Analysis Overview
Threat Level: Likely malicious
The file http://uniapt.social/tools/detail/16 was found to be: Likely malicious.
Malicious Activity Summary
Credentials from Password Stores: Credentials from Web Browsers
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Browser Information Discovery
Checks processor information in registry
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-25 12:51
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-25 12:51
Reported
2024-08-25 13:01
Platform
win10v2004-20240802-en
Max time kernel
555s
Max time network
558s
Command Line
Signatures
Credentials from Password Stores: Credentials from Web Browsers
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Browser Information Discovery
Checks processor information in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0 | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Signature | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\Update Revision | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\~Mhz | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-2718105630-359604950-2820636825-1000_Classes\Local Settings | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
| Token: SeDebugPrivilege | N/A | C:\Program Files\Mozilla Firefox\firefox.exe | N/A |
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Processes
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "http://uniapt.social/tools/detail/16"
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url http://uniapt.social/tools/detail/16
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=1976 -parentBuildID 20240401114208 -prefsHandle 1908 -prefMapHandle 1652 -prefsLen 23680 -prefMapSize 244658 -appDir "C:\Program Files\Mozilla Firefox\browser" - {43c55cbb-dbcc-47a7-a27c-529a6f391177} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" gpu
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2416 -parentBuildID 20240401114208 -prefsHandle 2384 -prefMapHandle 2380 -prefsLen 24600 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f9fe6c11-b2e1-4719-8a19-1a156ff4a07b} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" socket
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3148 -childID 1 -isForBrowser -prefsHandle 3172 -prefMapHandle 3200 -prefsLen 22652 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4dde91c1-3f2b-475f-a050-d6b106dacfdf} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=3700 -childID 2 -isForBrowser -prefsHandle 3692 -prefMapHandle 2952 -prefsLen 29090 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {7cec325d-8d60-49e9-bc78-d09ea759bfa5} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4248 -parentBuildID 20240401114208 -sandboxingKind 0 -prefsHandle 4236 -prefMapHandle 4232 -prefsLen 29090 -prefMapSize 244658 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {3828b5f2-91cc-46ec-9fc9-23cfbbc6fbeb} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" utility
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5400 -childID 3 -isForBrowser -prefsHandle 5392 -prefMapHandle 5388 -prefsLen 27051 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {f45c9ec7-6602-4a06-a72a-a75a831f9585} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5692 -childID 4 -isForBrowser -prefsHandle 3264 -prefMapHandle 3244 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {2aac586d-cfec-43c7-82af-0f04c1be03ef} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5824 -childID 5 -isForBrowser -prefsHandle 5748 -prefMapHandle 5752 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b3a4235c-e66a-48d5-b144-130b02298d54} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5952 -childID 6 -isForBrowser -prefsHandle 5964 -prefMapHandle 5968 -prefsLen 27132 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {063616a4-e404-4afc-83a7-b908c998e8ee} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6260 -childID 7 -isForBrowser -prefsHandle 3824 -prefMapHandle 3820 -prefsLen 30532 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a52b370b-49d2-4c13-a98f-2a6bb2ea029d} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6420 -childID 8 -isForBrowser -prefsHandle 6348 -prefMapHandle 6404 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {79ebb8e7-a018-4046-a099-0f0a63063c71} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6668 -childID 9 -isForBrowser -prefsHandle 6652 -prefMapHandle 6640 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {72fad771-f9b7-49cf-afb0-c598370d36c0} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6700 -childID 10 -isForBrowser -prefsHandle 4396 -prefMapHandle 5180 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0a3b67ce-9914-4fff-9140-ceccbe2426a6} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=6060 -childID 11 -isForBrowser -prefsHandle 6116 -prefMapHandle 6128 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {5b5ba5ef-7b30-479f-b4db-c4a1f8112737} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7360 -childID 12 -isForBrowser -prefsHandle 7240 -prefMapHandle 7244 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {83982dd8-d4c8-4e3a-9136-6af38f463b81} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7716 -childID 13 -isForBrowser -prefsHandle 7720 -prefMapHandle 7704 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {01720a8b-ff4c-47c4-b895-9fd0ffc5e79c} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=7856 -childID 14 -isForBrowser -prefsHandle 7940 -prefMapHandle 7864 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {78cae740-9c29-4519-9ef8-4aed15472c5d} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8060 -childID 15 -isForBrowser -prefsHandle 7712 -prefMapHandle 7816 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {4dead74f-632e-4371-b79b-efdd3fc8a521} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8092 -childID 16 -isForBrowser -prefsHandle 8100 -prefMapHandle 8104 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {6c21c89b-72b1-473d-be16-e37d61ab59e3} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8468 -childID 17 -isForBrowser -prefsHandle 8460 -prefMapHandle 8456 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {54c19a05-512d-4c9f-bc92-eb6313b22733} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=8572 -childID 18 -isForBrowser -prefsHandle 8652 -prefMapHandle 8648 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {a603c4da-8bf0-4f02-9caf-3e7446021c8a} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9288 -childID 19 -isForBrowser -prefsHandle 9280 -prefMapHandle 9276 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b3cd3db6-3d0e-4404-9ebf-149e5b83233a} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9300 -childID 20 -isForBrowser -prefsHandle 9292 -prefMapHandle 9268 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {579a5a4b-5cec-4c3c-b931-9dcc93dd41f1} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9324 -childID 21 -isForBrowser -prefsHandle 9316 -prefMapHandle 9312 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {ea1430cc-ac69-4d78-a6ca-261c29836ab1} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9352 -childID 22 -isForBrowser -prefsHandle 9348 -prefMapHandle 9344 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {23cca3fb-3e90-4066-8af3-01dbe1fb5bbc} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=9996 -childID 23 -isForBrowser -prefsHandle 9920 -prefMapHandle 9924 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {d72c1d47-e63a-4137-b4e1-43efd8724897} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10148 -childID 24 -isForBrowser -prefsHandle 9840 -prefMapHandle 9836 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b4b0ae36-6627-4a54-92b1-9c4b74a2464b} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10312 -childID 25 -isForBrowser -prefsHandle 10320 -prefMapHandle 10324 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b5e99bbf-c5ab-43d7-babc-d834ed0b59b1} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10320 -childID 26 -isForBrowser -prefsHandle 10388 -prefMapHandle 10392 -prefsLen 27998 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {758a455c-b819-4e59-924c-623931beecbf} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=10208 -childID 27 -isForBrowser -prefsHandle 10476 -prefMapHandle 10396 -prefsLen 29440 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {e5069543-6b34-4bf5-a818-0728d5259a57} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5844 -childID 28 -isForBrowser -prefsHandle 10440 -prefMapHandle 10456 -prefsLen 29440 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {fefc45a3-b80d-447b-8c53-fba930d99aed} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
C:\Program Files\Mozilla Firefox\firefox.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=5040 -childID 29 -isForBrowser -prefsHandle 10260 -prefMapHandle 10248 -prefsLen 29440 -prefMapSize 244658 -jsInitHandle 1256 -jsInitLen 234952 -parentBuildID 20240401114208 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {0ea3e88c-0e36-4518-88f0-e54af1749c9a} 4340 "\\.\pipe\gecko-crash-server-pipe.4340" tab
Network
| Country | Destination | Domain | Proto |
| N/A | 127.0.0.1:54282 | tcp | |
| US | 8.8.8.8:53 | 133.211.185.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | spocs.getpocket.com | udp |
| US | 8.8.8.8:53 | uniapt.social | udp |
| US | 8.8.8.8:53 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 172.67.170.66:80 | uniapt.social | tcp |
| US | 34.149.97.1:443 | firefox-api-proxy.cdn.mozilla.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | uniapt.social | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.149.97.1:443 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | shavar.prod.mozaws.net | udp |
| US | 8.8.8.8:53 | uniapt.social | udp |
| US | 8.8.8.8:53 | prod.ads.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | firefox-api-proxy-prod.pocket.prod.cloudops.mozgcp.net | udp |
| US | 172.67.170.66:443 | uniapt.social | tcp |
| US | 8.8.8.8:53 | 66.170.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.24.239.44.in-addr.arpa | udp |
| US | 172.67.170.66:443 | uniapt.social | udp |
| US | 8.8.8.8:53 | 234.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 172.67.218.217:443 | api.unisecure.live | tcp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 104.21.63.72:443 | api.uniapt.social | tcp |
| US | 104.21.63.72:443 | api.uniapt.social | tcp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 104.21.63.72:443 | api.uniapt.social | udp |
| N/A | 127.0.0.1:54291 | tcp | |
| US | 8.8.8.8:53 | 217.218.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.63.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 150.171.27.10:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | location.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 35.190.72.216:443 | location.services.mozilla.com | udp |
| US | 8.8.8.8:53 | prod.classify-client.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 35.190.72.216:443 | prod.classify-client.prod.webservices.mozgcp.net | tcp |
| US | 8.8.8.8:53 | prod.classify-client.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | ciscobinary.openh264.org | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| GB | 88.221.134.155:80 | ciscobinary.openh264.org | tcp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| FR | 216.58.214.174:443 | redirector.gvt1.com | tcp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | a19.dscg10.akamai.net | udp |
| US | 8.8.8.8:53 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | 216.72.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.181.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.134.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.214.58.216.in-addr.arpa | udp |
| FR | 216.58.214.174:443 | redirector.gvt1.com | udp |
| US | 8.8.8.8:53 | r1---sn-aigzrnsr.gvt1.com | udp |
| GB | 74.125.175.38:443 | r1---sn-aigzrnsr.gvt1.com | tcp |
| US | 8.8.8.8:53 | r1.sn-aigzrnsr.gvt1.com | udp |
| US | 8.8.8.8:53 | r1.sn-aigzrnsr.gvt1.com | udp |
| GB | 74.125.175.38:443 | r1.sn-aigzrnsr.gvt1.com | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.175.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.243.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csp.withgoogle.com | udp |
| FR | 142.250.178.145:443 | csp.withgoogle.com | tcp |
| US | 8.8.8.8:53 | csp.withgoogle.com | udp |
| US | 8.8.8.8:53 | csp.withgoogle.com | udp |
| FR | 142.250.178.145:443 | csp.withgoogle.com | udp |
| US | 8.8.8.8:53 | 194.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| FR | 142.250.201.174:443 | consent.google.com | tcp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| FR | 142.250.201.174:443 | consent.google.com | udp |
| US | 8.8.8.8:53 | 174.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | temp-mail.org | udp |
| US | 104.26.7.95:443 | temp-mail.org | tcp |
| US | 8.8.8.8:53 | temp-mail.org | udp |
| US | 8.8.8.8:53 | temp-mail.org | udp |
| US | 104.26.7.95:443 | temp-mail.org | tcp |
| US | 8.8.8.8:53 | 95.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | challenges.cloudflare.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 104.18.95.41:443 | challenges.cloudflare.com | tcp |
| US | 8.8.8.8:53 | challenges.cloudflare.com | udp |
| US | 8.8.8.8:53 | challenges.cloudflare.com | udp |
| US | 104.18.95.41:443 | challenges.cloudflare.com | udp |
| US | 104.18.95.41:443 | challenges.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.95.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.paddle.com | udp |
| US | 8.8.8.8:53 | cdn.paddle.com | udp |
| US | 172.66.40.60:443 | cdn.paddle.com | tcp |
| US | 8.8.8.8:53 | cdn.paddle.com | udp |
| US | 8.8.8.8:53 | cdn4.buysellads.net | udp |
| GB | 159.65.211.77:443 | cdn4.buysellads.net | tcp |
| US | 8.8.8.8:53 | srv.buysellads.com | udp |
| US | 8.8.8.8:53 | srv.buysellads.com | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 172.67.73.98:443 | web2.temp-mail.org | tcp |
| US | 172.67.73.98:443 | web2.temp-mail.org | tcp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | d1ykf07e75w7ss.cloudfront.net | udp |
| US | 8.8.8.8:53 | 60.40.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.211.65.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.73.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| GB | 108.156.39.61:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | e4536.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | e4536.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | srv.buysellads.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | rt.marphezis.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | pbjs.e-planning.net | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | hbopenbid-lhrc.pubmnet.com | udp |
| NL | 188.166.203.175:443 | rt.marphezis.com | tcp |
| US | 8.8.8.8:53 | hb-api-fra02.omnitagjs.com | udp |
| US | 8.8.8.8:53 | amsrt.marphezis.com | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | pbjs.e-planning.net | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | exchange.cootlogix.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | euw1.smartadserver.com | udp |
| US | 8.8.8.8:53 | amsrt.marphezis.com | udp |
| US | 8.8.8.8:53 | hbopenbid-lhrc.pubmnet.com | udp |
| US | 8.8.8.8:53 | pbjs.e-planning.net | udp |
| US | 8.8.8.8:53 | hb-api-fra02.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ib.anycast.adnxs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | tagged-by.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 8.8.8.8:53 | hlno24mlb.puzztake.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | bidder.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | eu-tlx.3lift.com | udp |
| GB | 18.244.138.116:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | d1jvc9b8z3vcjs.cloudfront.net | udp |
| US | 8.8.8.8:53 | 9.223.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.203.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ib.anycast.adnxs.com | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | hlno24mlb.puzztake.com | udp |
| US | 8.8.8.8:53 | tagged-by.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | eu-tlx.3lift.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 8.8.8.8:53 | d1jvc9b8z3vcjs.cloudfront.net | udp |
| US | 8.8.8.8:53 | c.4dex.io | udp |
| US | 8.8.8.8:53 | c.4dex.io | udp |
| US | 8.8.8.8:53 | c.4dex.io | udp |
| GB | 23.49.161.153:443 | e4536.g.akamaiedge.net | tcp |
| GB | 18.245.143.58:443 | tags.crwdcntrl.net | tcp |
| US | 172.67.36.110:443 | cdn.hadronid.net | tcp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| GB | 159.65.211.77:443 | srv.buysellads.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| FR | 185.255.84.150:443 | hb-api-fra02.omnitagjs.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid-lhrc.pubmnet.com | tcp |
| NL | 193.3.178.4:443 | pbjs.e-planning.net | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 89.149.193.113:443 | euw1.smartadserver.com | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| NL | 69.173.156.139:443 | tagged-by.rubiconproject.net.akadns.net | tcp |
| GB | 108.138.217.61:443 | hb.yellowblue.io | tcp |
| NL | 185.89.210.20:443 | ib.anycast.adnxs.com | tcp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| NL | 178.250.1.8:443 | bidder.nl3.vip.prod.criteo.com | tcp |
| US | 172.64.153.78:443 | mp.4dex.io | tcp |
| DE | 3.78.168.176:443 | eu-tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt.cdn.cloudflare.net | udp |
| US | 104.18.22.145:443 | cadmus.script.ac | tcp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 157.245.128.68:443 | exchange.cootlogix.com | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt.cdn.cloudflare.net | udp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 172.67.23.234:443 | id.hadron.ad.gt.cdn.cloudflare.net | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 8.8.8.8:53 | 110.36.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.143.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.120.38.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.153.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.217.138.108.in-addr.arpa | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | 145.22.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.128.245.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.34.241.35.in-addr.arpa | udp |
| FR | 216.58.214.162:443 | ep1.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| FR | 216.58.214.162:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | a.ad.gt.cdn.cloudflare.net | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 104.22.4.69:443 | a.ad.gt.cdn.cloudflare.net | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | a.ad.gt.cdn.cloudflare.net | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | 65703b04ee575179a3902d5b6889f196.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | pagead-googlehosted.l.google.com | udp |
| FR | 142.250.179.65:443 | pagead-googlehosted.l.google.com | tcp |
| US | 8.8.8.8:53 | static.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | static.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | pagead-googlehosted.l.google.com | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| NL | 178.250.1.3:443 | static.nl3.vip.prod.criteo.net | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.65:443 | pagead-googlehosted.l.google.com | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| DE | 37.252.171.85:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | 162.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 85.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| NL | 178.250.1.3:443 | static.nl3.vip.prod.criteo.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | gum.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | ag.gbc.criteo.com | udp |
| US | 8.8.8.8:53 | gem.gbc.criteo.com | udp |
| US | 8.8.8.8:53 | gbc4.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | gbc7.nl3.eu.criteo.com | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | gbc4.fr3.eu.criteo.com | udp |
| FR | 185.235.86.127:443 | gbc4.fr3.eu.criteo.com | tcp |
| NL | 185.235.87.221:443 | gbc7.nl3.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | gbc7.nl3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| US | 8.8.8.8:53 | csm.nl3.vip.prod.criteo.net | udp |
| US | 8.8.8.8:53 | csm.nl3.vip.prod.criteo.net | udp |
| DE | 37.252.173.215:443 | fra1-ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.86.235.185.in-addr.arpa | udp |
| NL | 178.250.1.25:443 | csm.nl3.vip.prod.criteo.net | tcp |
| NL | 178.250.1.25:443 | csm.nl3.vip.prod.criteo.net | tcp |
| US | 8.8.8.8:53 | 215.173.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.cootlogix.com | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 8.8.8.8:53 | hb.trustedstack.com | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| GB | 92.123.142.144:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | a1579.d.akamai.net | udp |
| US | 159.223.126.40:443 | sync.cootlogix.com | tcp |
| US | 8.8.8.8:53 | h7mzk9dlb.puzztake.com | udp |
| US | 8.8.8.8:53 | e6603.g.akamaiedge.net | udp |
| GB | 2.18.108.192:443 | e6603.g.akamaiedge.net | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | visitor-fra02.omnitagjs.com | udp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | eu-eb2.3lift.com | udp |
| GB | 95.100.245.251:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| GB | 95.100.244.20:443 | contextual.media.net | tcp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| GB | 92.123.140.90:443 | hb.trustedstack.com | tcp |
| US | 8.8.8.8:53 | a496.b.akamai.net | udp |
| US | 8.8.8.8:53 | a1579.d.akamai.net | udp |
| US | 8.8.8.8:53 | h7mzk9dlb.puzztake.com | udp |
| US | 8.8.8.8:53 | visitor-fra02.omnitagjs.com | udp |
| US | 8.8.8.8:53 | eu-eb2.3lift.com | udp |
| US | 8.8.8.8:53 | e6603.g.akamaiedge.net | udp |
| US | 8.8.8.8:53 | e8960.b.akamaiedge.net | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | a496.b.akamai.net | udp |
| GB | 95.100.244.20:443 | contextual.media.net | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.net.akadns.net | udp |
| US | 8.8.8.8:53 | lg1.hb.trustedstack.com | udp |
| US | 8.8.8.8:53 | 144.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.245.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.244.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.108.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.126.223.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| GB | 92.123.140.75:443 | lg1.hb.trustedstack.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | e8960.e2.akamaiedge.net | udp |
| GB | 2.22.101.110:443 | e8960.e2.akamaiedge.net | tcp |
| US | 8.2.110.33:443 | us.shb-sync.com | tcp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | am6-tmp.a-mx.net | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | eu-west-1-cs-rtb.openwebmp.com | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | widget.nl3.vip.prod.criteo.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| GB | 2.22.101.110:443 | e8960.e2.akamaiedge.net | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | us.shb-sync.com | udp |
| US | 8.8.8.8:53 | am6-tmp.a-mx.net | udp |
| US | 18.213.195.227:443 | api-2-0.spot.im | tcp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | k8s-kongow-generalp-4b9a3bfec6-974801183.us-east-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | nydc1.outbrain.org | udp |
| US | 8.8.8.8:53 | e8960.e2.akamaiedge.net | udp |
| US | 8.8.8.8:53 | imagsync-lhrpairbc.pubmatic.com | udp |
| US | 172.111.38.86:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | tracker-use.ortb.net | udp |
| US | 8.8.8.8:53 | user-data-eu.bidswitch.net | udp |
| US | 8.8.8.8:53 | blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com.akadns.net | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| US | 8.8.8.8:53 | dckrl2e5yf7xg.cloudfront.net | udp |
| GB | 13.224.222.128:443 | dckrl2e5yf7xg.cloudfront.net | tcp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| US | 8.8.8.8:53 | pixel.33across.com | udp |
| GB | 92.123.143.216:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | widget.nl3.vip.prod.criteo.com | udp |
| FR | 149.202.238.100:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 35.168.53.250:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | a1970.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | k8s-kongow-generalp-4b9a3bfec6-974801183.us-east-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | nydc1.outbrain.org | udp |
| US | 8.8.8.8:53 | ssbsync-euw2.smartadserver.com | udp |
| US | 8.8.8.8:53 | imagsync-lhrpairbc.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | tracker-use.ortb.net | udp |
| US | 8.8.8.8:53 | blackbird-prd-ew1-alb-87915139.eu-west-1.elb.amazonaws.com | udp |
| US | 8.8.8.8:53 | user-data-eu.bidswitch.net | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | pixel.33across.com | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com.akadns.net | udp |
| US | 8.8.8.8:53 | dckrl2e5yf7xg.cloudfront.net | udp |
| US | 8.8.8.8:53 | dorpat.geo.iponweb.net | udp |
| US | 8.8.8.8:53 | ssbsync-euw2.smartadserver.com | udp |
| US | 8.8.8.8:53 | a1970.dscd.akamai.net | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | dorpat.geo.iponweb.net | udp |
| IE | 18.202.87.254:443 | rw-yieldmo-com-tf-362867385.eu-west-1.elb.amazonaws.com | tcp |
| NL | 147.75.102.143:443 | am6-tmp.a-mx.net | tcp |
| GB | 2.18.108.20:443 | cs.media.net | tcp |
| US | 34.98.64.218:443 | us-u.openx.net | tcp |
| NL | 178.250.1.9:443 | widget.nl3.vip.prod.criteo.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 35.214.149.91:443 | user-data-eu.bidswitch.net | tcp |
| DE | 168.119.146.39:443 | sync.richaudience.com | tcp |
| US | 15.197.193.217:443 | match.adsrvr.org | tcp |
| IE | 34.247.108.243:443 | match.prod.bidr.io | tcp |
| US | 70.42.32.255:443 | b1sync.zemanta.com | tcp |
| US | 70.42.32.255:443 | b1sync.zemanta.com | tcp |
| GB | 185.64.191.214:443 | imagsync-lhrpairbc.pubmatic.com | tcp |
| GB | 92.123.143.216:443 | a1970.dscd.akamai.net | udp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | udp |
| US | 54.204.123.228:443 | sync.srv.stackadapt.com | tcp |
| NL | 35.214.199.88:443 | dorpat.geo.iponweb.net | tcp |
| IE | 63.34.48.146:443 | ap.lijit.com | tcp |
| IE | 63.35.37.71:443 | jadserve.postrelease.com.akadns.net | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 192.132.33.68:443 | bttrack.com | tcp |
| US | 34.98.64.218:443 | us-u.openx.net | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| DE | 168.119.146.39:443 | sync.richaudience.com | tcp |
| NL | 35.214.199.88:443 | dorpat.geo.iponweb.net | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | 75.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.101.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.238.202.149.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.195.213.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.53.168.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.108.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.64.98.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.102.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.87.202.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.193.197.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.108.247.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 255.32.42.70.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.48.34.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.37.35.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.123.204.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | qvdt3feo.com | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | sync-sc-main-was.aniview.com | udp |
| US | 34.238.78.132:443 | qvdt3feo.com | tcp |
| US | 8.8.8.8:53 | qvdt3feo.com | udp |
| US | 8.8.8.8:53 | us-west1.prod.sumo.prod.webservices.mozgcp.net | udp |
| US | 8.8.8.8:53 | sync-sc-main-was.aniview.com | udp |
| US | 8.8.8.8:53 | qvdt3feo.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| NL | 35.214.149.91:443 | user-data-eu.bidswitch.net | tcp |
| US | 172.240.45.78:443 | sync-sc-main-was.aniview.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | 78.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.78.238.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.146.119.168.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 104.21.63.72:443 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.balrog.prod.cloudops.mozgcp.net | udp |
| US | 8.8.8.8:53 | prod.content-signature-chains.prod.webservices.mozgcp.net | udp |
| US | 172.67.73.98:443 | web2.temp-mail.org | tcp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 104.21.63.72:443 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | uniapt.social | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 104.26.7.95:443 | web2.temp-mail.org | tcp |
| US | 8.8.8.8:53 | 89.16.208.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 172.67.218.217:443 | api.unisecure.live | tcp |
| US | 8.8.8.8:53 | api.unisecure.live | udp |
| US | 172.67.218.217:443 | api.unisecure.live | tcp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 104.21.63.72:443 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 104.21.63.72:443 | api.uniapt.social | tcp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 104.21.63.72:443 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 172.67.218.217:443 | api.unisecure.live | udp |
| US | 8.8.8.8:53 | api.uniapt.social | udp |
| US | 8.8.8.8:53 | 162.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| US | 8.8.8.8:53 | csm.nl3.vip.prod.criteo.net | udp |
Files
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\e2c37683-fa62-4dfb-aad8-654afa8399ec
| MD5 | 28d29350cf546404a65fa2180be816e5 |
| SHA1 | ad31779aacce7efcdeb0ea9f5346f993d42f4032 |
| SHA256 | d445f70ce803d0143b74e447e46f1c5d117ac7f4635856fd990de8184b409567 |
| SHA512 | 6b759b2df7fa60abae90881be35a382d0935001466015cb37e9954955cbb6582057498cdeaa7ba43ddbf020b6aaeadda1d6df88e4a151b74d257faab7cc88743 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\8741bfe8-6f14-438d-a80d-a2b41b1e7974
| MD5 | 60bf2ee85b32253e3d5ded60a5a5feb7 |
| SHA1 | 07d8016ec2d346063859cf900dc1194a1c00439f |
| SHA256 | db50996905f325e36db19e51d9f8ed01340795945c59acd6e4f8b252208f94b7 |
| SHA512 | acb5868e9c7d47169a15a43fdb2e8e7ff10e99978a613190694e9e28fb5576d01051bc72e340c55b480c7b9d89e6ace4fdc40f0d0c1c0c62171c4acdb3ca5921 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\90295117-3425-401c-9b02-78867735dd49
| MD5 | 257c173a073ae64ecd64baae08666e4d |
| SHA1 | 9e4d4d9eb3df081a6227bf065ec87f7a89dc13a7 |
| SHA256 | 848a27af63b28513a00fe7a1fa2a3d7a2501eaf459a7a6efa735b29e4ec9407a |
| SHA512 | e221c59102c66586b1546ddf944b798abed628a619b2608fb6b788e7461b13b970a8b812d8be284681dcf11f49067c8055b95efaa2cf75dab8a318c53305d88b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 96615c6c9958f61ba7153638512ae450 |
| SHA1 | c229735f44869362adfaf1d1ca483f96c03c8b5a |
| SHA256 | 445c5bbda242fe9583c8dc818931050a8134d0b493a31dec244f88eb18898fb9 |
| SHA512 | 8850a9b039635cde30ff9052773bd39bd4163bb39958210a753217279746d6c831620246fd0041aa89dc381211bb33bf5c545d6820761ba0f6c8f38170272abd |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | 33c9ce84a9fa9e1c9fee783f1644ebb7 |
| SHA1 | 5dfc3fba320a2f17498208efa86c429cfba4d236 |
| SHA256 | 9b9cb1212c7da5afab9eb673b8734248487d0e3e502ea35c147676aa100ba9ba |
| SHA512 | bdb0817ecd0d5c1904ee1fbed174c63d7c48da7fb9da265cce2244ce055899fc7148ff5cac29b81414cd869cd6da4047ec0cb58d287fc394fa4ace9c88bc3644 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\activity-stream.discovery_stream.json
| MD5 | 88ba67f885ae2964b62ccc2dd7cb2380 |
| SHA1 | f726bab55e150a30065b9bf14e0828167751e94b |
| SHA256 | 77384f488a2335f590b50805e63a5b60d4a0718d4e3ab9fc609ba442831a3364 |
| SHA512 | 647e01f8b69fa7cae8c1801f923d85d68e7262329c413ba28294e823ce95cec61cbd909bd71306374288d5b1eea16a4024816149ad45d10d562f0f412930d0ae |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\prefs.js
| MD5 | bc3a34a4385d21f32bf7bf7809d8b7a8 |
| SHA1 | 61c51c128ef78dc42175c6257029b38cdd279b9d |
| SHA256 | 7e92a019ca6040c09257cf2fced4a80659e17f27d7d97ca6edf127d85ad2b338 |
| SHA512 | 8189d79eb3f19d86474044575c801fb80ad00cd34e0ebc7fa4946f67e337fc60c8b249c6de5178702a82138e35e84f0de039630fed17da0d3c9e871f322d9b29 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\AlternateServices.bin
| MD5 | 33f92c88e3349d806a393de255425a40 |
| SHA1 | bfa14e423599884b2acac4aa5d96f4c68bd0becb |
| SHA256 | 0f4457481fe8abff2603352b38515e09eeaea81f803619b91376ed5154f5a19f |
| SHA512 | 12cbb216405ba5f670337794094283afa68bd499a2c938a0ae48b1e034a300149b04f06a1fed6b78cb6608983673c370842afa8886e96e6c6e93c40d732694a0 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\34967B653EE0478FA3199AEAE50AE42CA4172E96
| MD5 | ee350297b8d884f15a395b4de63b8264 |
| SHA1 | 3361e52a929ec559cff3227d9f23716238abe5ef |
| SHA256 | d3832cdd7a811ce0399539a83b78c16f3d240d1f5c411f4baed08e979787013a |
| SHA512 | e4d1823f2f1577041e6837cd25e7a4a8c2fce504dfbbb165296692f285f75e8b5190676799be4bab390493cd94f83b4de1049117149b7586a7a4ef009a6adfc7 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | a14e3798507f6cc1ae6e71d23d061035 |
| SHA1 | e0fdcf4664950ba02370969b70fee550aecacf25 |
| SHA256 | 253831497e6a8ec4a4e2f0f6bd94fbf546ce4ad3916ea67216dc6c92b8af9da6 |
| SHA512 | dfe2624c3bb6f9898db7021ae17f990302d9cae98d5b3fd43d104470fbda80d926cc12c4d0be805c83584ce7606207454e6b4b37e58f371bbda11f22f19f6f9e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\prefs-1.js
| MD5 | dde10373ecb331908908634b46162809 |
| SHA1 | bc253d8d68608249c5767598c68147ebfa331b84 |
| SHA256 | 23fb3086b81c866d08028d2ff51e6f220e54931b7b58eb74e59ee05616896506 |
| SHA512 | 8e8effe02fe6f951dbb890d996539732b12610d4bfc10086c19707cc51278fd43c3c9fd2737f1832cdbb12cac66e97175e967045f22536ab0fb7707f6292dca0 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon
| MD5 | 09372174e83dbbf696ee732fd2e875bb |
| SHA1 | ba360186ba650a769f9303f48b7200fb5eaccee1 |
| SHA256 | c32efac42faf4b9878fb8917c5e71d89ff40de580c4f52f62e11c6cfab55167f |
| SHA512 | b667086ed49579592d435df2b486fe30ba1b62ddd169f19e700cd079239747dd3e20058c285fa9c10a533e34f22b5198ed9b1f92ae560a3067f3e3feacc724f1 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.info
| MD5 | 2a461e9eb87fd1955cea740a3444ee7a |
| SHA1 | b10755914c713f5a4677494dbe8a686ed458c3c5 |
| SHA256 | 4107f76ba1d9424555f4e8ea0acef69357dfff89dfa5f0ec72aa4f2d489b17bc |
| SHA512 | 34f73f7bf69d7674907f190f257516e3956f825e35a2f03d58201a5a630310b45df393f2b39669f9369d1ac990505a4b6849a0d34e8c136e1402143b6cedf2d3 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\gmp-gmpopenh264\2.3.2\gmpopenh264.dll
| MD5 | 842039753bf41fa5e11b3a1383061a87 |
| SHA1 | 3e8fe1d7b3ad866b06dca6c7ef1e3c50c406e153 |
| SHA256 | d88dd3bfc4a558bb943f3caa2e376da3942e48a7948763bf9a38f707c2cd0c1c |
| SHA512 | d3320f7ac46327b7b974e74320c4d853e569061cb89ca849cd5d1706330aca629abeb4a16435c541900d839f46ff72dfde04128c450f3e1ee63c025470c19157 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\AlternateServices.bin
| MD5 | 862e06a4137fa4bab9b1e8b671f95338 |
| SHA1 | c772a46f1de6d94afca40d825f22877424f598f3 |
| SHA256 | ac35025fa6e1d79b38f15b6c3dfd24cb9da766576436ec483e7b7366edc04ac6 |
| SHA512 | 9f725cc961215c773dfc6d1bd9cab305969a748962cc652a283e81318044c621b8a9657b786240befe37d18ef63e1b7c8ca2236dd0d87b45812f9468ca3f78d8 |
C:\Users\Admin\AppData\Local\Temp\tmpaddon-1
| MD5 | 0a8747a2ac9ac08ae9508f36c6d75692 |
| SHA1 | b287a96fd6cc12433adb42193dfe06111c38eaf0 |
| SHA256 | 32d544baf2facc893057a1d97db33207e642f0dacf235d8500a0b5eff934ce03 |
| SHA512 | 59521f8c61236641b3299ab460c58c8f5f26fa67e828de853c2cf372f9614d58b9f541aae325b1600ec4f3a47953caacb8122b0dfce7481acfec81045735947d |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 4054b47c9271945ad767b455d4f9578f |
| SHA1 | a018da3e254c8a031b19d55ce32056fecdb09522 |
| SHA256 | 835196612bd05a4d281ff3c60d820ec3da30412059aeac84b58a67c2402bad26 |
| SHA512 | 8a7d9b5e6717da8ccbd93cae1ab48003ea3ac065dac87822c4c7865f32504b0be663a63ef51fc6f7278343965926be2952e19bbb9a85f3fc4dbe7afc07575d4d |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\gmp-widevinecdm\4.10.2710.0\manifest.json
| MD5 | bf957ad58b55f64219ab3f793e374316 |
| SHA1 | a11adc9d7f2c28e04d9b35e23b7616d0527118a1 |
| SHA256 | bbab6ca07edbed72a966835c7907b3e60c7aa3d48ddea847e5076bd05f4b1eda |
| SHA512 | 79c179b56e4893fb729b225818ab4b95a50b69666ac41d17aad0b37ab0ca8cd9f0848cbc3c5d9e69e4640a8b261d7ced592eae9bcb0e0b63c05a56e7c477f44e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\gmp-widevinecdm\4.10.2710.0\widevinecdm.dll
| MD5 | daf7ef3acccab478aaa7d6dc1c60f865 |
| SHA1 | f8246162b97ce4a945feced27b6ea114366ff2ad |
| SHA256 | bc40c7821dcd3fea9923c6912ab1183a942c11b7690cfd79ed148ded0228777e |
| SHA512 | 5840a45cfdb12c005e117608b1e5d946e1b2e76443ed39ba940d7f56de4babeab09bee7e64b903eb82bb37624c0a0ef19e9b59fbe2ce2f0e0b1c7a6015a63f75 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | bc75b1140a367b0a7aca741c7bec2362 |
| SHA1 | cf8959eabe752c5a0ebd19e5d6ce88b5c4156f64 |
| SHA256 | 3c30e13a25310220707d15e8bf439ab2f3fd28d2738af8ca0727fc5443cf632a |
| SHA512 | 9c8d73e52a58754331222acbc8b37cb87dbe74f4c75fc5a660681dac84ed0c7e4fbebe020080dbb2c69c2f02566974ff44814f983c073c5cfa6aff3a6b058d35 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 42aafc815f91c3e1693e17ce8654b15d |
| SHA1 | e4a5320d8a3495dad9eaf7f46cf2fd3277054545 |
| SHA256 | 5e7e9a2c31de9b52dcf5d7d2bef127d4eb08f69e9b6f52bfde89e5f7e2d66b8e |
| SHA512 | 8880309d5f92b4106f08d86653f15c77c32802545442cd0c6f0f20dfdd1f4bb1173c9036aaa55aecd3e699bf24dbc089a4315e9cca10d4b611eee6bed0993780 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 4b9daaa8be890d25d244a8c7ba47340e |
| SHA1 | e38b640ce36f728c0e0453dc6a38ef528cdd8b29 |
| SHA256 | 5035ebbdfd123a869be3600ca89083acca2e6d710164d6212375626b0f1a6ab8 |
| SHA512 | 3a61e08f7f1e26d96cc19bf448a90cb0126e4d490ac14a4edf0f562510cf60021597f5765285f5f3de0d2649e19f9cbd9b18ffc2680f2c439d409d4fa48a5a5b |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 56b0ae9be049d9b57f65f3d100bb7279 |
| SHA1 | 62e95a4645f3da0dce398f3bca644582971b1c23 |
| SHA256 | a10762b023821f83cbf693acc0e9c5deab49193cea6a6636bb7c98274eb950b0 |
| SHA512 | 0e1af7f73b1597d908fd0955d1fd872f953e1e5635dbd9e75b295108fc2997db414d236d27d5dc097d7f1549daedef2dc3663cb6aa91ce8dc4cc34a5c4c40dca |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\3A37EED3D1E6B3845C02BF0570CEDAEFF93A93F5
| MD5 | cd34b64371f48aa06a830230bca0d3ff |
| SHA1 | d7ab5aa46c5cfea2e0106263b98cb428b0397089 |
| SHA256 | 1abdf0fce494d794b95ea54bc4e38bb61eea6c214834c0f3bbe81d7748853697 |
| SHA512 | 3b55156f9206d56d605c562ea6f5a72a1d6a645efd621917ee9f56f2a6adac50cedf86e7e9f91068d8525eed9720654fe370b9322aa39a06a776c3bc9f13d6fb |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\36568FF4AAEC52E5FBA97C17EE969E667A8159EB
| MD5 | e02b5b18f0f252139479d5b0412033f3 |
| SHA1 | 8de6db8be75e9b6173547776085a4f3707cdccba |
| SHA256 | 418dd0078936909dd128f95dd1de68f1a06a7bb198e3f1b6ef3ab50778211482 |
| SHA512 | a5df299cf6fb3fe21af0f49dec1731745507a0c875fcadafddf3ad72bd4c6e6904de4d7602fdf960a56f8a2a39b43c97cdc98ebddfc25da8251b5874a3f13861 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 7789e4bf93cc7dc0f8e1d6315b4eb5e3 |
| SHA1 | b758ed959c2ffd0730480382d41d1dd26cdb1189 |
| SHA256 | 78272bb5f1e187403ee0d45700764b7a495e1fb035c853949f9af390c381acb7 |
| SHA512 | 59822e8888d1366d0dcc51bff5600d3a1de600800712acf79089172d11cf4014d94937fecb3e94e7334d0261a3caed6a5fccf7a4049158ab365935e3b725eeb4 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\9D87F6A733560C341D5997860D7256D03E48769E
| MD5 | 70de34a96696bb11f17696985484411b |
| SHA1 | 1a4fe69f25c5c0027d80494726f9d87b104aedd7 |
| SHA256 | 050372cdc28be86c488fa74f52e292d01f35b49ff95589182ab718502e498a5a |
| SHA512 | e95f359020a10ad922a6479d307b31e3cdc00801f28a6294e95301a1612ec5e6c6b89006769119703f4e8dd96041a4747c6396da0b47ec159f0b3321beb528cc |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\A804D7A2F533EA7DC16B824B5DD60BC306BB1984
| MD5 | dedbbf5d7173a2a73fdbd7af512c0ece |
| SHA1 | d7ce1c49faeabab61f1551a100203a4e7a2ef16f |
| SHA256 | c0105bd8a8da67af2f561eb9f87faf1b9dc7902d92723cc8eb2a98f8abb50c45 |
| SHA512 | 7f5566c17228addf6c3fb2c4f4faa712d58a7df650559e95989b8f09d1a329a9b5398face2a13579916f478c8892c04889a68ebffd687582014813c1e9c9a9a3 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\B4495FDA7637F00B943CB5557760EA74C1329AF5
| MD5 | bde6c84dbe00c84ce8e9f9f935419583 |
| SHA1 | 16cc35eb3b0561ab3cc5672b763089b990d10eb5 |
| SHA256 | 59ddd3d22d92c566512bd8ae8b0650ff798cc446d72be45e527b01098ec3fe90 |
| SHA512 | 92947deee8fdd623899743f474cb915f2db42afd837e49f554f1e99bc788997137069550a92b54b7e009a744994cbd6d963949c851d3d56c7c6907ed8fb7eb8f |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\doomed\32535
| MD5 | 7ed5036e4235be389467ab55cffedcab |
| SHA1 | fa7f2f1c9da9c1870cbfb16443148554f97c932b |
| SHA256 | 983a416c3e1e26f8af972bf969b6af4ceb106dc6513bb1d3e989d9e74f73c0d8 |
| SHA512 | 074b22132287490732f2b21eb72ea9d897b52e7ff289ef1b3dd012a6644ff53b34caa7e17cfc860232802570875bd96f31392b15c15001d987e032ef63449460 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\0594D20F322E88265C0D547AD4EF5F45B49EF9C8
| MD5 | 5972b931b22c6aed13b74b3704e377be |
| SHA1 | 93f96fe6cb6164cdb8fbf95d5540fd478a04256f |
| SHA256 | b8e1dd630e36093ed72775407021d3a0125cde689add75ff11a1c49916fe13d4 |
| SHA512 | defa128f0c5fc6f6ac99f6d16847f1a0259dd1dd8608c4b01f5d10f17b96a8fdebf701e57b9dcd948e71db9a2f52711ccd2c338396f3ed9854c16a3d39a4b5fe |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | fd3cecd622ea2056f34297d3319b6158 |
| SHA1 | a996802f1806e9499d50c8b2aae8e571e775142d |
| SHA256 | d52887a0ef2261a703e5c3780d0a70f124f4e054e723869dc09b684cbe43542d |
| SHA512 | 1b6b40b6ec5a72c9bf41868bbd9b242d69016c8e71453da147ca62637856487bb5bf418bb642b9ca5c1f7b2a9071192b8938739839545da805e3fad79f37b5e0 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | b3cf3d3b3b9a3a818c4eb07fc85d2743 |
| SHA1 | f160d1146827a3f7c44e7b0dc5d44ebb10d60869 |
| SHA256 | 18f3765c9987653dccb666bc422da82b2d0b3a55e345a3735009382b35d727d1 |
| SHA512 | 0c070325d5c581ca18048e19929ae099f64d85c07cc175d89162a8e51a022ab1ad17c7959ce9310c03ae45cb28f8ab80b957b5ca86d315ec4e387915fcf6184f |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 88fe3e98ac398aa1d204f3bbb6315fca |
| SHA1 | 9abbb114eca01520ae2e0cc4b8ffcbfbcea0d7b4 |
| SHA256 | 57f7f9c9d6c3e05d3109998ddbdb48a365f340c887d73f36e604aa98874412a8 |
| SHA512 | 2bae848ab1bd7f35ef206968367e08ede54f9f7b8328ccd4a5d4e711fdbfbdf0a84dd53038c1729d785ae7168186ff3d9a28a04f44815af3c247645d924b039e |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\logins-backup.json
| MD5 | d5b9427a92b1dab8aa0d3b4f42f3b409 |
| SHA1 | 1400798883415666e4bbf336aecefc1be5ae77ff |
| SHA256 | 04f240377216f0585e0490cf89d2779cdec59569245b8a87f1eafbdc0ecce4e4 |
| SHA512 | a9871c5e09edcf831928dfce809eae62f6c4b08f10a245049b43dfc077a6af37cda32f40d12544933bbb4a36540dd858eb0b6882b7c0fdb1a8d218078990c738 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | d25975d9e1f285237dfee20d270c9615 |
| SHA1 | 383c72eab98c7f84614b8a17c57401daa767eb12 |
| SHA256 | cc79fc3f84184a3dc2a9c3ba9b108896761fcf5967613d7f5aa788fd4f495494 |
| SHA512 | aca510322eb95cabe0bef4616e74fcf2b2004bd66dfe8c80fe6b684079117cfd3ff4a08f0058a74b88855542494ed8dc23dd603c6c45dff535e4704f529c0022 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\4b3525e3-bdbe-4d3f-a548-1a6cd9e070f2
| MD5 | 6f81baa053d4959834371bba2af7abf6 |
| SHA1 | 0384cd180976a2dd92b3ebcce838d5c953498e38 |
| SHA256 | cd18f8720319db330f08e62685f943753aecb5605063c6cef1579ebfe8bade2e |
| SHA512 | 84a2963cefbb7c2dc5195796cd4b68f70c058d3b73841e71b587e6851c1f0dc35ed01d604d5092438d3c1ccad8d7dcba22dee6748bb8a3139c6d5416ace63bec |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\3fa4135b-f999-4730-9387-17b1934bbfff
| MD5 | d6d789a7c3f213ec3138af1adacaee4c |
| SHA1 | cbfdef468fc09cff7e10f8da52fcc20a6b89be13 |
| SHA256 | 98a18a21450f2d883461b32236a8f9829fddbf3c1aafee24f10c9d2cc9f8f007 |
| SHA512 | 3270511d1dbd060f6c54bc050682e43270154ec1d372b86d67dc160db98b5e2b8daca19b942ed55d39e8147fe0dc44b922a96286e5553d02825b2c61758530e1 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\E5VWWVU3YUZ98SHF7U91.temp
| MD5 | 6f8401d74926bd77d44c292454a863e4 |
| SHA1 | eb172a74ee39e03618f9ce154224eafb46ac6116 |
| SHA256 | 3313202f51f0aa80ddfb52e99b0ea04adf570a7901b3a0d06baf0e5d38343a53 |
| SHA512 | e67d78be48a62f278e7671f530faffe04dac2850e4d6468ee2a6921658dbcd894254bc6b8e4eb8f072e4e24ceadc5e74d6cfc2340a7b79109530688f53cea417 |
C:\Users\Admin\AppData\Local\Mozilla\Firefox\Profiles\yaq795em.default-release\cache2\entries\D8DC8567C05B824E1040B471D8C1B0A524438EF3
| MD5 | 9e5a2dbf3da7bd731927045dbefc723f |
| SHA1 | 1175c5cccba74f3b5aa4f91d6f862bcd7a2ed625 |
| SHA256 | 471abc84cc762c46c5e34434cd249548d6f40cdad0bde8889c49c55ec67f15ab |
| SHA512 | 5590f2b32cc1d4dffb0fb318e543e2a067c476cbde899ba1b08097e029bb04895c6c04107f54721fb64872bf267331040cff84eb82bbd8be17545c3c0eac4eda |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\prefs-1.js
| MD5 | 33bc60d92533746db10a36e975530d87 |
| SHA1 | 9992c70f6089f0076b91555165522b34200f34f6 |
| SHA256 | 24b821bf9438d542981ff222de06444e85da5fd412ee4a2bf6b8c55ac27b858f |
| SHA512 | 4428553b96b71b5118951cfe292aea850a69ebb514e6b66009f34f29d2e18717808289e443bc21a740bf24ab87c9062066ce1aa932f276e300b856ef3f975998 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 7b2ba4f5b659bb539388cad37c77a91a |
| SHA1 | b8479ffcc6204d690f1e6e0c4100fb9513bea08b |
| SHA256 | dea2e3560c3b0cdbc48f694c822a22f957ca7fd150cdd6fe69d4293d36c35f75 |
| SHA512 | 0137d7f4898d217b195600d8ace4c4cc5ce2bd08fb2763b5c3e01b3197c6f3ce74a4eaff19477716cd5b3e559e92863e7c95d34e5c2554093142f203bb03b905 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | a6a519cacaef52526381dd065e974e84 |
| SHA1 | 02f757de51d882d987499d21e0e1ef8c617151d1 |
| SHA256 | 63f6df9c6e1fdb100a3d4683a42eb17d7aff9e396f020c344afcb8219aff081e |
| SHA512 | f84e1803d28d44554b9496969a53d3945b8ff7d4814f012b2e7c457e7ad2838cb3229538917f49490b18eb977d33df3df7e107f893956959456805bbd335f801 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | 5b8dbf13c4d4a0c73a3c8b0fa40cfeaa |
| SHA1 | f291d47bb931b46cf29c2667e4e920849f7426c4 |
| SHA256 | d89f1267f5e218d228764ba281ca85c43fbfd3d8e06b3fb579394175c2588118 |
| SHA512 | 0a421f5e98e8082efe6718c43882aed38871b7278623dbdca4e84ed03e24265ae668880b32066c35173d57be1329418a74ac923185129981970ea2733da9c4a1 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6824f4a902c78fbd.customDestinations-ms
| MD5 | f506f393265e15b1be6fd4a2671337d3 |
| SHA1 | b9298ca7f21bec86be96f03fb3be272950e5a681 |
| SHA256 | 0b989f47023885670d31fe282d304de9175f1c901a82391f2ccec3584202545e |
| SHA512 | 40d84288865cf374b3275466f8bdc81f7d8a01b3d074f57497cdcf94e8dcf0ba98d25d61892b5ba73b67a08bc9256ad429ffaa16d33b28a2dcae2f60ed7d5a74 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\sessionstore-backups\recovery.baklz4
| MD5 | cd406b62899d52ea478ccece2f5aa541 |
| SHA1 | 1dc629388d090e9937a5cd0488c2ec2c7101a6f7 |
| SHA256 | ebd5468127477694c49e663ef16f4631df08befcdef9bf7a97afa89d87d8a7ec |
| SHA512 | a95694fde8572080a75ab6cbc8213d1c83359d4440e9391b6899ab71a9abc3f4d1ce233da92c8fd1bf1f8d49c70aab195d988917e3ff6f9893e61f89d7a89ced |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\AlternateServices.bin
| MD5 | f71d4e16e36edeade79b060fa48a267e |
| SHA1 | 7e52d6240151c2aa59aa68b13e0f1415479e8c72 |
| SHA256 | 430c2859319c78dc34dc4b29e6bfa37e563853a6f6a02dcf028785dc01620318 |
| SHA512 | 0cb33d236dc793f7c344507da5a55717c60578f9bacded69cca750afb2a2b47ad7cecc3874eeb44ca33198acc55acdea78f80511677cbd195fdd2b52789d36a3 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\prefs-1.js
| MD5 | 0e788144d51a8b31c0103c8635f6c9f6 |
| SHA1 | 931787d80eb626ecb9dad405ee61efdd5acd5da7 |
| SHA256 | f8a2a84abb9471be555f04db138105ba8ce9ab7d5c69a036783e7814bbb43eab |
| SHA512 | b2c56a66b0127adee8fc075a093f883787487659fce4272868f979cb44eff5c619aff8f5f5bd2a716372393ef6dff00065c0680d60ed5abe3cb869830f300a51 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\db\data.safe.tmp
| MD5 | f010a268c637e01046eb032252bbd57e |
| SHA1 | a0225b4e546f2bfc0c2afe3f0295a2f721d5158a |
| SHA256 | 1b7b69054f26c3020d9f67754e7a6c7085696e2d8a4b9432fe4c7b5904cdc484 |
| SHA512 | cada0fb7fc615a3808ae246a38f55d8a1daa6955864a83d32ad69f4e6e21f629a54ba673a1db456694daab7fa7c239f123ac14ac0e174f6565e9a796afe0e270 |
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\yaq795em.default-release\datareporting\glean\pending_pings\58107352-e4b5-492c-8c19-a525cae9a916
| MD5 | 9d813488bfd0edb631bb9d44822efe4d |
| SHA1 | 819fcd90dbef710afb4b142c0560f38e10b1a83e |
| SHA256 | 225941671aa935dde21a0f553f61ccc85c00e7d581542837e21fc929d2ebb4fe |
| SHA512 | fd673b395f16e6b2192e6391ae2bee3b7b5c6426cf222f9e632cf95b0b12ba015e7cf97a4a0c81bf81ab3875a6c80a80e3d623b3281559587f1cdb380444e87d |