Analysis Overview
Threat Level: Likely malicious
The file https://pastebin.com/Z1gXd6z8 was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Legitimate hosting services abused for malware hosting/C2
Drops file in Windows directory
Command and Scripting Interpreter: PowerShell
Enumerates physical storage devices
Browser Information Discovery
System Location Discovery: System Language Discovery
Suspicious use of SendNotifyMessage
Suspicious use of AdjustPrivilegeToken
Enumerates system info in registry
Modifies registry class
Suspicious use of WriteProcessMemory
Suspicious use of FindShellTrayWindow
Modifies Internet Explorer settings
Modifies data under HKEY_USERS
Suspicious behavior: MapViewOfSection
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of SetWindowsHookEx
Suspicious behavior: EnumeratesProcesses
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-25 14:19
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-25 14:19
Reported
2024-08-25 14:41
Platform
win10-20240404-en
Max time kernel
1263s
Max time network
1267s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.92.2.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\is-4K345.tmp\VSCodeUserSetup-x64-1.92.2.tmp | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
| N/A | pastebin.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\rescache\_merged\3720402701\1568373884.pri | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| File created | C:\Windows\rescache\_merged\3720402701\1568373884.pri | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| File created | C:\Windows\rescache\_merged\3720402701\1568373884.pri | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| File opened for modification | C:\Windows\Debug\ESE.TXT | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| File created | C:\Windows\rescache\_merged\3720402701\1568373884.pri | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
Browser Information Discovery
Command and Scripting Interpreter: PowerShell
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.92.2.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\AppData\Local\Temp\is-4K345.tmp\VSCodeUserSetup-x64-1.92.2.tmp | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000\Software\Microsoft\Internet Explorer\Main | C:\Windows\system32\browser_broker.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000\Software\Microsoft\Internet Explorer\Main | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133690692305791313" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Protected - It is a violation of Windows Policy to modif = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\Active = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DomStorageState\EdpCleanupState = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\Main | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\ServiceUI\ServiceTabLoadAttempts = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com\ = "652" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\FavOrder | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Internet Settings\Zones\3 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\EnablementState = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer\Main\OperationalData = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\Total\ = "8" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\NumberOfSubdomains = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "4183" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\Active\{99A8F749-6438-4262-8E17-86A1F0D580BD} = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\CIStatus | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\History\CacheLimit = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\DXFeatureLevel = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VendorId = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-DeviceId = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\www.bing.com | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Internet Settings\Cache\Content\CachePrefix | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Revision = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\CVListXMLVersionHigh = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\Total\ = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\www.bing.com | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\bing.com\Total = "652" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\DOMStorage\Total\ = "705" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Privacy | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingRecovery\ReadingStorePending = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\IECompatVersionHigh = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\pastebin.com | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Recovery\PendingDelete | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation\LowMic | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = ba1189e4f9f6da01 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DataStore\OneTimeCleanup = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = e41c95eaf9f6da01 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\CIStatus | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\bing.com | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\Internet Explorer\EdpDomStorage\www.bing.com\ = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\ACGStatus\DynamicCodePolicy = 05000000 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Settings\Cache\Content\CachePrefix | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\002\ACGStatus\ACGPolicyState = "8" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\BrowserEmulation | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\CIStatus | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 6c3b52e4f9f6da01 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Settings\Cache\Cookies\CacheLimit = "1" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\004\Internet Explorer | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\CIStatus\CIStatusTimestamp = 0bcdeee5f9f6da01 | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DomStorageState\EdpState = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\DummyPath | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\IETld\LowMic | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\Wow64-VersionLow = "0" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\006\ACGStatus\ACGPolicyState = "6" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\pastebin.com | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3968772205-1713802336-1776639840-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\GPU\AdapterInfo = "vendorId=\"0x10de\",deviceID=\"0x8c\",subSysID=\"0x0\",revision=\"0x0\",version=\"10.0.15063.0\"hypervisor=\"No Hypervisor (No SLAT)\"" | C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe | N/A |
Suspicious behavior: MapViewOfSection
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Windows\system32\LaunchWinApp.exe
"C:\Windows\system32\LaunchWinApp.exe" "https://pastebin.com/Z1gXd6z8"
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca
C:\Windows\system32\browser_broker.exe
C:\Windows\system32\browser_broker.exe -Embedding
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
"C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe" -ServerName:ContentProcess.AppX6z3cwk4fvgady6zya12j1cw28d228a7k.mca
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=106.0.5249.119 --initial-client-data=0xcc,0xd0,0xd4,0xa8,0xd8,0x7ffbcd299758,0x7ffbcd299768,0x7ffbcd299778
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1540 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1952 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=1712 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=2972 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3096 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\106.0.5249.119\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4468 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --mojo-platform-channel-handle=3868 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --mojo-platform-channel-handle=4908 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --mojo-platform-channel-handle=4856 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5596 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5480 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4940 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=5596 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --mojo-platform-channel-handle=5808 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5980 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=5720 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --mojo-platform-channel-handle=6132 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=6124 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --mojo-platform-channel-handle=6292 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --mojo-platform-channel-handle=6616 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --mojo-platform-channel-handle=6788 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --mojo-platform-channel-handle=6840 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --mojo-platform-channel-handle=7140 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --mojo-platform-channel-handle=7340 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --mojo-platform-channel-handle=7096 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --mojo-platform-channel-handle=7492 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --mojo-platform-channel-handle=6648 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --mojo-platform-channel-handle=6416 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --mojo-platform-channel-handle=8056 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --mojo-platform-channel-handle=8184 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --mojo-platform-channel-handle=8324 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --mojo-platform-channel-handle=8332 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --mojo-platform-channel-handle=8660 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --mojo-platform-channel-handle=8812 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --mojo-platform-channel-handle=9004 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --mojo-platform-channel-handle=9164 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --mojo-platform-channel-handle=9360 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --mojo-platform-channel-handle=9504 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --mojo-platform-channel-handle=9688 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --mojo-platform-channel-handle=9696 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --mojo-platform-channel-handle=10032 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --mojo-platform-channel-handle=10204 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --mojo-platform-channel-handle=10176 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --mojo-platform-channel-handle=6672 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --mojo-platform-channel-handle=10568 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --mojo-platform-channel-handle=2964 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --mojo-platform-channel-handle=10988 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --mojo-platform-channel-handle=10984 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --mojo-platform-channel-handle=11028 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --mojo-platform-channel-handle=11008 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --mojo-platform-channel-handle=11052 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --mojo-platform-channel-handle=4708 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --mojo-platform-channel-handle=9352 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --mojo-platform-channel-handle=6460 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --mojo-platform-channel-handle=8488 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6540 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3908 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --mojo-platform-channel-handle=5004 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --mojo-platform-channel-handle=7796 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --mojo-platform-channel-handle=5012 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9364 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7400 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9556 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --mojo-platform-channel-handle=3440 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --mojo-platform-channel-handle=8680 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --mojo-platform-channel-handle=9836 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9976 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --mojo-platform-channel-handle=8868 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --mojo-platform-channel-handle=6784 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.15063.0 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=4716 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --mojo-platform-channel-handle=5132 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --mojo-platform-channel-handle=7024 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --mojo-platform-channel-handle=8856 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --mojo-platform-channel-handle=6888 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --mojo-platform-channel-handle=6988 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --mojo-platform-channel-handle=6200 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --mojo-platform-channel-handle=3572 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --mojo-platform-channel-handle=6116 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --mojo-platform-channel-handle=10640 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --mojo-platform-channel-handle=10616 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --mojo-platform-channel-handle=9068 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --mojo-platform-channel-handle=9940 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --mojo-platform-channel-handle=8396 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --mojo-platform-channel-handle=7492 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --mojo-platform-channel-handle=6132 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --mojo-platform-channel-handle=6240 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --mojo-platform-channel-handle=2656 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --mojo-platform-channel-handle=11172 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --mojo-platform-channel-handle=11308 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4472 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8504 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --mojo-platform-channel-handle=7344 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --mojo-platform-channel-handle=10256 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --mojo-platform-channel-handle=8556 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --mojo-platform-channel-handle=5792 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --mojo-platform-channel-handle=11128 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --mojo-platform-channel-handle=11268 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --mojo-platform-channel-handle=10312 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --mojo-platform-channel-handle=8556 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7456 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5792 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=3848 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --mojo-platform-channel-handle=3576 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --mojo-platform-channel-handle=7092 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --mojo-platform-channel-handle=8640 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --mojo-platform-channel-handle=4500 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --mojo-platform-channel-handle=7748 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --mojo-platform-channel-handle=6688 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --mojo-platform-channel-handle=10924 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --mojo-platform-channel-handle=7712 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --mojo-platform-channel-handle=6596 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --mojo-platform-channel-handle=7908 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --mojo-platform-channel-handle=6428 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --mojo-platform-channel-handle=6560 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --mojo-platform-channel-handle=10836 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --mojo-platform-channel-handle=6656 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --display-capture-permissions-policy-allowed --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --mojo-platform-channel-handle=10476 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=908 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=11036 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.92.2.exe
"C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.92.2.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=11292 --field-trial-handle=1780,i,9733507782873303499,12196726740842569096,131072 /prefetch:8
C:\Users\Admin\AppData\Local\Temp\is-4K345.tmp\VSCodeUserSetup-x64-1.92.2.tmp
"C:\Users\Admin\AppData\Local\Temp\is-4K345.tmp\VSCodeUserSetup-x64-1.92.2.tmp" /SL5="$100048,99340950,828416,C:\Users\Admin\Downloads\VSCodeUserSetup-x64-1.92.2.exe"
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -Command "Get-WmiObject Win32_Process | Where-Object { $_.ExecutablePath -eq 'C:\Users\Admin\AppData\Local\Programs\Microsoft VS Code\bin\code-tunnel.exe' } | Select @{Name='Id'; Expression={$_.ProcessId}} | Stop-Process -Force"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | pastebin.com | udp |
| US | 104.20.3.235:443 | pastebin.com | tcp |
| US | 104.20.3.235:443 | pastebin.com | tcp |
| US | 8.8.8.8:53 | c.pki.goog | udp |
| FR | 216.58.214.163:80 | c.pki.goog | tcp |
| US | 8.8.8.8:53 | 235.3.20.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.vlitag.com | udp |
| US | 104.22.58.199:443 | services.vlitag.com | tcp |
| US | 104.22.58.199:443 | services.vlitag.com | tcp |
| US | 104.20.3.235:443 | pastebin.com | tcp |
| US | 104.20.3.235:443 | pastebin.com | tcp |
| US | 8.8.8.8:53 | o.pki.goog | udp |
| FR | 216.58.214.163:80 | o.pki.goog | tcp |
| US | 8.8.8.8:53 | 200.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 199.58.22.104.in-addr.arpa | udp |
| FR | 216.58.214.163:80 | o.pki.goog | tcp |
| US | 8.8.8.8:53 | www.msn.com | udp |
| US | 8.8.8.8:53 | assets.msn.com | udp |
| GB | 95.101.143.176:443 | assets.msn.com | tcp |
| GB | 95.101.143.176:443 | assets.msn.com | tcp |
| GB | 95.101.143.176:443 | assets.msn.com | tcp |
| GB | 95.101.143.176:443 | assets.msn.com | tcp |
| US | 8.8.8.8:53 | 176.143.101.95.in-addr.arpa | udp |
| US | 204.79.197.203:443 | www.msn.com | tcp |
| US | 204.79.197.203:443 | www.msn.com | tcp |
| US | 8.8.8.8:53 | browser.events.data.msn.com | udp |
| US | 204.79.197.203:443 | www.msn.com | tcp |
| US | 204.79.197.203:443 | www.msn.com | tcp |
| US | 20.189.173.8:443 | browser.events.data.msn.com | tcp |
| US | 20.189.173.8:443 | browser.events.data.msn.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | 8.173.189.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| GB | 88.221.135.34:443 | www.bing.com | tcp |
| GB | 88.221.135.34:443 | www.bing.com | tcp |
| GB | 88.221.135.34:443 | www.bing.com | tcp |
| GB | 88.221.135.34:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 34.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 74.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pastebin.com | udp |
| US | 172.67.19.24:443 | pastebin.com | tcp |
| US | 172.67.19.24:443 | pastebin.com | tcp |
| US | 8.8.8.8:53 | services.vlitag.com | udp |
| US | 172.67.21.227:443 | services.vlitag.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| FR | 172.217.18.202:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 172.67.21.227:443 | services.vlitag.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | 24.19.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.21.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dsp.vlitag.com | udp |
| US | 8.8.8.8:53 | cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | s3.vlitag.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| GB | 18.244.114.102:443 | cmp.inmobi.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| FR | 142.250.178.138:443 | imasdk.googleapis.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 18.244.114.102:443 | cmp.inmobi.com | tcp |
| GB | 13.224.223.9:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | px.vliplatform.com | udp |
| GB | 108.156.39.35:443 | config.aps.amazon-adsystem.com | tcp |
| US | 151.101.193.229:443 | cdn.jsdelivr.net | tcp |
| US | 141.101.120.11:443 | px.vliplatform.com | tcp |
| US | 8.8.8.8:53 | 102.114.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.223.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 138.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | script.4dex.io | udp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| US | 8.8.8.8:53 | 35.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.120.101.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| GB | 88.221.135.104:80 | apps.identrust.com | tcp |
| DE | 18.197.222.173:443 | api.cmp.inmobi.com | tcp |
| US | 8.8.8.8:53 | useast.quantumdex.io | udp |
| US | 8.8.8.8:53 | prebid-eu.creativecdn.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 141.101.120.11:443 | px.vliplatform.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| IE | 52.31.83.248:443 | ap.lijit.com | tcp |
| IE | 52.31.83.248:443 | ap.lijit.com | tcp |
| IE | 52.31.83.248:443 | ap.lijit.com | tcp |
| US | 172.67.42.201:443 | useast.quantumdex.io | tcp |
| US | 172.67.42.201:443 | useast.quantumdex.io | tcp |
| US | 172.67.42.201:443 | useast.quantumdex.io | tcp |
| US | 172.67.42.201:443 | useast.quantumdex.io | tcp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| FR | 172.217.18.206:443 | clients2.google.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 173.222.197.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.42.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.83.31.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.18.217.172.in-addr.arpa | udp |
| US | 172.67.42.201:443 | useast.quantumdex.io | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | sync.quantumdex.io | udp |
| IE | 18.202.134.149:443 | ce.lijit.com | tcp |
| US | 151.101.65.108:443 | acdn.adnxs.com | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | 149.134.202.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| US | 44.195.106.120:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| NL | 188.42.34.65:443 | ads.betweendigital.com | tcp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 76.223.111.18:443 | eb2.3lift.com | tcp |
| GB | 2.18.108.192:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| FR | 178.32.210.231:443 | ssbsync.smartadserver.com | tcp |
| GB | 2.18.108.192:443 | ads.pubmatic.com | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 8.8.8.8:53 | ssp.disqus.com | udp |
| GB | 108.156.39.10:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 54.209.247.102:443 | ssp.disqus.com | tcp |
| GB | 185.64.190.78:443 | image6.pubmatic.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| US | 8.8.8.8:53 | cache.betweendigital.com | udp |
| US | 8.8.8.8:53 | vid.vidoomy.com | udp |
| DE | 162.55.236.225:443 | sync.richaudience.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| GB | 89.187.167.39:443 | vid.vidoomy.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| DE | 151.236.71.142:443 | cache.betweendigital.com | tcp |
| IE | 52.211.24.199:443 | sync.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 162.55.236.225:443 | sync.richaudience.com | tcp |
| IE | 52.95.126.160:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| FR | 216.58.214.66:443 | cm.g.doubleclick.net | tcp |
| FR | 216.58.214.66:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 15.197.193.217:443 | match.adsrvr.org | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.57.245.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.34.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.106.195.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.86.75.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.119.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.111.223.76.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.108.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.210.32.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.247.209.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.167.187.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.71.236.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 199.24.211.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.126.95.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.bumlam.com | udp |
| DE | 31.172.81.146:443 | sync.bumlam.com | tcp |
| FR | 216.58.214.66:443 | cm.g.doubleclick.net | tcp |
| US | 69.166.1.35:443 | sync.go.sonobi.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 15.197.193.217:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | vpaid.vidoomy.com | udp |
| US | 8.8.8.8:53 | x01.aidata.io | udp |
| GB | 84.17.50.8:443 | vpaid.vidoomy.com | tcp |
| RU | 89.108.120.68:443 | x01.aidata.io | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| RU | 89.108.120.68:443 | x01.aidata.io | tcp |
| US | 8.8.8.8:53 | 146.81.172.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.50.17.84.in-addr.arpa | udp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| NL | 198.47.127.205:443 | simage2.pubmatic.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | 68.120.108.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.193.197.15.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ums.acuityplatform.com | udp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| DK | 37.157.5.132:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | dsp-cookie.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 54.146.156.15:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 151.101.2.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | 79.122.59.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.5.157.37.in-addr.arpa | udp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| IE | 34.252.6.15:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| FR | 216.58.214.66:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| SE | 13.53.196.230:443 | d5p.de17a.com | tcp |
| IE | 34.252.6.15:443 | match.prod.bidr.io | tcp |
| NL | 35.214.190.117:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| IE | 52.215.155.11:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| FR | 141.94.242.204:443 | green.erne.co | tcp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| US | 172.64.150.63:443 | a.tribalfusion.com | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| NL | 34.91.62.186:443 | um.simpli.fi | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| FR | 54.38.113.6:443 | pixel.onaudience.com | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | 66.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.2.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.156.146.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.210.82.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.63.42.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.6.252.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.196.53.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.190.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.155.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.242.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.150.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.62.91.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 54.38.113.3:443 | pixel-eu.onaudience.com | tcp |
| US | 8.8.8.8:53 | cms.analytics.yahoo.com | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| DE | 3.75.62.37:443 | cms.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| FR | 142.250.178.134:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| DE | 54.93.104.240:443 | sonata-notifications.taptapnetworks.com | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| NL | 63.215.202.137:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.104.93.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| FR | 172.217.18.202:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| NL | 134.122.57.34:443 | match.adsby.bidtheatre.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| IE | 52.50.157.250:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 89.149.193.105:443 | rtb-csync.smartadserver.com | tcp |
| US | 54.146.156.15:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | 137.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 250.157.50.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.57.122.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 54.146.156.15:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 204.79.197.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 69.173.146.5:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 54.167.154.222:443 | aorta.clickagy.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 105.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.146.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 222.154.167.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.serverbid.com | udp |
| GB | 143.204.176.88:443 | sync.serverbid.com | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 88.176.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.236.55.162.in-addr.arpa | udp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | an.yandex.ru | udp |
| RU | 87.250.250.90:443 | an.yandex.ru | tcp |
| US | 8.8.8.8:53 | yandex.ru | udp |
| US | 8.8.8.8:53 | 90.250.250.87.in-addr.arpa | udp |
| RU | 77.88.55.88:443 | yandex.ru | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | 88.55.88.77.in-addr.arpa | udp |
| GB | 23.43.66.117:443 | secure-assets.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| GB | 95.100.245.251:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 117.66.43.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.245.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.tns-counter.ru | udp |
| RU | 194.226.130.226:443 | www.tns-counter.ru | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| DE | 51.75.86.98:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 226.130.226.194.in-addr.arpa | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 52.111.227.14:443 | tcp | |
| US | 8.8.8.8:53 | 73.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.215.58.216.in-addr.arpa | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | 226.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | consent.google.com | udp |
| FR | 142.250.201.174:443 | consent.google.com | tcp |
| FR | 172.217.18.202:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | encrypted-tbn0.gstatic.com | udp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| FR | 216.58.214.174:443 | encrypted-tbn0.gstatic.com | tcp |
| US | 8.8.8.8:53 | code.visualstudio.com | udp |
| US | 13.107.246.64:443 | code.visualstudio.com | tcp |
| US | 13.107.246.64:443 | code.visualstudio.com | tcp |
| US | 8.8.8.8:53 | consentdeliveryfd.azurefd.net | udp |
| US | 8.8.8.8:53 | js.monitor.azure.com | udp |
| US | 13.107.246.64:443 | js.monitor.azure.com | tcp |
| US | 13.107.246.64:443 | js.monitor.azure.com | tcp |
| US | 8.8.8.8:53 | 174.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 20.42.65.94:443 | browser.events.data.microsoft.com | tcp |
| US | 20.42.65.94:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| GB | 95.100.245.144:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | marketplace.visualstudio.com | udp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 13.107.42.18:443 | marketplace.visualstudio.com | tcp |
| US | 8.8.8.8:53 | web.vortex.data.microsoft.com | udp |
| US | 8.8.8.8:53 | assets.onestore.ms | udp |
| US | 8.8.8.8:53 | mem.gfx.ms | udp |
| US | 13.107.246.64:443 | mem.gfx.ms | tcp |
| NL | 88.221.70.210:443 | assets.onestore.ms | tcp |
| US | 8.8.8.8:53 | microsoftwindows.112.2o7.net | udp |
| IE | 66.235.152.225:443 | microsoftwindows.112.2o7.net | tcp |
| US | 8.8.8.8:53 | github.gallerycdn.vsassets.io | udp |
| FR | 68.232.34.200:443 | github.gallerycdn.vsassets.io | tcp |
| US | 8.8.8.8:53 | vscode.download.prss.microsoft.com | udp |
| US | 152.199.21.175:443 | vscode.download.prss.microsoft.com | tcp |
| US | 8.8.8.8:53 | 144.245.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.70.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.152.235.66.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.34.232.68.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.21.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ms-python.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | ms-vscode.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | vscjava.gallerycdn.vsassets.io | udp |
| US | 8.8.8.8:53 | api.cmp.inmobi.com | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | connectid.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 141.101.120.11:443 | px.vliplatform.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| GB | 18.245.162.54:443 | connectid.analytics.yahoo.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| FR | 142.250.201.162:443 | ep1.adtrafficquality.google | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| DE | 18.197.222.173:443 | api.cmp.inmobi.com | tcp |
| GB | 18.245.143.58:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | 910ea26a8dabe7ecc541a5712abb21ce.safeframe.googlesyndication.com | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| GB | 18.245.255.11:443 | cdn.prod.uidapi.com | tcp |
| US | 151.101.65.229:443 | cdn.jsdelivr.net | udp |
| FR | 142.250.179.65:443 | 910ea26a8dabe7ecc541a5712abb21ce.safeframe.googlesyndication.com | tcp |
| FR | 142.250.178.138:443 | imasdk.googleapis.com | udp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| US | 104.22.59.199:443 | s3.vlitag.com | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | adsystem.pocpoc.io | udp |
| US | 8.8.8.8:53 | px.pocpoc.io | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 104.26.14.167:443 | px.pocpoc.io | tcp |
| US | 172.67.75.64:443 | px.pocpoc.io | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 104.26.14.167:443 | px.pocpoc.io | tcp |
| US | 172.67.75.64:443 | px.pocpoc.io | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 104.26.14.167:443 | px.pocpoc.io | tcp |
| US | 172.67.75.64:443 | px.pocpoc.io | tcp |
| IE | 52.211.24.199:443 | bcp.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 229.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.162.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.143.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.255.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 199.59.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.75.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.14.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | static.vliplatform.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| DE | 142.250.180.67:443 | csi.gstatic.com | tcp |
| DE | 142.250.180.67:443 | csi.gstatic.com | tcp |
| US | 8.8.8.8:53 | odb.outbrain.com | udp |
| US | 104.26.7.132:443 | quantumsyndication.com | tcp |
| US | 104.26.7.132:443 | quantumsyndication.com | tcp |
| US | 151.101.130.132:443 | odb.outbrain.com | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| DE | 142.250.180.67:443 | csi.gstatic.com | udp |
| US | 8.8.8.8:53 | rtb-useast.rtbserve.io | udp |
| US | 198.134.116.50:443 | rtb-useast.rtbserve.io | tcp |
| US | 198.134.116.50:443 | rtb-useast.rtbserve.io | tcp |
| US | 8.8.8.8:53 | widgets.outbrain.com | udp |
| US | 8.8.8.8:53 | images.outbrainimg.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| GB | 23.46.74.20:443 | images.outbrainimg.com | tcp |
| GB | 2.22.69.57:443 | widgets.outbrain.com | tcp |
| GB | 2.22.69.57:443 | widgets.outbrain.com | tcp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.116.134.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.74.46.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.69.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pubads.g.doubleclick.net | udp |
| FR | 142.250.75.226:443 | pubads.g.doubleclick.net | tcp |
| FR | 142.250.75.226:443 | pubads.g.doubleclick.net | tcp |
| US | 104.26.7.132:443 | quantumsyndication.com | udp |
| US | 8.8.8.8:53 | rtb2-useast.xaprio.net | udp |
| US | 8.8.8.8:53 | 226.75.250.142.in-addr.arpa | udp |
| US | 174.137.133.49:443 | rtb2-useast.xaprio.net | tcp |
| US | 174.137.133.49:443 | rtb2-useast.xaprio.net | tcp |
| US | 8.8.8.8:53 | adsdk.microsoft.com | udp |
| US | 8.8.8.8:53 | cdn.adnxs.com | udp |
| US | 8.8.8.8:53 | ams3-ib.adnxs.com | udp |
| US | 151.101.193.108:443 | cdn.adnxs.com | tcp |
| US | 13.107.246.64:443 | adsdk.microsoft.com | tcp |
| NL | 185.89.210.90:443 | ams3-ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | cdn.adnxs-simple.com | udp |
| US | 151.101.1.108:443 | cdn.adnxs-simple.com | tcp |
| GB | 95.101.129.234:443 | www.bing.com | tcp |
| GB | 95.101.129.234:443 | www.bing.com | tcp |
| GB | 95.101.129.234:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 108.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.129.101.95.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | 85.65.42.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 172.67.21.227:443 | s3.vlitag.com | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| NL | 79.127.227.46:443 | id.a-mx.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 141.95.98.65:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| NL | 79.127.227.46:443 | c3.a-mo.net | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 172.67.42.201:443 | sync.quantumdex.io | udp |
| DE | 37.252.171.53:443 | ib.adnxs.com | tcp |
| IE | 52.31.116.101:443 | ap.lijit.com | tcp |
| FR | 142.250.201.162:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | ff61fd5f2b0a9f7eff75898368b74131.safeframe.googlesyndication.com | udp |
| US | 104.26.14.167:443 | px.pocpoc.io | udp |
| US | 172.67.75.64:443 | px.pocpoc.io | udp |
| US | 8.8.8.8:53 | 53.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.116.31.52.in-addr.arpa | udp |
| US | 198.134.116.50:443 | rtb-useast.rtbserve.io | tcp |
| US | 8.8.8.8:53 | rtb-useast-v4.infinityexplorers.com | udp |
| US | 198.134.116.50:443 | rtb-useast-v4.infinityexplorers.com | tcp |
| FR | 142.250.75.226:443 | pubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | vid-rtb.xapads.com | udp |
| US | 198.134.116.50:443 | vid-rtb.xapads.com | tcp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 52.214.122.99:443 | ce.lijit.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| US | 172.64.151.101:443 | ssum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| DE | 18.195.234.25:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| NL | 77.245.57.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 35.169.164.106:443 | cs-server-s2s.yellowblue.io | tcp |
| IE | 52.215.131.87:443 | match.prod.bidr.io | tcp |
| NL | 81.17.55.170:443 | ssbsync.smartadserver.com | tcp |
| DE | 91.228.74.166:443 | cms.quantserve.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 52.223.40.198:443 | data.adsrvr.org | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| DE | 18.195.234.25:443 | match.sharethrough.com | tcp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | 99.122.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.55.17.81.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.74.228.91.in-addr.arpa | udp |
| FR | 216.58.214.66:443 | cm.g.doubleclick.net | udp |
| IE | 52.215.131.87:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | www.acint.net | udp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| DE | 142.132.138.215:443 | www.acint.net | tcp |
| DE | 116.202.167.133:443 | inv-nets.admixer.net | tcp |
| US | 216.200.232.249:443 | sync.mathtag.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| IE | 52.215.131.87:443 | match.prod.bidr.io | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| NL | 154.57.158.116:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | triplelift-match.dotomi.com | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| NL | 89.207.16.204:443 | triplelift-match.dotomi.com | tcp |
| US | 64.202.112.31:443 | b1sync.zemanta.com | tcp |
| IE | 34.247.18.134:443 | pm.w55c.net | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| NL | 154.57.158.116:443 | ads.stickyadstv.com | tcp |
| NL | 35.214.190.117:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| IE | 67.220.228.202:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | a.sportradarserving.com | udp |
| US | 52.71.88.198:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | ssp-rtb.sape.ru | udp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| RU | 193.3.184.24:443 | ssp-rtb.sape.ru | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| IE | 52.30.33.234:443 | cs.yellowblue.io | tcp |
| DE | 18.195.234.25:443 | match.sharethrough.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | acint.net | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| IE | 18.200.154.164:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 35.174.76.132:443 | aorta.clickagy.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 106.164.169.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.131.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.138.132.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.167.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.158.57.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.232.200.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 204.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.228.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.18.247.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.88.71.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.174.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.184.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.33.30.52.in-addr.arpa | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 104.18.41.104:443 | capi.connatix.com | tcp |
| US | 54.144.14.120:443 | sync.ipredictive.com | tcp |
| NL | 147.75.34.177:443 | prebid.a-mo.net | tcp |
| US | 8.8.8.8:53 | mc.acint.net | udp |
| US | 8.8.8.8:53 | px.adhigh.net | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| RU | 193.232.150.61:443 | px.adhigh.net | tcp |
| DE | 18.195.234.25:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 164.154.200.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 132.76.174.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.41.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 177.34.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.14.144.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.150.232.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sape-sync.rutarget.ru | udp |
| RU | 188.72.107.228:443 | sape-sync.rutarget.ru | tcp |
| US | 8.8.8.8:53 | 228.107.72.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.234.195.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | mcdp-chidc2.outbrain.com | udp |
| US | 8.8.8.8:53 | log.outbrainimg.com | udp |
| US | 50.31.142.159:443 | mcdp-chidc2.outbrain.com | tcp |
| US | 64.74.236.191:443 | log.outbrainimg.com | tcp |
| US | 8.8.8.8:53 | 159.142.31.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.236.74.64.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | id.google.com | udp |
| IN | 142.250.67.163:443 | id.google.com | tcp |
| US | 8.8.8.8:53 | i.ytimg.com | udp |
| IN | 142.250.67.163:443 | id.google.com | tcp |
| FR | 142.250.201.182:443 | i.ytimg.com | tcp |
| FR | 142.250.201.182:443 | i.ytimg.com | tcp |
| FR | 142.250.201.182:443 | i.ytimg.com | tcp |
| US | 8.8.8.8:53 | 182.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.67.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| FR | 142.250.75.238:443 | www.youtube.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| FR | 142.250.201.174:443 | www.youtube.com | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 185.199.108.133:443 | avatars.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.114.22:443 | collector.github.com | tcp |
| FR | 172.217.18.202:443 | content-autofill.googleapis.com | udp |
| US | 140.82.114.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.114.82.140.in-addr.arpa | udp |
| IN | 142.250.67.163:443 | id.google.com | udp |
| US | 8.8.8.8:53 | temp-mail.org | udp |
| US | 104.26.7.95:443 | temp-mail.org | tcp |
| US | 104.26.7.95:443 | temp-mail.org | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | challenges.cloudflare.com | udp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 104.18.95.41:443 | challenges.cloudflare.com | tcp |
| US | 104.18.95.41:443 | challenges.cloudflare.com | udp |
| US | 8.8.8.8:53 | 95.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.79.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.95.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.paddle.com | udp |
| US | 8.8.8.8:53 | cdn4.buysellads.net | udp |
| US | 8.8.8.8:53 | web2.temp-mail.org | udp |
| US | 172.66.43.196:443 | cdn.paddle.com | tcp |
| US | 104.26.6.95:443 | web2.temp-mail.org | tcp |
| GB | 159.65.211.77:443 | cdn4.buysellads.net | tcp |
| US | 8.8.8.8:53 | 196.43.66.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.211.65.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| NL | 23.218.48.210:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| FR | 142.250.179.66:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | srv.buysellads.com | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | rt.marphezis.com | udp |
| GB | 159.65.211.77:443 | srv.buysellads.com | tcp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| FR | 5.135.209.97:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | exchange.cootlogix.com | udp |
| NL | 188.166.203.175:443 | rt.marphezis.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| DE | 37.252.171.53:443 | fra1-ib.adnxs.com | tcp |
| US | 172.64.153.78:443 | mp.4dex.io | tcp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| US | 8.8.8.8:53 | pbjs.e-planning.net | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 142.93.254.76:443 | exchange.cootlogix.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| GB | 108.138.217.48:443 | hb.yellowblue.io | tcp |
| NL | 193.3.178.3:443 | pbjs.e-planning.net | tcp |
| NL | 185.64.189.112:443 | hbopenbid.pubmatic.com | tcp |
| GB | 18.172.154.232:443 | aax.amazon-adsystem.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | c.4dex.io | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 35.241.34.106:443 | c.4dex.io | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 172.67.75.241:443 | script.4dex.io | tcp |
| US | 104.22.4.69:443 | id.hadron.ad.gt | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.48.218.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.209.135.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.203.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.153.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.64.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.217.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.3.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.154.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.254.93.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.34.241.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| FR | 142.250.201.162:443 | ep1.adtrafficquality.google | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 104.22.4.69:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | b18c2752c0ca6a1a7326cc450fb47cdf.safeframe.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 185.89.210.180:443 | secure.adnxs.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| FR | 142.250.179.66:443 | googleads.g.doubleclick.net | tcp |
| FR | 142.250.179.66:443 | googleads.g.doubleclick.net | tcp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | st.pubmatic.com | udp |
| GB | 185.64.190.89:443 | st.pubmatic.com | tcp |
| FR | 172.217.20.194:443 | googleads4.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 180.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | sync.cootlogix.com | udp |
| US | 8.8.8.8:53 | hb.trustedstack.com | udp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| US | 208.68.37.219:443 | sync.cootlogix.com | tcp |
| GB | 2.16.170.43:443 | hb.trustedstack.com | tcp |
| GB | 23.46.72.29:443 | contextual.media.net | tcp |
| US | 208.68.37.219:443 | sync.cootlogix.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 64.202.112.31:443 | b1sync.zemanta.com | tcp |
| US | 64.202.112.31:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | eu-west-1-cs-rtb.openwebmp.com | udp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| IE | 34.250.109.179:443 | match.prod.bidr.io | tcp |
| US | 52.2.98.215:443 | api-2-0.spot.im | tcp |
| IE | 52.31.83.248:443 | ap.lijit.com | tcp |
| US | 54.157.210.214:443 | sync.srv.stackadapt.com | tcp |
| IE | 34.253.170.144:443 | jadserve.postrelease.com | tcp |
| GB | 13.224.222.128:443 | eu-west-1-cs-rtb.openwebmp.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 104.17.44.93:443 | gum.aidemsrv.com | tcp |
| US | 192.132.33.68:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 67.202.105.24:443 | ssc-cms.33across.com | tcp |
| DE | 168.119.72.236:443 | sync.richaudience.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 64.202.112.31:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.170.16.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.72.46.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.37.68.208.in-addr.arpa | udp |
| GB | 92.123.143.216:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| NL | 81.17.55.170:443 | ssbsync-global.smartadserver.com | tcp |
| US | 3.212.19.99:443 | cs-server-s2s.yellowblue.io | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| GB | 18.245.187.108:443 | live.primis.tech | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| GB | 143.204.68.51:80 | crt.rootg2.amazontrust.com | tcp |
| US | 172.240.45.78:443 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | 128.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.109.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.170.253.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.44.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.210.157.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.98.2.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.143.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.19.212.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.50.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.187.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.68.204.143.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| FR | 142.250.75.238:443 | google.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| FR | 142.250.75.238:443 | google.com | tcp |
| US | 8.8.8.8:53 | beacons3.gvt2.com | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| FR | 172.217.20.163:443 | beacons3.gvt2.com | tcp |
| FR | 172.217.20.163:443 | beacons3.gvt2.com | tcp |
| FR | 172.217.20.163:443 | beacons3.gvt2.com | udp |
| FR | 172.217.18.206:443 | clients2.google.com | udp |
| US | 8.8.8.8:53 | 163.20.217.172.in-addr.arpa | udp |
| FR | 172.217.18.206:443 | clients2.google.com | tcp |
| FR | 142.250.75.238:443 | google.com | udp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | fra1-ib.adnxs.com | udp |
| DE | 37.252.171.52:443 | fra1-ib.adnxs.com | tcp |
| DE | 37.252.171.52:443 | fra1-ib.adnxs.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons4.gvt2.com | udp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | tcp |
| US | 216.239.32.116:443 | beacons4.gvt2.com | udp |
| US | 8.8.8.8:53 | 116.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | octocaptcha.com | udp |
| GB | 20.26.156.215:443 | octocaptcha.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 140.82.112.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| NL | 193.3.178.3:443 | pbjs.e-planning.net | tcp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| NL | 188.166.203.175:443 | rt.marphezis.com | tcp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | exchange.cootlogix.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| DE | 3.124.64.248:443 | tlx.3lift.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| FR | 5.196.111.65:443 | prg.smartadserver.com | tcp |
| FR | 5.196.111.65:443 | prg.smartadserver.com | tcp |
| FR | 5.196.111.65:443 | prg.smartadserver.com | tcp |
| GB | 108.138.217.110:443 | hb.yellowblue.io | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 178.128.135.33:443 | exchange.cootlogix.com | tcp |
| GB | 18.244.138.116:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | ssp-sync.criteo.com | udp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| US | 178.128.135.33:443 | exchange.cootlogix.com | tcp |
| US | 178.128.135.33:443 | exchange.cootlogix.com | tcp |
| US | 8.8.8.8:53 | 162.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.112.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.217.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.111.196.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.135.128.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 7.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 35.241.34.106:443 | c.4dex.io | udp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.96:443 | github-api.arkoselabs.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | beacon-ams3.rubiconproject.com | udp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | udp |
| NL | 69.173.156.134:443 | beacon-ams3.rubiconproject.com | tcp |
| NL | 69.173.156.134:443 | beacon-ams3.rubiconproject.com | tcp |
| NL | 69.173.156.134:443 | beacon-ams3.rubiconproject.com | tcp |
| GB | 18.244.155.96:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| FR | 172.217.20.194:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | 96.155.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.156.173.69.in-addr.arpa | udp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| GB | 23.46.73.76:443 | eus.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 76.73.46.23.in-addr.arpa | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 138.91.171.81:80 | tcp | |
| US | 8.8.8.8:53 | 215.169.36.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.22:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | 22.155.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| FR | 142.250.179.99:443 | beacons.gvt2.com | tcp |
| FR | 142.250.179.99:443 | beacons.gvt2.com | tcp |
| FR | 142.250.179.99:443 | beacons.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | 99.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.18:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | 18.155.244.18.in-addr.arpa | udp |
| GB | 18.244.155.18:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.96:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.10:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | 10.155.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 18.244.155.22:443 | github-api.arkoselabs.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 8.8.8.8:53 | github-api.arkoselabs.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 18.244.155.96:443 | github-api.arkoselabs.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 18.244.155.96:443 | github-api.arkoselabs.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
Files
memory/4892-16-0x000001BB3AD20000-0x000001BB3AD30000-memory.dmp
memory/4892-0-0x000001BB3AC20000-0x000001BB3AC30000-memory.dmp
memory/4892-35-0x000001BB381F0000-0x000001BB381F2000-memory.dmp
memory/4564-43-0x0000025F216C0000-0x0000025F217C0000-memory.dmp
memory/700-87-0x0000019D96490000-0x0000019D96492000-memory.dmp
memory/700-110-0x0000019D96970000-0x0000019D96972000-memory.dmp
memory/700-107-0x0000019D96940000-0x0000019D96942000-memory.dmp
memory/700-104-0x0000019D96900000-0x0000019D96902000-memory.dmp
memory/700-85-0x0000019D96410000-0x0000019D96412000-memory.dmp
memory/700-126-0x0000019D96F20000-0x0000019D96F22000-memory.dmp
memory/700-124-0x0000019D969F0000-0x0000019D969F2000-memory.dmp
memory/700-121-0x0000019D963B0000-0x0000019D963B2000-memory.dmp
memory/700-119-0x0000019D963A0000-0x0000019D963A2000-memory.dmp
memory/700-131-0x0000019D96F40000-0x0000019D96F42000-memory.dmp
memory/700-135-0x0000019D96F50000-0x0000019D96F52000-memory.dmp
memory/700-147-0x0000019D96ED0000-0x0000019D96ED2000-memory.dmp
memory/700-143-0x0000019D96EC0000-0x0000019D96EC2000-memory.dmp
memory/700-150-0x0000019D97520000-0x0000019D97522000-memory.dmp
memory/700-164-0x0000019D97560000-0x0000019D97562000-memory.dmp
memory/700-176-0x0000019D95600000-0x0000019D95700000-memory.dmp
memory/700-162-0x0000019D97540000-0x0000019D97542000-memory.dmp
memory/700-160-0x0000019D97510000-0x0000019D97512000-memory.dmp
memory/700-158-0x0000019D96FF0000-0x0000019D96FF2000-memory.dmp
memory/700-240-0x0000019D98150000-0x0000019D98170000-memory.dmp
memory/2260-262-0x000001CABCF00000-0x000001CABD000000-memory.dmp
memory/700-314-0x0000019D95FE0000-0x0000019D95FE2000-memory.dmp
memory/4892-313-0x000001BB431F0000-0x000001BB431F1000-memory.dmp
memory/4892-312-0x000001BB431E0000-0x000001BB431E1000-memory.dmp
memory/700-316-0x0000019D95FF0000-0x0000019D95FF2000-memory.dmp
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\L1SEOG74\favicon[1].ico
| MD5 | de86a6f000f8f84e20bc7eb2c7d320e3 |
| SHA1 | 35af87deef9e6c081d834d08963ada2530dc0618 |
| SHA256 | 6a5e064af00286681a3ae734e5407a2ea883955d875c5490e597d1ddb8eda021 |
| SHA512 | e06a8f3101e1cad5bb965a8543fff987a2e22f8ed1fd9aba00c86bb937118f75b280bcfb1c6649f5ec96d6182582aa64a346e7dd7637c0f73a26f79b3a3aee96 |
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
| MD5 | 1bfe591a4fe3d91b03cdf26eaacd8f89 |
| SHA1 | 719c37c320f518ac168c86723724891950911cea |
| SHA256 | 9cf94355051bf0f4a45724ca20d1cc02f76371b963ab7d1e38bd8997737b13d8 |
| SHA512 | 02f88da4b610678c31664609bcfa9d61db8d0b0617649981af948f670f41a6207b4ec19fecce7385a24e0c609cbbf3f2b79a8acaf09a03c2c432cc4dce75e9db |
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\Cache\WA1HUS9M\favicon[1].ico
| MD5 | 84cc977d0eb148166481b01d8418e375 |
| SHA1 | 00e2461bcd67d7ba511db230415000aefbd30d2d |
| SHA256 | bbf8da37d92138cc08ffeec8e3379c334988d5ae99f4415579999bfbbb57a66c |
| SHA512 | f47a507077f9173fb07ec200c2677ba5f783d645be100f12efe71f701a74272a98e853c4fab63740d685853935d545730992d0004c9d2fe8e1965445cab509c3 |
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\DAM0OGBI\www.bing[1].xml
| MD5 | 0545e0583b3227a3517537fd38b5d02d |
| SHA1 | a17a8562995e54823bfd3d73cfbe45c8e758bbb5 |
| SHA256 | e854e4b3b99c5cbcd380ffd3ca4971704ad2cd07d00c9d565f943fbdae859626 |
| SHA512 | afef36422f7ebb8e9d51c4e7ac884b1104b7e1a1d7c9233e0a671b6de6c7489b274546134b32dc6a69bf8673eaf6ce49017f66560ae073da51c23c74e728c346 |
C:\Users\Admin\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DFBBE28C24A6A0854B.TMP
| MD5 | 9cffa5b09f9037127fcdb2189eb910fc |
| SHA1 | 839a380636bde0b965f169be9e18c83782139e75 |
| SHA256 | d246256f4c58e8b864707a3d5c6cee87205a27d900da8849ebff87ac9db0b732 |
| SHA512 | 077b0ab7bb80efa9e9968087d61ef3a0817ec82ae65f64a5915ac63a3efb66c97e93732a29963a629756e685861c2d36cdc87b4f65efcce82771e39e0897cd2c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\aa8d4629-4064-4f7d-bda7-705ccedd6185.tmp
| MD5 | 15a337dd38938cb24770a7fad537da79 |
| SHA1 | ab50fcc3f6430fcabb6b19e18cbadcf0f773fed7 |
| SHA256 | f51de80bab8064b10d8da601b44dbe5cc5f63395adbecb2113dc64f898e22850 |
| SHA512 | 2e55f95df29f96eb472fa0c269f27e9d0fb34104cdb6e939e015e00a29720b0b0dd177e79f494d6ff49d31628a85b5086b6889eb09bc31643cc75423f66d3626 |
\??\pipe\crashpad_5552_XOCPZIKQOXLDYSEL
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\persisted_first_party_sets.json
| MD5 | 99914b932bd37a50b983c5e7c90ae93b |
| SHA1 | bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f |
| SHA256 | 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a |
| SHA512 | 27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | e9b6665825cdafac58d0a95bd910eedb |
| SHA1 | fea28f8cb70e8f4dc403de14b8811f7cbdb288c3 |
| SHA256 | d3ebc6d31c0c551b71e8f28bb454bc904cef9b33039b0cea4d13f2a481b0485a |
| SHA512 | 274f7ec61e5a7b34379b6b6923cf0e410d45632a664876f86441fe61f39a60dbb64f7cf971e14b11c29eb041c42cf3e0388f7d0ee478b319497ad37b86ca6cce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 599115de906bd1b9fdc7b8042fca0746 |
| SHA1 | 2bf1a4558f2966c848e55715b5a908407092cf3c |
| SHA256 | 71471bd4417f4a29d815dffee131027f1aa6ed67ffc888d8b17ba4c4c73464dc |
| SHA512 | 4d99f1dac3b2b1602e5fe49909a39be08e4f78aa0c085e514e8450c38cda8a05b621e1119450e9f388c5b860f1de99c49e6287d5af4424043d99f8cb04e56476 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2456bffed3b8dbf1dfa82c6820999313 |
| SHA1 | 47e4c5688a69a5c00abc4857710a2fc695183a5b |
| SHA256 | d48f77cac5769b8ef3a52a7cb0a5065621d379c2b1cd5232cfa8d8ccaf854b8b |
| SHA512 | 45ac844bbfe28ad71300207ddbc469a34e5235ac063f147a81c067d900cad1022f4e07e2d8b1943424ef3e4bc4d1d26a374f627b328e8a794d4d2ef555f57569 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | 8cf25ab3dff1711ceba61d4dff3c6ad2 |
| SHA1 | 9f8f74b4f615c4e3c4b060af65143b9fe5eaff6b |
| SHA256 | b7349a5db93d173ea315a00e49529a3e2bc7e1a64c740a149f7e6b31e6b0854f |
| SHA512 | 600c81614c4c0a11fd3746e7399608e8f44cbfc89e7c5e537500ce7e71bd104fb4898cd86bf32034262e48897d557b60bd259c0420c2e231bb365bef6f11804a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | 2257803a7e34c3abd90ec6d41fd76a5a |
| SHA1 | f7a32e6635d8513f74bd225f55d867ea56ae4803 |
| SHA256 | af23860fb3a448f2cc6107680078402555a345eb45bc5efb750f541fe5d7c174 |
| SHA512 | e9f4dc90d0829885f08879e868aa62041150b500f62682fc108da258eee26ad9509dcbf6e8a55f2d0bdba7aa9118dd149a70a7d851820d4ea683db7808c48540 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4be98a006c5427016699a2708e3c49e6 |
| SHA1 | bf4a15866814fef7d3b3d6a68c1a00889cae5091 |
| SHA256 | 6a74140f907e7993328c6b74b4bb086375c5b89f58397b8b3c0b0fe9079b8b19 |
| SHA512 | 056a5c5d9b58447feff3ed8c554dea11c90cc9343d5eb2e83b2442558b1011763d5149b2e233c8d80685925806855530cc9f43dd0b47945bcaaa49b42a03ddac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 79979b479f8d3144736bc8ff665ea6ad |
| SHA1 | ec639dbc709b9f8837746ad26dfb635b31ba9c70 |
| SHA256 | 4ae7af19b5495b089cef8f89b35f39a61ff2025b4f4a2646d0ea7b3c18daa4e3 |
| SHA512 | f9a5d0c085f6f30ff67a222c70c60e4098dae251734ce90bc2f3393366d8bf12a6e51ccbc140cf6bb8155825522cfff57271b2a1ebcc640ebd9f317fcc2e677b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 31b291295ae99a7801fe486c249d7e93 |
| SHA1 | fbd34559e20b68fd3db9ab81ac7c2dd1f98a0be6 |
| SHA256 | 96b0419bd452d4c4f7fbb6fc9127b144c04d6d69b9eeab3128985bc85a085d5a |
| SHA512 | 605952b62a917e81a98c5dbeed3897543c4e4a13ec9f8c9548eeb524db8fa9f737be3e1c5f7995d99eb6d0ee74830c17b1eda58964d6319a25b60a13dc615d5c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 205b2ba0a90b70e6bcb44df5fc2c50e6 |
| SHA1 | b81f33c95f9c320b4f8b77157cbc88d0009dea51 |
| SHA256 | 4e68225fc76900ea5856f9b67f361e0f3eafb41a667ec2fdd5707ae7cad07e97 |
| SHA512 | 25fb11bcfb3a02b2111bee932a02b12bc8894c81c15f2f5c557676e2404929c1f1fe16bf25947c2db03a8526088b710bcfdf2ae23cfb94f1b9cf8f886790ab47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1febb939a32df8c5fc0d0871e8ea81cd |
| SHA1 | 5974562d83c7582bf6d4d254731bc336d0bc85b4 |
| SHA256 | b09d3eff2607c26ed60f94510643c071f8ebf32f6d0f91f6412e7ef0fcca9b5d |
| SHA512 | 488abb75a9e2c97465258061ed12f08479fea8e6c7e6d5bf3feaccb430d6ce0304b22298dd9135093570587e01fa083d0b92e369c558360e39d5527fec2fd781 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 4ee272a5e779d2add0dd36bbb25d670f |
| SHA1 | 9b48571fa4fd083af1c4368b5088b79799ab89e7 |
| SHA256 | fcddd3316e1c054db712c8b5e4ccbd8cde9f4409ff4acb35ae84efe7fdb07e52 |
| SHA512 | 10741a151bdab93bb4c1062cd1dff47db650f684f1e6c8dd4a677d5c3269bbb762ec46096d1c3b13cfea113c261b5869db8d8d9fd0ac13bfab4e7e86127c9771 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4cf5bc51ba1f30d82513ca7c33da89b5 |
| SHA1 | aceceb6405ce8382e6dfbd2b40719bbf1b524f42 |
| SHA256 | c677d8f804a315604ea0226e049d60626b3a3cb898793bcb43a1bde3738c105d |
| SHA512 | 6d664233ba4b85ca0d46d22b3e05042f0cea340f78a0d82b34d65341fb51bae843c48c9596d362b4b51120213fab45cc66bc5f72dc03753f8113db5111495c84 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | ee10ca9345c7aef13835b4bbb425f091 |
| SHA1 | a2775b794bc9fc4af166811a6ff53d733f66f827 |
| SHA256 | 9f11d72c79753218ea5bb32bae6276db9f2560799dcba902299bdfb57c8d01d8 |
| SHA512 | ec18c28ad8470cb54822638c9e5f95160429dbd4be82fa1615cce005c75bdf3e21d7413895fed14c9ab77cc070850a245fd8a19782b7c8c20ff11a79bcbf01c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 9c82a6740d684e31d4f07c45924e2c9f |
| SHA1 | cdbc4ffbd6c457fe9d397cc819a951617e4c8bc8 |
| SHA256 | 3353cbb1e9d91eb6ef5aeed12921684b226a345c3cfb94fc8c37f39aeb87b336 |
| SHA512 | ffcee06ac89b3b68496834ae0ef8e65358f1f2752e58cf55393dbacbf33286b41a819abda9cdb5a2fcd5a08b04e219707b082bee5f1532c78fd9cca272819484 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 79a15099f534f80e83396549584e8c9f |
| SHA1 | 5ff5d695ee4e9b88feeb614e994ec1dbef1e3887 |
| SHA256 | 472533476ba0353ad8c302c951b92fc58ee1d02ff8e6d1c15b9bfd9255aa4534 |
| SHA512 | 8aa39ff4f60cc9fa4df72aba8ec6d03d6ba5eb65269cd203360a52881901b12fe6f78966e8db938a578528fbf8472c9d2c77e9fda3226a57033f41ec8b4132f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 33d5ff7c79a7731fecfff086fedcf933 |
| SHA1 | 6bf0e793679a68a47e8b7bd9aecf517f4f4b6594 |
| SHA256 | 6948ce30e42c3079abe3823696fff6ab5b059d9106059be4e242d8fa6f6458f2 |
| SHA512 | 1afd4e00c29a1739ba5222f04b7fdfb66573937751243f9fb6da430264aaf9f0902f4785126c1474e20e9d30f48d1736b768e9fc378d9ae00270dda2103908a8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 842fadeb99106c0873b1cef4a71049d7 |
| SHA1 | b9fd382b0188de029a2860c5fd77e75ed8c9b292 |
| SHA256 | d8ddb9bcd9c7eee917be32af852b0e27c15b0ece528e4fa35bc058a7e9069ab1 |
| SHA512 | 1cf5ef60691986719aeb77f20b52d1b06079a940add11bd311e71baa691f86c4e8cdc95397509947670723dd62cddf314fc2fe0f9e7dac32e172bb8468db61c5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe59427e.TMP
| MD5 | eb1cd879fa4b231532e0f845fb820386 |
| SHA1 | caf04fde4a4fa9ad9f53702825e9408a1675ece2 |
| SHA256 | 995229782b23776e0b2b0c2d7fd8af208705d8ef739b0c8845c8a9dcb40facd0 |
| SHA512 | 62ba3c9cbfa8875cce1d61f1772e01bb1291b62ccc0e293945e274636e7a0211e7747c02dafdaf2f8cc77ab9ff725071587f5d6524e76d17dbe3ebf9e44699b4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 5017b105dd1bbf0cb79468a8c51f7efe |
| SHA1 | 3cfcb93269c3c6902d35c42694006cc68be5774a |
| SHA256 | 73b34af54ae005fa23f772427be9f61ccf32e0278acbe6bee67ee84c7bbcebf3 |
| SHA512 | 47dcd5127462580eaab85d7fd0b930e192bb45704aa83fd161a985134fc906c39b2c368a7cfeb8cba551bc6d5263e2d73711d3fbec19fdbe1f33d5e605844d8b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 09d63a13bbba77aee80e7c1c92722cb8 |
| SHA1 | ae316e899bc33608517306e259670dd6721cc3e5 |
| SHA256 | 9344ff11a34eb10d5947da3032428151a4a63bcde5aa027f46d3fdefefae8f2e |
| SHA512 | 3e3619682949768794c2358996f3c29c28cc40bf8187e76a16c3aed77a91f502f2b1a96a3485be1f02cdc0085f64e33e2eb5bd09d0b02009a69c0bbac2bd2f0f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00003f
| MD5 | deb04fe2a35d2981313f891baaa32654 |
| SHA1 | 69e5aaef4a2f447878824d905832a08a9c596d83 |
| SHA256 | 93dedb17602e315ba495c99be747f3d5717b4f49306c55326f4570b43c9bc1c8 |
| SHA512 | 8c32d572a8f108079263b9ab5230467b454518b60932db7a2cc855a350130d93db5b8f2cc5c82a9b3011e572d80d67e23c777145fd45e6467b0b2caafe92378a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 4e86b949f3f0620c7ee37d3558821a23 |
| SHA1 | e65d2070bea4500329eee720e68c36eb9b6baace |
| SHA256 | f293211312c2050f102154147d47bec093df2969fd69d3e15f2a1b3ec77379b3 |
| SHA512 | 8c67ce92b918077681563898d2851853c52683919329d2d83fbece90a7783b334b4db867c117d469bff7d1436fd2fb19f376c5492e159855e1649b7dc436a10e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | c58213c71570c2f7b722c9dd1f900ab0 |
| SHA1 | 66992112c5cbf8a76e4a7fe05a62f78a29f6504c |
| SHA256 | cb018506c79305455d2c5775ad496f2c8ed9fe5e749947f3929db66dbb4f2c93 |
| SHA512 | 3b249f4b3521df9900382c7038399b3631dacdf4d5a1af0a59f7408b131704cb8aa5c61d050c0b081f845c401389c8ce85d0a9f031e332bbedbd21a411da2a86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 9c6b5ce6b3452e98573e6409c34dd73c |
| SHA1 | de607fadef62e36945a409a838eb8fc36d819b42 |
| SHA256 | cd729039a1b314b25ea94b5c45c8d575d3387f7df83f98c233614bf09484a1fc |
| SHA512 | 4cfd6cc6e7af1e1c300a363a9be2c973d1797d2cd9b9009d9e1389b418dde76f5f976a6b4c2bf7ad075d784b5459f46420677370d72a0aaacd0bd477b251b8d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | bde421ba1e02e74cf3a3dd81903376e7 |
| SHA1 | a96bbcc2fa6bece21863424fcb387044f1a772fb |
| SHA256 | 88bfac1047cf8d26bc6bd74af19a5be10d4cb3f07543ab8c10acafd6604de888 |
| SHA512 | bc7533e760b13efddb52eabdc8cfec762f0b89b3cb4a53a635f119059ef854fe018abe3a5c6b82cb5954c271b952fe7b3dd6c50219c51097379afdcd1b84e309 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5bd1c844d988e98cbce7db3fa34d7ff7 |
| SHA1 | 2e63c5a916c038c3ef94ab77836e25e1cf3a3bba |
| SHA256 | a32ca7934068d5bfb420b68290e1a71d914ede247bcc91629d7065200068e34b |
| SHA512 | 851cfc4d62ea0ff5f151d3dc44d565eafdedb7dbd410a1b5f92166a9b03ebdcaa1da763d6382ff02467882429696c9a1475a3261cf646e0c3977679ea088be5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 28885fd1b1e7b4e9c2de01f67e8f9889 |
| SHA1 | 85cefa254ac7bb4ac2eade6ad23bf474a1cdb510 |
| SHA256 | b49a1686981309ce3a27f14bbae8eda1915a78a598f5d0a3aea54e388513deb1 |
| SHA512 | 79822d1c4eefaf064354ef89c3da5538a16df95e137de0da3033425901e3b82c715087afe138348e68379fe7b05f544172a4f4da0a082372cefb807b19689a3f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | c02d287168c12de749abab420b773109 |
| SHA1 | 9552a850788f75c66d157978486dfb9195a246e1 |
| SHA256 | 791341acfbae6aae1d5aad379e7ef29512fcf317ee09956e74b699efc42604ea |
| SHA512 | 2f250f0bfbc61b29a6218edd400a541bea172c2b9b4fbb77ddce8126af6c99c15f8e555bb99b0f31b2943e68bb534bd38a4518530215f7c915493b5ade4a8a5e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 42654627cafdf652834b773249564c30 |
| SHA1 | df805e3b85a964c632051352195173315d170fe9 |
| SHA256 | 608aa264c604ec636aa7a7b830542def1edaba9078e736065e05fa9b447879e0 |
| SHA512 | e5451989745282b97ac2e1ef7fbf40603ecf1877a8f2cd66a2e30a52d92775d2367e1b9668054f18b71c3efd5226f3b42b0ec30ce802a8282317202e065ca225 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 22792084791f2799e2b99a46aba183ac |
| SHA1 | 0cb5a2f0a24f020bf9027902aa18ed99e2006941 |
| SHA256 | f6f8d9437c26524b4751b79e6772ef1f0a9d37e632a03a399c4f22e826d53da5 |
| SHA512 | 341f554bc9f1d3bbbf8a5259b29428e4fde34b02b20bbe2420477a2c751bfbed9ea7f179ad7f6154a6cbd4acec0af27afefd8ab7ee07e670f62dee007ee8d83a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b2c376a33d2dc5db4d55deb12f2ed8fe |
| SHA1 | 9f1f137f13302705604ef6b66837b21f1f0b515d |
| SHA256 | 45e3159df0f7e01097042ef0bea4ff1558074a2965d073a9e5366248a89d7019 |
| SHA512 | 0225cc305d05d6fa6c4735bab824702263da993e9ddd601d354dfc878b51e7437a37ac3a05071d18600ba57f2e245d78bfe5c324554be2c79981805725843f34 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bd882261d94c0dff0b7f0ce7d3540bff |
| SHA1 | 96cf8d5a1c618e57c060f1249594c4f68b1b151e |
| SHA256 | 9e43068ba2972b2dcc6eb0778cc95a3a0751a16b5b8705f2791cd2e189df2aeb |
| SHA512 | e6de48ebbfdfb57eb48f5d5c1878d3f78e57d76d4c2b74875e1c9cb37126623b6b77971dd0c46a33cde0dcd30fbffba6251e033beda93b23cd8bdb7c59f453a3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fbf92810d6b1887690de6b7ed48d92a2 |
| SHA1 | a12c2d62ddcd6796f051adf0382ff61563647f56 |
| SHA256 | 6093f53fadcb44c99b0397cbbd6f62c686c6740572ea082ade981cfd2a1907e5 |
| SHA512 | ee2f1c958e20d62eb0b972918751e0d7a047ae131d80c7fe53d2b6001708ed45e2e961d2822fafec95066a5b4147cb6ec300942f3369e6e4316ded4b43953f4f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000023
| MD5 | 87c2b09a983584b04a63f3ff44064d64 |
| SHA1 | 8796d5ef1ad1196309ef582cecef3ab95db27043 |
| SHA256 | d4a4a801c412a8324a19f21511a7880815b373628e66016bc1785a5a85e0afb0 |
| SHA512 | df1f0d6f5f53306887b0b16364651bda9cdc28b8ea74b2d46b2530c6772a724422b33bbdcd7c33d724d2fd4a973e1e9dbc4b654c9c53981386c341620c337067 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | 1a0fbcbbf3181ffb739b70d15464ee4e |
| SHA1 | 6ef477d66bbed35eb2d02cc3b9c66a155c39d6ab |
| SHA256 | 8de893f0b6277dadf76bebe3ddd3f730b34cd7e27d1019412fb720383a7ea18e |
| SHA512 | 3adf38c393940fb9d99e769743d375d77f6975590ddca296ba64176bd5b5f26c65d6e9eea5a8282aac9335903ceda8c756315149e27804cf9ce94973c806aba2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000026
| MD5 | 56b92e2bcac4ada1e23a0554f6f4497c |
| SHA1 | 6885cc7758cdb36ab524cb94ec62d0295e237c76 |
| SHA256 | a721124e7fc9b44b6fb9695f3f854685a2c41dd957db0a71b87aafdef667bbaa |
| SHA512 | 4a426a1b7269a4367ff0980bc2ac60ce3272c309c49ab11bc931911eef04b4e3370d8a7e3f79aee12f5d1a777aebfe843ba96799f0bbb1e4b8f82951378ba1d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d2e228a6d37eff065d7d70ca9886d216 |
| SHA1 | 87b14632595dfe3e87c38699b97ee34ecbec17f9 |
| SHA256 | 93d307130c23c1ada0e7f2525a05071920d00d10451cc862675e0f83a906cb57 |
| SHA512 | cda0085165a6c23e0f288bda4adfa75cbc76b4aee6823a27efbf70cb64be017a7db8a5de7defd051592d161ba2eaaa2151b1a836995b99bc909d2343aabd0b5d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 8e4d6d0a68f65952a1cd9187669a03fb |
| SHA1 | cadb3b83daae5e2c3e52e50088a2801801eded2f |
| SHA256 | 4d10f132c143a3c0e08ad53ac777788ad69cd2bd1b38f8c4741ea2d61c3b7dd1 |
| SHA512 | 0fe433070bf54e1a7ebdc3bbcc053398cce15af31fb467b1cb2fcac018e54c75984db9763795a980a700bfe4f134b29ba2a19c6e2d8c2a396335450c73d14bd1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4049666329c4c3331744ba50bd1f9d01 |
| SHA1 | 412d465a2a2d451ac3072d54229e434a3c7824b2 |
| SHA256 | 094d99917fa4d36917c03080d6a356ebc2d764c08e3b41cfa7473b97fce3753e |
| SHA512 | 881f4167dc71adf2b959daf42e959fdca012847c62d3766e03efc4ca88847e0683a9b048ad51caae38ea63efc09df1b1e478a736eb1da5d52e9fa76ea33272f1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 4a05219b627f2ad57fba09071e1d54c2 |
| SHA1 | bbf22e2512f34518438acd1a68e684eb6cc0d8b7 |
| SHA256 | 5a1787c29f259c7e219ba7fa835de93cb86074bfde33677f1b1a53e692ddecc0 |
| SHA512 | b270b4c89f6c2a463c7251e5684974c4333becc8ad9c38231210c390ea3ce42f9c5236a10742de92d1a8c837fb40c55eaa3d0307d0e52b08d17a3d9a0096565c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000075
| MD5 | 8ea14b557e8fada589fc2af5d0ed18f6 |
| SHA1 | 248368487d8c97517731df3a409d4bec3ba2641b |
| SHA256 | 1e0e3b2612daac6dfa3167f3d1c9cbe4317fc68042cc7cb659b3fca04213b583 |
| SHA512 | 7786d8892fa282d5cf4f541301a9c4b56eb0d9e81c253c7d3c5883682c74c2d3422e24ba7f1cf95b7bb0ea6101ec0c4c3f1d8959fee82933106ee06433d48947 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00007e
| MD5 | c55dbb2a5e2048f8ac7b88cafbe13ab6 |
| SHA1 | 6629572a0fd059184b4e5c57687fa414fa7283d3 |
| SHA256 | a82abfaf7dd683f673153324de1295a2a952e5b40fbbc581b5fc39603883f5cb |
| SHA512 | 61336d53f5f14636ad0552e92bafec6ab262faea08d28143dbe6f631bd6be86ed1b6b2dd5a2127cde53a1405ee4bc8384c3327521571917dc22c7fd553f108aa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000080
| MD5 | a1afe33ce7442502a96deee597945384 |
| SHA1 | fe34cd78635f5617cf238de6dc746058d6f88899 |
| SHA256 | f7eeb570c60aff1435db1daf3767c0672634269789870ef91c69b2b90a47edaa |
| SHA512 | f8bca21c3fd79d63c8265f5dfcba95419eac697b42efb600e7c33d15dc5d9c3e0d0d360da39e14004facaea4cff4dcfc00d7437979283ce0a2b06916b69b8c80 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000082
| MD5 | e4cc1ece2f2425b10ae2ccc212c1dafc |
| SHA1 | 92609e6d0093693110baa23758382889bcb30da6 |
| SHA256 | 92e9415d8bc8529e2a3f335258ef7ff159cce2965ce3b2b7c15f73720efee809 |
| SHA512 | 2848dee3a6da891b7044518bc97aeafd340705cebe846350b9a7f314b52450f1eb977b8b492638965ce4674ebaa341e4f832438199c3cad2fb0a0793ef83a619 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8acfd63ca63a579b_0
| MD5 | 8ad88b62ea5c245cd610fcaaf2033682 |
| SHA1 | 9dff6c90a79e2e83fbe4dea2dd87942b2389fcaa |
| SHA256 | 423777327b5266c1f59b8b6370064010c491e211b876210c7e020fa54c3e7f87 |
| SHA512 | c07cb3b8653d41a337ab7965732636eabb88e00948ae210ea028fc8b3311fd40980c543b700f3a39c828b16099c33a65c9747242504ec39e767d3bc166a827ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 75a6df9ac28cae468bf4f2b66e6ad471 |
| SHA1 | c0268d17cace959f7234b5e879267ba12b0225b2 |
| SHA256 | cfd6847d7d26d40f3f6f705237aea3704967e206c0a5e775ae935ebcda651ab6 |
| SHA512 | 8a0bb9b14ebd789992ea8b5896bf34dbb65c6c0075f6e9b465d99f627ce6bb941ed79193055936b1d200c2f94e93acc2f0c34f98f356f45e4e2fe3b77f8ef4ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 15f541941acbf920361c4e885d1939d8 |
| SHA1 | 4ea812d3bd70fb32de5bf82c9fd9915db8af3d9c |
| SHA256 | ace2ee1071be66435c6ba00c8b2f6101b039cb952b5f6403ea4b7a3cf6e31f62 |
| SHA512 | 54cccf9330d4116610965d42b480bc0e89bf6e51e2b78d18d0f8342c617d2011f4d30facb42367af8f02d6a9783f767ed662029495633f5760c334905483f2e3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 9a7b419863315fa08fa8aa2b0d542339 |
| SHA1 | 1d71eb366cbd5fc1d9ab360ccf642edd4de3323f |
| SHA256 | ba70a22cdc2676a555f23c1e769ef4279fb8f3d4df88190fff73678e22015855 |
| SHA512 | 5b79037064c86ec2cf78b81679671f9193afd15e076f7ee2e326f4f66c18ed342adb11100546049d7f83601ef8a1737e77a41a1d5d9d927ad8a7e07be52fc511 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e6c3073ec0652ece0c46a8de2d8e8846 |
| SHA1 | 69965f081bd9b0b05301299418dc64a59ce46a95 |
| SHA256 | 4bdd0aa1e11ef0e6cc0da8a7bb82b5ddd33a10516518063985dff46cc9d8b93e |
| SHA512 | 09b6bbd02f5ae5df3e7e7d36f78896ee460fb7baf15d307a05b6d72e8d7a2da120acd893022bca3e532fb7f293ff468fe1417e19d4e0efcf61291649d5f083af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 53f7d5d91e610f2be3a4cb757d5e92e7 |
| SHA1 | 89f1c819df959927b4651cd6c18e4665eef3919c |
| SHA256 | 80f6868d828f4e804440aec59cc4a68ec251c0201d7958ae1497921c022249b0 |
| SHA512 | c356eac6534424cbaca9b2ed09a701d0fde25f6e395d39051474293f48e5572405bcc93059f919e0370a16e6ce5e12e007816003ee55a42e43b66146bff178f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b1edc7e070f66375324061745d389d6b |
| SHA1 | 177b27bb52878e035d4f07c2b5f4539b156b5480 |
| SHA256 | def294690a2db0c716c4a716a33e8811567e6a2569c0de939f2321cb0cb84cf6 |
| SHA512 | bbf0cb743a56a1304d16a944094a2950509b5965844065992f16d5c93a373d8d381cccf7c6883403cfe30e278b711b963e1b616c44e4095367c0b4e94f4e61f7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 209ee0e4ddf5a9587bea56e5e8e7e10d |
| SHA1 | f9b2556142013ae9f32f22319cf736384e3b3392 |
| SHA256 | 1be75bc4863cded91e54bbf4c4c34e1d5bffb71d9a6ec962a65caf647a35d17c |
| SHA512 | 80c9c85ed05c578bce459fb407c482c6aa5f850fe01faeb0ec5c9096e6ec77e5ab7c83905605ede2d4caa8f7f24ee40f942adb9f3edaa55e61281027b4b16a53 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | db2b6bcb96e68a33e4a8b47bc24ff0aa |
| SHA1 | 23415d725d3842c8c1ae0f31370dce0c53963027 |
| SHA256 | 1b4552732a2fd5b8f43014835ccf59cff7478279f7eb73d0ec0d89a8a88b837b |
| SHA512 | 800fb478c54e03d8d8a9e30506b4c009f39bd190cc94a07d48aa09d85532635fbd7215d8a4136f036234acb8738ebc8a9b0418076e8f07edf126127f9b4e2b39 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | b1aa16f6f124d8cd38e7804904b74422 |
| SHA1 | 23d3f0844177c8728664d487f93bda0217fa77f3 |
| SHA256 | 2e51f73f73e878ed49acb7846159318864817a07ce4f6a5ddc81c333b89141c8 |
| SHA512 | 2a53f830e04ef51468adab4fbf105b96be24b074a1bea64a404212c0d8323ef7f4ceeeea0839ab7e608f7b48c50b40924d5c642856441a2856f34a5acbf9195c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 454025e2da5845d616e77004431419df |
| SHA1 | f55e6b48068363b0349e0e170339c02d04865faa |
| SHA256 | 11e469afef080a1a7b4e3562718204d02a6e02ea86ca6bdf079d7c988f98b91c |
| SHA512 | 67fd794e9532ca514eb9767a211eb543d460ec224c94f52aed74edf03a239bb460fcf7287092a79d63e11897a1f68f35291eefe745a45af8230cb27bfb9e44e0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 725c4029116e3d55a802af9c1d8e1554 |
| SHA1 | 04785d1907c3b16783ce5b0f77340e3bd881c401 |
| SHA256 | 9734da83bd7b9ad13d2a4faabef9dcb30bc3a629d17c6e95f6522b6b065aa708 |
| SHA512 | 034577ddd4611d22a13a2c686f1ceb9733b00ab2e25671956c5f5b5136f6c2235c26f12c7ccd1a436de19b30a1d97f22c1e03eb95501c9391baeaddde5dec735 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 8ed60b5fee79e735f3431746ecb18df7 |
| SHA1 | 369224750f783c1c1ce09d5ff2ff2f9f6efc16c3 |
| SHA256 | 6cb5d07bce14efcb2c5b0ff50c02afb46db2d54767f7b8c91dee221b4168a2dc |
| SHA512 | 38fcf4cc06ca59f6facd181fd0a10118758e7d63673d6cfbbf5a5087f0816ede9c61ddbdaad1ddd93eeb175f5343254f44b8b41cb23fdfa1b4014e3da38dd77f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2e76ff4374d12a0d285d7e66f849e479 |
| SHA1 | efa3735773634efd0dd68c63248dac4585c47a41 |
| SHA256 | d94876f2ea121fc2ba1110864819dda27528fd255fc51986f06af77c02325b60 |
| SHA512 | 705a9353d050176dec9e06538c48f00ff9f4092cd750b9dc7eb4ae9cb42951b1266a4269d7598b40e336a994b7791e98e62c2165beb2bea6a3fcad60d5991894 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | d62a1a7f3646ca707fb097bcd5f33aed |
| SHA1 | 05af9802daa378f951f939688c6827968f14f657 |
| SHA256 | 7fd96f5c3ebf8301c02bdc32989722066e718ab78bfe863aae0c5d64b7cd1d33 |
| SHA512 | c43c5fb25ae19c7f866d05f4045adcaf0d3e185a7c89d8d6caa2121651946c9b8f38f736a929e208b6c5eba1a01aa02ba0eb158b6cd8224183439fa34b219026 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | eeeffc334aa503fae054f518bdd1ad0d |
| SHA1 | 342746b75fb1b73a5ce0464614bb86a500dee0a1 |
| SHA256 | 279c903373d8f53433fd010514ff9ad1b4cb1b62aff6684152d163a456facea1 |
| SHA512 | dfbabbf8973b0dc38d38bc918c62d6ad102d28c68f97918bacbeda8c4a7dc1877972eaa1be5f90743c8395b92f555cf69ab9a8ff7f4cdfb6654469fa1738fd77 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 04c232bbd6feffcb24b615ca08d4ce7e |
| SHA1 | b601033264f8bf333fa3dbb379cefe70cfe368ec |
| SHA256 | 244b7ce115faa6abeb766f7de4bd5edc13456dbee246e8f972b9841edf655b84 |
| SHA512 | 0d3218abdbf417618b7403c571bb4864e8475e7164a4796b634dcf2fb3d3e699a5ae48f634d97b9801f4f7c045ee6609d7d6102a189aa556d1e460c38f809dbc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00008e
| MD5 | 2e23d6e099f830cf0b14356b3c3443ce |
| SHA1 | 027db4ff48118566db039d6b5f574a8ac73002bc |
| SHA256 | 7238196a5bf79e1b83cacb9ed4a82bf40b32cd789c30ef790e4eac0bbf438885 |
| SHA512 | 165b1de091bfe0dd9deff0f8a3968268113d95edc9fd7a8081b525e0910f4442cfb3b4f5ac58ecfa41991d9dcabe5aa8b69f7f1c77e202cd17dd774931662717 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3669773011fd9ef47a06ef32391d22e9 |
| SHA1 | ec22e433629864d3189d9c6a1ae603c7da89e272 |
| SHA256 | b2206a95dcbf23595d98d41fa332330ae020e65b42bc244c06febbdaa1c113ea |
| SHA512 | 36c5cdd089467a15d0a7227ab2101be738fd6da8741d8e4eaa19b23602f959b39b966fc23e88b17fd8c9d1131715081557477d0d0c48b9dcd00a0748d19457dc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fd5ea936e86b172cbd3c47e8f1dbdc9d |
| SHA1 | 64e69c5f90be7ebb31f975262564ffa4edd40392 |
| SHA256 | 4da92a92db87d2c35b49ae8f17314644761cb8ba8b5015cda158e4e29a3d0ceb |
| SHA512 | 1162128251e0e7297b3429663a26a59a3bb0e73882e3eedc95f0a83b7acd7dee5f3178dd2d0da3f3c3de16946815684e0ac8bd864314c82279838dfd0be15ae8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 523f4e744c7f97bcc5b4def69392c43d |
| SHA1 | 95c313c343463d31dc2b2926c28bcccaf785f763 |
| SHA256 | c063f2e066a1d9bcb1155dee6476977bfd922db7b3d247a2db80f908dfedb875 |
| SHA512 | 844644143302504adc03c53afc3204d196e865c6436a69f379023baa939d90801c8ff4c0154dc6c308b02b16f2e91ee124ca8909630e980342d7fc60c748dc51 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1247201b83df113e907e32a79515c70f |
| SHA1 | 89fc0c0d544e77f04746c6ef55727104b083edad |
| SHA256 | 73ca2b4f0cb08151fbe0088263b5a3a3549ce788232b01830629035b237ff7ca |
| SHA512 | 2f831eed72b67846f788906ed5b9b65bb9ca37b2f7198710583d6f79418996bbc45dcd6566d49e8afb1a509ab3549e34e7cbb6da29bfe84eb54f3a01b2e7ea1c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ead5f418076f2e1417cc4e556db82a42 |
| SHA1 | d93d4d98831fa10e2142d64746a9c82f1bee2fb3 |
| SHA256 | ca7f0c3d291639a2879bb3acb20f473b62858a89aa5f4b154d293e21ed9b2831 |
| SHA512 | 1c037c84f91561255d2dbb0f6453c69945f7cf690191013125bbcfab11f139513f3157f0c58decb3d4c377430a33c72860d22e1907c11d201247a443f6d3b0de |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 05e2de65df40d8045bc51bdebe684bc9 |
| SHA1 | bf549eb8bd6c7819de571ff0027f94f3ca24b821 |
| SHA256 | 982a6e493730654a4152870db3d313ff76e8308c6b464303ca14173b27a5da09 |
| SHA512 | 3a5d99996c69d8d176ef83442d2929fbd7ba90fe2aaabc45e5e2d025ba8fb32630ae34cf6889ef29426b9d63060b0e4746b7de1bf36a2761069b8c69f596271f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | e545c2fb21ddc9771ca2698e01932589 |
| SHA1 | b43e9b6dc62e07821ec00a775d400df25dccf5e9 |
| SHA256 | 7db6fde37b27767310b833da44ed57393a677900a6f7aea83188c279fe62cb91 |
| SHA512 | 8dd8e365f8248437051937ee7777a62d44395dc78fbeac94b33a03a296b8d6e118e95e4ff60cb7011aa1f4dbc74fd12c40b726e590eae0cdb0c463d08d6a071f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fad174692d543360174f24607138ee41 |
| SHA1 | b49186dd5e25e38af3d15ebf6bed129c82cf266c |
| SHA256 | 032d326105d0b1ca7f2799f98d26963a3da3712ae9dedc2f45088f4c95569a8a |
| SHA512 | 2a63c708f7583053b3155f129d4c9556d48a61d755fe200ce99c52d4a6351bff6012642e2a43a011aff686f963aa14063bb8c92ffcbaaa838ac7e5831b990035 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1032c21bde4f24df3bf4a8d00e7f21e8 |
| SHA1 | 0529581ce9f70213addae6d083b0348db5987e0b |
| SHA256 | 521ca2a01dcefb0614c6ff48d873f48dbc918a5b5035006cebd1c146b2dfee71 |
| SHA512 | 9666592656de58c038d641a32fce33664d7dacb63f603234e1b10876df61c5f949e5f8d335720e0ee102f30eff9c784d96cada847fa83057a8b352eae412196e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 69217fc211208429d47c31b79405b1e1 |
| SHA1 | 175326abfb814f08c70060732705b4666684f6a0 |
| SHA256 | c48a6318a27358a5d068771fffb1bc6d98f5df526fa158a9c614d964f54ccbc4 |
| SHA512 | 2b3a1d658d381d1b34199ad159fcd2a40bea544d1eaa1ffd177fdf3871bc23ede1d71bcc706773b8245ce8f1c4fce84a5a53b4c9f8a6fa7aa5c0a3e4a87f7f87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 88f2ecab3d500546165d645beee86d63 |
| SHA1 | 92218ac5d5df9012950c3049c6b5cdd205c9d439 |
| SHA256 | c501977c30205ed937c245037670bdcb9951a6ee83235d62e4de82d45350b359 |
| SHA512 | 3f0630d6d0fbda15f358f2f45c6c6a952840183184d8dbf89b63e481e4c0d8bc770cf9905de27d23cf414d10207304181d2e96c5e138a9048aa87ade186e6dc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 91d66207ef4eb3685ab7558d8050333c |
| SHA1 | 3306d3a0485a21967ec94531ca12fc683ec9bb51 |
| SHA256 | e77fb75152a0e4976ce4318f788e929a1c724b47e1e6d801f77710bd12700f74 |
| SHA512 | a12c01a7658015d3637c3ab9dec85f9d22a8326b5d25aed89c1c57b888e879f9568c6c5d919ad8618d9aa3b466427f6bb73c657b8444f23d0e4abf28d154d727 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f37ea38d926030a6f01e18177695a5eb |
| SHA1 | 3544d7fdaa45c4fdd70e6b41671b0916d432703e |
| SHA256 | 92aa7c703d53babc6cca3ddec01ab82d8bddc4f832bb79f0da1c782d3cb858b3 |
| SHA512 | db241b38261bb2d2840a25e1d6656fea92dd12964321f3dbfa62cf37f8161cf972273f1e1be07cf48f93a2591f4d75206a95f8e01290cc3b79a9cdd6c288bcc3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | cf93cf5cf9cb70ca3f1af765bc9464ff |
| SHA1 | a0317331311bb854b29908fb00d1c8175dd79669 |
| SHA256 | 15cc5536214784bc06832969347b8a1a7f9a423c18ac1f011a48252f6744134d |
| SHA512 | b27d743253e58376a043152d4bff5136b97e9884827e859070b5ab3a12d94ce8687385c4d28cf8a374c38a0c07d8648d4d62952d0218e618dac8a4b603190a64 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | ab1c342ad4101a14bae8899dd0f1bbe1 |
| SHA1 | f2a9b2a53e1f5e28c6c5df1c9101e68c6396eacc |
| SHA256 | 006cd539ea3e26e969678914cf6d08633b55d6f90eefa792a4be069f9067b5db |
| SHA512 | ee334c977ecf704932529a65f133f54096abd43209955f8c616565ee845535de2e7b481aaeb34ea2482f373a02b6ec9518a4e04de3c2d0bffb6a3bc66c841bf2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\5158f592-9eec-4d6a-97f5-e440d50dac44.tmp
| MD5 | 9a00510526fe6855f4ffa33e526dcf72 |
| SHA1 | fc918c43ac35d27e81eae9e2bf8932eeefc9b6fd |
| SHA256 | 28fa25d57da67b3143102af5e4abe2e88109a2ecade51179c46ab9623b7510ff |
| SHA512 | 786a46aea3c5b63b10a0b6fae33618dc3024bb3b34d0974f060643d60ce149d2adc2521a7a1bbf8a4d76e0b2637ca58151a6f621e8e0e02e9425ccda6446a5fb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fdbb2f26faa80e98ee2c509920f917ac |
| SHA1 | 1956adff87410c92d25bd0dc24a8dc6de352ee08 |
| SHA256 | 6716d987220763e6489766fcd697ad1b3a7a175c5fbf4e3d42e2fa942257794d |
| SHA512 | 3fceb8753aaadf1c699190267fcc8989cecc251614ab39fb6c1c27c350da7dc51faf4aa8631a40c863136ae3c4859eee53945588d573c4510eb9a34508f3af03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 16ad00dbeed56038477b0a9fc3a5a1e7 |
| SHA1 | 8d9630f08774f40e847b32e0a5ef76a6cddb49cb |
| SHA256 | 5ffdf2f47d0d09b2bdac57a11be43b66707d0630930109c7eda9975157b405b8 |
| SHA512 | 5a81451aa2a3c651bc84b3ca8b38e25920048e68082331b40edfed3b9620deb00fc1c5a00cb65bd3c7ad8f72d038e055ffc6cc8dd03dc7a23b2aef4a50e4fa85 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\2472a007-67f2-4052-9030-c5ab18d34970.tmp
| MD5 | b27397235daf419c702eea2e1c87860d |
| SHA1 | bb475caf8c23106f992fcb75f33893f7c22f7879 |
| SHA256 | 6472e840f1f9b75b257eb6d7ca7a86c98f5c5b396c2f854f33f8c84093915bec |
| SHA512 | 20243832b1486ae766967094291d01edeeffc82096767fd9f410f9cd8884fa39b4685c30499f9486308354f47719d343413091494524cbd68cc0bba7987d3a31 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | becee4d2542d2dde5a61f275787481ec |
| SHA1 | 6bfdbec242be1f06008eab6b1401466eee896c60 |
| SHA256 | 1464133b4bfe0c50131338b9ab985f76f51c94c57b930fd733f81f7bd0231d5c |
| SHA512 | 36f6fb45b36b9fb97483f9d43b0148b5112860ad19a9ac06f311fe6639723162a9edc5d530c26905cdb664326ea0497cdcfc51f82615c8392ef0f29f99cb0dda |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1daad4882d0fab8a3e7d19c63c0c7a13 |
| SHA1 | a7acfe2940f892ad52ebfc25c327575b95b8cc2a |
| SHA256 | 73d230e490f21b208a7c603edcb26741fcfd821857ddc8325c5d6de56e3af996 |
| SHA512 | 05eb1c6fb33ff938f7555a156d7e32c6aa7aa79a6bbb16e9a48d86980fc9da98c8cd4182268996a7c915758362a53fc39fc924e7635e9e9455aaab8022ec3ffd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a011ab15c7c7ef3ae148ac794a1b8053 |
| SHA1 | 936c4dfe75f5766614fe8f422268720ebc6b67e8 |
| SHA256 | 8e8826d248415f1a79a5e595c89b29250482043801d09873fd7fec872e5dee4f |
| SHA512 | 17294a52a1908fb3693b7143ecd19d06bb8df08d13a219b02fc30004f70c7f54c647563a49d4248411816a897a1c95d76aa6d6edff33c47280ba3eba0a15677c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 91b41dd150059b7aa537242b89fb607b |
| SHA1 | 9d92e606232b4f8bb1e07cc94e2f9145bf3d1288 |
| SHA256 | fece1329408e628806669f99b4f2b9b44a13cba5fe8d1dc5e18942aa6d5a8985 |
| SHA512 | ad867c186daf37987e051018175024bb9a1be1ea1483dbf3e044958b17cb1a1813bb5c4a8d8df858efe469c7a6a8ce22c85100246c5e41a1cb8c06ea0d4cc313 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 063421b4a4d97b2f416d1238fd4c28b3 |
| SHA1 | 8d26df49df50f772dd1f9066a485a0d633e7c557 |
| SHA256 | 4585bb4ef0ba4a88f2ae48a4c57cac77eb527f7d9669d859603d032ad24c2dd5 |
| SHA512 | 3ec57e4d5e4461e3cb9bd39d2b6faf2cbe3b648a53942c066d5c4c1ab92966478c61c5b622e71224445f3b55f21a393594d97b3334278fe3408d754166a11f96 |
memory/6524-2891-0x0000000004840000-0x0000000004876000-memory.dmp
memory/6524-2892-0x0000000007390000-0x00000000079B8000-memory.dmp
memory/6524-2893-0x00000000070A0000-0x00000000070C2000-memory.dmp
memory/6524-2894-0x0000000007140000-0x00000000071A6000-memory.dmp
memory/6524-2895-0x0000000007AB0000-0x0000000007B16000-memory.dmp
memory/6524-2923-0x0000000007BE0000-0x0000000007F30000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\63fb8459-ad93-4eea-873f-d51f712c2b93.tmp
| MD5 | 7c629ef218a39b5919342239ba780ed1 |
| SHA1 | 3040538b156472e6a8a0d4653f9a9a3fe442fede |
| SHA256 | 6af0d78a24daf7066e88c7b7b58e72abf9dce5a56fd41fec000a428112dbe4f4 |
| SHA512 | 4911fd7581b90688e19d2340f210c6cfbf7ea707f689416f4f70520b6186a359876599bbd2d94aec2b2fe734822a31bbd9780c884c9688f7b7f18b516e147cec |
memory/6524-2924-0x00000000086B0000-0x00000000086CC000-memory.dmp
memory/6524-2925-0x00000000094A0000-0x00000000094EB000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\4180f666-0fda-4d5e-ba07-17fbbffc886d.tmp
| MD5 | 1223950e81ad496698a0b15ad275ae7a |
| SHA1 | 43aa861ee194de3264f5ac816080dcca865c4bf2 |
| SHA256 | a1a1e1bd036b6326f7786c0a01a476f0ebe80f2feca6a4a8386c8d431ffe1cfa |
| SHA512 | fe547f1fabfcdf1dd40dc02491e60ac9321f61fbcf31508b17a23a43e43f642e084cf40389c657e550993f3c9664d4fc8e533dbda5711f93601ef7528e0001ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\09f03aff-d9b4-4e8e-a6e7-4e7310c79615.tmp
| MD5 | 911f1924af3844ae9dee3a0215e1c711 |
| SHA1 | 9b5c36ab633925929e218555c72c16675147430d |
| SHA256 | b8c223a564bae2efe2867e68bf3d449ae83173e3d4f3edf0e30cb9a65a58b229 |
| SHA512 | c598cfbd2654bfaa8be1f3f22296b351f84ca12e002b2f8a366d7b68a6d582d9d916d60e223970df5d8d3f96d8dc27d941f2cc92370bf3827555a0fd2eff0a22 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\28d209dc-b9ff-46be-b408-284c1dd5fbb6.tmp
| MD5 | 52119d86db157f2bbd96d4d87d3c0690 |
| SHA1 | f7827639211e021ce944e4e7b314d9884bbbc407 |
| SHA256 | 6c2a6b47d10c5bfd77ae8d41336d4f6d69bb6e32c74339515a6b1ff493307913 |
| SHA512 | 4eda2b18b35545b0b9129ddae5da3790fb59ac38c417c9723693f18571b257a3c555f66c934f9cd9b9089e8b838d42563644aa8ce8b6ccd870c0da98c78507a7 |