Analysis Overview
Threat Level: Likely malicious
The file https://drive.google.com/file/d/1f4ukNygVrcefLR1YbCyjKGaajHHwLXkR/view was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Executes dropped EXE
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Legitimate hosting services abused for malware hosting/C2
Network Share Discovery
Drops file in System32 directory
Browser Information Discovery
NTFS ADS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of SetWindowsHookEx
Suspicious behavior: EnumeratesProcesses
Suspicious use of WriteProcessMemory
Modifies registry class
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of FindShellTrayWindow
Enumerates system info in registry
Modifies data under HKEY_USERS
Suspicious use of SendNotifyMessage
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-26 10:48
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-26 10:48
Reported
2024-08-26 10:52
Platform
win10v2004-20240802-en
Max time kernel
231s
Max time network
232s
Command Line
Signatures
Downloads MZ/PE file
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\winrar-x64-701.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | drive.google.com | N/A | N/A |
| N/A | drive.google.com | N/A | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Network Share Discovery
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_71aa85b0e2292a7a\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133691429083197376" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-4182098368-2521458979-3782681353-1000\{A94AC666-BDD3-41CA-95FC-BB19C0612A05} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4182098368-2521458979-3782681353-1000_Classes\Local Settings | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-4182098368-2521458979-3782681353-1000_Classes\Local Settings | C:\Windows\system32\OpenWith.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 126587.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 545019.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\OpenWith.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/file/d/1f4ukNygVrcefLR1YbCyjKGaajHHwLXkR/view
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff8156acc40,0x7ff8156acc4c,0x7ff8156acc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1880,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=1876 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2108,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2160 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2216,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=2228 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3108,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3140 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3132,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3192 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4408,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3668 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4828,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4892 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4964,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=208,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5132 /prefetch:8
C:\Windows\system32\OpenWith.exe
C:\Windows\system32\OpenWith.exe -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5596,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5640 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5744,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=3188,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=4576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5192,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=968 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5160,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=968 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=3348,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=3384 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=3156,i,2234491941453029787,9592572424620337983,262144 --variations-seed-version=20240801-180145.014000 --mojo-platform-channel-handle=5824 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff8039046f8,0x7ff803904708,0x7ff803904718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2072 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2176 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2728 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3456 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3484 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4288 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3736 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3736 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5332 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5576 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5484 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5900 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5908 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5892 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5672 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6068 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6312 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6920 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6924 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7188 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7752 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7744 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7964 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8640 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8812 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8556 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7564 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7680 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=9344 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7936 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5092 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6864 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8440 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6904 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6828 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7488 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6108 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8224 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2056,14507353501395105138,5789836746876423868,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7144 /prefetch:8
C:\Users\Admin\Downloads\winrar-x64-701.exe
"C:\Users\Admin\Downloads\winrar-x64-701.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 241.150.49.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | drive.google.com | udp |
| FR | 142.250.201.174:443 | drive.google.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ogads-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| FR | 142.250.178.142:443 | apis.google.com | tcp |
| FR | 216.58.215.42:443 | ogads-pa.googleapis.com | tcp |
| FR | 142.250.201.174:443 | drive.google.com | udp |
| FR | 142.250.178.142:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | ssl.gstatic.com | udp |
| FR | 216.58.215.42:443 | ogads-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| IE | 74.125.193.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | blobcomments-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | content.googleapis.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| FR | 216.58.214.74:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.178.142:443 | apis.google.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 22.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.193.125.74.in-addr.arpa | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.178.142:443 | apis.google.com | udp |
| FR | 216.58.214.74:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | peoplestackwebexperiments-pa.clients6.google.com | udp |
| FR | 142.250.179.106:443 | peoplestackwebexperiments-pa.clients6.google.com | tcp |
| FR | 142.250.179.106:443 | peoplestackwebexperiments-pa.clients6.google.com | tcp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 150.171.28.10:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| FR | 142.250.178.129:443 | lh3.googleusercontent.com | tcp |
| FR | 142.250.179.106:443 | peoplestackwebexperiments-pa.clients6.google.com | udp |
| US | 8.8.8.8:53 | 106.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.28.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.58.199.20.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | drive.usercontent.google.com | udp |
| FR | 216.58.214.161:443 | drive.usercontent.google.com | tcp |
| FR | 216.58.214.161:443 | drive.usercontent.google.com | tcp |
| FR | 216.58.214.161:443 | drive.usercontent.google.com | udp |
| US | 8.8.8.8:53 | 161.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.123.68.40.in-addr.arpa | udp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| FR | 216.58.214.161:443 | drive.usercontent.google.com | udp |
| FR | 216.58.214.161:443 | drive.usercontent.google.com | udp |
| FR | 142.250.75.238:443 | play.google.com | udp |
| US | 8.8.8.8:53 | 68.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | e2c26.gcp.gvt2.com | udp |
| US | 34.86.82.41:443 | e2c26.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| IE | 74.125.193.84:443 | accounts.google.com | udp |
| IE | 74.125.193.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| FR | 142.250.179.99:443 | beacons.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.82.86.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 216.58.214.74:443 | content-autofill.googleapis.com | udp |
| US | 52.111.227.13:443 | tcp | |
| US | 8.8.8.8:53 | 19.229.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| IE | 74.125.193.84:443 | accounts.google.com | udp |
| FR | 216.58.215.35:443 | beacons.gcp.gvt2.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| IE | 74.125.193.84:443 | accounts.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| GB | 92.123.142.129:443 | www.bing.com | tcp |
| GB | 92.123.142.129:443 | www.bing.com | tcp |
| GB | 92.123.142.129:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 129.142.123.92.in-addr.arpa | udp |
| GB | 92.123.142.129:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 92.123.142.136:443 | r.bing.com | tcp |
| GB | 92.123.142.105:443 | r.bing.com | tcp |
| GB | 92.123.142.105:443 | r.bing.com | tcp |
| GB | 92.123.142.136:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| GB | 173.222.211.32:443 | aefd.nelreports.net | tcp |
| GB | 173.222.211.32:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | bing.com | udp |
| US | 204.79.197.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | 136.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 105.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| NL | 20.190.160.14:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 14.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | csp.microsoft.com | udp |
| US | 13.107.246.64:443 | csp.microsoft.com | tcp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.bingapis.com | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| GB | 92.123.142.136:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | 140.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | winrar.en.softonic.com | udp |
| US | 151.101.1.91:443 | winrar.en.softonic.com | tcp |
| US | 151.101.1.91:443 | winrar.en.softonic.com | tcp |
| US | 151.101.1.91:443 | winrar.en.softonic.com | udp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | softonic.com | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| GB | 13.224.222.87:443 | sdk.privacy-center.org | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 150.171.28.10:443 | bat.bing.com | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 54.192.139.162:443 | c.amazon-adsystem.com | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.193.91:443 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.209.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.222.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.139.192.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 61.39.156.108.in-addr.arpa | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| GB | 18.172.148.233:443 | www.datadoghq-browser-agent.com | tcp |
| GB | 54.192.139.162:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| FR | 142.250.179.123:443 | storage.googleapis.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| FR | 142.250.179.123:443 | storage.googleapis.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | 233.148.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.64.8.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| GB | 108.156.39.35:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.6.141:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| US | 151.101.193.91:443 | di-images.sftcdn.net | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| NL | 139.45.197.253:443 | notix.io | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 13.107.21.237:443 | c.bing.com | tcp |
| US | 13.107.21.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | 162.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 123.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.6.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.197.45.139.in-addr.arpa | udp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| GB | 108.138.233.27:443 | api.privacy-center.org | tcp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.33.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9911489d8cf5e4f9b5c43f8645e7f5f5.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| FR | 142.250.179.65:443 | 9911489d8cf5e4f9b5c43f8645e7f5f5.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | brightcombid.marphezis.com | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | tcp |
| US | 151.101.193.229:443 | cdn.jsdelivr.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 185.89.210.153:443 | ib.adnxs.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| GB | 18.245.143.58:443 | tags.crwdcntrl.net | tcp |
| FR | 142.250.74.226:443 | ep1.adtrafficquality.google | tcp |
| FR | 142.250.179.98:443 | googleads.g.doubleclick.net | tcp |
| FR | 142.250.179.98:443 | googleads.g.doubleclick.net | tcp |
| IE | 52.51.104.112:443 | id.crwdcntrl.net | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 46.4.139.58:443 | shb.richaudience.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| GB | 18.244.138.116:443 | aax.amazon-adsystem.com | tcp |
| IE | 52.212.121.90:443 | ap.lijit.com | tcp |
| IE | 52.208.45.33:443 | ad.360yield.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| GB | 173.222.211.58:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| FR | 142.250.179.98:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| GB | 74.125.71.154:443 | stats.g.doubleclick.net | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| FR | 216.58.213.78:443 | ampcid.google.com | tcp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| US | 8.8.8.8:53 | ag.gbc.criteo.com | udp |
| US | 8.8.8.8:53 | gem.gbc.criteo.com | udp |
| NL | 185.235.87.225:443 | ag.gbc.criteo.com | tcp |
| NL | 185.235.87.76:443 | gem.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| GB | 74.125.71.154:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 27.233.138.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.143.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.203.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.74.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.104.51.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.121.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.45.208.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.139.4.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.21.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.87.235.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.87.235.185.in-addr.arpa | udp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 67.220.226.232:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| US | 8.8.8.8:53 | 232.226.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| DE | 157.90.211.246:443 | sync.richaudience.com | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| GB | 23.46.72.29:443 | contextual.media.net | tcp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| GB | 184.26.56.245:443 | ads.pubmatic.com | tcp |
| US | 151.101.193.108:443 | acdn.adnxs.com | tcp |
| DE | 157.90.211.246:443 | sync.richaudience.com | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| GB | 92.123.140.19:443 | player.aniview.com | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| FR | 91.134.110.133:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 3.222.152.35:443 | api-2-0.spot.im | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| NL | 198.47.127.18:443 | image8.pubmatic.com | tcp |
| IE | 52.212.66.79:443 | match.prod.bidr.io | tcp |
| US | 52.6.202.249:443 | sync.srv.stackadapt.com | tcp |
| GB | 92.123.140.19:443 | player.aniview.com | tcp |
| FR | 91.134.110.133:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 29.72.46.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 245.56.26.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 3.222.152.35:443 | api-2-0.spot.im | tcp |
| IE | 52.49.168.145:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 172.111.38.86:443 | tracker.open-adsyield.com | tcp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 172.240.45.78:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| GB | 108.156.39.69:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 192.132.33.68:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| DE | 51.89.9.251:443 | onetag-sys.com | tcp |
| GB | 2.22.101.110:443 | secure-assets.rubiconproject.com | tcp |
| US | 67.202.105.23:443 | ssc-cms.33across.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| GB | 23.46.73.76:443 | eus.rubiconproject.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| DE | 51.89.9.251:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | spl.zeotap.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 172.67.40.173:443 | spl.zeotap.com | tcp |
| NL | 89.149.193.84:443 | ssbsync-global.smartadserver.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.131.71.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.66.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.202.6.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.110.134.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.168.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.152.222.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.39.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.101.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 23.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.73.46.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| US | 80.77.87.162:443 | cs.admanmedia.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 52.46.143.56:443 | s.amazon-adsystem.com | tcp |
| FR | 142.250.75.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| NL | 89.149.192.74:443 | rtb-csync.smartadserver.com | tcp |
| US | 216.200.232.253:443 | sync.mathtag.com | tcp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 148.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.143.46.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.232.200.216.in-addr.arpa | udp |
| DK | 37.157.6.231:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | cdn-download.avgbrowser.com | udp |
| GB | 92.123.142.201:443 | cdn-download.avgbrowser.com | tcp |
| GB | 92.123.142.201:443 | cdn-download.avgbrowser.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | 231.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| US | 54.175.57.209:443 | cs-server-s2s.yellowblue.io | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 54.175.57.209:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 8.8.8.8:53 | 246.211.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.57.175.54.in-addr.arpa | udp |
| GB | 92.123.142.136:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | www.rarlab.com | udp |
| DE | 51.195.68.162:443 | www.rarlab.com | tcp |
| DE | 51.195.68.162:443 | www.rarlab.com | tcp |
| US | 8.8.8.8:53 | 162.68.195.51.in-addr.arpa | udp |
| DE | 51.195.68.162:443 | www.rarlab.com | tcp |
Files
\??\pipe\crashpad_1036_LYFSAXTRGAYZIYTO
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 7438bccb303d78e8a0733035a7de65d5 |
| SHA1 | bbb199f7c43fc18ab12ed7ca999a287446686616 |
| SHA256 | ca4ab9c5d6b1c154d7cd611f9b8ce5c5390f74915e29095dc0255c7120ef7350 |
| SHA512 | 13ca22d7b75d8165fb331b5d45810d7cd631dd40de3420eba559b6d27a13a114482647d05af17aa642bd6dd9ee1ac57b3ef0f047c56d30cee9887d258e97b3ff |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | b67e00ddd3437cb2844a304d396ccfea |
| SHA1 | 1942504a5f2c7b229562abfe9be33f20ef0f7ab5 |
| SHA256 | 4ef90eb5f9b7a617e3b716beeebecd375d3570a147e54964b981832da985bcc1 |
| SHA512 | 94c30fa399f14bda05512c7762393635afb40d05b331d4eb3c7da3bafcabd922415b8f597ef74ed7147207de1a111704e5ab29455b137c0daf0e7f6d57bf7bdd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c7de774eccc77d78296114936c8f1535 |
| SHA1 | 61e35323cc3ec75f8c1a069cd3a0890a309d6499 |
| SHA256 | 7bf2c5e55bbc10293bec5e21d8ec0e5a332e6f7c8f111ba5f04e084f18bda495 |
| SHA512 | 14840e567b4c7affc4db2f8c920a1b3c1a04761db21e7155b7354fa24574669b986bc3e9bed38b1f45256fd65f0b7a1ec29b199c544e708b4854655b1a91a642 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 65ea97a35c8a1ce8cecd068dcc1d73dd |
| SHA1 | 88040fd6efc8ab047fc37557da94284e1ca95c63 |
| SHA256 | 2490e1d3f56792c4f4c29670fa92c09ebac6b9a65ebf5df16c350abfd4a1878c |
| SHA512 | 33c4813152cb98052caa2f1137dbd3216d8d19ee5f12160c7fc196332da39901b8e0b03b6a4aa7017eb47b3c99ec448757f17f7f32a74aad2cc3440781b7cc08 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ad0402203c1ba1f64499bae6682e242c |
| SHA1 | 71939ba686020864252eb2fe96f644bfa44437b8 |
| SHA256 | b670727759f45ac425af8ac49137d71b077b52e6ec1964fbebcde692d8213f5a |
| SHA512 | 523f564182ac43d3254df77dab29347935cb426036c799385526e161ee942aff8deb9a41a9e77d6651bfe43223d960edf8faf76a442bf144519569a0281139ed |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 6d8b7bcd7fcc09706a30a8e1c8acc0ac |
| SHA1 | b9b238419bd55099239e18141cb1b34c2795616f |
| SHA256 | e219cb4a3d5bd49fbeae8cb037a17ed5cd14589849312c7e93e220deb5375ac4 |
| SHA512 | 17ab23dbbfd33b45c049f68167b31e4b137073ccac550235ecb1e31a77535242677aa598e9043c74c6cd6150b17b276fd504c819bdc394d3d03acfff43e1f262 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3474e3cf9c9e9aff8f3e4847bf415c51 |
| SHA1 | 93b6e487b8be4d4bba2d655ea8795d5d91edf426 |
| SHA256 | a5d905cc8f08fafc8c5220f1bbdb4242b067e5a0157984666e9d7035e944b66f |
| SHA512 | 1008e76aa1a1264463682b7d90c1e9396dd2ac73e7bda38c782817dbd41fb9ef3321250e3b29d2802bdd1d8223c87a1e676ee27c032af911fb39db8edb9d51d1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 8c395be70f84cfabddf9733728cafe12 |
| SHA1 | 48458358b9b5ca62bfc3c27c0a68aab28c620f22 |
| SHA256 | 9efcf0bfba304904c34ea5ea9801420acbd273c73ff04adee2ad76a2a7c6f4d9 |
| SHA512 | 317f0f763dbc9c069bc3c8c7374a6a7f0311825ffdb93203dc5a36d2b419d8e6e3e58293cad54d023550525067d9819d75e01731cb73cb7f656596a53eb01d3c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\0a65e11b-ebd3-4f23-941c-2cc3afd7820a.tmp
| MD5 | f0ebdb3d788869d7119fc0a5e42f3e62 |
| SHA1 | 5de166050c9c787c7d93b75006b87a15fc23b7d6 |
| SHA256 | 106c7f1bfe43923aa94005e7f859837a5668232ae182e87f2f533365a935f471 |
| SHA512 | 7412d8a8693eb01e460aebe81955bacdbf39d706ce601432aaefa707cd7a56d915be980262a19cf0bb83adff68a06180fe23e3b6da48d22ed359fb8c0563fdce |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2b7a26bf35654ba91cb4eac50d24281a |
| SHA1 | e6b96288f9b6b0b61c9c9f96e5cf01294bc253ba |
| SHA256 | 55c2007aab3f7504eae397db696d6e25f4c31c02bf3d44c72a42d1b779b70836 |
| SHA512 | cc0edccee76060f7d78900963da3bf07d3e89d6a6a13a1413f07692d89b8d54cde95808140b9404f2c109c0322698e47aeacdabbad5089986f7308a35a5b2770 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 58faf13e2b6997b813abcc7053e32f01 |
| SHA1 | 32b278b1a1a9eed7a6474fc0ae0638c27c67ad2e |
| SHA256 | 9d20ed1958b809d1e0ba87542df23f3e3a7c63e0c38e98441a04ef92e8667188 |
| SHA512 | ec7a0e81047617a4bec81ac1c5983821a9b5050191a49f1a967081e3d6a9631a9a742573cd90877719283c81ba84ce06f8509b49bca98d50a6ad0930ad11c1c1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000c
| MD5 | 2257803a7e34c3abd90ec6d41fd76a5a |
| SHA1 | f7a32e6635d8513f74bd225f55d867ea56ae4803 |
| SHA256 | af23860fb3a448f2cc6107680078402555a345eb45bc5efb750f541fe5d7c174 |
| SHA512 | e9f4dc90d0829885f08879e868aa62041150b500f62682fc108da258eee26ad9509dcbf6e8a55f2d0bdba7aa9118dd149a70a7d851820d4ea683db7808c48540 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 8cc472a8fcaf6d01d39d5866a937dde7 |
| SHA1 | 277d56d11e5f2352ca52d617434e724e496d2c85 |
| SHA256 | 1923253625725d4dca6635d16321e1b05fcdaa7e957c4e00dc741a7c11728517 |
| SHA512 | c649ad1c31e8bfa0e82abe48a831dbbad13c2ab708da5b9b6c2384ad6e1e1b753156dfefca6d27305c8b8271bcae540d6157f5e9767c327579f275f201b98c71 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6bae85f07eecc98417adb845e370f46b |
| SHA1 | ddd85077d62c05610184a062a07262e9c9c7d7a1 |
| SHA256 | 8251d1dccf8b951bfc1e26a1fcc03b36e52925083f8a543845f4f6b23d790cbd |
| SHA512 | 833854c86223adaaa16d8380dbc1354465ba52869e97e18804906ee5275f4c490e19f4e45e8fde47bc8aca2beb9924725aedb02e2a2fe49fbb853fd89cdcf997 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 3aa704d5055080b9a51b3474e394e83e |
| SHA1 | 75db7a26e36d548a63f09bf5cc7762ae393c8ec1 |
| SHA256 | 722ecee419e6b29ac1d7f6320c68f0495533af974b79caa8d18b93a23ef2e333 |
| SHA512 | 582cd179ac6886068861700aaed370986a688300a8a0b6c86c433809fc262b2260913af2bb9c1ebee8e9c96204e8c8aa91a7ee62b06092cb45b01b381eaef2d1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 7ba2805612e313c37cc087ec6f673d96 |
| SHA1 | 9a5f8325af8fd2da66a13c8b29054b13a9587222 |
| SHA256 | b921952bbaa39a0c9875dfeaa8ea398bb03b4ada23e212faed22ca42973a9758 |
| SHA512 | 39f833a6dde790aa57ffa4f2851a058026bffe574bf4e2dbed143771781c24208e408b2752dc53d04a25c794e64ff54b57d2425e3cc67986e9d943136eaf8a9d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a5bf4fb7b0b1ae407c1643c8c7d47023 |
| SHA1 | 1a82cfa1cde823a448d527a6fc9744b60bad9926 |
| SHA256 | 3acbb5ac41b4923c4df462e8f4d686e52932204940a936c5dafbe37f28c6b377 |
| SHA512 | 996bda615cde613dd7b41688dd5db5047c5bb2c4cad18c1a59cf3c4ecb1a2b3cd8196263913e487e96c55c4b95b15c0a4253a61c8e8809f71b64be908809de75 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3969f8cf4dbeb68d9ebb20446dedf73c |
| SHA1 | 23f0ef410cd3e3eae0f8171bb6146ae687b6cfce |
| SHA256 | d0c1aa7000b25bd93d5f4e7d8489b3461c1c7de94edad6ab16ced5d45c085976 |
| SHA512 | 724e193fd4efac2256b966994eef95f6bcc12dd1f6a7b0b0220b2f41ffe4994ee46302bbe3b3c72ba023b8b0fa22b5ad5d6722f2b340fa9f453a4fbe764ce3a3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | c594a826934b9505d591d0f7a7df80b7 |
| SHA1 | c04b8637e686f71f3fc46a29a86346ba9b04ae18 |
| SHA256 | e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610 |
| SHA512 | 04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e12d226c15467d8fdac964422fc33c68 |
| SHA1 | 2284ba54aa65bca1776b35df9eb6a4390eef00fc |
| SHA256 | dcbd8de8745da3f0c10652baf6a155d5faf466324f813dee18afb47e8eefe819 |
| SHA512 | 3d0a369e35ce3ddd36629ccd9c8610e36f1bd8a449935b64a60901c0d2630aa6ebf42ada93e516b6d6989d158bcf4ee23c69a5fab7dc2109704e1f9137ae141a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\a04d3f01-33f8-4044-aafe-a1c2d1c1bece.tmp
| MD5 | 7c34f6c8b6a025c3303f59512cad5d31 |
| SHA1 | 14edfa5769a2530791b86ed0ad0094ac55a2ae18 |
| SHA256 | 719e3d76eebf48a6bff1fda419afa37b073fdc57b6cc086fceaa8a043055705b |
| SHA512 | 4f345a6372f2526157021beb8693802667ad0c45899a34f13e6540bf58e0263275e174cc5a8e116cc1b9488e120cf7ac0c10b52c05a69ebf7b9ccf27d95dc2bc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 983cbc1f706a155d63496ebc4d66515e |
| SHA1 | 223d0071718b80cad9239e58c5e8e64df6e2a2fe |
| SHA256 | cc34b8f8e3f4bfe4c9a227d88f56ea2dd276ca3ac81df622ff5e9a8ec46b951c |
| SHA512 | d9cf2ca46d9379902730c81e615a3eb694873ffd535c6bb3ded2dc97cdbbfb71051ab11a07754ed6f610f04285605b702b5a48a6cfda3ee3287230c41c9c45cd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 157b7c7c10e51461493c8bbc08008063 |
| SHA1 | e91afd4e296d14d025783f199808eed871008142 |
| SHA256 | 9213693814844cfe34e95c2b96668059706f01c150da6e1e5b83e880fa3aa99d |
| SHA512 | 1250a5384e2bdf1aab5c00fe133403106fd7f5fc0c81c5f91f46f687fdde98f6d430f4c1de93cbd8876572d6daa7a3c36c0edecc33cf4b52579eae05e5291270 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4f910d84aca43cbfccd77bb6a1286e97 |
| SHA1 | 907e6eae26fda1fcab843ee297c62dd30d3c247d |
| SHA256 | 0458044c2cb3ce264a9c735f3c4da70282257e9e7a31088ea8b5322faa53468c |
| SHA512 | cc7c6b2cbec89264cac91a64aa0fb34eec8fba42e27dbfad00a1426447009e90d645cbcc339f61a51366b1b397c28881c0e336aea1f61a2121b57a0109f65bb1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9d303020ac84e9a82adf018a1838a2e2 |
| SHA1 | 322cbcfd104cd03891f60177381144797d42b551 |
| SHA256 | 660ec379e189c785e3ba1b646af02244ddfe778a06d38db6ef12951e4f978e9c |
| SHA512 | aca6dedb745cad16c25d01c5cb984ffd0f739bf8114b2c1e3ee2f1e1599e9343cc8149c74763e94360726faf51a4f0d40f9dca5aa32c40bee21a05b927521f15 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b7cb6f744de51ec2bf21c91d93082af3 |
| SHA1 | a14a5ddd96eb1b97091bd4fb6ed44bac262a3ce1 |
| SHA256 | 9eb9eac89eb8e46990d8ab0fc20375a9c0b05fcdb63680e4fab1f7beae09bf23 |
| SHA512 | ff5832fc6f69fab806dcc72dc118fa4e8d578fe67037cce1eab470781d550f717ff43e80aed7b915033b140b988d15af3ae8117c69ce720f8b2a022634c60279 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 5dc01b2b97c9e14e6fced70ce084e6bb |
| SHA1 | 18c8fa62788849cd3aa83328f87ffe89888cdf08 |
| SHA256 | a426579d8f05427584ac26dc20ce6c60509844440665bfcbe7abec2b014a59bb |
| SHA512 | f29c8034ac0450e6a58fa6290e2b9d551c5afe4d18b31f8d32fd63b3a1403ca8eae6c0e21e7257cdbff0811bd81167c90db817997c6f9c38e03739b58ef22732 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | bd3091ab16defc334b0ea34d565a6d9e |
| SHA1 | 7f11f1bb6ed3ba9b369398dce61525fcd7bb2a1e |
| SHA256 | 04e3a16a7ac1c7109a59ebda4eb71364f4a85e2a58a8a6d81bbf697780aa2313 |
| SHA512 | 1331bc64ed9c929423878be0d8c8c4455680a774889cdca52e7d0b7c4bb12865e9daac4d9ed314218cf50fd019db3b3291cf98f9b0c424a3f2db4ae6144291c9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 19bc520aa6c5f6ba2cdda10c09d5165b |
| SHA1 | ba741ac23a45cbdeb4b846d9b8b7d25ce6e391bd |
| SHA256 | 9c7e4a65a9c85508f3b4b281d43bf50b6a2dae39f60c29ef22491aa9f3fe1973 |
| SHA512 | a369c488127663045d5dec73b9d3cda2a08a5c597f3e80561519d282a46ba0b0eab0068ca7d625ddb036ecdc3b1b88ddd44865f4e125dd626e61c3a44840cb53 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | de2d7c362656ebc4786c76809ff1a638 |
| SHA1 | e0bc21780068dba9bd3cdac3c35cd86961cc9beb |
| SHA256 | 54cb4dec020849661199e378695c7dcfa042333cd396f2837296c86a51f263ce |
| SHA512 | 91aa3b966db29bb92207aff539525e6448a9e23ee661901c73b6c27f3b5f78ad67eb3f8fe6931cac20305eb7b05d6dc9c0cc5b91b1f2a1bd44150f248d459e0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3bfe9a7bde51c6e231f7b93e22178afa |
| SHA1 | 61730acbdc4d00f036bc5e2cf4a04454914fb5a6 |
| SHA256 | c5a7768a4223224e47238178b3a39f4452b06594216981ca27a6c394ef324fc8 |
| SHA512 | c7d02d8a32f937792aeefeeb6b99ac8fc69c49d74d41f59eda2635b79391afdbf4bd3be7fb60424ba4d0e4f9bd9f006b9cc4e65ff8da92877bebace08d99ec42 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 0b15410b699459b0b5579efe5a951f80 |
| SHA1 | 5da5b58a953af59c7129e3e5c91319d1e7708f58 |
| SHA256 | 25e9d0b6a593e4589b7c5ed1c4c9e9bd4f59610d0eaa099a2ec5a3700a08fa8d |
| SHA512 | 5815a1f0430a7328b98f597dcb8a81df20f680334862b788270d9feb9503277d0b3f9f54aa5080abdf233d3bdf39ce235aa49c689774a47f4b081d6404f5a2e9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe5a2a6d.TMP
| MD5 | 301c524199e73cab91eebafafe7c0ef9 |
| SHA1 | fad294e39a1c62ec542f352da98e7eeebea8e518 |
| SHA256 | 015fb0ed7b6ddf349bb74dd9d7288521e52240ca78bb5a3ed66c7840d4e6f29d |
| SHA512 | 42b51123f18ec5d18ef4759e5c27c42ae18b141fac9e3132b248bada9b47cd4659ac666af29e834fe51c8e171e234cf69e4e66280b0254956136485d38183775 |
C:\Users\Admin\Downloads\Unconfirmed 126587.crdownload
| MD5 | 0dc93e1f58cbb736598ce7fa7ecefa33 |
| SHA1 | 6e539aab5faf7d4ce044c2905a9c27d4393bae30 |
| SHA256 | 4ec941f22985fee21d2f9d2ae590d5dafebed9a4cf55272b688afe472d454d36 |
| SHA512 | 73617da787e51609ee779a12fb75fb9eac6ed6e99fd1f4c5c02ff18109747de91a791b1a389434edfe8b96e5b40340f986b8f7b88eac3a330b683dec565a7eff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ac246128ce87415a5f8c3187e7c11948 |
| SHA1 | 79ea59ec9d5354206755256fa28d69e658eeb47f |
| SHA256 | 4a3b54f60d5a654f78540d2cc8dbc2d8e2cf11069f10898b2947e2cd68ced20f |
| SHA512 | 3e54bd477b5d9e28e8dfb3ecba7b5b939770f479afc17f3bf2665f8ff969668c7eb2b26338c24bef36cf0cb08da016f9f688777b11a3f857d3d5f66ccea5dd3c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004
| MD5 | d6b36c7d4b06f140f860ddc91a4c659c |
| SHA1 | ccf16571637b8d3e4c9423688c5bd06167bfb9e9 |
| SHA256 | 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92 |
| SHA512 | 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | ed124bdf39bbd5902bd2529a0a4114ea |
| SHA1 | b7dd9d364099ccd4e09fd45f4180d38df6590524 |
| SHA256 | 48232550940208c572ebe487aa64ddee26e304ba3e310407e1fc31a5c9deed44 |
| SHA512 | c4d180292afa484ef9556d15db1d3850416a85ad581f6f4d5eb66654991fa90f414029b4ce13ed142271a585b46b3e53701735ee3e0f45a78b67baa9122ba532 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007
| MD5 | 76a3f1e9a452564e0f8dce6c0ee111e8 |
| SHA1 | 11c3d925cbc1a52d53584fd8606f8f713aa59114 |
| SHA256 | 381396157ed5e8021dd8e660142b35eb71a63aecd33062a1103ce9c709c7632c |
| SHA512 | a1156a907649d6f2c3f7256405d9d5c62a626b8d4cd717fa2f29d2fbe91092a2b3fdd0716f8f31e59708fe12274bc2dea6c9ae6a413ea290e70ddf921fe7f274 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006
| MD5 | 710d7637cc7e21b62fd3efe6aba1fd27 |
| SHA1 | 8645d6b137064c7b38e10c736724e17787db6cf3 |
| SHA256 | c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b |
| SHA512 | 19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005
| MD5 | 60f8cd04587a51e31b51d1570d6f889a |
| SHA1 | 88574c41d0ab81721b275252464da5c7927a4835 |
| SHA256 | 27cb4390e32a97375dd4987ae000406933bceba5199f17893711e782333b81cb |
| SHA512 | 84c12448ac55dd819749fef9be9919111a3df4bc51e66d2fa9f7376c11c101ed1349cb36aa119aa873cdd6c0c91027e201fbe23c2c83b89bc900a4d9077bcc52 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008
| MD5 | b38fbbd0b5c8e8b4452b33d6f85df7dc |
| SHA1 | 386ba241790252df01a6a028b3238de2f995a559 |
| SHA256 | b18b9eb934a5b3b81b16c66ec3ec8e8fecdb3d43550ce050eb2523aabc08b9cd |
| SHA512 | 546ca9fb302bf28e3a178e798dd6b80c91cba71d0467257b8ed42e4f845aa6ecb858f718aac1e0865b791d4ecf41f1239081847c75c6fb3e9afd242d3704ad16 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a
| MD5 | 038c1f469deb6932520d09a340856ebc |
| SHA1 | 8b361a8c0489b69e9ef4e132e36f20c161c5ec1e |
| SHA256 | 5fafae77cfdc093baea4dd31485ced7dc4ab8e734311b3c2aaac1dc2ed95f451 |
| SHA512 | fc3123f11323a9f18f5e1bb31c61fa229e0de8b6d07bb01b220605cfd9ba499ed63e76be0b7146e096412cc94486bdba0ee102982b38b258958c6327fc6bb6c8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a72063c4e45b3e8321b20b6d1bb4d948 |
| SHA1 | 1c42abd45e9f66bb668cd64b14da425b354839de |
| SHA256 | 53a5049318c1b707c3cb7240f9efb95173be0b25be7400c9d2682a3a06862e85 |
| SHA512 | 5382e081d70f12722b1a27193c36d41c78873ff6b2de24d6ea096d2aedd223ff7f7edb0b7325a5b83280a75ed1bfce76f4841c03af8d314ad4bce96c4a8d9e3d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3d856fa4d74dbb1007751617af75c936 |
| SHA1 | 7f5eef8fe8f7667d7aaec5b575705c907a5d0b31 |
| SHA256 | 486626456571d0930766b550f476329c9030af13f166a9ff393a9a8d966f234f |
| SHA512 | c86ada9b7bfd8f56d74dff8c4c14486909cbbe8cc0e19dc509caf54afa40bc441a31f7263488873ddf74fbf43ade970b290411f650cf8f77807d20a5cceec6f5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | df0375be76ce6a229196dbe395dd331c |
| SHA1 | dd0f27e2d2335c4d6f3a8535979bc619ba88a57e |
| SHA256 | 69eccd2ea5fc8e971a37dfd8fe111df5462aab8e37e4df56ba9e2f52f1d4e818 |
| SHA512 | 2a29213afc4c7dd730d1ee05dd9b5daca69b6c71b10b9eb069c5bf26de5336e1248444d621c5bcb5da22e51288282aff6944450117c0cc4aa4b66cd7b418236a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | ecdca178f680c9a9322c7d0359d6497f |
| SHA1 | 640a635c7e798c8338103c89fbb2d05528070632 |
| SHA256 | f2f3dd4bf377efa0ca94c374e705105bd585cd98c92ac7ea2f35332c162f5138 |
| SHA512 | 6857f85fa782011506c654ad994286eed9b914ac7fc8efecaf157f134349415f68d03a29466191499b671a40b63ee9b9dc273a7e3cbc5c42d2bc7bb41f41a197 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 2974e562165e41b0804e13a073a908d6 |
| SHA1 | 4c0d40dcb7773808c39b5fe3064b3c0c63c8fcbf |
| SHA256 | b1f15c3fe80b105dc847fa5fc908dd171d91d11937dc3dc887ea989b7cdc2045 |
| SHA512 | daf9ed538181096ba6504c9acde01c163d5adfc60bc4c9ff9eda98c28c50d760ba4556f13d5da55931cb50264cd66ea20f698605adfd87768b446dbf16f12571 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | bf1c17008f6f877b86be7339084c0d95 |
| SHA1 | bc0fc212c13697bfaf8f92754ec310e92fd45894 |
| SHA256 | c14790a9ad9ad203b8a0ea9b0f4e2adcc97addb175746217431df874ac83acf3 |
| SHA512 | be0fe0224e6ec18a175ea2ecdc84833c64a11d8d0808221f56e4114a7739e390b010927421b6c41568ef2c31857e9dee3d03a4288a609f1e3199f14ae24b6d62 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 520541fbb0ef4713ad7771be06c39a49 |
| SHA1 | 0f10f1e0254b98923209b7a39221cd0fea946bf4 |
| SHA256 | a01cfec598597cd3fbeebb466796fe4742e8a0b95499c84c2fdaccdc280833d4 |
| SHA512 | bfe234f6fd67a8952807aca208320a14ac2950e85891622788195b6454f4b7284a95bf1babb12ce40b77b2f7a1526c51479f5b1458c9733c9d6b07796e67feb9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | c107f954dd0e377e7b5e5660375e380a |
| SHA1 | 8b363600a40fac9823a08394bd69842999f3b9ad |
| SHA256 | 8ba2df5666510c9019a1b8bc091dbfd249c675cc6a3b958658c159e30ed0cb1b |
| SHA512 | b2a39d0ecf33b1dee944989eabf361b26722c1ceb95708dc7547d7da22c149efbdbba1c1edc956fafd11363c10322ad9defdfd191e549deb16c910c8be5dd9d3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8fad527c06d4337ff1fdf665f0a1f89a |
| SHA1 | 7fa402203d4b5c28fa96ddbdfd050626751c7a3c |
| SHA256 | 87733c520008c171463ddf820159008265908eee3e2c8abf1d2d56eaccc72f9c |
| SHA512 | ef0dbbddec2459677dfd58e0b9d690bdf578909963d2e82d66e131fa03cd4690bd426f6d000fed770b83fd1f8af3f5b677f9cfb227ad201173e7c00eb85c4617 |
C:\Users\Admin\Downloads\winrar-x64-701.exe
| MD5 | 3a2f16a044d8f6d2f9443dff6bd1c7d4 |
| SHA1 | 48c6c0450af803b72a0caa7d5e3863c3f0240ef1 |
| SHA256 | 31f7ba37180f820313b2d32e76252344598409cb932109dd84a071cd58b64aa6 |
| SHA512 | 61daee2ce82c3b8e79f7598a79d72e337220ced7607e3ed878a3059ac03257542147dbd377e902cc95f04324e2fb7c5e07d1410f0a1815d5a05c5320e5715ef6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 705c0a30702b964a7469810afefe5d22 |
| SHA1 | 85feed094bb250da1fac7138f2a181a3f8800dc4 |
| SHA256 | 0979762d9b998c7f475783545da4baf75b13ee95ad816ed65490149252850dd9 |
| SHA512 | fd48005ad31694a545aae1b5a4f8f23c8576c5ac3e12c5b0c6f9b0e7dc0935856f44eef24f6e0ce741e01f1a44c392f4acdc9eebbf5f7310afe007fe88b76cf2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 12498acea0ba5b894fc2a02d8a8da785 |
| SHA1 | a007a5acb96999759a2f6d35d70fac45d03ef7fc |
| SHA256 | 2d11e33deaa94b861bdaa7f5db35cb8a088690c3b2addaf856211dc31fe8f624 |
| SHA512 | d62cf0d8dbe8ce5aca45f2a61bf4ae2b529370f3222e480941511416a6b22ae0a61a09858a0662cd35405c9732ebce8cc55f1f069838d263ac38765c3e76b562 |