d893f9212317c551e5265760f5af5fa7f856b38b8d9fdc896fd3c8a89dcb3ce2119a762db0cc38fc2b0fe3d3c1e2ebdf087bf5e7c5833816bff08 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | e9b982855d8de62c24693bab0048d84c |
| SHA1 | 7cf0c4410c6fda1c5f8f3ded30af5bfbb5deea75 |
| SHA256 | 85892013de793cd7f75c5cb7c7c3b1cafd538a14913cbc59f789bf60c2f469d8 |
| SHA512 | 528f5aa50c9f29dcdfe6ac9c1020800b21b96666343211258607d71d340f63e838163e9cf4cc54baf99fbc7c71597b8df75e46310ba8d0269582daf66e393d9b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | 3db983dc06d72590b4f70c6bb88344dc |
| SHA1 | b0c684d96e905d06cbd7a8a680eda4f0089641d9 |
| SHA256 | a3ebfa571fd4ae75a36bf3730017f85a3ea1d1c9899bec768a78c70c5d3385b9 |
| SHA512 | ea771b57177921de3614e8c5b6eed6894e5a0fe0416424e542545882148b48f299c9df71764866f7b79eb2b415c31a3cdcf050c449d6e3f719bd32da7435d130 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000006
| MD5 | 16911581ab7ea10687a5aee74cbc5612 |
| SHA1 | b0b24248345739209d753a4ac77ccfc1f627b219 |
| SHA256 | c78a1da5fd0868a547cf285748c7fb73006571190385eb71c0d601b6b240ffaf |
| SHA512 | 655f1fd60533120099fcf930e6854bab67153985fcb272cb17e8ace674e171f20218794fef914960f41df2cfa90b39a77058ca9c2b02997ea8c73d21871f2444 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000005
| MD5 | be8074ca27c80d2fd526e37f5fe8c82a |
| SHA1 | a826bedf82bd1d671d83ab16643d40f6a26a8d78 |
| SHA256 | d6224b3ac7bf7fbe10bf51dd5b692dbf5a7a69a9f222c54e80d83ff9ff1f8598 |
| SHA512 | 829c38d23333a827817908e15d86d82240626e045130f660c015387f26b787da10bdff0813df8d23866c2e80731435771568d8f1f3dccf15a4515a815cb5d8f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000004
| MD5 | a7f4b774bd44acbe493a863dc6e7ddce |
| SHA1 | 7ff0c917a7712a39558bcb53e49e80cf1e606eb3 |
| SHA256 | e909fadaf684c0cc725241ab10eac19938a810607c81dc7b343de3e947b4745e |
| SHA512 | 3aa248d63056c712b6e49cc6a9c463bd5eb7e87010797397edfda9fc065bcc19eb0067e4107f66a2ee29afeb75f3e826e982146780eff67434d8f51a2ddcf5c2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000003
| MD5 | f512c9aebf49e0c1f701df5d4e157816 |
| SHA1 | 6f192ee1e7f3b46ad55e681ffdf4196f3099bdcf |
| SHA256 | 9564eb053b9986cfaa09be55dde325d12389e732dabad5fe928271d4d1f327c5 |
| SHA512 | 34e9b080029ff0f1c51eec53753c72d5861b45a8e64ae63ecb65d8c21074f1d98955a1f8ecfd23328684da0d7126edfdd7c7c38574c4c6593e59e4377741ae5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002
| MD5 | 31d53c8cdce8012a24abc8e84aa972e5 |
| SHA1 | 7287b1ec5d88304ba44fc1958b8de9596274c4e3 |
| SHA256 | 1b72bc7f54bc9170e605f6c4bb5529668c4ee3efeee602fdb63036b45b49f41c |
| SHA512 | 67b5f616ac927b0e001de3b4922e30959ae02afb425db3c06900ba97993ec26b1a1f77eb661f1b41ae1138525f507434484cbd75063204cdfc27c8a1ca9c9705 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001
| MD5 | 0360dbc6e8c09dce9183a1fd78f3be2e |
| SHA1 | 6cd4b65a94707ae941d78b12f082c968cb05ec92 |
| SHA256 | 2db6bc36808d43fa89029c652636e206fa3e889b35ecf71814ab85f8ba944af3 |
| SHA512 | 93c9f1856142da0709f807ca3e5836065e61bc8160f9281fec9244f31ed8ae8df500cd5c64048ac59b4dbc36ebd18ba8e7fbceef58134dd76441079fae147ab9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_3
| MD5 | b79ad138956b882e9886952ba0eb4725 |
| SHA1 | a5adf0a84574208bff8647db6a666e32afd7d8a6 |
| SHA256 | f64a9bd935a929005d44b9c2cc20d47dec6ddb0be08eecc48b24e894e7170aca |
| SHA512 | 22b1f8931e52bafda1ff13072da6cb1f1756a650698dd778a6a6ee904bd3959f2133e00f1f58ec6b997a0587399f7c0e7c655fad4dca91f3116e8ecf5a72d068 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Visited Links
| MD5 | 68ac3545cc8836280c2d3dcf8401f83c |
| SHA1 | da04aee0cc1e9371f23237c3c7ec9393153e5fac |
| SHA256 | 28fdff67e44aa17362e87655b3d8f5ce92fdc5cca11ac29f68118da947b5fa6a |
| SHA512 | 5d814a00006202d8c9d9ad6680f88d486b7dcf649362fac9705fc8aff90e16139a7c239660b8f046cafee8bb89b49950665f37ae1061ccbc52e98bd8e31c24af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_2
| MD5 | 27e696259d196c5a563c9262f994da10 |
| SHA1 | 207b70aef3a283d9ab33c21f08dbe8405536a01a |
| SHA256 | 191a28fb872e0ba36dd9fb0d7cdf1a35036fd14caaf23c47a6f57218eece989c |
| SHA512 | 888a170fdc83f21bd2b65d733d5d219ebeb58ed77da86dea893b464bbd148809cb52ec4ffd67ebfc1a67e8c43e16c1874d26f01b5dccd4bf12262a4c5c37c55e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_1
| MD5 | b815cfc211a5a4fae252ed906af39466 |
| SHA1 | f4b901630700c6db70ded861f252cb5d3537433e |
| SHA256 | 912e9de8da7832fb435a8ce7317a528b9d6f256905dddf357c1f898210a65bb4 |
| SHA512 | d5e8fa95434ad95aff72b2bc2f41f02be719dd05120702b11f4328caaea67b75254eb7343d628490c835e1acc56490427e5f04dc19fccf64633f5edac49c2ff7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\data_0
| MD5 | 0e9901e4ad987437f49fe70e778d051e |
| SHA1 | bc89ceb2af864192ed728fe370a60fac161e1a14 |
| SHA256 | 6727b767f3ee25d0a886fa5dc478fcbb4cbeb6a27a082fc5e20bd649c485e870 |
| SHA512 | 39ef52eb13a2b53e6a80081f14db41b3e5bb4896c646c31c9f474c9e206ededaf948f02cb4038054eb07417076c5096af84493e9ea203d32f5ebf37c9b102e0d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Favicons
| MD5 | 87c7eaacc3a7790c1322c5739d5eb314 |
| SHA1 | 1b5b368ed12c8dbf0988eebf2de72da006383f19 |
| SHA256 | 4a4add54c4fbf8a3367383da0f2b75dcc961a15e2e8c81b29445eb1006db03a8 |
| SHA512 | 28fd49befa4a5227c7270d99f757aa0a02a14a60b3a77fd4d6122e6fcf1b3778478dff66c9f716dd43a42778d8e2e3727c7ce0b5021a24b6d55b10ab4686ddbf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Service Worker\Database\LOG
| MD5 | 2312d65d285e405550c149e7b95539cf |
| SHA1 | a5e809c3df063400b70c3515d32c4fd8ff064712 |
| SHA256 | f2a852ebd5dd21ec8403dbed871a233ccbf07250fcc74d7cdecfe2242d60ad79 |
| SHA512 | 1a1320f8ed624206c25fe502b29314f834bf9a87738b7ea2888286229b264672890a5403748d874b86d1d7934b548ddb23f8d4fc4cc1271cef37ce9c13fb61d4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db
| MD5 | bf08158155d41c1a422cacea8f4deffd |
| SHA1 | d11db216fc06e87087e7288303e0d1c850a336ea |
| SHA256 | 3105b381f15b832607553f11e6da307e1f7c859f9fa4174a1b5cf308da9cf825 |
| SHA512 | 20c3d9ccc54a7226c0c71f66af889dcc2ade290a039c6b8b278921eeba94d61acfae619f1fca23a291074472118c152ecfc1de0dd2a095dabc2ba671710560ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | e6e0110ad80465dd5b1792e427292e78 |
| SHA1 | c39b4660c01448cfe5dbc2bb64ad45024e542ff1 |
| SHA256 | 8e375e640885517e30e03820c9936ab0ae4e430288f72c2ec622591ec927f841 |
| SHA512 | ed6215bd82f0d0aa82717b5c407d770985c75f3f46444506bd4b7ab8b6dca171c494119400a335c7658ec63380d4beb50b7f9ce4ff60103edddaea817964535e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ab227777671948880e48ccd451c7dad2 |
| SHA1 | 6e7036987722ec6a53f26137566a7c8e75542d68 |
| SHA256 | ad2f476d5e3775ad3c939ab0503e837eb640e86a92b19cc7a9ff9fbf1134bffb |
| SHA512 | 80321521254c949739858042e7c2e2f1226891a49edbd3da9a49e86f6479fd3e598bace9d59ce1d14824582c12c5854924ef51137824eca52bc681d8fe813235 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\History
| MD5 | 430966c2f592e300cd1f23008ece8071 |
| SHA1 | 0381800766be32bcf114b835aafa34cd814a13f8 |
| SHA256 | 9383e7d2bddf1e11a7089d00713d9d010fa61e3efe445e9420c933f938de1910 |
| SHA512 | f921d7fedf68d81f25f4d77365583d90cf38e4e0d536dfeb26c27f8d418653ce6b97fa5afed75834bd95fe0258c1667dafea13fac96db08878c834e8919af21e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | 56015bde3144936713fcca19d0029eb3 |
| SHA1 | 9e10789cb3caa95d67728f466cb4f3c4228efa50 |
| SHA256 | 1bad76391e77698f74e2eaa405bba688ea083240906f2240b8be5990cbf423c9 |
| SHA512 | e87a683557d9de8bc4eed12ad22e04b8107fb0f09c7dd8a9e1c32f84114d7c5271b8af6380ccac66844bb0f20fa4be89ee095bdb67aa7cb78e4312ae00043d10 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | feec745dc01aacf35dac229f4849e61c |
| SHA1 | b98fe26d1c10f5dcc589ac0c23ff6b2e52198f51 |
| SHA256 | 4cd9f914d178e731cc5ed7e15780b2f805c9b04f0c8b3daaa001333c687dd700 |
| SHA512 | 34026ee1baaec3524722d9e7f3b37a9ca2b6e0f55a64b7cca905f7429cce4cfb8a623c940b497109350c8a59c4a8260c0ae8f1c7708127f65c9a07a29fa1136b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 934e6ab28f4c8cfcb320d9ff89bac1a6 |
| SHA1 | d3efd5adaaa767331195049c3ccf6f3b713f17ad |
| SHA256 | 5de1cc41f9d130be0271dea26171472618573324194f327d68d82bac740123e0 |
| SHA512 | c672cc2c2e13e4756f3e77ff1d31eeb6430bc3f0936330bb70c4ddbdc222f412ee1d706f6e8ab2daa89db9e3c402ae8ab1f14f77d9590838406419259b4e3ee0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 950fa4f13b8169743dd2a609c1e87e7e |
| SHA1 | 59697b650c685e4980aea0202d7d79d8de731194 |
| SHA256 | 90176ce80d46c01ead8a2b1707ba8478b128eb4c4d2665ab1d733b308116aea9 |
| SHA512 | fb6a97d7b16c4be825cc6a5a264c4c769cc7d5c8248ef9218745acef81a60eb3e0262266cf267458db47e2b4b090655dcf1566db36b1ece990733d9eea2dd49c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | ad0424ee834a2fa8b607065a7a06792c |
| SHA1 | bfce2281409802f87cfea2792c1d947680ca3820 |
| SHA256 | 430ed23d790428b01b3ec1564ac5d92b0cc02d93d53f5bf375f40d74550e6017 |
| SHA512 | ae1963076968295f0e9571016b82ece644a4582db85a0c12282b16ed4deb68070785769cd97e2178d73ac90ca1880742e41c532873834e31290e0bd76668f258 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e1260ee27ad7f706063b059caada5a21 |
| SHA1 | 3aab7b49aaacd6a5774a3d3e13538f2f20be31a2 |
| SHA256 | 8936239f5bcc851e272aa8b2b6c3a7fb43334947b0edafcff74fecee90273d9e |
| SHA512 | 391c65a0fe76a88e37e2784730f56c376c6321ef1690a5d2a0bbe6a2fe1ed98d0456e11ed96442b17828d35a1e9cddc2104678615db7a967ab919e61946b2e8b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b40a0fa7e66f6589475aa83b80461c3b |
| SHA1 | 5afe5129236dcad8117d0b5e7ff3a4eae66ba0a3 |
| SHA256 | 47dc8e7f34f8b840f24db5f84abd92304a107a9a09285df830340c03c1106c1e |
| SHA512 | ed79a9773c1d59809d4a40a6127ddf198f9befffb0758b09358bf71be6c9dcb197c7d8dbb95ea300fc0fa301ed3cc6456646255ac6bda6b81adf195a5bd9dc77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 291bb79313c764890f937ee69780bba4 |
| SHA1 | 655994009a6b0d1675a29ca268cba7bd2969591f |
| SHA256 | 4bea16f57cac3fdf6c19af531e39d02579e310427a90b2799b37973e132b081c |
| SHA512 | 32f945b627d4cacde8937568fa48fc524e0d9055283758a71293d56a995669e272941d9437f49a0e4f7d8305cabf333499f81b3d78aadc814d52f827a1e99b12 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8e377097108dc0e48bf80222ec2d60ad |
| SHA1 | 13fede55063ac44b35680c2a473b0743fa5afae6 |
| SHA256 | 760084c03787e223f68e6219ff8fba0ba223ab444377b50012a6111842fcf1d6 |
| SHA512 | 89c93f3dc0e909b76ae78a66c1860fcc96de006d015f5b7e592b0a64eef469043a4862cf9b1a621525e1e2de7bf2b7046e8ea5d6339b2fdf979e14e0864f55ab |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8c20e51dd00a1bb77ffa7ad9dd3de862 |
| SHA1 | a0516877cf1852d2bc35b9ba315c731efaa24b29 |
| SHA256 | 759586258fb20166c5fcc471f2eb336c5f182084bd9871b14b3ab9bf4102a503 |
| SHA512 | 528430e59c72863144832e679fd75df7f824fe14a897595230709d16fa12fd4efb446578592053d6be654013f24eba0946d9cdbf3a279b875f61f042e45978f2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1231ea69cc90a2477b8843219d8cf6d5 |
| SHA1 | 8228add786c4e7a9e1b24f5c9b3f0b7a780aebb3 |
| SHA256 | 41539ba34744aeab2741d93e766ab4b977cf4394d0fede793521d934c098111c |
| SHA512 | 750316ccca2eb41edbfa48a4176246554146002204de37039a9ec8a0e5a5b4c9f259081ea70ff1d53b3667c8b7f1f54cf9bad29b9ce4a8de6418e648ac3a4427 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2ba475db24fc6dd8d4d129628565eb44 |
| SHA1 | f7c2e2603770bfc56fb0c1b245df225738ceec55 |
| SHA256 | 4fb3ed3bfdf3f37b5130fb18e864d2d4f7c3054c10dc0195058f40f0181a6a51 |
| SHA512 | e4b6dab521bf268af64247ddf0fd387554945996d6fc31d7ecc35681ae27338940df5bcc006331afccd9ede2bf3fb92f3e648acdd7dbfd6ff976c71b7f3ac62a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 784567b4f20ae008559d8ede5e644d47 |
| SHA1 | 34641054f6ae2ea78565fa869d4c3e86fdd6cf50 |
| SHA256 | 14a1d5f777ec6d2893491e7573657bed7febabab56ea23f7f1e62ef3dac7a1ed |
| SHA512 | b4dc2a6b9e6fa2d61f7dc835cccc78201406d121a0c475b6c13b1a99cc85e34c8f85a89c5a10ae856ce5bd8e0c6077b614174df234aeccf414b5c360fba4877f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ed3c85e7f5b6630360e7c4701b430219 |
| SHA1 | 383fb18dde4960dbf3de9d11b82dbe6a9873ddf2 |
| SHA256 | 3d5576a1d57723b5589de3c977b21f51d7498b852ec33def378d357b25e31758 |
| SHA512 | 7fdb017640a86efb513b20e0681dd3835483dc46c9dad22a5109675a1101805298e303f3e90a5f9ce401b65c74ab87a612de8ac6f606a8a1a324e82b323f4621 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7b2e3c32853a948681e3560799820852 |
| SHA1 | 95cc8925685780ef918d24aa46857a60c615ee65 |
| SHA256 | 9249433b815a5cee8b3655c0ee1a13b3be21631ba02c8935a1e9a7770160ff93 |
| SHA512 | 543615ef17ef4ae47734276a26f36816c296978ceed166fddb94a9688fd796365c78f4545269e5bf345f6f677c200f06ded6c70edb6d4c010cd389b9486049e4 |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5627151c79e0327c14aafa13e64c6b31 |
| SHA1 | 76941e3707a418a84b704c7e284431273f9dddd3 |
| SHA256 | 8bd520ff1f248a04b782776a65ea7810f9c097ea1a6a74bd6f0365568b77a0c3 |
| SHA512 | 8c3b8793e843f767633c488e64cc8ae9e7605d385201c3b8cbff3520986f1bd003182c26488b0db8535644e8f4ef6ef8959cb2238798a8c89e037fc225c034af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8b138d42a4ccb3e15a6cd3ed4a57b8e0 |
| SHA1 | 8ff31d7462dad5ab02879346ca5788e22120e9f6 |
| SHA256 | ff7e538c94332fd5886da9af12f86b9491ee8e98aa611a6f07e74bcbea91c1e5 |
| SHA512 | b76a727f12a50d55d9dd411620ee4288f5058459dbb0d7c562559465ca9ed378a03a62e904486e904fbbed7865662edd50d9c7173c9e062ed1c2c3dd3df805c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 498a4d3f59d78100751c49a57d41b42e |
| SHA1 | 67ad790e501da32cf0c9184dae73008dda654a4e |
| SHA256 | d7dacc01c850bbe973b732947114dfbdd242ab1b567d060c906a90fa34a13d32 |
| SHA512 | 7a11eb5f7ddd7b3afdc7f49c1a0fedb5ad4538fb00d6a1cd60ff709bac9810b1d514812cd25b45c2771e3ffd229cb514fd746d32ab2aacd6f04269da38c290bd |
memory/5344-1059-0x0000029255C10000-0x0000029255C28000-memory.dmp
memory/5344-1060-0x0000029270310000-0x00000292704D2000-memory.dmp
memory/5344-1061-0x0000029270C50000-0x0000029271178000-memory.dmp