Analysis Overview
Threat Level: Likely malicious
The file https://gacha-life.en.softonic.com/ was found to be: Likely malicious.
Malicious Activity Summary
Downloads MZ/PE file
Manipulates Digital Signatures
Possible privilege escalation attempt
Event Triggered Execution: Component Object Model Hijacking
Loads dropped DLL
Modifies file permissions
Executes dropped EXE
Mark of the Web detected: This indicates that the page was originally saved or cloned.
Enumerates connected drives
Drops file in Windows directory
Enumerates physical storage devices
Browser Information Discovery
System Location Discovery: System Language Discovery
Runs net.exe
Modifies data under HKEY_USERS
Suspicious use of SetWindowsHookEx
Enumerates system info in registry
Modifies registry class
Suspicious behavior: EnumeratesProcesses
Suspicious use of AdjustPrivilegeToken
Suspicious use of SendNotifyMessage
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of WriteProcessMemory
Suspicious use of FindShellTrayWindow
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-10-14 14:13
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-10-14 14:13
Reported
2024-10-14 14:16
Platform
win10v2004-20241007-en
Max time kernel
150s
Max time network
146s
Command Line
Signatures
Downloads MZ/PE file
Manipulates Digital Signatures
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$Function = "WintrustCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$Function = "SoftpubLoadMessage" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubCleanup" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}\FuncName = "CryptSIPCreateIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\DiagnosticPolicy\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubDumpStructure" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.12\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{189A3842-3041-11D1-85E1-00C04FC295EE}\$Function = "WintrustCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Initialization\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$Function = "SoftpubInitialize" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$Function = "GenericChainFinalProv" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.20\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2007\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2011\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2003\FuncName = "WVTAsn1SpcIndirectDataContentDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{DE351A43-8E59-11D0-8C47-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.2\CallbackAllocFunction = "SoftpubLoadDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\2.16.840.1.113730.4.1\CallbackFreeFunction = "SoftpubFreeDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.16.4\FuncName = "DecodeRecipientID" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Usages\1.3.6.1.5.5.7.3.1\CallbackFreeFunction = "SoftpubFreeDefUsageCallData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2001\FuncName = "WVTAsn1SpcMinimalCriteriaInfoDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.12.2.2\FuncName = "WVTAsn1CatMemberInfoEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{7801EBD0-CF4B-11D0-851F-0060979387EA}\$DLL = "Cryptdlg.dll" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{C689AABA-8E78-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPVerifyIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{7801EBD0-CF4B-11D0-851F-0060979387EA}\$Function = "CertTrustCertPolicy" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2005\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2012\FuncName = "WVTAsn1SealingTimestampAttributeEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2002\FuncName = "WVTAsn1SpcFinancialCriteriaInfoDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2005\FuncName = "WVTAsn1SpcLinkDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "WintrustCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "HTTPSFinalProv" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{573E31F8-AABA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubCleanup" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.30\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.4.2\FuncName = "WVTAsn1IntentToSealAttributeEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{C6B2E8D0-E005-11CF-A134-00C04FD7BF43}\$Function = "SoftpubCheckCert" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllVerifyIndirectData\{C689AAB8-8E78-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPVerifyIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2011\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{DE351A43-8E59-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPCreateIndirectData" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllCreateIndirectData\{9BA61D3F-E73A-11D0-8CD2-00C04FC295EE}\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\CertCheck\{00AAC56B-CD44-11D0-8CC2-00C04FC295EE}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Message\{FC451C16-AC75-11D1-B4B8-00C04FB66EA0}\$Function = "SoftpubLoadMessage" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\FinalPolicy\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$Function = "SoftpubAuthenticode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.28\FuncName = "WVTAsn1SpcLinkEncode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\1.3.6.1.4.1.311.2.1.25\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\1.3.6.1.4.1.311.2.1.11\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Cleanup\{64B9D180-8DA2-11CF-8736-00AA00A485EB}\$DLL = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Certificate\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "WintrustCertificateTrust" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 0\CryptSIPDllGetSignedDataMsg\{DE351A43-8E59-11D0-8C47-00C04FC295EE}\FuncName = "CryptSIPGetSignedDataMsg" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\Providers\Trust\Signature\{573E31F8-DDBA-11D0-8CCB-00C04FC295EE}\$Function = "SoftpubLoadSignature" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllEncodeObject\#2004\Dll = "WINTRUST.DLL" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Cryptography\OID\EncodingType 1\CryptDllDecodeObject\#2008\FuncName = "WVTAsn1SpcLinkDecode" | C:\Windows\SysWOW64\regsvr32.exe | N/A |
Possible privilege escalation attempt
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
Event Triggered Execution: Component Object Model Hijacking
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\takeown.exe | N/A |
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\F: | C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
| File opened (read-only) | \??\F: | C:\Windows\SysWOW64\takeown.exe | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\Logs\DISM\dism.log | C:\Windows\SysWOW64\dism.exe | N/A |
Browser Information Discovery
Enumerates physical storage devices
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\takeown.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\icacls.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\dism.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\net.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\icacls.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\net1.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\regsvr32.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Windows\SysWOW64\takeown.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133733888223540745" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020420-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020421-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020422-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020425-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020423-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{00020424-0000-0000-C000-000000000046} | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
Runs net.exe
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\LDPlayer.exe | N/A |
| N/A | N/A | F:\LDPlayer\LDPlayer9\dnrepairer.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://gacha-life.en.softonic.com/
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffb50facc40,0x7ffb50facc4c,0x7ffb50facc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1240,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1860 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2032,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2012 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2236,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2252 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3120,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3136 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3124,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3172 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4332,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4608 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4764,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4600 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4500,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4940,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4904 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5140,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4484 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5428,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5420 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5676,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5696 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5816,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5840 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5984,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5672 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=6152,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6008 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=6288,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=6476,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=6468,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6184 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=6492,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6716 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6740,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6856 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=6864,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7004 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=7140,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7132 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=7364,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6840 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=7372,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=7356,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7764,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7380 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=7936,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6876 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=8092,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8076 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=8212,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7912 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=8056,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8340 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=8108,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8464 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=5988,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8624 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=8596,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8756 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=8928,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8920 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=9264,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9312 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=9140,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=9568,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9496 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=9380,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8932 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=5296,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8908 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=9004,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9492 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=7480,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7516 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=7244,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7748 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=7456,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8088 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=6148,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7232 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --field-trial-handle=7900,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7632 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=5840,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=6996,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=5716,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6992 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=7640,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7644 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=5728,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7676 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=7700,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8836 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=7568,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6716 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=7600,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7292 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=7540,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6172 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=3244,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=5504,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3232 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=4788,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=3196,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4820 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=8784,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3780 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=5616,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=8172,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8164 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=5620,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6940 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=6876,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5384 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=7256,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8232 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=7952,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8408 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=8696,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8660 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=6080,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8648 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=6108,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9316 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=6048,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9132 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=7820,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5204 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=6680,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8312 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=8588,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8248 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=9912,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9932 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=5972,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=7488,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10080 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=4840,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8512 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=7748,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8220 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=8076,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=9500,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8972 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=9952,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4528 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=9520,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9572 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=6416,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3176 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=9376,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=7204,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7240 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=10288,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10256 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=6240,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10432 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=10604,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=10292,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10592 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --field-trial-handle=10576,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --field-trial-handle=4352,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --field-trial-handle=9616,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10156 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --field-trial-handle=10732,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10636 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --field-trial-handle=5400,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7948 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --field-trial-handle=9652,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5316 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --field-trial-handle=6056,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9632 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --field-trial-handle=9792,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9808 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --field-trial-handle=7968,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --field-trial-handle=8752,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --field-trial-handle=8616,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3260 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --field-trial-handle=3212,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8620 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --field-trial-handle=6980,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6320 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --field-trial-handle=6008,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7964 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --field-trial-handle=5208,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5160 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --field-trial-handle=7380,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --field-trial-handle=5448,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4872 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --field-trial-handle=3184,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6404 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --field-trial-handle=10124,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10180 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --field-trial-handle=10268,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8668 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --field-trial-handle=6900,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5752 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --field-trial-handle=5060,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --field-trial-handle=9308,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6560 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7408,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9948 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=10076,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5936 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=10168,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8660 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=5248,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4888 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6332,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11028 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --field-trial-handle=10176,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5780 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --field-trial-handle=4520,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9020 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=10596,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6840 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --field-trial-handle=4568,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9940 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --field-trial-handle=9412,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7828 /prefetch:1
C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe
"C:\Users\Admin\Downloads\LDPlayer9_ens_air.com.lunime.gachalife_25567197_ld.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=7548,i,4307897411205845426,12448337647241416329,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8180 /prefetch:8
F:\LDPlayer\LDPlayer9\LDPlayer.exe
"F:\LDPlayer\LDPlayer9\\LDPlayer.exe" -silence -downloader -openid=25567197 -language=en -path="F:\LDPlayer\LDPlayer9\"
F:\LDPlayer\LDPlayer9\dnrepairer.exe
"F:\LDPlayer\LDPlayer9\dnrepairer.exe" listener=852656
C:\Windows\SysWOW64\net.exe
"net" start cryptsvc
C:\Windows\SysWOW64\net1.exe
C:\Windows\system32\net1 start cryptsvc
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Softpub.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Wintrust.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"C:\Windows\system32\regsvr32" Initpki.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" dssenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" rsaenh.dll /s
C:\Windows\SysWOW64\regsvr32.exe
"regsvr32" cryptdlg.dll /s
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\vms" /r /d y
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\vms" /grant everyone:F /t
C:\Windows\SysWOW64\takeown.exe
"takeown" /f "F:\LDPlayer\LDPlayer9\\system.vmdk"
C:\Windows\SysWOW64\icacls.exe
"icacls" "F:\LDPlayer\LDPlayer9\\system.vmdk" /grant everyone:F /t
C:\Windows\SysWOW64\dism.exe
C:\Windows\system32\dism.exe /Online /English /Get-Features
C:\Users\Admin\AppData\Local\Temp\14B97795-482A-457E-A0A3-D048A8DF13CC\dismhost.exe
C:\Users\Admin\AppData\Local\Temp\14B97795-482A-457E-A0A3-D048A8DF13CC\dismhost.exe {EE3A50DE-F090-48BB-A32C-A0B2FC37B3DB}
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | gacha-life.en.softonic.com | udp |
| US | 151.101.1.91:443 | gacha-life.en.softonic.com | tcp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | rv-assets.softonic.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 151.101.129.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.129.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.129.91:443 | rv-assets.softonic.com | tcp |
| GB | 142.250.200.4:443 | www.google.com | tcp |
| CZ | 65.9.95.124:443 | sdk.privacy-center.org | tcp |
| US | 151.101.1.91:443 | rv-assets.softonic.com | tcp |
| US | 151.101.1.91:443 | rv-assets.softonic.com | tcp |
| US | 150.171.27.10:443 | bat.bing.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| CZ | 65.9.98.75:443 | c.amazon-adsystem.com | tcp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | udp |
| US | 151.101.193.91:443 | rv-assets.softonic.com | udp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | syndicatedsearch.goog | udp |
| GB | 142.250.200.10:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.187.206:443 | syndicatedsearch.goog | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| CZ | 65.9.95.124:443 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 124.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.27.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.98.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.200.250.142.in-addr.arpa | udp |
| US | 151.101.1.91:443 | articles-img.sftcdn.net | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | b.clarity.ms | udp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| CZ | 65.9.98.75:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | di-images.sftcdn.net | udp |
| CZ | 65.9.95.29:443 | config.aps.amazon-adsystem.com | tcp |
| GB | 142.250.179.251:443 | storage.googleapis.com | tcp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | 206.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.129.153.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.179.250.142.in-addr.arpa | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 150.171.28.10:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| US | 8.8.8.8:53 | cdn.btmessage.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.6.141:443 | cdn.btmessage.com | tcp |
| US | 8.8.8.8:53 | api.btmessage.com | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| US | 151.101.129.91:443 | di-images.sftcdn.net | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 13.107.21.237:443 | c.bing.com | tcp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.6.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.210.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | brightcombid.marphezis.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | shb.richaudience.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| CZ | 65.9.95.13:443 | api.privacy-center.org | tcp |
| GB | 142.250.187.206:443 | syndicatedsearch.goog | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| FR | 185.255.84.151:443 | hb-api.omnitagjs.com | tcp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| IE | 52.51.118.247:443 | ap.lijit.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| IE | 54.194.45.243:443 | ad.360yield.com | tcp |
| CZ | 65.9.9.197:443 | aax.amazon-adsystem.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| DE | 162.19.138.118:443 | id5-sync.com | tcp |
| IE | 99.80.212.73:443 | id.crwdcntrl.net | tcp |
| GB | 142.250.187.206:443 | syndicatedsearch.goog | tcp |
| DE | 162.19.138.118:443 | id5-sync.com | tcp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| GB | 216.58.201.98:443 | partner.googleadservices.com | tcp |
| US | 8.8.8.8:53 | f0847b5edef80e0ee5ce94700a137277.safeframe.googlesyndication.com | udp |
| GB | 142.250.180.1:443 | f0847b5edef80e0ee5ce94700a137277.safeframe.googlesyndication.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| CZ | 65.9.95.74:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.206:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | wct.softonic.com | udp |
| CZ | 65.9.95.13:443 | api.privacy-center.org | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | lexicon.33across.com | udp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 175.203.166.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | tcp |
| US | 8.8.8.8:53 | 197.9.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.241.63.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | 118.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.45.194.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 247.118.51.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.212.80.99.in-addr.arpa | udp |
| GB | 142.250.200.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.95.9.65.in-addr.arpa | udp |
| BE | 74.125.206.157:443 | stats.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| GB | 142.250.200.10:443 | content-autofill.googleapis.com | udp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ampcid.google.com | udp |
| GB | 142.250.187.195:443 | www.google.co.uk | tcp |
| GB | 142.250.187.195:443 | www.google.co.uk | tcp |
| GB | 142.250.187.195:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.4:443 | www.google.com | tcp |
| US | 104.26.3.63:443 | wct.softonic.com | tcp |
| BE | 74.125.206.157:443 | stats.g.doubleclick.net | udp |
| US | 104.26.6.141:443 | api.btmessage.com | tcp |
| GB | 142.250.200.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | dis.eu.criteo.com | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 225.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 51.193.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.206.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | ice.360yield.com | udp |
| IE | 34.242.255.180:443 | ice.360yield.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| IE | 34.248.113.108:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 52.94.223.37:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| IE | 54.77.128.14:443 | ce.lijit.com | tcp |
| GB | 142.250.187.206:443 | syndicatedsearch.goog | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.255.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.113.248.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.223.94.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.128.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| DE | 37.252.171.149:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| IE | 34.248.113.108:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | tcp |
| GB | 2.23.204.244:443 | ads.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| FR | 5.135.209.101:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | rtd-tm.everesttech.net | udp |
| IE | 52.51.118.247:443 | ap.lijit.com | tcp |
| US | 104.18.36.155:443 | ssum-sec.casalemedia.com | udp |
| US | 151.101.66.49:443 | rtd-tm.everesttech.net | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| US | 8.8.8.8:53 | match.deepintent.com | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| IE | 52.94.223.37:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | tcp |
| US | 54.157.162.225:443 | sync.srv.stackadapt.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| IE | 54.77.128.14:443 | ce.lijit.com | tcp |
| US | 169.197.150.8:443 | match.deepintent.com | tcp |
| US | 35.172.173.28:443 | sync.ipredictive.com | tcp |
| DE | 37.252.171.52:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | articles-images.sftcdn.net | udp |
| DK | 37.157.4.29:443 | c1.adform.net | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| IE | 52.212.210.168:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 151.101.1.91:443 | articles-images.sftcdn.net | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | 149.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 253.9.89.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.204.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.209.135.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.162.157.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.210.212.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 52.171.252.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.150.197.169.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 29.4.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.173.172.35.in-addr.arpa | udp |
| DK | 37.157.4.29:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | usersync.gumgum.com | udp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| GB | 216.58.212.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 104.18.38.76:443 | js-sec.indexww.com | tcp |
| GB | 2.17.4.21:443 | contextual.media.net | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| FR | 185.255.84.153:443 | visitor.omnitagjs.com | tcp |
| DE | 148.251.20.72:443 | sync.richaudience.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 35.244.159.8:443 | us-u.openx.net | udp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | cacerts.rapidssl.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| SE | 192.229.221.95:80 | cacerts.rapidssl.com | tcp |
| US | 8.8.8.8:53 | gw-iad-bid.ymmobi.com | udp |
| US | 47.253.61.56:443 | gw-iad-bid.ymmobi.com | tcp |
| US | 8.8.8.8:53 | tg.socdm.com | udp |
| US | 8.8.8.8:53 | creativecdn.com | udp |
| JP | 124.146.153.151:443 | tg.socdm.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| GB | 216.58.212.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | data.adsrvr.org | udp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | aorta.clickagy.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 98.82.158.241:443 | s.amazon-adsystem.com | tcp |
| US | 69.173.151.100:443 | pixel-us-east.rubiconproject.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 69.173.156.148:443 | pixel-eu.rubiconproject.com | tcp |
| US | 3.212.99.33:443 | aorta.clickagy.com | tcp |
| US | 8.8.8.8:53 | 1.15.210.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 8.8.8.8:53 | 108.136.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.4.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.20.251.148.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.158.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 255.126.248.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| JP | 124.146.153.151:443 | tg.socdm.com | tcp |
| CZ | 65.9.95.18:443 | s.ad.smaato.net | tcp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cr.frontend.weborama.fr | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | sync.serverbid.com | udp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| IE | 99.80.212.73:443 | sync.crwdcntrl.net | tcp |
| US | 104.22.50.98:443 | mwzeom.zeotap.com | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | pool.admedo.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| CZ | 65.9.95.20:443 | sync.serverbid.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 8.8.8.8:53 | dsum-sec.casalemedia.com | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| IE | 99.80.212.73:443 | sync.crwdcntrl.net | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | hbx.media.net | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 172.64.150.63:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| GB | 2.23.220.28:443 | hbx.media.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| BE | 35.206.140.87:443 | pool.admedo.com | tcp |
| GB | 23.215.239.190:443 | secure-assets.rubiconproject.com | tcp |
| GB | 216.58.201.102:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| DE | 51.89.9.253:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | c21lg-d.media.net | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| NL | 89.207.16.140:443 | medianet-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| GB | 2.17.5.216:443 | eus.rubiconproject.com | tcp |
| GB | 2.17.5.216:443 | eus.rubiconproject.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 54.157.162.225:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| US | 8.8.8.8:53 | ads.creative-serving.com | udp |
| US | 8.8.8.8:53 | cdn.indexww.com | udp |
| US | 72.44.60.116:443 | api-2-0.spot.im | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| IE | 54.74.199.198:443 | jadserve.postrelease.com | tcp |
| US | 54.147.159.241:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 172.64.150.63:443 | s.tribalfusion.com | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 63.215.202.169:443 | casale-match.dotomi.com | tcp |
| US | 151.101.66.49:443 | sync-tm.everesttech.net | tcp |
| US | 34.1.241.144:443 | csync.loopme.me | tcp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| NL | 35.214.241.248:443 | ads.creative-serving.com | tcp |
| IE | 34.242.255.180:443 | ice.360yield.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| GB | 2.19.117.107:443 | player.aniview.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.158.82.98.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.151.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.153.146.124.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.99.212.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.50.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 205.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 63.150.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.220.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.239.215.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.140.206.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.5.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.199.74.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.60.44.72.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.241.1.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.241.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.159.147.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| GB | 2.17.4.21:443 | contextual.media.net | udp |
| US | 8.8.8.8:53 | cs.media.net | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| NL | 35.214.241.248:443 | ads.creative-serving.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | inmobi-match.dotomi.com | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| DE | 54.93.73.143:443 | sonata-notifications.taptapnetworks.com | tcp |
| IE | 54.77.95.251:443 | pm.w55c.net | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | dsum.casalemedia.com | udp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| NL | 69.173.156.148:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | equativ-match.dotomi.com | udp |
| NL | 89.149.193.84:443 | ssbsync-global.smartadserver.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| NL | 63.215.202.140:443 | inmobi-match.dotomi.com | tcp |
| FR | 154.54.250.80:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 64.158.223.137:443 | equativ-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | rtb-csync.smartadserver.com | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| IE | 54.72.188.225:443 | cs.yellowblue.io | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 107.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.73.93.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.95.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.188.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| NL | 198.47.127.20:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| IE | 34.242.108.31:443 | ads.yieldmo.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| US | 8.8.8.8:53 | 20.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 31.108.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.119.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| NL | 89.207.16.204:443 | pubmatic-match.dotomi.com | tcp |
| BE | 35.206.140.87:443 | pool.admedo.com | udp |
| US | 8.8.8.8:53 | dsp-cookie.adfarm1.adition.com | udp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | b-code.liadm.com | udp |
| CZ | 65.9.95.104:443 | b-code.liadm.com | tcp |
| US | 8.8.8.8:53 | 204.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.210.82.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| GB | 142.250.179.226:443 | googleads.g.doubleclick.net | udp |
| GB | 163.70.151.21:443 | connect.facebook.net | udp |
| US | 8.8.8.8:53 | i.liadm.com | udp |
| US | 34.197.189.89:443 | i.liadm.com | tcp |
| US | 8.8.8.8:53 | 8876029.fls.doubleclick.net | udp |
| GB | 142.250.187.195:443 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | a6d9e9fa2ea28de6fda2f99bc93d62b2.safeframe.googlesyndication.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| GB | 172.217.169.6:443 | 8876029.fls.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 89.189.197.34.in-addr.arpa | udp |
| GB | 172.217.169.6:443 | 8876029.fls.doubleclick.net | udp |
| US | 8.8.8.8:53 | 104.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | live.rezync.com | udp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| CZ | 65.9.95.89:443 | live.rezync.com | tcp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| US | 34.197.189.89:443 | i.liadm.com | tcp |
| IE | 54.72.172.183:443 | dpm.demdex.net | tcp |
| US | 34.197.189.89:443 | i.liadm.com | tcp |
| US | 34.197.189.89:443 | i.liadm.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | en.softonic.com | udp |
| US | 151.101.193.91:443 | en.softonic.com | tcp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.172.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 89.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.151.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | idsync.rlcdn.com | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| DE | 148.251.20.72:443 | sync.richaudience.com | tcp |
| DE | 148.251.20.72:443 | sync.richaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| US | 35.244.174.68:443 | idsync.rlcdn.com | udp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 34.1.241.144:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | dsp.360yield.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| SE | 13.53.196.230:443 | d5p.de17a.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| IE | 34.241.212.115:443 | dsp.360yield.com | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 230.196.53.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.212.241.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.63.42.188.in-addr.arpa | udp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.1.241.144:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| IE | 52.215.155.11:443 | cm.adgrx.com | tcp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| FR | 141.94.161.190:443 | green.erne.co | tcp |
| US | 8.8.8.8:53 | matching.truffle.bid | udp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| FR | 54.38.113.2:443 | pixel-eu.onaudience.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DE | 23.88.86.2:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.155.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.161.94.141.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 34.1.241.144:443 | csync.loopme.me | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| US | 8.8.8.8:53 | 2.113.38.54.in-addr.arpa | udp |
| US | 151.101.193.91:443 | en.softonic.com | tcp |
| GB | 163.70.151.35:443 | www.facebook.com | udp |
| GB | 163.181.154.241:443 | leap.ldplayer.gg | tcp |
| US | 8.8.8.8:53 | www.ldplayer.net | udp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| GB | 163.181.154.244:443 | www.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 7b6744dcb1affaf12a1fee9d577c7bd9.safeframe.googlesyndication.com | udp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 52.94.223.37:443 | aax-eu.amazon-adsystem.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| IE | 52.94.223.37:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 241.154.181.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.154.181.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | js.adscale.de | udp |
| US | 35.244.193.51:443 | lexicon.33across.com | udp |
| CZ | 65.9.95.124:443 | js.adscale.de | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ih.adscale.de | udp |
| DE | 18.194.24.245:443 | ih.adscale.de | tcp |
| US | 8.8.8.8:53 | play-lh.googleusercontent.com | udp |
| US | 8.8.8.8:53 | cmp.setupcmp.com | udp |
| US | 8.8.8.8:53 | cdn.ldplayer.net | udp |
| US | 104.26.5.6:443 | cmp.setupcmp.com | tcp |
| GB | 142.250.179.246:443 | play-lh.googleusercontent.com | tcp |
| GB | 142.250.179.246:443 | play-lh.googleusercontent.com | tcp |
| GB | 163.181.154.240:443 | www.ldplayer.net | tcp |
| GB | 79.133.176.186:443 | cdn.ldplayer.net | tcp |
| US | 54.157.162.225:443 | sync.srv.stackadapt.com | tcp |
| US | 151.101.193.91:443 | en.softonic.com | udp |
| US | 8.8.8.8:53 | 8proof.com | udp |
| GB | 142.250.179.251:443 | storage.googleapis.com | tcp |
| GB | 142.250.179.251:443 | storage.googleapis.com | tcp |
| US | 52.116.53.150:443 | 8proof.com | tcp |
| US | 8.8.8.8:53 | 245.24.194.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 246.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.154.181.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 186.176.133.79.in-addr.arpa | udp |
| GB | 142.250.179.251:443 | storage.googleapis.com | udp |
| GB | 142.250.179.246:443 | play-lh.googleusercontent.com | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | stpd.cloud | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 104.18.31.49:443 | stpd.cloud | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | tcp |
| US | 104.26.5.6:443 | cmp.setupcmp.com | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.200.10:443 | content-autofill.googleapis.com | tcp |
| GB | 142.250.179.238:443 | apis.google.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | usersdk.ldmnq.com | udp |
| SG | 8.222.254.73:443 | usersdk.ldmnq.com | tcp |
| US | 8.8.8.8:53 | apien.ldplayer.net | udp |
| US | 8.8.8.8:53 | api.ldshop.gg | udp |
| GB | 79.133.176.174:443 | apien.ldplayer.net | tcp |
| GB | 79.133.176.174:443 | apien.ldplayer.net | tcp |
| US | 8.8.8.8:53 | www.googletagservices.com | udp |
| GB | 142.250.179.238:443 | apis.google.com | udp |
| SG | 8.222.229.130:443 | api.ldshop.gg | tcp |
| GB | 79.133.176.185:443 | invite.ldplayer.net | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 150.53.116.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.31.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.176.133.79.in-addr.arpa | udp |
| US | 35.244.159.8:443 | eu-u.openx.net | tcp |
| US | 150.171.27.10:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 8.8.8.8:53 | hm.baidu.com | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | tagan.adlightning.com | udp |
| CZ | 65.9.98.75:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| CZ | 65.9.95.22:443 | tagan.adlightning.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 151.101.129.229:443 | cdn.jsdelivr.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| NL | 173.194.69.84:443 | accounts.google.com | tcp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| GB | 216.58.212.226:443 | cm.g.doubleclick.net | tcp |
| CZ | 65.9.95.29:443 | config.aps.amazon-adsystem.com | tcp |
| CZ | 65.9.98.75:443 | c.amazon-adsystem.com | tcp |
| CZ | 65.9.9.197:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | prs.sftcdn.net | udp |
| US | 8.8.8.8:53 | b.clarity.ms | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| CZ | 65.9.95.74:443 | tags.crwdcntrl.net | tcp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| US | 172.67.38.106:443 | cdn.id5-sync.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| GB | 104.78.175.230:443 | secure.cdn.fastclick.net | tcp |
| GB | 104.78.175.230:443 | secure.cdn.fastclick.net | tcp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| IE | 52.210.15.1:443 | usersync.gumgum.com | tcp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| NL | 173.194.69.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 185.176.133.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.254.222.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.229.222.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.69.194.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.38.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 230.175.78.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 172.67.23.234:443 | id.hadron.ad.gt | tcp |
| NL | 89.207.16.146:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 157.90.33.68:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 104.22.4.69:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | uidsync.net | udp |
| DE | 157.90.33.68:443 | uidsync.net | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| DE | 157.90.33.68:443 | uidsync.net | tcp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.33.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.87.175.4.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
| DE | 148.251.20.72:443 | sync.richaudience.com | tcp |
| DE | 37.252.171.52:443 | secure.adnxs.com | tcp |
| US | 67.202.105.22:443 | ssc-cms.33across.com | tcp |
| FR | 5.135.209.101:443 | ssbsync.smartadserver.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | visitor-adpone.omnitagjs.com | udp |
| US | 8.8.8.8:53 | ads.betweendigital.com | udp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| NL | 188.42.189.231:443 | ads.betweendigital.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | prebid-stag.setupad.net | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | adx.adform.net | udp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | prebid-eu.creativecdn.com | udp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | tcp |
| US | 8.8.8.8:53 | b8de176ba45c950f5306cacb05d0fea7.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | a.sportradarserving.com | udp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| FR | 163.5.194.36:443 | prebid.a-mo.net | tcp |
| US | 172.67.68.162:443 | prebid-stag.setupad.net | tcp |
| US | 172.67.68.162:443 | prebid-stag.setupad.net | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| DK | 37.157.6.232:443 | adx.adform.net | tcp |
| FR | 163.5.194.36:443 | prebid.a-mo.net | tcp |
| FR | 91.134.110.128:443 | prg.smartadserver.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 142.250.180.1:443 | b8de176ba45c950f5306cacb05d0fea7.safeframe.googlesyndication.com | tcp |
| US | 54.157.162.225:443 | sync.srv.stackadapt.com | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | tcp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| NL | 89.149.193.84:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.2.110.134:443 | cs.krushmedia.com | tcp |
| NL | 35.214.174.141:443 | a.sportradarserving.com | udp |
| US | 8.8.8.8:53 | 36.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.253.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.68.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.194.5.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.110.134.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 141.174.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 35.244.159.8:443 | u.openx.net | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | rtb.fr3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | ads.eu.criteo.com | udp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
| FR | 178.250.7.12:443 | rtb.fr3.eu.criteo.com | tcp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| GB | 142.250.200.36:443 | www.google.com | tcp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| FR | 178.250.7.12:443 | rtb.fr3.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| FR | 178.250.7.12:443 | rtb.fr3.eu.criteo.com | tcp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| GB | 142.250.200.36:443 | www.google.com | udp |
| US | 172.67.68.162:443 | prebid-stag.setupad.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 35.186.253.211:443 | rtb.openx.net | tcp |
| IE | 52.212.210.168:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.180.3:443 | www.google.co.uk | tcp |
| GB | 142.250.180.3:443 | www.google.co.uk | tcp |
| CZ | 65.9.95.22:443 | tagan.adlightning.com | tcp |
| CZ | 65.9.95.22:443 | tagan.adlightning.com | tcp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cat.nl3.eu.criteo.com | udp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.17.25.14:443 | cdnjs.cloudflare.com | tcp |
| NL | 178.250.1.6:443 | cat.nl3.eu.criteo.com | tcp |
| NL | 178.250.1.6:443 | cat.nl3.eu.criteo.com | tcp |
| NL | 178.250.1.6:443 | cat.nl3.eu.criteo.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 8.8.8.8:53 | csm.eu.criteo.net | udp |
| US | 8.8.8.8:53 | imageproxy.eu.criteo.net | udp |
| GB | 216.58.212.226:443 | cm.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | dsp.nrich.ai | udp |
| NL | 178.250.1.25:443 | csm.eu.criteo.net | tcp |
| NL | 178.250.1.25:443 | csm.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.15:443 | imageproxy.eu.criteo.net | tcp |
| NL | 178.250.1.25:443 | csm.eu.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| FR | 51.255.68.171:443 | dsp.nrich.ai | tcp |
| US | 8.8.8.8:53 | 12.7.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.25.17.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.1.250.178.in-addr.arpa | udp |
| US | 35.244.159.8:443 | u.openx.net | udp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| FR | 185.255.84.153:443 | visitor-adpone.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| GB | 163.181.154.244:443 | www.ldplayer.net | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| DK | 37.157.2.228:443 | cm.adform.net | tcp |
| US | 172.111.38.54:443 | tracker.open-adsyield.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| US | 150.171.27.10:443 | g.bing.com | tcp |
| GB | 79.133.176.185:443 | invite.ldplayer.net | tcp |
| SG | 8.222.229.130:443 | api.ldshop.gg | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.68.255.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.2.157.37.in-addr.arpa | udp |
| FR | 163.5.194.36:443 | prebid.a-mo.net | tcp |
| FR | 91.134.110.128:443 | prg.smartadserver.com | tcp |
| NL | 185.184.8.90:443 | prebid-eu.creativecdn.com | tcp |
| US | 35.186.253.211:443 | rtb.openx.net | udp |
| DK | 37.157.6.232:443 | adx.adform.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| CZ | 65.9.9.197:443 | aax.amazon-adsystem.com | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| IE | 34.255.228.185:443 | bcp.crwdcntrl.net | tcp |
| FR | 178.250.7.12:443 | rtb.fr3.eu.criteo.com | tcp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | rtb.nl3.eu.criteo.com | udp |
| NL | 178.250.1.10:443 | rtb.nl3.eu.criteo.com | tcp |
| US | 8.8.8.8:53 | aab71fe0bcd84f050b57886d8aef1549.safeframe.googlesyndication.com | udp |
| NL | 178.250.1.17:443 | ads.eu.criteo.com | tcp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.180.1:443 | aab71fe0bcd84f050b57886d8aef1549.safeframe.googlesyndication.com | tcp |
| IE | 52.51.118.247:443 | ap.lijit.com | tcp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | 185.228.255.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.1.250.178.in-addr.arpa | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cdn.mediago.io | udp |
| US | 8.8.8.8:53 | images.mediago.io | udp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| US | 34.111.60.239:443 | images.mediago.io | tcp |
| CZ | 65.9.95.65:443 | cdn.mediago.io | tcp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| GB | 163.181.154.240:443 | www.ldplayer.net | tcp |
| US | 104.26.5.6:443 | cmp.setupcmp.com | tcp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.60.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.95.9.65.in-addr.arpa | udp |
| US | 8.8.8.8:53 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | udp |
| US | 67.202.6.126:443 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | tcp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| GB | 163.181.154.240:443 | www.ldplayer.net | tcp |
| GB | 163.181.154.240:443 | www.ldplayer.net | tcp |
| GB | 79.133.176.174:443 | apien.ldplayer.net | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | udp |
| GB | 142.250.200.36:443 | www.google.com | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| CN | 14.215.183.79:443 | hm.baidu.com | tcp |
| GB | 142.250.179.226:443 | www.googletagservices.com | udp |
| US | 8.8.8.8:53 | 63097aa6aa7b435108bf13d0f4e0735e.safeframe.googlesyndication.com | udp |
| DK | 77.243.51.122:443 | uipglob.semasio.net | tcp |
| US | 8.8.8.8:53 | 126.6.202.67.in-addr.arpa | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 8.8.8.8:53 | node.setupad.com | udp |
| DE | 159.89.25.223:443 | node.setupad.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 142.250.187.225:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.200.33:443 | cdn.ampproject.org | tcp |
| GB | 142.250.200.33:443 | cdn.ampproject.org | tcp |
| GB | 142.250.200.33:443 | cdn.ampproject.org | tcp |
| GB | 142.250.200.33:443 | cdn.ampproject.org | tcp |
| GB | 142.250.200.33:443 | cdn.ampproject.org | tcp |
| US | 8.8.8.8:53 | 223.25.89.159.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | setupad-d.openx.net | udp |
| US | 8.8.8.8:53 | csync.smartadserver.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| FR | 163.5.194.30:443 | sync.a-mo.net | tcp |
| GB | 2.19.117.8:443 | csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| NL | 193.0.160.131:443 | p.rfihub.com | tcp |
| US | 54.157.162.225:443 | sync.srv.stackadapt.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| IE | 34.248.126.255:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | openx2-match.dotomi.com | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 151.101.194.49:443 | sync-tm.everesttech.net | tcp |
| NL | 89.207.16.140:443 | openx2-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | ced-ns.sascdn.com | udp |
| GB | 2.19.117.8:443 | csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| GB | 2.19.117.35:443 | ced-ns.sascdn.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| NL | 69.173.156.148:443 | token.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| DK | 37.157.2.228:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 89.149.193.84:443 | ssbsync-global.smartadserver.com | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| DE | 79.127.216.47:443 | id.a-mx.com | tcp |
| NL | 185.89.211.84:443 | ib.adnxs.com | tcp |
| US | 172.64.151.101:443 | ssum.casalemedia.com | tcp |
| IE | 54.154.113.197:443 | ap.lijit.com | tcp |
| NL | 188.42.189.231:443 | ads.betweendigital.com | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | tcp |
| US | 52.223.40.198:443 | data.adsrvr.org | tcp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| DK | 37.157.4.29:443 | c1.adform.net | tcp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | pxl.iqm.com | udp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| DE | 37.252.171.52:443 | secure.adnxs.com | tcp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| DE | 91.228.74.200:443 | cms.quantserve.com | tcp |
| DE | 162.19.138.118:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 64.202.112.127:443 | b1sync.zemanta.com | tcp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| US | 3.229.202.201:443 | pxl.iqm.com | tcp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| IE | 52.49.70.99:443 | ms-cookie-sync.presage.io | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ads.avads.net | udp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| FR | 5.135.209.101:443 | ssbsync.smartadserver.com | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | sync.ipredictive.com | udp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| NL | 35.204.158.49:443 | um.simpli.fi | tcp |
| US | 34.128.133.112:443 | ads.avads.net | tcp |
| NL | 89.149.193.121:443 | rtb-csync.smartadserver.com | tcp |
| FR | 163.5.194.36:443 | sync.a-mo.net | tcp |
| US | 35.173.15.115:443 | sync.ipredictive.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| FR | 163.5.194.36:443 | sync.a-mo.net | tcp |
| US | 172.64.150.63:443 | s.tribalfusion.com | tcp |
| IE | 52.212.210.168:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| US | 8.8.8.8:53 | ad4m.at | udp |
| IE | 54.72.172.183:443 | dpm.demdex.net | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| GB | 216.58.212.226:443 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 34.96.71.22:443 | s.company-target.com | tcp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| US | 104.26.10.209:443 | ad4m.at | tcp |
| US | 80.77.87.163:443 | cs.admanmedia.com | tcp |
| CZ | 65.9.95.18:443 | s.ad.smaato.net | tcp |
| US | 34.128.133.112:443 | ads.avads.net | udp |
| US | 34.1.237.34:443 | csync.loopme.me | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 8.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 30.194.5.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.194.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.117.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.211.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.113.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.70.49.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.202.229.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.133.128.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.15.173.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.71.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.10.26.104.in-addr.arpa | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| FR | 163.5.194.32:443 | pb-am.a-mo.net | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DE | 57.129.18.113:443 | wt.rqtrk.eu | tcp |
| DE | 3.124.210.90:443 | ps.eyeota.net | tcp |
| US | 104.18.36.155:443 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | ums.acuityplatform.com | udp |
| NL | 154.59.122.79:443 | ums.acuityplatform.com | tcp |
| US | 8.8.8.8:53 | cookie-matching.mediarithmics.com | udp |
| FR | 54.36.150.184:443 | cookie-matching.mediarithmics.com | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | prebid.adnxs.com | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| NL | 79.127.227.46:443 | id.rtb.mx | tcp |
| NL | 185.89.208.11:443 | prebid.adnxs.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 34.237.1.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.18.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.194.5.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.210.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.122.59.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 184.150.36.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.189.64.185.in-addr.arpa | udp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| US | 8.8.8.8:53 | res.ldrescdn.com | udp |
| GB | 163.181.154.240:443 | res.ldrescdn.com | tcp |
| CN | 183.240.98.228:443 | hm.baidu.com | tcp |
| GB | 163.181.154.240:443 | res.ldrescdn.com | tcp |
| GB | 163.181.154.240:443 | res.ldrescdn.com | tcp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apien.ldmnq.com | udp |
| GB | 79.133.176.185:443 | apien.ldmnq.com | tcp |
| GB | 163.181.154.240:443 | res.ldrescdn.com | tcp |
| GB | 163.181.154.240:443 | res.ldrescdn.com | tcp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.169.217.172.in-addr.arpa | udp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | 146.48.219.8.in-addr.arpa | udp |
| CN | 111.45.3.198:443 | hm.baidu.com | tcp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | ad.360yield.com | udp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| DE | 178.63.241.79:443 | shb.richaudience.com | tcp |
| CZ | 65.9.9.197:443 | aax.amazon-adsystem.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | e2c24.gcp.gvt2.com | udp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| NL | 188.166.203.175:443 | brightcombid.marphezis.com | tcp |
| CZ | 65.9.9.197:443 | aax.amazon-adsystem.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| IE | 52.19.76.84:443 | ap.lijit.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| IE | 54.72.226.164:443 | ad.360yield.com | tcp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.76.19.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.226.72.54.in-addr.arpa | udp |
| US | 35.185.21.228:443 | e2c24.gcp.gvt2.com | tcp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | beacons.gvt2.com | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 228.21.185.35.in-addr.arpa | udp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| US | 8.8.8.8:53 | b.clarity.ms | udp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 19.229.111.52.in-addr.arpa | udp |
| CN | 14.215.182.140:443 | hm.baidu.com | tcp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| US | 8.8.8.8:53 | b.clarity.ms | udp |
| US | 4.153.129.168:443 | b.clarity.ms | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| CN | 111.45.11.83:443 | hm.baidu.com | tcp |
| GB | 172.217.169.3:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | middledata.ldplayer.net | udp |
| SG | 8.219.48.146:443 | middledata.ldplayer.net | tcp |
| US | 8.8.8.8:53 | apien.ldmnq.com | udp |
| GB | 79.133.176.185:443 | apien.ldmnq.com | tcp |
Files
\??\pipe\crashpad_3172_RTVEVXAWAVKOWRRC
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 392a6a2f6087e542bc9f8b25ef513a4e |
| SHA1 | e2fac35c177015176c38599b40837531051cbd5e |
| SHA256 | d48076d71cb9f33693d125e2a86cddde88c7cc072d6674d3ed1f7a5525ef03c5 |
| SHA512 | 4a611946159e1faa7d6a77f44c5816c115a00deb66c853dc1d6d277ecac27e197068cdc1ce1e438f9bf99dc2317d54610868994b6a3c3028bb48d35f0edaff67 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\399cb936-82f1-4363-b7ef-a235e91ba5a6.tmp
| MD5 | a5e82a071eaa7aecf56d8d63468e56c1 |
| SHA1 | e1931a991c158eed65cc3d220cee699e50569a10 |
| SHA256 | 37233216ec9a7a0fb51a0038241fa21325d9a42ef95754a7c1c03bf49c9b5587 |
| SHA512 | 5a710cd4018f3498f90735eca4893f2a98f0c3ca8ba84b55668f560700d436f7b9389f801a77dbfaadc796f42d7a2c6e1afe9a30c727f389ba537986509a2bdd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 149be8e31dc468f954e9cf17ca6d9b69 |
| SHA1 | 71444ac9f382f0a14c134e362b2fcbb88ad0c927 |
| SHA256 | bbc7d01a94fbfce039fe87f80fedf0979821e774aedcded7b296d0a985dc1842 |
| SHA512 | 047e16a0abba3439f26e949301f9e12a01d85dc74cd5198d1b32a25b93c55754a96984e5ef68cd35260e631a89f6b1159b8b6e12550768734f4829bd085b0df3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 9c967919815b258d4433175a6a2787f3 |
| SHA1 | c51957a5ca1caa6771ccab5d8a36fe262a6b1564 |
| SHA256 | 34fdbeade55df709ead2895cf9929e447045772ec29f3c7a820c96796c278f5f |
| SHA512 | cfa6dba3f4e36362dd004153d64b7f56217d74c5db05c324edeb831f081ec4e8defdcedb61b4025f5ee64c9690ef848126f4b8bd0a6916315dbf2aed8f07226f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | 9e930267525529064c3cccf82f7f630d |
| SHA1 | 9cdf349a8e5e2759aeeb73063a414730c40a5341 |
| SHA256 | 1cf7df0f74ee0baaaaa32e44c197edec1ae04c2191e86bf52373f2a5a559f1ac |
| SHA512 | dbc7db60f6d140f08058ba07249cc1d55127896b14663f6a4593f88829867063952d1f0e0dd47533e7e8532aa45e3acc90c117b8dd9497e11212ac1daa703055 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000024
| MD5 | 49cbefd08639aca7f6921c43a85d9905 |
| SHA1 | 8ab5b92fb186f50cfdb124fa9631d4b59ccada78 |
| SHA256 | 3cd2609cb9fc79af0d14a44ba31b2dd33ee28c64d6c108c06d27c61366b6b020 |
| SHA512 | c57894a7c80df7e7a5add407f52587d7f6d001237c5d8e90761237d7c6497adfba010ca0b64d3f80829aa010a6eaa6e38b5ab374c51f9db9013d09949f09fdf4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 93412618654599fb3a692f9c3cb71093 |
| SHA1 | efe53da46bbe7593f0cffe420cfb22608829827d |
| SHA256 | 2e3fb8876ca3048803433c832084ee0439ded254e5666855ca886f995e244801 |
| SHA512 | 9c48af82e56438bffb28726b84616401f42092227e961449c6cfe22a2cc53a4372d9873b5adf8a0e33ec2f59da49d99d9d51607bf25f9e5b57b5945973bc8d0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 12110060968e342862ed847e1260d9a5 |
| SHA1 | 2914cc01062cb3cf54357f84d2c7600691184d34 |
| SHA256 | e47aa38d30778be5de05f437bd7bd239086682d8adc19533e1e60687a2eec4cf |
| SHA512 | 8a5589ea3fc5d910523384c1d643a69c0aca1d4a6fa556dfb5279e8055df485f1b73db9f5b1239b1d89f0658f4aff9e2f73b9de044692440a63d6f471d10d0f8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000007
| MD5 | 8ad04f19bf70f5cf330752244dd8a5bf |
| SHA1 | 7076e75cfba995209d990ea6436cc1e35efccd2f |
| SHA256 | 8f9f6500a484f9c529b47669e78a5672a515ce00f9bd325b3e0d15d1d95de69c |
| SHA512 | 4b49abc56fc26aadf5dac9d76ab9a507592a59c797739f39cb5e8d2efdcffd2d37ca4c05c9e362aea17e3cbf16ebd86650baab5b3a672366fac8f5da72d79fb3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000009
| MD5 | 306b269352821c2f410af4afbae50cde |
| SHA1 | 252d64ca40a426b880776ab78cc4ba54bba97a79 |
| SHA256 | 2d0622553b3665a462ce29ebdd7cf01ee8db2ef55d256db6f25f73e16b62e75e |
| SHA512 | 3e854bbed910df2af71e78512deedea589eacadb5682c8e6bb384b1166d56a4dfbd9e8cab1a2c4a7235e49ddeb5cc2dba420e20df41c9e876a97ce3bf20ea846 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000e
| MD5 | 6c80837428dbcc1d3690b16dabaaac52 |
| SHA1 | d307047b55ec9605da5ac051e2565951c71b8e6b |
| SHA256 | f103de291e3c29e4d05e300a273be82af5bc3eb67900ee198941c9e49d0ac9f8 |
| SHA512 | 582dcc300d0dd7789ff849c2e897d945623ecb93ea1f6277de0eb7af7e4264d0b30b80031c22e1866f0e7db0f45f4ccfa0e081fa6afc08541280b7c8aed72dc6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000a
| MD5 | 4677fdf99c5b1d74b647dd8936366b6e |
| SHA1 | 726043e4b6a5133c8a8d19cdcb8bdc611228f8a7 |
| SHA256 | a7722c50dd56d19295d16a1fbbbc24e819a25a44ed43c6a1922a32102d2e0996 |
| SHA512 | 63261469360a987ce0ec45a74476a4e80acb468528875e35b4b7f49ab381b176d6f3e462c66f62374a609a5572f962dafcc0e63c007f5fb12c415797abea6e56 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000008
| MD5 | 92aabde0d00fcc545c8ff6c9f6b0eb2d |
| SHA1 | 4204a9070db3db06fc752c48b0a208be19b24eb9 |
| SHA256 | b791dd2eabbe48c2927b424e7403e2de2951c8cf92902f7417394bff66c68940 |
| SHA512 | b26a9651fc291f7b8926281a48eb349352258db200de53fa68f2d6889a04b219edb07f6beb1e798232374840dd96732115cca76b2e0e640cb4904eb52c4fbd7b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000b
| MD5 | 49beae2e8c755efde28889a631f8c2a7 |
| SHA1 | c91dd552c40d5d5aff095bd606d04a4fecf49e1c |
| SHA256 | 0b10ee7e20cbd264aaf63025f233feeade7771a9f292d79682e5e25c3764c092 |
| SHA512 | 0438288f758159a2cc544586bbe1b82a3a0ecd485782c1051e2e443c1182fb955f079c29dea66d754baf69b683b6e16b10c1a7bcf8ea11076e5ee824f70f4cbc |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00000d
| MD5 | 7651b1187bb58ac4c7be625337b35e5b |
| SHA1 | 307d969ef4137a66fe2793737dc1c546587c7f43 |
| SHA256 | 0632850d01a46bc2f8c223155a4bf6c398b33596bb711e098440623f118c3968 |
| SHA512 | a81d2f768af155bdc642941404e7ddf95a2cea33c9374acb5fe32f6f5266e337fbef32f904551f61fcc9f9ab5a1c6a5ad130ab85b38bc2258e2f82c0ca1e9c7a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000011
| MD5 | 5623208cecf0a236dd923cbb014541c5 |
| SHA1 | 4ae708b2bece97f6cd472bc730244d367214961d |
| SHA256 | a855e1a71de7c5698a8e560fd4f66a8c1e088faef69b8e4ea152d9e0f172b27b |
| SHA512 | 57e01774da702a893054511d0fcc8ffcab73fd8e0aa71a90a1e634f99bc47a175ea644eab615a3082b1567c116d88318f74cdd2dc274bf64e07397f6970aaa9c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | a46bc00c14e4111585b1c39a0f97f3b9 |
| SHA1 | e52e433738a531bbe0f40b204fdaaca03b9199b6 |
| SHA256 | 91f6b2bd9239dc32880c0fe85e2ec3223c04310269141840b59fb0590650a54b |
| SHA512 | 2f1b23aab4444ea8ad1a9774071fe579b561c288f6972e12ae37debade1e0d70de8b04839449869eb8b4c111636cfc2a22b2262d4934fa104e0a5828f68dcf88 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 4845b45384b942f776632e5d0492f198 |
| SHA1 | 34fd789c845f1ec04554700b2aae948c3e30d426 |
| SHA256 | 9b1207714844bffd2943cab7892f77690a6d4a18a1aae1161c0fdb3475c17d41 |
| SHA512 | fd8343f23174e5c3d91e6dd31f13a8c39ab235d321ac396e31a74a6c049955618f3dd71cd0b8a46b0e481578c611abbe48a8df8a786215306447b81023a7d6f9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000013
| MD5 | abe2f2a4736e70529738f41cddc63689 |
| SHA1 | 194ff62d6f44ea5994ee012480c1b1b7092230de |
| SHA256 | 8bb0d913169b80c67ca957e7027adc2351acd32f9781bce33ac35a8a40430f88 |
| SHA512 | 37605c5a1276a8db77852fed9167011610a41ea7aa9311a3336a18c6de2731e8eab0c054a3fe04cfc93a63fc915bc77e8f5cdc63733f47319f06147b700e7548 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000016
| MD5 | 8009157da4b9f32f071a1ec1e13b0230 |
| SHA1 | dfd14bfb8f3d04cd8c74ff127621c2c8b14b42b3 |
| SHA256 | 7fa598b82b270df57d53b3169f990c1f9f4a9d5d6b89918fa0620333c283dae7 |
| SHA512 | f7a0c16209b79d82e327ba3df7ea5888a23f7a4ad99a1ce13702be2ca634215505dce66d469e6e13bb49fe3b75eca8d0aef5a915116a2f5f20e88d5d8602eaf5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000017
| MD5 | a6a4c3cd2ac57fa24677fdbefbcaa454 |
| SHA1 | 74cdfc7d29f1f2689ca65abda1bec255b17d55bc |
| SHA256 | 915f29f22ca9719ce3e23fe25110a0df6a1e1b34a0cd94711dddbdc534f8c4e1 |
| SHA512 | 3acccd5395c2ede244c08bac80bc0ac78ded4b63e8763d0b2f185d5e7d832023fb33f48f3008f0b9e1f0c992814365693b7e11f2132874883493f13c4879984d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000010
| MD5 | 2233de78cbb1c88a3bfa13fa54b0de3c |
| SHA1 | 22510880588be256c5c0b97d07a2314756cac4eb |
| SHA256 | 08f2e17c95d4e68f3091b8d3fe93b744b50c4c383a9caa8219cec0c30b297994 |
| SHA512 | 930d79ff1aeee756d64104bf2823d37dc5c4a8235fc37b8e2e8fc9d1486736721c9480e70d5455f1e03a413d5b0c606de1186d3b82a043773a6df92d195293e7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000019
| MD5 | e59e88a4b2a7088cbb6f5f8b4f40eb93 |
| SHA1 | cb9ad1536e93a63abe6bed8794a5c3238b6023a6 |
| SHA256 | 3a74ddec8990c18e39e083b93017a3b8fe809496473f62a64651c57189dbc55c |
| SHA512 | ece4262dce58770fce9c3c288c66d4ce4637c2042886c6e75a3d68269bcb96c13e7355d5cfda9fd0a69ac3ea2c7815b2faee16071c779d48c7095aad76addf83 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000018
| MD5 | d155610d38d34dccd977ac213ab42e1d |
| SHA1 | a343e08abb19f7d4110c64de08aee504cac318d3 |
| SHA256 | 6ec5dee6a9dfb42ef97cd410c2e3387f53d2eff7d1fcf159f96b5ab129036ab5 |
| SHA512 | eb735bd87238215d54613f6065e61d48e1578908117af2a215b88dbdc3c4d155cd2b60e035ff2cde17605445bd89129de07aceb74ce8c16dcd355e4214986c8c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000025
| MD5 | 8eff0b8045fd1959e117f85654ae7770 |
| SHA1 | 227fee13ceb7c410b5c0bb8000258b6643cb6255 |
| SHA256 | 89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571 |
| SHA512 | 2e4fb65caab06f02e341e9ba4fb217d682338881daba3518a0df8df724e0496e1af613db8e2f65b42b9e82703ba58916b5f5abb68c807c78a88577030a6c2058 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00005c
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f
| MD5 | 2e5e9c1a2fee624e54e5b587d3171ba1 |
| SHA1 | 6cd4cebbad91160cabe6decf75ed95c201efba74 |
| SHA256 | 902c6abd03c47ad692fb87a6abf5e435cd5414dbce04b09fe7cae57f678b9502 |
| SHA512 | 76c3b74c4060c406b155ff04c4328caccc641fb209f5c78e00107d8c0c0bc2c436889c08fe6ef54120583625d0c6499fa432662f8d34f85b181a27840c4415e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 597d61fc198fc6f228c6b63e65580196 |
| SHA1 | 31a0edc4d037522dd111461ad264db5c997c99db |
| SHA256 | 01deafd77b8fdd640e022d6bea24c141296b6024d693c3beebc03134e56515ee |
| SHA512 | 78ebd12a01a7e476da2a24879e33918815a7fa5ca9c5afb29e593f6ada7ec2844637ae539c88e0cd3518a68b02226593aae458ef0c1f15948ddc9bb86ef6e1f0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000089
| MD5 | d35069a726e91cbb4bddb37625c2e967 |
| SHA1 | 2e42a7cc045e4dee24bc38d559e444f015c17f4a |
| SHA256 | 5fba16dca8cfdc08b8455cf2f88ff64dbe70619bc86d410a564b298c5f109d21 |
| SHA512 | 83d83637dbc83322189222d87e45e5781a757b972cb1b0e5004d99f1439332d4606a607740280e9031804ccf60c734a040c89bc0972c85ae9d139cd500058b2f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 89db98685d2d7badeccac6949f2ec6d6 |
| SHA1 | cdcebefed59ec370b32f8fc4a2034eb6244efdad |
| SHA256 | f29163b3c8ad4c2ab51b543c8f5409bdfb7c0d72dac181546395b05b5f918249 |
| SHA512 | 29761bee1679ca8734151d192e28ac492664d8124a495063aed6e9086d4d47d87e371709bc0878b74cd610fe4db264c8d7b997d16dc1209679fb53144a2b8dc9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 78bbf3f49c91b52ea68d1c04db444833 |
| SHA1 | 5b39211e607bc04a90855357433bfaa3e1402437 |
| SHA256 | 060c921499c45f75cfe4df277645db0088b891bf689d54ed3b7a9a394b32131e |
| SHA512 | 6bf9e8469761f0d8f8b09124d9220eac4155e7b303e007b56f675c6df69e6db08477511d37dfff97d4e05cbcc844d5fcec42c7d4faec58e59bf1e83fee060c9e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\29455db5bd0b60be_0
| MD5 | 2976fed1a54eac0726602ea180f963dc |
| SHA1 | 84bbf0719fa4136bfe34dea1f28b652f22fca53b |
| SHA256 | 049c9b4faedc620437ab2c9c6d00ec56d8a7367fe80d631998185870c95c23eb |
| SHA512 | 43cbcbfc92aee9e4a5c97acbc50226a33c90513a54611ef6f50083a2111fca847319b24a518afd83a314e33f3e91b0fe135b1df09adce57cf0d63fac70a3271c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000078
| MD5 | af6fd8f7082ec75d40958762d07182ef |
| SHA1 | a0b5effdab21bf57bc2e868f8f3511418d682e8a |
| SHA256 | 896f47bc37d48d197f7f06c8662638500754708f02fa599df723272e5fef7cf8 |
| SHA512 | f16ef5a997e8b6b94948a7b8871e7e897ac1f5635afc615ce5b594d4600762b15e56b785b1222014db0d99e3a6c13db3c325021ed4224f0927b2291b8d58f203 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000079
| MD5 | 05e9679509b61424a07cc4d4efb7247f |
| SHA1 | db4fcfac1d89c7e4f0bdbea9023034b64a9dbd81 |
| SHA256 | 31798b2630a882be758010dfa51b12026c8fd81f0e4068b38fd739cac78cba0b |
| SHA512 | 1cbe7343e19b41f3f116a93d598d7b67779d29c6bc0a7b086d112dfcc76fee60811290b67b5d2561751700be483f6cd460b9b4c8325397813314ba064e4c2208 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00004e
| MD5 | ac3e47c39bc1bfde7968f6113f449ca2 |
| SHA1 | 273c35a3403edd359c50c0e2be5724f13e98c84e |
| SHA256 | b3e769622605d70b20d70d7d747d7d5d8e42c08fed27e01d47eef6db01530d2e |
| SHA512 | a568507b53b8571d5b42a9bc49778511ebb622fa50d9e588d85a6f2e39dbbd2b3d9a1c8b93a5410873fe837ad826b455487805f3a515238942c58d66188df975 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00009d
| MD5 | 9855e448af8561fc920d69a7b45a309b |
| SHA1 | 9ceb185e61fde58d6db6e3c4e2e7932ca53ce712 |
| SHA256 | aebbda8979b54ca3094e835ec7bffb08aca6c79480675d46bc5df75d9750a583 |
| SHA512 | a37495c629c9fd636702f1e1479b0ffd8c7b921cc914a7208478d2b9c348149634bd7736ed41d6627902e8b8e5d5316dbeb3d5783b93574a48b7fb1786fc6d6c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000074
| MD5 | e935b12f210f48b580b203af524d718f |
| SHA1 | 712d71ecb53eea48fe3105b771697f4911e7de87 |
| SHA256 | 6fa4c3692bbae1df4b7a9fd0fca0c243fcb2ba37bfda14e84b9c4e4b3c4a707f |
| SHA512 | 6602a70d1b4d54abd1ce0125a20086530fc8a493f445c53071129bcbd8ab2d6dc4d9beba6aa311f7e8b16e696d2f7bd07b70a0ab7fce5bb9c7d5567b771fbd2a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_0000a4
| MD5 | 1aca735014a6bb648f468ee476680d5b |
| SHA1 | 6d28e3ae6e42784769199948211e3aa0806fa62c |
| SHA256 | e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a |
| SHA512 | 808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 06c0b7e18f3c60a70c75ac2fa3d2b285 |
| SHA1 | e1498104787a0a9e4afe4076fb3704339aaf841a |
| SHA256 | 46cbd04382f76a1bcf47002a99a093dbb5a9994cac809e7234040c89c035d09c |
| SHA512 | 8a21a7b0a4eb68824051b16700a1e944238c3dffc471507532e719211aa5947bdc8279353a8f44121891c257d488be3e740b58d856b91e6e7cf6a4cedf0d9047 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | eec0195ace2338ff407f1477da425215 |
| SHA1 | e2f88b70159c512e4a7a4056e0b4f76e5df484a4 |
| SHA256 | 021b6500addec3ecd9de5d0b36642418cf56fb5c10b299b48f5ed2d646d18f5a |
| SHA512 | 8684f372d83a019fef7968ac0164822bbb4ccd80c88dcc9d6c60b5319558389c5fbfbbc68af9a3d270960032afa844b08c6b1d79a1037fa137e03cd0596b7da9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 1e856d5afae2ec37fad3dde62cf09b6c |
| SHA1 | 8f08fc663d7d14707108b2086a3194f2d35aeb8f |
| SHA256 | fd48058bb77109f17e79a7727046017f93b8c7060d19ed2b14a8965a5e9ef744 |
| SHA512 | 6ef5a14558356d348afc2fbb420058267a061872faa68ea3d79ff396e4b7d37c6e332bcad751857d5507edbfe45ee4af023f6b793048b75aea55c7a1a1dfc6d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 66c5a3e5b0cbbf99ff0e5d73ce666ac7 |
| SHA1 | 03ff8ca7df798dd09104006e6561fda67e65a63e |
| SHA256 | 91c9b69818b17750a1d3c3e275b9043beb84ede973f440d8ceccb5550549fc7f |
| SHA512 | 0a9439cf6c027062de8d37517f0b1199b73d487721906dcda582b3525981ff58dd48fac5803d335396cc6eaf5cf9d62428481cd577dddcd6dd8859a5b69e6667 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c774bfb92f1659267e01f32cc1c47d94 |
| SHA1 | eceeaedc71f0dd2e5a095756da050c76ea15f088 |
| SHA256 | 1102406cc5ea6f01a82ddcb4c147815ea267763cce4a7b7a236ff2e6510d6905 |
| SHA512 | 975f5141727cd41eaaecc4d26790df04bdaa5d8e89768894e18cfa8fa7e9d046cfe9a55599d357c0cf07f9cd88deb27bdd9e637fb2a8d7ec3295691efc43f5eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 0e2092292c74ff8b08f010157e07b3f1 |
| SHA1 | 289be582fe67b16064926a665e8fbff4c1231655 |
| SHA256 | 1513c1e3d7b9d498cd8cc861a5b8afceb3bcd7231e7a3865d8b9976954a8913b |
| SHA512 | c1b0f582b4e26346f7fbeeb374189cab580bd2ddcfa5fa1245b3c1ed3ce60814674cbc101d05b34c07ff719e96d65239882e01183e91ed609d1417d1d1222f0b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a68f8c332d6fac9c4db836855f098f6c |
| SHA1 | 81e74c4724a2776dee347633402424125f87bd6c |
| SHA256 | 5b671c6ffbce605b2d5ae8aa01cc54951dea8ba7e70f22969d48a45da960b0a6 |
| SHA512 | 5767726fc7f8f954f5678841a3bdd3851f87e563e07c974d2b6f4f39bbcc730f2f95aed0b6c6b2332c1c3ef9d24ce653fcb5fc3af8bcc063f160e08dd67646d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000031
| MD5 | c83e4437a53d7f849f9d32df3d6b68f3 |
| SHA1 | fabea5ad92ed3e2431659b02e7624df30d0c6bbc |
| SHA256 | d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb |
| SHA512 | c2ca1630f7229dd2dec37e0722f769dd94fd115eefa8eeba40f9bb09e4fdab7cc7d15f3deea23f50911feae22bae96341a5baca20b59c7982caf7a91a51e152f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 21c4bfc322665b22c810f95b0239674a |
| SHA1 | 8853aabd2b9eb21bf1d9925f0809a3e8e5ae69e6 |
| SHA256 | f7da79f28eca6733c011e347cf9594b969cc01ea4337987ebdb87ce0b749ac64 |
| SHA512 | 3904a071c8b06e2607f090b9a97b476dcc4d939fd19174269f6b3da094895bdbfc1b78192ef6a19c84165f7be98d05e50e60641a25f16fe2eb334670e8d192c0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ad558c61933991d36d4376fa64ed271f |
| SHA1 | e06de932708ad42e1a00b593d0c3509aff3ee94d |
| SHA256 | a9802ff97ef4b35a0995212f45f0e51fcce1b0169ffef35673b664c1effda1ad |
| SHA512 | 87d6e00f4f72a9b52841a7184f7e9d59a62b9b0369beae531c22ef48ade787ead77b3a95c4a279b90b0eb105535e6af2ef9ecd23b3985c582630ebb956ce35a3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a4133b864b8d340cccbe0d577df0012b |
| SHA1 | 1d67a6500366f718ce715243d493ac2fa45153d1 |
| SHA256 | 657f50c797d5f756b574e314ace4e357a4c656a6a8b5ef653b2d51a94bcf23e8 |
| SHA512 | 02712a75b2d1e06a3969a1363aa003d39b5f0174a207c7e855ab0d90ef42e3728f34b3c6577f3e34c10cd6afb701c14dd0648059253ea0fdbd05f8ba06b41826 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5bcf50453948be424efae4dd18c20f2d |
| SHA1 | b205f4a5aba73345fcb642c99d04d4e433549ddd |
| SHA256 | f081dc5a7960b7167f10c6d30b106fc4cbb2fa4d2df7eb843a78ab07cf48411f |
| SHA512 | 3f2ae0bd7ba8c6a5bc1c01c7aaf1c38609d7c430f05757b9488aae0bb7c8635ee733315e7c06b0737ae8a8872a592a0bf0259404037df627f1ef45a01e1376b2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 120a22e33276f452fc8af9fa130e5115 |
| SHA1 | a9a7bc3f03a44eacfdbac50ab5ac44afbe8e903e |
| SHA256 | 9b7fcf08880143cf2414f9b17d4c7a027862a5f46d047c488d312b202b64d3be |
| SHA512 | bb6228a1940834402c6abf27cbff1029146d3e898a438aa0a0b39c0d0d433331460337fc4e694c681869d69807e0b52775122d972afd4b037cfefd0927c90b0a |