Malware Analysis Report

2024-10-19 02:45

Sample ID 240826-dy98csscrh
Target c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118
SHA256 6c6b26725b4f6ee28efc36129bc4df9006e79faeac85938e08fd740399f7b1af
Tags
socgholish discovery downloader
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

6c6b26725b4f6ee28efc36129bc4df9006e79faeac85938e08fd740399f7b1af

Threat Level: Known bad

The file c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118 was found to be: Known bad.

Malicious Activity Summary

socgholish discovery downloader

SocGholish

System Location Discovery: System Language Discovery

Suspicious use of WriteProcessMemory

Modifies Internet Explorer settings

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-08-26 03:26

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-26 03:26

Reported

2024-08-26 03:28

Platform

win7-20240705-en

Max time kernel

143s

Max time network

150s

Command Line

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118.html

Signatures

SocGholish

downloader socgholish

System Location Discovery: System Language Discovery

discovery
Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A

Modifies Internet Explorer settings

adware spyware
Description Indicator Process Target
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\LowRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000 C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb0100000082ebb0b9d6f3f0458e93e15bd38f268f00000000020000000000106600000001000020000000173a55e030c085a60c963ec00624f7a2525a4ead9aeb94b7d2feb5eddaca70f9000000000e800000000200002000000078021542891c8b614aa13af1f061e38e339bdbafb8a34002cc2a9209aa69b3e72000000037f2cb6cca126461efffad7327f188712abcc7109aa15f5f647bc1d04437419d4000000048c6edc9aed0482cfecace570789dde6c68602084f4b1d1818906c1cefcd4cfa274f83599c3dc4a39e8e577013b74648a30c447cdd6ceb843596379120541cd2 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\SearchScopes C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\GPU C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\IETld\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{F3FE9141-635A-11EF-B585-FA51B03C324C} = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (str) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running" C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\PageSetup C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Zoom C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\DomainSuggestion C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\InternetRegistry C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = a0f630e367f7da01 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\IntelliForms C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "430804644" C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (data) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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 C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Toolbar C:\Program Files\Internet Explorer\iexplore.exe N/A
Set value (int) \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0" C:\Program Files\Internet Explorer\iexplore.exe N/A
Key created \REGISTRY\USER\S-1-5-21-1385883288-3042840365-2734249351-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery C:\Program Files\Internet Explorer\iexplore.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files\Internet Explorer\iexplore.exe N/A

Processes

C:\Program Files\Internet Explorer\iexplore.exe

"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118.html

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2136 CREDAT:275457 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.gnomiartas.gr udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 img1.blogblog.com udp
US 8.8.8.8:53 resources.blogblog.com udp
US 8.8.8.8:53 s.nbst.gr udp
US 8.8.8.8:53 www.newsbeast.gr udp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 www.lifo.gr udp
US 8.8.8.8:53 www.real.gr udp
US 8.8.8.8:53 www.econews.gr udp
US 8.8.8.8:53 pestomou.info udp
US 8.8.8.8:53 www.iefimerida.gr udp
US 8.8.8.8:53 dr-blogger.com udp
US 8.8.8.8:53 i47.photobucket.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 1.bp.blogspot.com udp
US 8.8.8.8:53 feedjit.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 img.youtube.com udp
US 8.8.8.8:53 jd.revolvermaps.com udp
US 8.8.8.8:53 widgets.amung.us udp
US 8.8.8.8:53 s06.flagcounter.com udp
US 8.8.8.8:53 www.linkwithin.com udp
US 8.8.8.8:53 scripts.widgethost.com udp
US 8.8.8.8:53 500v.net udp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.178.142:443 img.youtube.com tcp
FR 142.250.178.142:443 img.youtube.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
FR 142.250.179.105:80 resources.blogblog.com tcp
FR 142.250.179.105:80 resources.blogblog.com tcp
DE 94.130.142.223:80 www.real.gr tcp
DE 94.130.142.223:80 www.real.gr tcp
US 172.67.73.154:80 www.lifo.gr tcp
US 172.67.73.154:80 www.lifo.gr tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
GB 2.16.170.42:80 www.iefimerida.gr tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
DE 185.44.104.99:80 jd.revolvermaps.com tcp
DE 185.44.104.99:80 jd.revolvermaps.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
US 104.22.74.171:80 widgets.amung.us tcp
US 54.241.243.143:80 scripts.widgethost.com tcp
US 104.22.74.171:80 widgets.amung.us tcp
US 54.241.243.143:80 scripts.widgethost.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.215.46:80 img.youtube.com tcp
FR 216.58.215.46:80 img.youtube.com tcp
DE 185.53.178.50:80 pestomou.info tcp
DE 185.53.178.50:80 pestomou.info tcp
US 69.16.231.60:80 500v.net tcp
US 69.16.231.60:80 500v.net tcp
GB 216.137.44.112:80 i47.photobucket.com tcp
GB 216.137.44.112:80 i47.photobucket.com tcp
DE 185.53.177.50:80 www.econews.gr tcp
DE 185.53.177.50:80 www.econews.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
US 172.67.156.121:80 s.nbst.gr tcp
US 172.67.156.121:80 s.nbst.gr tcp
US 172.67.156.121:80 s.nbst.gr tcp
US 104.21.28.30:80 www.nooz.gr tcp
US 104.21.28.30:80 www.nooz.gr tcp
US 45.58.124.226:80 s06.flagcounter.com tcp
US 45.58.124.226:80 s06.flagcounter.com tcp
UA 31.41.216.85:80 dr-blogger.com tcp
UA 31.41.216.85:80 dr-blogger.com tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
GB 216.137.44.112:443 i47.photobucket.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
GB 2.16.170.42:443 www.iefimerida.gr tcp
US 172.67.73.154:443 www.lifo.gr tcp
DE 94.130.142.223:443 www.real.gr tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 8.8.8.8:53 c.pki.goog udp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
US 69.16.231.60:80 500v.net tcp
US 69.16.231.60:80 500v.net tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
FR 216.58.214.163:80 c.pki.goog tcp
US 8.8.8.8:53 o.pki.goog udp
FR 216.58.214.163:80 o.pki.goog tcp
US 8.8.8.8:53 o.pki.goog udp
US 8.8.8.8:53 o.pki.goog udp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 104.26.0.146:443 www.newsbeast.gr tcp
US 69.16.231.60:80 500v.net tcp
US 69.16.231.60:80 500v.net tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
FR 142.250.179.97:443 1.bp.blogspot.com tcp
US 8.8.8.8:53 themes.googleusercontent.com udp
FR 142.250.178.129:80 themes.googleusercontent.com tcp
FR 142.250.178.129:80 themes.googleusercontent.com tcp
US 8.8.8.8:53 player.vimeo.com udp
FR 142.250.178.142:443 img.youtube.com tcp
US 162.159.138.60:80 player.vimeo.com tcp
US 162.159.138.60:80 player.vimeo.com tcp
US 162.159.138.60:80 player.vimeo.com tcp
US 162.159.138.60:80 player.vimeo.com tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
FR 216.58.214.163:80 o.pki.goog tcp
US 8.8.8.8:53 lh6.googleusercontent.com udp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
US 162.159.138.60:443 player.vimeo.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
US 8.8.8.8:53 challenges.cloudflare.com udp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
DE 94.130.142.223:443 www.real.gr tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 216.58.214.163:80 o.pki.goog tcp
US 104.18.94.41:443 challenges.cloudflare.com tcp
US 104.18.94.41:443 challenges.cloudflare.com tcp
US 8.8.8.8:53 apps.identrust.com udp
US 8.8.8.8:53 apps.identrust.com udp
GB 2.18.190.80:80 apps.identrust.com tcp
GB 2.18.190.81:80 apps.identrust.com tcp
US 69.16.231.60:80 500v.net tcp
US 69.16.231.60:80 500v.net tcp
US 8.8.8.8:53 jf.revolvermaps.com udp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
US 8.8.8.8:53 rf.revolvermaps.com udp
DE 185.44.104.99:80 rf.revolvermaps.com tcp
DE 185.44.104.99:80 rf.revolvermaps.com tcp
US 8.8.8.8:53 eortologio.net udp
US 104.21.52.177:80 eortologio.net tcp
US 104.21.52.177:80 eortologio.net tcp
US 104.21.52.177:443 eortologio.net tcp
US 8.8.8.8:53 www.eortologio.net udp
US 172.67.202.89:80 www.eortologio.net tcp
US 172.67.202.89:80 www.eortologio.net tcp
US 172.67.202.89:443 www.eortologio.net tcp
US 8.8.8.8:53 region1.google-analytics.com udp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 216.239.32.36:443 region1.google-analytics.com tcp
US 54.241.243.143:80 scripts.widgethost.com tcp
US 8.8.8.8:53 crl.microsoft.com udp
GB 92.123.143.234:80 crl.microsoft.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
FR 142.250.178.129:443 lh6.googleusercontent.com tcp
US 8.8.8.8:53 lh5.googleusercontent.com udp
US 8.8.8.8:53 lh4.googleusercontent.com udp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
FR 142.250.178.129:443 lh4.googleusercontent.com tcp
US 8.8.8.8:53 www.microsoft.com udp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp
US 204.79.197.200:443 ieonline.microsoft.com tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M7GT0RRO\theodwriana4[1].htm

MD5 0104c301c5e02bd6148b8703d19b3a73
SHA1 7436e0b4b1f8c222c38069890b75fa2baf9ca620
SHA256 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
SHA512 84427b656a6234a651a6d8285c103645b861a18a6c5af4abb5cb4f3beb5a4f0df4a74603a0896c7608790fbb886dc40508e92d5709f44dca05dd46c8316d15bf

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 36c28093e15de662f68d1625fa5b6d8e
SHA1 0f8ebfce30e800b697dd2f7f1fbfacb0c1569303
SHA256 0d0095b8f059db90c99cb23ab6dc6fe897ad7ed04f5e5cc8488971fe151fe89a
SHA512 cfa24a1f4b615cacf7d8782a51c4528967f5ec4c73f0d7a5d74620d5b42118e31321b862a178a090ef16a869a6b5c1dfbc3503cba8b16d1d0fcb4f4c1746c2c8

C:\Users\Admin\AppData\Local\Temp\TarADD1.tmp

MD5 4ea6026cf93ec6338144661bf1202cd1
SHA1 a1dec9044f750ad887935a01430bf49322fbdcb7
SHA256 8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8
SHA512 6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

C:\Users\Admin\AppData\Local\Temp\CabADD0.tmp

MD5 49aebf8cbd62d92ac215b2923fb1b9f5
SHA1 1723be06719828dda65ad804298d0431f6aff976
SHA256 b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f
SHA512 bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199

MD5 8a4c8c347024cb19a00a2500fa01b5a5
SHA1 91f22b0b4712d3596695a6dda71afa93214529ae
SHA256 fff01f5aa493142b1fb54deee167866c7021f077c8e1c71c9e3d1ec9cda0a535
SHA512 4b85f45bc9c7fa08ee2f9f0d7b9dbb9664d206b1253c0dae09103cc9cbca3215a1b46bc4da91998bd85a28fd712af4a45c7b0dda9a27148ce209601678984afa

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199

MD5 dee2930ec9ac2da71fad774c02eeb0a8
SHA1 f578318563c4347f005e7a31adf25834c823b726
SHA256 f17c788a36ef88525a0efb55779579b8b58c6757fd361e73ffcd185b8db0e47e
SHA512 9dc9a0ab0b5db5eb4020f78d7f57e3b0072f912d6a1c6fddd076ec8ec6cfe17dda2237b5d7fe918949cd2641c51d76b77693b10e719c81830c66875f273614d7

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05DDC6AA91765AACACDB0A5F96DF8199

MD5 e935bc5762068caf3e24a2683b1b8a88
SHA1 82b70eb774c0756837fe8d7acbfeec05ecbf5463
SHA256 a8accfcfeb51bd73df23b91f4d89ff1a9eb7438ef5b12e8afda1a6ff1769e89d
SHA512 bed4f6f5357b37662623f1f8afed1a3ebf3810630b2206a0292052a2e754af9dcfe34ee15c289e3d797a8f33330e47c14cbefbc702f74028557ace29bf855f9e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B46811C17859FFB409CF0E904A4AA8F8

MD5 971c514f84bba0785f80aa1c23edfd79
SHA1 732acea710a87530c6b08ecdf32a110d254a54c8
SHA256 f157ed17fcaf8837fa82f8b69973848c9b10a02636848f995698212a08f31895
SHA512 43dc1425d80e170c645a3e3bb56da8c3acd31bd637329e9e37094ac346ac85434df4edcdbefc05ae00aea33a80a88e2af695997a495611217fe6706075a63c58

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8B2B9A00839EED1DFDCCC3BFC2F5DF12

MD5 7fb5fa1534dcf77f2125b2403b30a0ee
SHA1 365d96812a69ac0a4611ea4b70a3f306576cc3ea
SHA256 33a39e9ec2133230533a686ec43760026e014a3828c703707acbc150fe40fd6f
SHA512 a9279fd60505a1bfeef6fb07834cad0fd5be02fd405573fc1a5f59b991e9f88f5e81c32fe910f69bdc6585e71f02559895149eaf49c25b8ff955459fd60c0d2e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8B2B9A00839EED1DFDCCC3BFC2F5DF12

MD5 bd6be5ad25bada22576c4dff64c46672
SHA1 564ddea85faa24edc527ce2b27673a8e28b5263a
SHA256 e7c8183053c9cbb9d17ae251c29ca8c09de10ce26449d76f3a9f159281e053ee
SHA512 3f73f528fe8ac35c8cb7eec8a1aaf361bb1848e1146649726bcb9109f39f240c3d8103a68779f4bd984ccaf1c4fc37f01b180d4ec053c029d2515a26af601128

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05DDC6AA91765AACACDB0A5F96DF8199

MD5 eced020c0d83604b1f7bcf39245c50ca
SHA1 880bdaf8133565ed1a1217cb6c00e1f8ee68457c
SHA256 b8e5808006b6f3ea9049605edec32317fa1a929745581b3b70abaaa02a8e3a52
SHA512 dc4e6af0ed642950ab6c00c18308c3c1feeef5ef3f8a285947bfe9fd8ea9baccb6ce4f16d72a4c336a5e7958ce6311ede13b731c9fa39af270ab0a187525a6fa

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C02877841121CC45139CB51404116B25_D71A94740B0CED76EBD7AAE2374CBE8B

MD5 eec971bc753cc9e2e6b53f9a70b2ec46
SHA1 180800efd67b9f2d3904d26b0f023d091f96e364
SHA256 16d1ff1fe2e5e3897c08895cb20db9b4238e04a9df8c241fcab508d4833ae57e
SHA512 03c8d025850682fbc950f9cc25fb270a87bb585417454bb5ba6ae38dc8ac7687cc2de83e44b1fd24e3fb591ef27393f7bdf156f83d2fd707570b3dc62dbc019b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C02877841121CC45139CB51404116B25_D71A94740B0CED76EBD7AAE2374CBE8B

MD5 20cdcaab8d90dfd44279ac5a6c611452
SHA1 9f0b829589fb0597bf43f11b32caee5814a6988f
SHA256 c338de010cf1249a46ea5b28cc3b8f0cdd1a030c536298b59c5a08bbc4d61de6
SHA512 4afc9c130c3a87f9b9d93c2f7e1f6204b4c5b88b2c937e9524002f3ac4408dccaf72f64c8b0a381a1ff4d35a6755943883d56c23e418c142fc372aa490a78565

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C02877841121CC45139CB51404116B25_D71A94740B0CED76EBD7AAE2374CBE8B

MD5 b9261b053a2dfde6e4de0c6982d6e2d9
SHA1 c196a77f053af49894b920f1e8c1068e87a93f00
SHA256 fd70efca30058008ab51ba77e0720faa9b214fb37cd3a2f50a3fbf6418828a7a
SHA512 c3d8829217dec605579df2d7a7ee8e353cbc913d894dbb6ca5c926c2be56feaaeb8d4553445da477500d2a936ef608a5315ae202b0de7796f0c355d534c2437e

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\103621DE9CD5414CC2538780B4B75751

MD5 822467b728b7a66b081c91795373789a
SHA1 d8f2f02e1eef62485a9feffd59ce837511749865
SHA256 af2343382b88335eea72251ad84949e244ff54b6995063e24459a7216e9576b9
SHA512 bacea07d92c32078ca6a0161549b4e18edab745dd44947e5f181d28cc24468e07769d6835816cdfb944fd3d0099bde5e21b48f4966824c5c16c1801712303eb6

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

MD5 2abc38ceaf0c31e36b6d58ca882f498b
SHA1 dfe7609d9e04512638c0e4a2bc771a52556b65eb
SHA256 6d3c61d1ce2a913d6ba9f8f8bffff2758b9618a77370b9d68ce9f9a0c4baf7b6
SHA512 872ed0e596b8bf51b87c4e48e0636e3183b166cac66f5168cb939d634d41388b2e65137bf2215b530e0950c353444b7e9798c5340e7f1872eed70022af2463ab

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 27551ef3744ee0cd1fd54546fab274cf
SHA1 264c32c1c6b012d94821ceb54fa68f07ddcd94ea
SHA256 2115d3bb0f4b7423c510cc6fdcdeb0bb37cd211c0f3db1288ce1e8c361e891d2
SHA512 448d8feb77e6d11615893bf5494e9a26db0fc5030b1caccebbd5aac4094022adeb74e61bb9e6be89b5a30c3399889a14043d03081299a9179bda979447f15017

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2e161b8e2567f900d6f8277a5041ba19
SHA1 b6fa50b1dd402620570521ed263c12f254064b96
SHA256 7cc4ae7fd536b33f0ba0808fa27eb9125e2b9878502977c3f0f637ba1a70dd3f
SHA512 451a2fc5bff9d154657c1ef4044ad8881f69e908da28f12fcd258c8faa43e32bce9ebffb8e103dd830ea0c99c86121f4bc276ce4a3bb217e87ed7686a1d3474d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 1aa693f05309264d996553dafcfd7a23
SHA1 acded507251169b85d41d32e44fe84ab91d5173b
SHA256 d56eac33f2c397ba94f15cde33d13fcb2c37729efe7cb0d3b887e682b17b9e26
SHA512 832aa513b57e2d359c9f9622fd120ad7372355dfd057f092e46f6c1d1b012079074ec3d609466bb33d2443f4d17c9a34b85dc134037d59600a703652758496a8

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 99d3b19fe78c81abcc03fc136434a3a1
SHA1 e4cc6749a90473b624cc13388361f99fa615ef9b
SHA256 185e5c57068c807f91d7a73d020da7f5d660c7a34225701160f6c1d59109e896
SHA512 cd2a182796138d5c9106596a61a42f8c4b7484508f0a731d5b0b88802953c7227a21f882a6377caf9588c00cfd3ed00814daa4a5b1b80d7b00e8ca1ddb1f3bdd

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\070E0202839D9D67350CD2613E78E416

MD5 2728b4627ed0789f15e50be7abbdf1d2
SHA1 638b19794e3bb306c1f3ca6d30891f5689fbf47f
SHA256 405ab637bf3fe0f1fc0144d974409c70ef83b64102b7e78e6c5fd84a1f774475
SHA512 e49ee3e1c1e2fb165202796598375a76ab127ccd4b241cb9d79934cdf460b53966af953bd24fb5725ab338632261198dfa9366b5ff8fcb9aadb544e7485b6937

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

MD5 55540a230bdab55187a841cfe1aa1545
SHA1 363e4734f757bdeb89868efe94907774a327695e
SHA256 d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb
SHA512 c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 079bc131da57401a3fca642b710ad9d9
SHA1 a1244c84dedecc8b5901047101f7b08cbefb91d8
SHA256 1015e8d03b0ae27cf69d317c5e2008477d0313edda196de0839e58ae39049d46
SHA512 f88ca3bc0d47a639f945d17e5154b8f9f96129aa973c73899c124721193e170622c1d784af58d8fbf64adfe791bac79429a24b912f39b37e5be1b89166efbb96

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 cc550e4f95a083455a56a0b1a8ccf1e5
SHA1 6d6e1dc038af3fb2e953f10c7f1eae687c74f397
SHA256 e32bf387b59a1549becfc24a5e815e0ba032b926113c0c5f3e6f62fcc82c290d
SHA512 323b38a303a330f79827d7c3631b593eece01c4993723ae9a70a089e6c610c297b5097ff12bf1562b42c28f40c1e743cf75b36d23d6a507b3c9fdc7853f4fb90

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d811ba58fece1c387a617c991224cb6e
SHA1 5838ffe295f0c52270f7bc25f794174a2a51075e
SHA256 93255e185d3f65c48e7e1ebeae9fea9226847188e1f13436281c4951edbe8115
SHA512 a393ace95920d22a37133ac9a155c068e21cea0fc3b71a78d0bc96baa2b16cd8b51e75731d916f0fd615580c5bbecf26567a53e4a20cdc3635adc4aa229870c2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 a5e431b80c68f7ff7b9a38459f5420a8
SHA1 67848a71c2cf54f129f79c3cf92996179a5a6d5e
SHA256 102148459b6ce0e79230a3d5b9626addce8bf740881bb206045a7295d57ed626
SHA512 7fa38942ec3f7281fd190db9d9388d5556b775eff4966cf968b451821928e5c2fd4c7a3f50f2059aa1c572f5312282d580acddb91ead6bd0728bf02dc110ac3c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f1e336681b24046c0595459d9a1d1cde
SHA1 fd3078aeccdd234f9fcf7f6a2ec5d218e7c7b286
SHA256 9ea2ebac4ee69119241c1b5e1227defaec7e2a0e6742a3b5b9f976fa54ddb653
SHA512 45eeb4e0d27345019bae8c1daa7de07be737eade8608acdd210afd583eb07478cd70b90b3431a2c7bc7d12adfd91cdd869bef42a60e5cf6045730efe8a9a4150

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HNGGU6NJ\api[1].js

MD5 c4d5335b2b69c6998ee34f5f7b3e246f
SHA1 af0ae01eccee153877976d5c7d6500aa9c380b60
SHA256 7eda47b0c02c44bdaa43a5b14857f1257ddbd620b0397c32aa3ae8baf769ab55
SHA512 1c62c5d29c56848c258701f2e6b39e2152a3caceb2c96f19adb8542fdcc233f42bd0fae9d03c8ea04f6b4490d0b69fd24f62b6d18a14a31d87e24906cfc88c58

C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BVY7RUMW\plusone[1].js

MD5 65d165a4d38bfc0c83b38d98e488f063
SHA1 1c4ed17c5598a07358f88018a4872aa37ae8bc07
SHA256 b1320e0dda0858c87971f7baa0d53063ad2a429d232fd06b0067bda8b9eeb0ec
SHA512 abf4c755d88193e7e05398b6f934fc561d8e2adbee7d2170af399e145e54a4a8a93988e4af4e28d6240c0bd1bda7035ae97f67a85a471088820baae8d89f3d41

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b6d8fcb801d393aace942ca5296c5d30
SHA1 15d1f5c1db67f202e152c887e322dfdd66fe651d
SHA256 e484a1b8260f58379d6dd6ad54446d34430861b6b89b2951a4fc596a29485e3d
SHA512 24dc8aa126357c90c879f284da4245534da9d6dae63f5301c16a93f59c8c35164153dc28806f3f7647dd5a3fc0773404086995743c43bf1ae551408319cbff9a

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 91fd41ab215c39bd1416eb295f9d41ca
SHA1 9b53033fd9778b21432e1715daa6553b3160514b
SHA256 dcbfe8cf2ca338eaea9b47e6ed5cedce1129db8a869d14e9046ca70ef2168281
SHA512 644143e6b111c4921af71d988be51171a4140743b9ad0048a1318c5730bc37fa6f441748f0cea0c8c91ce6b5c026120de585ceb8ae2bbb9cc8dcda057fab92ca

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 c9bafd5609ad2d2c15e85deb75151fc3
SHA1 78f94d878441b1d5961dbbaae815cbf429bf2bd7
SHA256 a8246ede3ad820e4cc58c58b7f7ec9858b0186797c6f6a37dc21e4311b411c06
SHA512 49552be84d061e026b5e0f32737e1f34fdd3b592bd45b6c06864545b0cc156d54a3940356ebef1484799c09cc9cc55865f6a3c43ef3d963917b35b8d81cad3d0

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

MD5 a266bb7dcc38a562631361bbf61dd11b
SHA1 3b1efd3a66ea28b16697394703a72ca340a05bd5
SHA256 df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e
SHA512 0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 ee81799a1559c0f0620e26a582333494
SHA1 2d2ccd70a299300c394a4d9468ecf3ffc2a98977
SHA256 a44748e61eb8d5e860d7263b677b8dda83fb932673b031979e5c1e7fd2fcde61
SHA512 eb7f43f26278bf2ada0cc8698f763d1aaf59bd04579ca0ce8b1fb71b9e778cbb7c81c3198e49a15a8d19e6f602fe013283f4dc0276c37495dd1a42bf9bc8d53c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 0bedf769e90b6471198359d959d5379d
SHA1 baf353ce3ad21d1c4e704a7e1820a63772ccfef0
SHA256 bf9c0509bd8415d7e5e9601df689e31214b2169fa4fbf0b3d483bfad7d10746d
SHA512 88caaa848efe81f834c278f7a4f73a1103fa2b02289797e52bb183515687d99eca5f2d107a2a4f273ee429044a1958c706ea600b0eb9dc49286ca1e1f45e9614

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 b27621293f68aafbfebd2612ee2e8f0a
SHA1 084fd4ca6843119a1b0ce0aa7f1c9b8e86e5c023
SHA256 dd36986ccae3cdf013fcad234280df944a692641e0d9ddf0096af22b2d2beca2
SHA512 d765d7c4200bf2bbc8158ff13113fd5dc63b0238a41b1fd50abf7556be9d206a36daf8a1c58eb997fe45799ee1cab524cbabaa296db7b2f7760913a308ccfca2

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 3dc72b04f8268ba0729301abb24488f1
SHA1 312937e9c973259132ceb5008c733a8a16ad8302
SHA256 c993f35b63cb3ded6b53196f41e57724e69d7907783610b46097505eeadf1db5
SHA512 5dbb019c0606f5bc036b96292d37540c1c6ea20d9d9d20e229c783b2007059e8ddbd8aa55e7dd6e43ae451b7bfb1430055e662f268f7ce2b4711c0713f0c91a4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 47240e3ff17a3cfb818a3006982e6393
SHA1 5296c2fd22ef84769b9f589027edec7b50c3e5d3
SHA256 e54d35617b0f88775169d0501055d292ade58479d53e698561bc7478a0c352bf
SHA512 44dcdb8cb3c4423d53fc485dc179d04650c48461f4de5c3db3a3bc616029ca7a39a3720c3dd0e990b2a451c3f61329c23f1498e3412c401d08d6c66bb7c00f75

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 e4a68ac854ac5242460afd72481b2a44
SHA1 df3c24f9bfd666761b268073fe06d1cc8d4f82a4
SHA256 cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f
SHA512 5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

MD5 ab4bbd452f335f5056c4f2f7cdecc80e
SHA1 8629a67a2ab1d6b0f0e1d4f3787485605a6470c5
SHA256 837d781dbd3a4553ed9f74f9ebbc2dad7e2895852ce0e5a11f3cb694e3d40b5a
SHA512 c9970a87d43c08a0c41c6038777eda03082fc19f282d3dd3198872c4747bf62ee6aa89c66a112586fc29f59ed56403ecb011da64ff9e29c0fdc9da83f4c95243

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 8c58c7cac185cd4a2013c8950e857ad6
SHA1 6db40a207a0cdcd7ec8b655d11c418ff527372b9
SHA256 12ce8c8163730986e1199e5fbac03b2c14f1b4bafeba870f68209c56a4d9e550
SHA512 848a5be4f3c8bc1b8ffb8e0f96bc625ee055cb982ce81649a1e8b57cfe43dea9d7c9525dac5d66e8753dde4aa4b4ae16cfcaf5d92430903ccbcf08f6693548f3

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 be5424813a8937203fd10b7fe419bf4d
SHA1 65a9e5c7f2af5cd2759a86687b2308635c0e0c40
SHA256 48604c984791b480aa2a3c8414569cae88f9850b0f164ee4a985cd3289bc3b7e
SHA512 89f9c0995fb4c7dc47e3f218e8673f1ead83e82b24a72b26e266c8219ca7edcbc04ce0c225c47533ae6c07d1d25d7c054a97a656918ff651927b03cb5734665b

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 14403aa564896ed198540a6301a303d8
SHA1 6facebd2aa6e8b0aa05abedb06654aae5e3d8b53
SHA256 09b850def73a318a1222c23d41a94a42f2bfc978f66bf1cf62903498a4b03f40
SHA512 777cef2cf6d75e53772d6fc462fce60c06d63f7dfbad74ea9c3f6b381cc89e71b703e6426fb31b6c071f138153d27606dbe54e09fb94ceb61e65b9c119bf81f4

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2d7928122f873a3acc61156e4dac5171
SHA1 79b59883bcff81c4a9b76c91e546d3d6ac26ec5c
SHA256 bc28a1feaf4e4b12fc48dfa850f1d39eed7836678c080f4b5d1a4795ebb94c7c
SHA512 b7bb9dc732c02a1176a3bd1c946e58142687abcdb53214c0d5ec41c72e1fa66f5aa0be4932e41fac93f5962747b79de82d452681b118aaa319019158e1c72a58

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 2c39af13c21a6f6474d5dd28912574bc
SHA1 b96dc8e8250cfd2489aaf760553a033ac42e8bce
SHA256 a2ecfe5ec7481050e5f01bb2412397467a74a2c3c8b0b36557f8084ef935c15c
SHA512 a8ac79888123f64178e94bcbbca676cc7ea97983d280f51ac54cefa8366976dd9af24465787dae21d92bd70976b88e15cb9aa9e8b3fda0e82e2396c511d3990d

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 81c249af5f943b8bece4c8148a47ccc4
SHA1 d227e095cd3ab4957565901576dca6f920e53456
SHA256 81bada43009adde403a9926496fb897a31c9309d183090e21576d08a1399dd47
SHA512 a78af7033229d599630d446fc60db6b0eb0a822603abcf1b896dc8c16671cd4cc0995085a380746063cc56eb7541d835d0125a181522e637a85c632995859500

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 6cd3cc53fcff81255dd154695fcb57c3
SHA1 ee3e0c1c09a07ce02f47220be90629a595eb53a8
SHA256 e9dab35946e3ed41c9c0e1b120cbf96265c0be6abf1a761ec2c14901e889c2dd
SHA512 0e306cab7b9d66d0f317ac7057dbcd92c4700e0bedcdde9907fbf8cfc4004568c32aae7b9fd0b310db4f39a43f896d74d742cdeac188a084ecf865509bb93f0f

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 115cf9fdbacef719f4d8826e19c81166
SHA1 4d90450d032399c6798e49332f15db59ab66b19a
SHA256 3c3fa04abb81f54e4667b6530e1064da5f02115b1340f4f39358a078bfdbeabd
SHA512 c9bf91357f486508ef17fce01922a556344334cfeba07b7258def9358db1b986a1a0eae2c13078caefe292656a7578dd261deabca35820854ed8e9745cc2b171

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 d0771ee7fdcb2ca2e0ee17f551e7ef02
SHA1 73c6aaf1fb17ec3bd5fc33059fe6b7502118b37e
SHA256 f1b20c2eff7c26fa6bc567e4946d8832c3a84b1d0e9b054f0a35174553b1d9e6
SHA512 b89f93031f140ff9d207065fb0064e939068d38c012a65ace354f0e14eb6e21c95da06d7989b163930963ad3d69c0e1d3c37501171d0a31f802d332f8f6886e5

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 c8a8eae01078c38a41096a5e685c2b81
SHA1 c433823e9dae4347025b24f396ed3c4115379cb8
SHA256 b5702cbf2beb85bc7918f91a7f130e648585e73bf5d74f4edd94846aa63a45a7
SHA512 25d13550639bf943c05ec2d2bfc6f4ddb4af5cd91618081af97733b4bf0dc56cbd79daabd7da17cccc456a5f157c77fa3a9eecdea0caf28612727c576a72132c

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 f7bb013fdcde2ccb28bf27d35b123629
SHA1 e6f813d21201cafdb340bb2b74b6e5d99e9f5a67
SHA256 369dfa2f3e27f2ad6867bd9f903c42cd2a94bd551ec1933f3e41ad10010a1b69
SHA512 ec7a50ce5614d4e441e7545fe361adeb28de616636c53df902410457a28892d813d4d90ba6725c0a5e8cbe968eb1f1291d81bada4d73669dc073755edcfc8334

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 5ee7c42a096816d2a7fd85e0db0337b9
SHA1 24bdf6dc7d8aa0e8d9954ab7f95e117faee97dc8
SHA256 863b98f521fd6c14d960495b42e652bf0ff7348fdef2b80948c87f4e2ef0c273
SHA512 19c2b0ed9f642ad198aabd6db60afbd8ea2574cd98b9ec026f9000499af61110fd1ec6bfe7dbcc3f2bcd4561d2503a5372b1e5d806d8d6ad9cdfc09e132d5d49

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

MD5 fa6677226538f7ee3dda5a51dfe885ce
SHA1 d34987dbb97163abcefa4aafc4f907f9ee4b75da
SHA256 be6d341989c0171f8345cc30c0f4f9494de658f3453bdd74c8c2ebe7c15798e8
SHA512 a98e768ff7aa2336ff2937aa964d572de09f8ceeef2182ffd794064285da5543180d24294340adbfbd990ee7e7a9e18efd9fa8caadc10f29bed2b35b4754f1b7

Analysis: behavioral2

Detonation Overview

Submitted

2024-08-26 03:26

Reported

2024-08-26 03:28

Platform

win10v2004-20240802-en

Max time kernel

144s

Max time network

150s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118.html

Signatures

N/A

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\c2305043572e0b7fe570daffe5d8ce7a_JaffaCakes118.html

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=4748,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=3816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=4648,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=4060 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=4700,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=5412 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=5572,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=5640 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --field-trial-handle=5420,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=5624 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=6008,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6064 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=6248,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6216 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=4064,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6052 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --field-trial-handle=760,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6460 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --field-trial-handle=6076,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6700 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=25 --field-trial-handle=6864,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6820 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=26 --field-trial-handle=7024,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6240 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=27 --field-trial-handle=7120,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=7140 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=28 --field-trial-handle=7312,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=7328 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --video-capture-use-gpu-memory-buffer --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=29 --field-trial-handle=6368,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=6984 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --field-trial-handle=5624,i,1828333185976713750,7918646547767660928,262144 --variations-seed-version --mojo-platform-channel-handle=5444 /prefetch:8

Network

Country Destination Domain Proto
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
US 8.8.8.8:53 api.edgeoffer.microsoft.com udp
IE 94.245.104.56:443 api.edgeoffer.microsoft.com tcp
US 8.8.8.8:53 business.bing.com udp
US 8.8.8.8:53 business.bing.com udp
US 13.107.6.158:443 business.bing.com tcp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 www.gnomiartas.gr udp
US 8.8.8.8:53 www.gnomiartas.gr udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
US 8.8.8.8:53 www.microsoft.com udp
FR 142.250.179.97:445 4.bp.blogspot.com tcp
GB 95.100.245.144:443 www.microsoft.com tcp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 bzib.nelreports.net udp
US 8.8.8.8:53 www.microsoft.com udp
GB 92.123.142.200:443 bzib.nelreports.net tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 56.104.245.94.in-addr.arpa udp
US 8.8.8.8:53 57.110.18.2.in-addr.arpa udp
US 8.8.8.8:53 2.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 144.245.100.95.in-addr.arpa udp
US 8.8.8.8:53 58.55.71.13.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 www.gnomiartas.gr udp
US 8.8.8.8:53 www.gnomiartas.gr udp
FR 142.250.178.142:443 apis.google.com tcp
FR 142.250.179.105:443 www.blogger.com tcp
FR 142.250.179.97:80 2.bp.blogspot.com tcp
US 8.8.8.8:53 g.bing.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 edgestatic.azureedge.net udp
US 8.8.8.8:53 c.s-microsoft.com udp
US 8.8.8.8:53 c.s-microsoft.com udp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
FR 142.250.179.97:139 4.bp.blogspot.com tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
US 13.107.246.64:443 edgestatic.azureedge.net tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
FR 142.250.179.105:443 www.blogger.com udp
DE 185.53.178.52:80 www.gnomiartas.gr tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
US 8.8.8.8:53 themes.googleusercontent.com udp
US 8.8.8.8:53 themes.googleusercontent.com udp
FR 142.250.178.142:443 apis.google.com udp
US 8.8.8.8:53 dr-blogger.com udp
US 8.8.8.8:53 dr-blogger.com udp
FR 142.250.178.129:80 themes.googleusercontent.com tcp
US 8.8.8.8:53 feedjit.com udp
US 8.8.8.8:53 feedjit.com udp
US 8.8.8.8:53 jd.revolvermaps.com udp
US 8.8.8.8:53 jd.revolvermaps.com udp
US 8.8.8.8:53 widgets.amung.us udp
US 8.8.8.8:53 widgets.amung.us udp
US 8.8.8.8:53 www.linkwithin.com udp
US 8.8.8.8:53 www.linkwithin.com udp
US 8.8.8.8:53 scripts.widgethost.com udp
US 8.8.8.8:53 scripts.widgethost.com udp
US 54.241.243.143:80 scripts.widgethost.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
US 8.8.8.8:53 themes.googleusercontent.com udp
US 8.8.8.8:53 themes.googleusercontent.com udp
US 8.8.8.8:53 widgets.amung.us udp
US 8.8.8.8:53 widgets.amung.us udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 172.67.8.141:443 widgets.amung.us udp
FR 142.250.179.105:443 www.blogger.com tcp
FR 142.250.179.105:443 www.blogger.com tcp
FR 142.250.178.129:443 themes.googleusercontent.com tcp
US 8.8.8.8:53 142.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 97.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 105.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 52.178.53.185.in-addr.arpa udp
US 8.8.8.8:53 129.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 141.8.67.172.in-addr.arpa udp
US 150.171.28.10:443 g.bing.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
US 54.241.243.143:80 scripts.widgethost.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
US 8.8.8.8:53 nav-edge.smartscreen.microsoft.com udp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
GB 13.87.96.169:443 nav-edge.smartscreen.microsoft.com tcp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
FR 142.250.179.97:443 2.bp.blogspot.com tcp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 dr-blogger.com udp
US 8.8.8.8:53 resources.blogblog.com udp
US 8.8.8.8:53 resources.blogblog.com udp
FR 142.250.178.142:443 apis.google.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
FR 142.250.179.105:443 resources.blogblog.com tcp
US 8.8.8.8:53 feedjit.com udp
US 8.8.8.8:53 feedjit.com udp
US 8.8.8.8:53 jd.revolvermaps.com udp
UA 31.41.216.85:80 dr-blogger.com tcp
US 8.8.8.8:53 feedjit.com udp
DE 185.44.104.99:80 jd.revolvermaps.com tcp
UA 31.41.216.85:80 dr-blogger.com tcp
FR 142.250.178.142:443 apis.google.com udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 30.179.139.118.in-addr.arpa udp
US 8.8.8.8:53 169.96.87.13.in-addr.arpa udp
US 8.8.8.8:53 99.104.44.185.in-addr.arpa udp
US 8.8.8.8:53 resources.blogblog.com udp
US 8.8.8.8:53 resources.blogblog.com udp
US 8.8.8.8:53 img1.blogblog.com udp
US 8.8.8.8:53 img1.blogblog.com udp
FR 142.250.179.105:443 img1.blogblog.com tcp
FR 142.250.179.105:80 img1.blogblog.com tcp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
FR 142.250.179.105:443 img1.blogblog.com tcp
US 8.8.8.8:53 s.nbst.gr udp
US 8.8.8.8:53 s.nbst.gr udp
US 8.8.8.8:53 www.newsbeast.gr udp
US 8.8.8.8:53 www.newsbeast.gr udp
US 162.159.128.61:443 player.vimeo.com tcp
US 162.159.128.61:443 player.vimeo.com tcp
US 162.159.128.61:443 player.vimeo.com tcp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
FR 142.250.178.142:443 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 apis.google.com udp
US 162.159.128.61:443 player.vimeo.com tcp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 162.159.128.61:443 player.vimeo.com tcp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
US 8.8.8.8:53 apis.google.com udp
FR 142.250.178.129:443 lh6.googleusercontent.com udp
US 8.8.8.8:53 s.nbst.gr udp
US 8.8.8.8:53 s.nbst.gr udp
US 104.26.0.146:80 www.newsbeast.gr tcp
FR 142.250.179.105:443 img1.blogblog.com udp
US 8.8.8.8:53 www.blogger.com udp
FR 142.250.179.105:443 www.blogger.com udp
US 8.8.8.8:53 www.newsbeast.gr udp
US 8.8.8.8:53 www.newsbeast.gr udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
US 172.67.156.121:443 s.nbst.gr udp
US 172.67.70.63:443 www.newsbeast.gr tcp
US 172.67.70.63:443 www.newsbeast.gr tcp
US 172.67.70.63:443 www.newsbeast.gr tcp
FR 142.250.179.110:80 developers.google.com tcp
US 172.67.70.63:443 www.newsbeast.gr tcp
IE 74.125.193.84:443 accounts.google.com tcp
US 172.67.70.63:443 www.newsbeast.gr tcp
US 8.8.8.8:53 accounts.google.com udp
IE 74.125.193.84:443 accounts.google.com tcp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 104.18.94.41:443 challenges.cloudflare.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
US 8.8.8.8:53 ssl.gstatic.com udp
FR 216.58.214.163:443 ssl.gstatic.com tcp
US 172.67.70.63:443 www.newsbeast.gr udp
US 104.26.0.146:80 www.newsbeast.gr tcp
US 8.8.8.8:53 rf.revolvermaps.com udp
US 8.8.8.8:53 rf.revolvermaps.com udp
US 8.8.8.8:53 rf.revolvermaps.com udp
US 8.8.8.8:53 www.nooz.gr udp
US 8.8.8.8:53 developers.google.com udp
DE 185.44.104.99:80 rf.revolvermaps.com tcp
US 104.21.28.30:443 www.nooz.gr udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 eortologio.net udp
FR 142.250.179.110:443 developers.google.com tcp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 104.21.52.177:80 eortologio.net tcp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 www.lifo.gr udp
US 8.8.8.8:53 www.lifo.gr udp
US 8.8.8.8:53 85.216.41.31.in-addr.arpa udp
US 8.8.8.8:53 61.128.159.162.in-addr.arpa udp
US 8.8.8.8:53 146.0.26.104.in-addr.arpa udp
US 8.8.8.8:53 121.156.67.172.in-addr.arpa udp
US 8.8.8.8:53 63.70.67.172.in-addr.arpa udp
US 8.8.8.8:53 110.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 84.193.125.74.in-addr.arpa udp
US 8.8.8.8:53 41.94.18.104.in-addr.arpa udp
FR 142.250.179.97:80 3.bp.blogspot.com tcp
US 8.8.8.8:53 163.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 30.28.21.104.in-addr.arpa udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 developers.google.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 www.lifo.gr udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 www.real.gr udp
US 8.8.8.8:53 www.real.gr udp
US 8.8.8.8:53 www.econews.gr udp
US 8.8.8.8:53 www.econews.gr udp
US 8.8.8.8:53 eortologio.net udp
US 104.26.9.220:443 www.lifo.gr udp
US 172.67.202.89:443 eortologio.net udp
GR 213.16.167.115:80 www.real.gr tcp
DE 185.53.177.50:80 www.econews.gr tcp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 2.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
DE 185.53.177.50:80 www.econews.gr tcp
FR 142.250.179.97:443 3.bp.blogspot.com tcp
FR 142.250.179.97:443 3.bp.blogspot.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
FR 142.250.178.129:443 lh3.googleusercontent.com tcp
US 8.8.8.8:53 pestomou.info udp
US 8.8.8.8:53 pestomou.info udp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 www.real.gr udp
US 8.8.8.8:53 www.real.gr udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
DE 185.53.178.50:80 pestomou.info tcp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 eortologio.net udp
US 8.8.8.8:53 www.iefimerida.gr udp
US 8.8.8.8:53 www.iefimerida.gr udp
DE 94.130.142.223:443 www.real.gr tcp
US 8.8.8.8:53 www.eortologio.net udp
GB 2.16.170.122:80 www.iefimerida.gr tcp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
GB 2.16.170.122:80 www.iefimerida.gr tcp
FR 142.250.178.129:443 lh3.googleusercontent.com udp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 www.iefimerida.gr udp
US 8.8.8.8:53 www.iefimerida.gr udp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 8.8.8.8:53 player.vimeo.com udp
GB 2.16.170.122:443 www.iefimerida.gr tcp
GB 2.16.170.122:443 www.iefimerida.gr tcp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 www.eortologio.net udp
US 8.8.8.8:53 177.52.21.104.in-addr.arpa udp
US 8.8.8.8:53 220.9.26.104.in-addr.arpa udp
US 8.8.8.8:53 89.202.67.172.in-addr.arpa udp
US 8.8.8.8:53 115.167.16.213.in-addr.arpa udp
US 8.8.8.8:53 50.177.53.185.in-addr.arpa udp
US 8.8.8.8:53 50.178.53.185.in-addr.arpa udp
US 8.8.8.8:53 223.142.130.94.in-addr.arpa udp
US 8.8.8.8:53 122.170.16.2.in-addr.arpa udp
GB 2.16.170.122:443 www.iefimerida.gr tcp
GB 2.16.170.122:80 www.iefimerida.gr tcp
GB 2.16.170.122:80 www.iefimerida.gr tcp
US 8.8.8.8:53 i47.photobucket.com udp
US 8.8.8.8:53 i47.photobucket.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
GB 3.162.20.109:80 i47.photobucket.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
FR 142.250.179.97:80 4.bp.blogspot.com tcp
US 8.8.8.8:53 1.bp.blogspot.com udp
US 8.8.8.8:53 1.bp.blogspot.com udp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
US 8.8.8.8:53 i47.photobucket.com udp
US 8.8.8.8:53 i47.photobucket.com udp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
FR 142.250.179.97:80 1.bp.blogspot.com tcp
US 8.8.8.8:53 1.bp.blogspot.com udp
US 8.8.8.8:53 1.bp.blogspot.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 4.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
GB 216.137.44.17:443 i47.photobucket.com tcp
FR 142.250.179.97:443 4.bp.blogspot.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 234.75.250.142.in-addr.arpa udp
US 8.8.8.8:53 174.20.217.172.in-addr.arpa udp
US 8.8.8.8:53 109.20.162.3.in-addr.arpa udp
US 8.8.8.8:53 131.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 232.168.11.51.in-addr.arpa udp
US 8.8.8.8:53 17.44.137.216.in-addr.arpa udp
US 8.8.8.8:53 img.youtube.com udp
US 8.8.8.8:53 img.youtube.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
US 8.8.8.8:53 3.bp.blogspot.com udp
FR 142.250.179.78:443 img.youtube.com tcp
FR 142.250.179.97:80 3.bp.blogspot.com tcp
FR 142.250.179.97:80 3.bp.blogspot.com tcp
US 8.8.8.8:53 s06.flagcounter.com udp
US 8.8.8.8:53 s06.flagcounter.com udp
US 54.241.243.143:80 scripts.widgethost.com tcp
US 8.8.8.8:53 500v.net udp
US 8.8.8.8:53 500v.net udp
US 8.8.8.8:53 jf.revolvermaps.com udp
US 8.8.8.8:53 jf.revolvermaps.com udp
US 45.58.124.226:80 s06.flagcounter.com tcp
US 8.8.8.8:53 t.dtscout.com udp
US 8.8.8.8:53 t.dtscout.com udp
US 69.16.231.60:80 500v.net tcp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
US 141.101.120.11:443 t.dtscout.com tcp
US 69.16.231.60:80 500v.net tcp
US 8.8.8.8:53 78.179.250.142.in-addr.arpa udp
FR 142.250.179.110:443 img.youtube.com udp
US 8.8.8.8:53 60.231.16.69.in-addr.arpa udp
US 8.8.8.8:53 226.124.58.45.in-addr.arpa udp
US 8.8.8.8:53 11.120.101.141.in-addr.arpa udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 8.8.8.8:53 wcpstatic.microsoft.com udp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
US 13.107.246.64:443 wcpstatic.microsoft.com tcp
GB 92.123.142.114:443 www.bing.com udp
US 8.8.8.8:53 114.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 fresnel.vimeocdn.com udp
US 8.8.8.8:53 fresnel.vimeocdn.com udp
US 8.8.8.8:53 i.vimeocdn.com udp
US 8.8.8.8:53 i.vimeocdn.com udp
US 8.8.8.8:53 f.vimeocdn.com udp
US 8.8.8.8:53 f.vimeocdn.com udp
US 34.120.202.204:443 fresnel.vimeocdn.com tcp
US 151.101.64.217:443 i.vimeocdn.com tcp
US 151.101.64.217:443 i.vimeocdn.com tcp
GB 151.101.190.109:443 f.vimeocdn.com tcp
GB 151.101.190.109:443 f.vimeocdn.com tcp
GB 151.101.190.109:443 f.vimeocdn.com tcp
US 8.8.8.8:53 217.64.101.151.in-addr.arpa udp
US 8.8.8.8:53 204.202.120.34.in-addr.arpa udp
US 8.8.8.8:53 109.190.101.151.in-addr.arpa udp
US 34.120.202.204:443 fresnel.vimeocdn.com tcp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 34.120.202.204:443 fresnel.vimeocdn.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 player.vimeo.com udp
US 8.8.8.8:53 js-agent.newrelic.com udp
US 8.8.8.8:53 js-agent.newrelic.com udp
US 162.247.243.39:443 js-agent.newrelic.com tcp
US 8.8.8.8:53 bam.nr-data.net udp
US 8.8.8.8:53 bam.nr-data.net udp
US 162.247.243.29:443 bam.nr-data.net tcp
US 162.247.243.29:443 bam.nr-data.net tcp
US 8.8.8.8:53 39.243.247.162.in-addr.arpa udp
US 8.8.8.8:53 29.243.247.162.in-addr.arpa udp
US 8.8.8.8:53 217.106.137.52.in-addr.arpa udp
US 162.247.243.29:443 bam.nr-data.net tcp
FR 216.58.214.162:445 pagead2.googlesyndication.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
SG 118.139.179.30:80 www.linkwithin.com tcp
FR 142.250.179.98:139 pagead2.googlesyndication.com tcp
US 8.8.8.8:53 86.23.85.13.in-addr.arpa udp
US 8.8.8.8:53 198.187.3.20.in-addr.arpa udp
US 8.8.8.8:53 www.blogger.com udp
FR 142.250.179.105:445 www.blogger.com tcp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
US 8.8.8.8:53 48.229.111.52.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
IE 74.125.193.84:443 accounts.google.com udp
US 8.8.8.8:53 43.58.199.20.in-addr.arpa udp
US 8.8.8.8:53 whos.amung.us udp
US 104.22.75.171:445 whos.amung.us tcp
US 104.22.74.171:445 whos.amung.us tcp
US 172.67.8.141:445 whos.amung.us tcp
US 8.8.8.8:53 whos.amung.us udp
GB 92.123.142.114:443 www.bing.com tcp
US 8.8.8.8:53 bam.nr-data.net udp
US 8.8.8.8:53 bam.nr-data.net udp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 lh3.googleusercontent.com udp
US 8.8.8.8:53 lh4.googleusercontent.com udp
US 8.8.8.8:53 lh4.googleusercontent.com udp
US 8.8.8.8:53 lh5.googleusercontent.com udp
US 8.8.8.8:53 lh5.googleusercontent.com udp
US 8.8.8.8:53 cal12news.blogspot.co.uk udp
US 8.8.8.8:53 cal12news.blogspot.co.uk udp
FR 142.250.178.129:443 lh5.googleusercontent.com udp
FR 142.250.178.129:443 lh5.googleusercontent.com udp
FR 142.250.75.225:80 cal12news.blogspot.co.uk tcp
FR 142.250.178.129:443 lh5.googleusercontent.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 www.blogger.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 8.8.8.8:53 lh6.googleusercontent.com udp
US 8.8.8.8:53 cal12news.blogspot.com udp
US 8.8.8.8:53 cal12news.blogspot.com udp
FR 142.250.179.105:443 www.blogger.com udp
US 8.8.8.8:53 cal12news.blogspot.com udp
FR 142.250.75.225:80 cal12news.blogspot.com tcp
US 8.8.8.8:53 225.75.250.142.in-addr.arpa udp
US 8.8.8.8:53 tse1.mm.bing.net udp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 150.171.27.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 10.27.171.150.in-addr.arpa udp
DE 185.44.104.99:80 jf.revolvermaps.com tcp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
US 8.8.8.8:53 accounts.google.com udp
IE 74.125.193.84:443 accounts.google.com udp
GB 92.123.142.137:443 www.bing.com tcp
US 8.8.8.8:53 137.142.123.92.in-addr.arpa udp
US 8.8.8.8:53 bam.nr-data.net udp
US 8.8.8.8:53 bam.nr-data.net udp
DE 185.44.104.99:80 jf.revolvermaps.com tcp

Files

N/A