Analysis Overview
Threat Level: Known bad
The file https://file.io/vXmfPTX2Hb2i was found to be: Known bad.
Malicious Activity Summary
Eaglerat family
EagleRat
A potential corporate email address has been identified in the URL: =@L
Executes dropped EXE
Mark of the Web detected: This indicates that the page was originally saved or cloned.
System Location Discovery: System Language Discovery
Program crash
Browser Information Discovery
Suspicious use of SetWindowsHookEx
Enumerates system info in registry
Suspicious use of AdjustPrivilegeToken
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious behavior: EnumeratesProcesses
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Modifies data under HKEY_USERS
Checks SCSI registry key(s)
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-12-17 19:27
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-12-17 19:27
Reported
2024-12-17 19:29
Platform
win10v2004-20241007-en
Max time kernel
81s
Max time network
82s
Command Line
Signatures
EagleRat
Eaglerat family
A potential corporate email address has been identified in the URL: =@L
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
Mark of the Web detected: This indicates that the page was originally saved or cloned.
| Description | Indicator | Process | Target |
| N/A | https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html | N/A | N/A |
Browser Information Discovery
Program crash
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\WerFault.exe | C:\Users\Admin\Downloads\Client.exe |
| N/A | N/A | C:\Windows\SysWOW64\WerFault.exe | C:\Users\Admin\Downloads\Client.exe |
| N/A | N/A | C:\Windows\SysWOW64\WerFault.exe | C:\Users\Admin\Downloads\Client.exe |
| N/A | N/A | C:\Windows\SysWOW64\WerFault.exe | C:\Users\Admin\Downloads\Client.exe |
System Location Discovery: System Language Discovery
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Client.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Client.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Client.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language | C:\Users\Admin\Downloads\Client.exe | N/A |
Checks SCSI registry key(s)
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 | C:\Windows\system32\taskmgr.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A | C:\Windows\system32\taskmgr.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133789372981629303" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\Client.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://file.io/vXmfPTX2Hb2i
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ffce47bcc40,0x7ffce47bcc4c,0x7ffce47bcc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1812,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1800 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2120,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2136 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2232,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1624 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3112,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3128 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3116,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3228 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4836,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4848 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4760,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4888 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=5108,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4612,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4928 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=5264,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4688 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=5412,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5404 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5428,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5544 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5684,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5828,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5856 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5668,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5376,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5380 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5848,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6780,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6768 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6788,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6940 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=7104,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7132 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --no-appcompat-clear --field-trial-handle=6288,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7272 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=7408,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6792 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=7412,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7536 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=7712,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7728 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=7664,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=4960,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8028 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=4848,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=8160,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6744 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=8432,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7756 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=8524,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8536 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=8684,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=8700,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8824 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=8848,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8968 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=9100,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8956 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=9132,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9256 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=9288,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9412 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=9420,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9540 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7116,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4956 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7088,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9800 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=9928,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9956 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=10076,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10088 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=10400,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10352 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=10236,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10420 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=10692,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10720 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=10312,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10296 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --field-trial-handle=10744,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10848 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --field-trial-handle=10976,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7944 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --field-trial-handle=11092,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11108 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --field-trial-handle=11352,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11360 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --field-trial-handle=9688,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10700 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --field-trial-handle=11560,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11576 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --field-trial-handle=11652,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --field-trial-handle=11748,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11768 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --field-trial-handle=11744,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11556 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --field-trial-handle=11752,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11756 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --field-trial-handle=11904,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11552 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --field-trial-handle=11976,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11972 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --field-trial-handle=11988,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11960 /prefetch:1
C:\Users\Admin\Downloads\Client.exe
"C:\Users\Admin\Downloads\Client.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --field-trial-handle=12000,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10348 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --field-trial-handle=12008,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11712 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --field-trial-handle=12024,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9212 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --field-trial-handle=12040,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7356 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --field-trial-handle=12060,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7360 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --field-trial-handle=12076,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --field-trial-handle=11940,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9520 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --field-trial-handle=12108,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4688 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --field-trial-handle=12136,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6832 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --field-trial-handle=12140,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11728 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --field-trial-handle=12160,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11668 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --field-trial-handle=12180,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7792 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --field-trial-handle=12172,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12200 /prefetch:1
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1740 -ip 1740
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 1740 -s 984
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --field-trial-handle=11636,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7232 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --field-trial-handle=11224,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11448 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --field-trial-handle=11148,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5280 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --field-trial-handle=4768,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4952 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --field-trial-handle=5676,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11504 /prefetch:1
C:\Windows\system32\taskmgr.exe
"C:\Windows\system32\taskmgr.exe" /4
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --field-trial-handle=11508,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11488 /prefetch:1
C:\Users\Admin\Downloads\Client.exe
"C:\Users\Admin\Downloads\Client.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 5196 -ip 5196
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 5196 -s 1040
C:\Users\Admin\Downloads\Client.exe
"C:\Users\Admin\Downloads\Client.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 7420 -ip 7420
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 7420 -s 1040
C:\Users\Admin\Downloads\Client.exe
"C:\Users\Admin\Downloads\Client.exe"
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 472 -p 2036 -ip 2036
C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -u -p 2036 -s 1040
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --field-trial-handle=11132,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6528 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --field-trial-handle=12012,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5884 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --field-trial-handle=7360,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=12068 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=82 --field-trial-handle=5924,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=7388 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --field-trial-handle=728,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=6516 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=84 --field-trial-handle=6872,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=9188 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --field-trial-handle=5452,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4880 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --field-trial-handle=10416,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=10436 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --field-trial-handle=8616,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11108 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --field-trial-handle=8028,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=8096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --field-trial-handle=11072,i,5822564030671598860,4681600163479642597,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=11780 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | file.io | udp |
| US | 143.244.215.221:443 | file.io | tcp |
| US | 8.8.8.8:53 | 83.210.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.215.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.file.io | udp |
| FR | 3.165.113.125:443 | www.file.io | tcp |
| US | 8.8.8.8:53 | hb.vntsm.com | udp |
| GB | 143.244.38.136:443 | hb.vntsm.com | tcp |
| GB | 143.244.38.136:443 | hb.vntsm.com | tcp |
| US | 8.8.8.8:53 | hb.vntsm.io | udp |
| US | 8.8.8.8:53 | hb-vntsm-com.global.ssl.fastly.net | udp |
| US | 151.101.65.194:443 | hb-vntsm-com.global.ssl.fastly.net | tcp |
| US | 8.8.8.8:53 | 125.113.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 136.38.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.201.250.142.in-addr.arpa | udp |
| US | 104.22.47.142:443 | hb.vntsm.io | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 143.244.215.221:443 | file.io | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 216.239.34.36:443 | region1.analytics.google.com | tcp |
| GB | 74.125.71.156:443 | stats.g.doubleclick.net | tcp |
| FR | 216.58.214.67:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | cadmus.script.ac | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.18.23.145:443 | cadmus.script.ac | tcp |
| FR | 216.58.213.66:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | 194.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.47.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.23.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| FR | 13.249.33.78:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | api.rlcdn.com | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 34.120.133.55:443 | api.rlcdn.com | tcp |
| DE | 162.19.138.119:443 | id5-sync.com | tcp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| FR | 216.58.213.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| FR | 13.249.33.78:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 162.19.138.116:443 | lb.eu-1-id5-sync.com | tcp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| FR | 52.84.174.6:443 | config.aps.amazon-adsystem.com | tcp |
| US | 172.67.36.110:443 | cdn.hadronid.net | tcp |
| US | 104.22.52.86:443 | cdn.id5-sync.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | tcp |
| GB | 23.208.240.151:443 | secure.cdn.fastclick.net | tcp |
| GB | 23.208.240.151:443 | secure.cdn.fastclick.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| NL | 89.207.16.146:443 | proc.ad.cpe.dotomi.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 8.8.8.8:53 | 78.33.249.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.131.71.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.133.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.69.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.174.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.36.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.240.208.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 146.16.207.89.in-addr.arpa | udp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| FR | 142.250.179.65:443 | lh3.googleusercontent.com | tcp |
| FR | 142.250.179.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.184.233.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| FR | 18.155.129.39:443 | tags.crwdcntrl.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.18.28.101:443 | cdn-ima.33across.com | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | mp.4dex.io | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| US | 8.8.8.8:53 | ex.ingage.tech | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | apex.go.sonobi.com | udp |
| US | 8.8.8.8:53 | prg.smartadserver.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | exchange.kueezrtb.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 8.8.8.8:53 | hb-api.omnitagjs.com | udp |
| US | 104.18.27.193:443 | htlb.casalemedia.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| IE | 34.242.11.200:443 | ap.lijit.com | tcp |
| US | 172.64.153.78:443 | mp.4dex.io | tcp |
| IE | 18.200.41.13:443 | ads.yieldmo.com | tcp |
| NL | 185.89.210.122:443 | secure.adnxs.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| FR | 163.5.194.36:443 | prebid.a-mo.net | tcp |
| US | 104.18.27.216:443 | ex.ingage.tech | tcp |
| US | 69.166.1.32:443 | apex.go.sonobi.com | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.28.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 134.209.129.39:443 | exchange.kueezrtb.com | tcp |
| US | 134.209.129.39:443 | exchange.kueezrtb.com | tcp |
| US | 134.209.129.39:443 | exchange.kueezrtb.com | tcp |
| US | 134.209.129.39:443 | exchange.kueezrtb.com | tcp |
| FR | 52.222.159.10:443 | aax.amazon-adsystem.com | tcp |
| FR | 18.244.28.86:443 | hb.yellowblue.io | tcp |
| DE | 3.72.106.219:443 | btlr.sharethrough.com | tcp |
| DE | 3.72.106.219:443 | btlr.sharethrough.com | tcp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | bidder.criteo.com | udp |
| IE | 63.32.148.48:443 | bcp.crwdcntrl.net | tcp |
| NL | 178.250.1.56:443 | bidder.criteo.com | tcp |
| IE | 34.242.11.200:443 | ap.lijit.com | tcp |
| US | 104.18.27.216:443 | ex.ingage.tech | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | tg1.aniview.com | udp |
| GB | 23.214.142.107:443 | tg1.aniview.com | tcp |
| US | 143.244.215.221:443 | file.io | tcp |
| US | 8.8.8.8:53 | edge.venatusmedia.com | udp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| BE | 34.34.170.154:443 | edge.venatusmedia.com | tcp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | feed.avplayer.com | udp |
| US | 8.8.8.8:53 | player.avplayer.com | udp |
| US | 8.8.8.8:53 | track4.aniview.com | udp |
| US | 172.240.45.75:443 | track4.aniview.com | tcp |
| GB | 2.18.27.88:443 | feed.avplayer.com | tcp |
| GB | 2.18.190.195:443 | player.avplayer.com | tcp |
| US | 8.8.8.8:53 | 193.27.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.252.227.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.153.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.27.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.194.5.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.41.200.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.110.134.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.159.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.28.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.106.72.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.129.209.134.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.148.32.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.11.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.142.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.170.34.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.226.220.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.27.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| FR | 216.58.213.66:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 2cda986f707fe4a8fa5b84881493b061.safeframe.googlesyndication.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | tcp |
| FR | 216.58.214.65:443 | 2cda986f707fe4a8fa5b84881493b061.safeframe.googlesyndication.com | tcp |
| GB | 2.18.190.195:443 | player.avplayer.com | tcp |
| US | 8.8.8.8:53 | player.aniview.com | udp |
| US | 8.8.8.8:53 | play.aniview.com | udp |
| US | 8.8.8.8:53 | content1.avplayer.com | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| GB | 2.18.190.220:443 | content1.avplayer.com | tcp |
| GB | 23.214.142.107:443 | play.aniview.com | tcp |
| FR | 142.250.178.129:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | ssp-sync.criteo.com | udp |
| US | 8.8.8.8:53 | sync.1rx.io | udp |
| US | 8.8.8.8:53 | trace-eu.mediago.io | udp |
| US | 8.8.8.8:53 | ms-cookie-sync.presage.io | udp |
| US | 8.8.8.8:53 | cdn1.vntsm.com | udp |
| NL | 178.250.1.57:443 | ssp-sync.criteo.com | tcp |
| NL | 35.214.168.80:443 | trace-eu.mediago.io | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| US | 8.8.8.8:53 | ssbsync.smartadserver.com | udp |
| US | 8.8.8.8:53 | sync.inmobi.com | udp |
| FR | 142.250.178.129:443 | ep2.adtrafficquality.google | tcp |
| IE | 63.35.207.216:443 | ms-cookie-sync.presage.io | tcp |
| US | 20.33.55.12:443 | sync.inmobi.com | tcp |
| FR | 164.132.25.180:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 143.244.56.54:443 | cdn1.vntsm.com | tcp |
| FR | 143.244.56.54:443 | cdn1.vntsm.com | tcp |
| US | 8.8.8.8:53 | scripts.webcontentassessor.com | udp |
| US | 8.8.8.8:53 | go1.aniview.com | udp |
| US | 172.240.45.75:443 | track4.aniview.com | udp |
| FR | 172.217.20.164:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 75.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 65.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 220.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.168.214.35.in-addr.arpa | udp |
| US | 151.101.130.217:443 | scripts.webcontentassessor.com | tcp |
| US | 172.240.45.81:443 | go1.aniview.com | tcp |
| US | 8.8.8.8:53 | visitor.omnitagjs.com | udp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | s.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | ads.pubmatic.com | udp |
| GB | 184.26.56.245:443 | ads.pubmatic.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 180.25.132.164.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.56.244.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.207.35.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.55.33.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.84.255.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 245.56.26.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | eus.rubiconproject.com | udp |
| US | 8.8.8.8:53 | bh.contextweb.com | udp |
| GB | 184.25.193.73:443 | eus.rubiconproject.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | sync.targeting.unrulymedia.com | udp |
| US | 8.8.8.8:53 | cs-tam.yellowblue.io | udp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | eb2.3lift.com | udp |
| IE | 54.194.2.39:443 | cs-tam.yellowblue.io | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| US | 8.8.8.8:53 | t.adx.opera.com | udp |
| US | 8.8.8.8:53 | b1sync.zemanta.com | udp |
| US | 8.8.8.8:53 | sync.richaudience.com | udp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| NL | 185.89.210.122:443 | secure.adnxs.com | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| DE | 148.251.20.70:443 | sync.richaudience.com | tcp |
| US | 64.74.236.159:443 | b1sync.zemanta.com | tcp |
| US | 8.8.8.8:53 | cm.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ads.stickyadstv.com | udp |
| FR | 172.217.20.162:443 | cm.g.doubleclick.net | tcp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| IE | 34.242.11.200:443 | ap.lijit.com | tcp |
| DE | 148.251.20.70:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | secure-assets.rubiconproject.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | cs.krushmedia.com | udp |
| US | 8.8.8.8:53 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | u.openx.net | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | s2s.aniview.com | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | inv-nets.admixer.net | udp |
| US | 98.82.156.207:443 | s.amazon-adsystem.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| FR | 163.5.194.36:443 | prebid.a-mo.net | tcp |
| GB | 23.214.129.249:443 | secure-assets.rubiconproject.com | tcp |
| GB | 2.18.190.220:443 | content1.avplayer.com | udp |
| DE | 51.38.120.206:443 | onetag-sys.com | tcp |
| US | 35.244.159.8:443 | u.openx.net | tcp |
| US | 80.77.87.216:443 | cs.krushmedia.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | tcp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| US | 35.244.159.8:443 | u.openx.net | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | 73.193.25.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 39.2.194.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 213.245.248.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.213.145.82.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.236.74.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.250.54.154.in-addr.arpa | udp |
| US | 8.8.8.8:53 | optimized-by.rubiconproject.com | udp |
| US | 8.8.8.8:53 | token.rubiconproject.com | udp |
| US | 8.8.8.8:53 | cs.pgammedia.com | udp |
| US | 8.8.8.8:53 | sync.a-mo.net | udp |
| US | 8.8.8.8:53 | cs.ingage.tech | udp |
| US | 8.8.8.8:53 | acdn.adnxs.com | udp |
| US | 8.8.8.8:53 | js-sec.indexww.com | udp |
| US | 8.8.8.8:53 | venatusmedia-d.openx.net | udp |
| US | 8.8.8.8:53 | cs.admanmedia.com | udp |
| US | 8.8.8.8:53 | sync.adotmob.com | udp |
| US | 8.8.8.8:53 | bttrack.com | udp |
| US | 8.8.8.8:53 | sync.adkernel.com | udp |
| US | 8.8.8.8:53 | image6.pubmatic.com | udp |
| US | 8.8.8.8:53 | sync.aniview.com | udp |
| US | 8.8.8.8:53 | assets.a-mo.net | udp |
| US | 8.8.8.8:53 | sonata-notifications.taptapnetworks.com | udp |
| FR | 185.255.84.152:443 | visitor.omnitagjs.com | tcp |
| US | 172.240.45.70:443 | s2s.aniview.com | tcp |
| IE | 18.200.41.13:443 | ads.yieldmo.com | tcp |
| DE | 116.202.167.155:443 | inv-nets.admixer.net | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| US | 8.8.8.8:53 | px.ads.linkedin.com | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | sync.srv.stackadapt.com | udp |
| US | 8.8.8.8:53 | triplelift-match.dotomi.com | udp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | sync.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | 249.129.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 108.136.214.35.in-addr.arpa | udp |
| FR | 172.217.20.162:443 | cm.g.doubleclick.net | udp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| US | 104.18.25.18:443 | js-sec.indexww.com | tcp |
| DE | 3.125.150.131:443 | optimized-by.rubiconproject.com | tcp |
| US | 80.77.87.200:443 | cs.pgammedia.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| DE | 3.123.192.166:443 | sonata-notifications.taptapnetworks.com | tcp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| US | 104.19.158.19:443 | assets.a-mo.net | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| US | 104.18.26.216:443 | cs.ingage.tech | tcp |
| GB | 2.18.190.219:443 | acdn.adnxs.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.120.38.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.156.82.98.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.167.202.116.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.45.240.172.in-addr.arpa | udp |
| NL | 103.67.200.72:443 | sync.adkernel.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 54.144.6.190:443 | sync.srv.stackadapt.com | tcp |
| US | 54.144.6.190:443 | sync.srv.stackadapt.com | tcp |
| US | 54.144.6.190:443 | sync.srv.stackadapt.com | tcp |
| IE | 63.32.148.48:443 | sync.crwdcntrl.net | tcp |
| NL | 63.215.202.140:443 | triplelift-match.dotomi.com | tcp |
| US | 172.240.45.96:443 | sync.aniview.com | tcp |
| IE | 34.242.173.27:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 13.107.42.14:443 | px.ads.linkedin.com | tcp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | prebid-server.rubiconproject.com | udp |
| FR | 163.5.194.35:443 | sync.a-mo.net | tcp |
| FR | 172.217.20.162:443 | cm.g.doubleclick.net | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | c1.adform.net | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| DK | 37.157.6.243:443 | c1.adform.net | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| DE | 91.228.74.244:443 | cms.quantserve.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | us-u.openx.net | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | p.rfihub.com | udp |
| FR | 164.132.25.180:443 | ssbsync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | ad.turn.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| FR | 172.217.20.162:443 | cm.g.doubleclick.net | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | sync.go.sonobi.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 69.166.1.66:443 | sync.go.sonobi.com | tcp |
| US | 8.8.8.8:53 | imasdk.googleapis.com | udp |
| US | 8.8.8.8:53 | pixel.tapad.com | udp |
| FR | 216.58.213.74:443 | imasdk.googleapis.com | tcp |
| US | 8.8.8.8:53 | 18.25.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.158.19.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 219.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.26.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 149.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.127.47.198.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.150.125.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.192.123.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.173.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.87.77.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.33.132.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.176.137.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.194.5.163.in-addr.arpa | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | 185.25.132.164.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.6.144.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 115.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 58.55.71.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.119.184.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 244.74.228.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 130.160.0.193.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.1.166.69.in-addr.arpa | udp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | e56c64d9c9f6695386415e1058021c53.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | track1.avplayer.com | udp |
| US | 172.240.45.76:443 | track1.avplayer.com | tcp |
| FR | 216.58.213.74:443 | imasdk.googleapis.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | pixel-eu.rubiconproject.com | udp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | sync-tm.everesttech.net | udp |
| US | 8.8.8.8:53 | dis.criteo.com | udp |
| US | 8.8.8.8:53 | csync.loopme.me | udp |
| US | 8.8.8.8:53 | pixel.onaudience.com | udp |
| US | 8.8.8.8:53 | uipglob.semasio.net | udp |
| US | 8.8.8.8:53 | mwzeom.zeotap.com | udp |
| US | 8.8.8.8:53 | um.simpli.fi | udp |
| NL | 35.214.136.108:443 | x.bidswitch.net | udp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel-eu.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | pixel.rubiconproject.com | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | match.prod.bidr.io | udp |
| FR | 142.250.201.166:443 | s0.2mdn.net | tcp |
| US | 8.8.8.8:53 | pixel-us-east.rubiconproject.com | udp |
| US | 8.8.8.8:53 | simage2.pubmatic.com | udp |
| IE | 52.50.195.207:443 | match.prod.bidr.io | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| FR | 216.58.213.74:443 | imasdk.googleapis.com | udp |
| US | 172.67.40.173:443 | mwzeom.zeotap.com | tcp |
| FR | 54.38.113.4:443 | pixel.onaudience.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 34.1.232.79:443 | csync.loopme.me | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 98.82.156.207:443 | s.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 1f2e7.v.fwmrm.net | udp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| GB | 18.134.84.19:443 | 1f2e7.v.fwmrm.net | tcp |
| US | 8.8.8.8:53 | image2.pubmatic.com | udp |
| US | 151.101.130.49:443 | sync-tm.everesttech.net | tcp |
| GB | 185.64.191.210:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| US | 69.173.151.100:443 | pixel-us-east.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cacerts.geotrust.com | udp |
| SE | 192.229.221.95:80 | cacerts.geotrust.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 74.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.113.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.45.240.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.195.50.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.40.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.232.1.34.in-addr.arpa | udp |
| IE | 52.50.195.207:443 | match.prod.bidr.io | tcp |
| US | 8.8.8.8:53 | pubads.g.doubleclick.net | udp |
| US | 64.74.236.159:443 | b1sync.zemanta.com | tcp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| US | 34.111.113.62:443 | pixel.tapad.com | tcp |
| US | 8.8.8.8:53 | ce.lijit.com | udp |
| US | 8.8.8.8:53 | capi.connatix.com | udp |
| US | 8.8.8.8:53 | b1sync.outbrain.com | udp |
| IE | 54.73.232.2:443 | ce.lijit.com | tcp |
| US | 172.64.146.152:443 | capi.connatix.com | tcp |
| US | 8.8.8.8:53 | elb.the-ozone-project.com | udp |
| US | 64.202.112.191:443 | b1sync.outbrain.com | tcp |
| US | 104.18.34.190:443 | elb.the-ozone-project.com | tcp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| US | 172.240.45.70:443 | s2s.aniview.com | udp |
| NL | 216.58.214.3:443 | csi.gstatic.com | tcp |
| NL | 216.58.214.3:443 | csi.gstatic.com | tcp |
| IE | 34.242.173.27:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 46.228.174.117:443 | sync.targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | image8.pubmatic.com | udp |
| US | 8.8.8.8:53 | 121.51.243.77.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.84.134.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.151.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.232.73.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 152.146.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 190.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.112.202.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.214.58.216.in-addr.arpa | udp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| US | 8.8.8.8:53 | cm.adform.net | udp |
| US | 8.8.8.8:53 | ssbsync-global.smartadserver.com | udp |
| US | 8.8.8.8:53 | ssum.casalemedia.com | udp |
| DE | 79.127.216.47:443 | id.a-mx.com | tcp |
| US | 104.18.26.193:443 | ssum.casalemedia.com | tcp |
| DK | 37.157.2.229:443 | cm.adform.net | tcp |
| US | 8.8.8.8:53 | pb-am.a-mo.net | udp |
| NL | 89.149.193.100:443 | ssbsync-global.smartadserver.com | tcp |
| US | 8.8.8.8:53 | api-2-0.spot.im | udp |
| DE | 148.251.20.70:443 | sync.richaudience.com | tcp |
| US | 8.8.8.8:53 | bc-sync.com | udp |
| US | 64.74.236.159:443 | b1sync.zemanta.com | tcp |
| US | 34.1.232.79:443 | csync.loopme.me | tcp |
| US | 52.2.28.18:443 | api-2-0.spot.im | tcp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| DE | 51.38.120.206:443 | onetag-sys.com | udp |
| NL | 216.58.214.3:443 | csi.gstatic.com | udp |
| FR | 163.5.194.33:443 | pb-am.a-mo.net | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | cs-rtb.minutemedia-prebid.com | udp |
| US | 8.8.8.8:53 | cs-server-s2s.yellowblue.io | udp |
| US | 8.8.8.8:53 | sync.cootlogix.com | udp |
| US | 8.8.8.8:53 | dmp.dexerto.media | udp |
| US | 80.77.87.200:443 | cs.pgammedia.com | tcp |
| DE | 148.251.20.70:443 | sync.richaudience.com | tcp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| US | 35.174.190.215:443 | cs-server-s2s.yellowblue.io | tcp |
| US | 167.99.229.36:443 | sync.cootlogix.com | tcp |
| FR | 18.155.129.68:443 | cs-rtb.minutemedia-prebid.com | tcp |
| US | 44.207.135.17:443 | dmp.dexerto.media | tcp |
| GB | 185.64.191.214:443 | image8.pubmatic.com | tcp |
| US | 80.77.87.200:443 | cs.pgammedia.com | tcp |
| US | 80.77.87.200:443 | cs.pgammedia.com | tcp |
| US | 80.77.87.200:443 | cs.pgammedia.com | tcp |
| US | 104.18.26.193:443 | ssum.casalemedia.com | udp |
| US | 8.8.8.8:53 | image4.pubmatic.com | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 167.99.229.36:443 | sync.cootlogix.com | tcp |
| US | 8.8.8.8:53 | dsp.360yield.com | udp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| NL | 185.64.189.114:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ssc-cms.33across.com | udp |
| US | 8.8.8.8:53 | rtb.mfadsrvr.com | udp |
| US | 8.2.108.175:443 | bc-sync.com | tcp |
| NL | 69.173.156.149:443 | pixel.rubiconproject.com | tcp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| FR | 18.164.52.25:443 | s.ad.smaato.net | tcp |
| IE | 63.35.168.64:443 | dsp.360yield.com | tcp |
| US | 167.99.229.36:443 | sync.cootlogix.com | tcp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 67.202.105.21:443 | ssc-cms.33across.com | tcp |
| GB | 87.248.114.12:443 | ups.analytics.yahoo.com | tcp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | tcp |
| NL | 185.64.189.114:443 | image4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | 214.191.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.26.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.2.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 100.193.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.194.5.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.28.2.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.129.155.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.190.174.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.229.99.167.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 17.135.207.44.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.52.164.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.168.35.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.105.202.67.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.199.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | eu-u.openx.net | udp |
| US | 34.111.113.62:443 | pixel.tapad.com | udp |
| US | 8.8.8.8:53 | inmobi-match.dotomi.com | udp |
| US | 8.8.8.8:53 | id.rlcdn.com | udp |
| US | 8.8.8.8:53 | sync.e-volution.ai | udp |
| US | 8.8.8.8:53 | tr.blismedia.com | udp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | tracker-shr.ortb.net | udp |
| NL | 103.67.200.72:443 | sync.adkernel.com | tcp |
| US | 8.8.8.8:53 | us.ck-ie.com | udp |
| US | 34.1.232.79:443 | csync.loopme.me | tcp |
| US | 8.8.8.8:53 | contextual.media.net | udp |
| NL | 64.158.223.137:443 | inmobi-match.dotomi.com | tcp |
| NL | 91.227.144.189:443 | sync.e-volution.ai | tcp |
| US | 34.96.105.8:443 | tr.blismedia.com | tcp |
| US | 172.111.38.54:443 | tracker-shr.ortb.net | tcp |
| US | 8.2.110.114:443 | us.ck-ie.com | tcp |
| US | 35.244.174.68:443 | id.rlcdn.com | tcp |
| GB | 184.25.192.27:443 | contextual.media.net | tcp |
| US | 8.8.8.8:53 | sync.clearnview.com | udp |
| GB | 87.248.114.12:443 | ups.analytics.yahoo.com | tcp |
| US | 88.214.193.140:443 | sync.clearnview.com | tcp |
| NL | 35.214.199.88:443 | rtb.mfadsrvr.com | udp |
| US | 8.8.8.8:53 | cs.yellowblue.io | udp |
| US | 80.77.87.161:443 | cs.admanmedia.com | tcp |
| US | 8.8.8.8:53 | 137.223.158.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.105.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.144.227.91.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.174.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.192.25.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.110.2.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 54.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.193.214.88.in-addr.arpa | udp |
| FR | 54.38.113.4:443 | pixel.onaudience.com | tcp |
| US | 8.8.8.8:53 | simage4.pubmatic.com | udp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| US | 8.8.8.8:53 | ps.eyeota.net | udp |
| DE | 52.57.150.20:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | gum.aidemsrv.com | udp |
| US | 104.18.7.198:443 | gum.aidemsrv.com | tcp |
| GB | 2.18.190.220:443 | content1.avplayer.com | tcp |
| US | 8.8.8.8:53 | tracker.open-adsyield.com | udp |
| US | 8.8.8.8:53 | jadserve.postrelease.com | udp |
| US | 8.8.8.8:53 | sync-service.net | udp |
| US | 35.244.174.68:443 | id.rlcdn.com | udp |
| US | 192.132.33.67:443 | bttrack.com | tcp |
| US | 204.62.12.209:443 | sync-service.net | tcp |
| US | 172.111.38.111:443 | tracker.open-adsyield.com | tcp |
| IE | 34.250.252.102:443 | jadserve.postrelease.com | tcp |
| US | 8.8.8.8:53 | 81.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.150.57.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.7.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pubmatic-match.dotomi.com | udp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| NL | 89.207.16.140:443 | pubmatic-match.dotomi.com | tcp |
| NL | 89.207.16.140:443 | pubmatic-match.dotomi.com | tcp |
| US | 8.8.8.8:53 | d.turn.com | udp |
| US | 8.8.8.8:53 | id.rtb.mx | udp |
| US | 8.8.8.8:53 | ow.pubmatic.com | udp |
| US | 8.8.8.8:53 | prebid.adnxs.com | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| NL | 79.127.227.46:443 | id.rtb.mx | tcp |
| NL | 185.89.208.11:443 | prebid.adnxs.com | tcp |
| NL | 185.64.189.116:443 | ow.pubmatic.com | tcp |
| US | 8.8.8.8:53 | dsp-cookie.adfarm1.adition.com | udp |
| US | 8.8.8.8:53 | ad.mrtnsvr.com | udp |
| US | 8.8.8.8:53 | sync.bedrockplatform.ninja | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| IE | 52.214.88.250:443 | sync.bedrockplatform.ninja | tcp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| US | 8.8.8.8:53 | 102.252.250.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 209.12.62.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 111.38.111.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.208.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.189.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 8.8.8.8:53 | dsp-ap.eskimi.com | udp |
| US | 151.101.130.49:443 | sync-tm.everesttech.net | tcp |
| US | 34.1.232.79:443 | csync.loopme.me | tcp |
| NL | 188.42.63.48:443 | dsp-ap.eskimi.com | tcp |
| US | 8.8.8.8:53 | d5p.de17a.com | udp |
| US | 8.8.8.8:53 | core.iprom.net | udp |
| US | 8.8.8.8:53 | cm-supply-web.gammaplatform.com | udp |
| US | 8.8.8.8:53 | ipac.ctnsnet.com | udp |
| SE | 13.50.192.155:443 | d5p.de17a.com | tcp |
| US | 8.8.8.8:53 | cm.adgrx.com | udp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| US | 8.8.8.8:53 | cookie-matching.mediarithmics.com | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | match.adsby.bidtheatre.com | udp |
| IE | 52.19.224.221:443 | cm.adgrx.com | tcp |
| FR | 54.36.150.187:443 | cookie-matching.mediarithmics.com | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| FR | 142.250.178.129:443 | ep2.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | 250.88.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.210.82.80.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.193.186.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.192.50.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.224.19.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 187.150.36.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | green.erne.co | udp |
| US | 8.8.8.8:53 | a.tribalfusion.com | udp |
| FR | 141.94.161.190:443 | green.erne.co | tcp |
| US | 104.18.37.193:443 | a.tribalfusion.com | tcp |
| US | 8.8.8.8:53 | pixel-eu.onaudience.com | udp |
| US | 8.8.8.8:53 | pm.w55c.net | udp |
| FR | 54.38.113.3:443 | pixel-eu.onaudience.com | tcp |
| BE | 35.210.130.15:443 | pm.w55c.net | tcp |
| US | 104.18.37.193:443 | a.tribalfusion.com | udp |
| US | 8.8.8.8:53 | s.tribalfusion.com | udp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | bidberry.net | udp |
| DE | 57.129.39.243:443 | bidberry.net | tcp |
| US | 8.8.8.8:53 | 190.161.94.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 193.37.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.130.210.35.in-addr.arpa | udp |
| SE | 192.229.221.95:80 | cacerts.geotrust.com | tcp |
| US | 8.8.8.8:53 | 243.39.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 241.150.49.20.in-addr.arpa | udp |
| US | 172.240.45.76:443 | track1.avplayer.com | udp |
| US | 8.8.8.8:53 | 241.42.69.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 212.20.149.52.in-addr.arpa | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| FR | 154.54.250.81:443 | ads.stickyadstv.com | tcp |
| US | 8.8.8.8:53 | 097967c7c0846b0fded3ce4993601eb3.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 196.190.18.2.in-addr.arpa | udp |
| DE | 148.251.20.70:443 | sync.richaudience.com | tcp |
| IE | 67.220.226.234:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 7cc5b8b29a19d7d82324d40090b79fa5.safeframe.googlesyndication.com | udp |
| FR | 216.58.213.74:443 | imasdk.googleapis.com | udp |
| FR | 216.58.214.161:443 | tpc.googlesyndication.com | tcp |
| FR | 172.217.20.164:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 161.214.58.216.in-addr.arpa | udp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| NL | 69.173.156.150:443 | prebid-server.rubiconproject.com | tcp |
| FR | 91.134.110.129:443 | prg.smartadserver.com | tcp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 7a481c21ad4c0b8ee08a9bca8d935b2d.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.file.io | udp |
| FR | 185.255.84.150:443 | hb-api.omnitagjs.com | tcp |
| US | 8.8.8.8:53 | exchange.kueezrtb.com | udp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | ap.lijit.com | udp |
| FR | 163.5.194.36:443 | pb-am.a-mo.net | tcp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| NL | 185.89.210.122:443 | secure.adnxs.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 69.166.1.32:443 | apex.go.sonobi.com | tcp |
| IE | 52.19.107.231:443 | ads.yieldmo.com | tcp |
| IE | 108.129.36.117:443 | ap.lijit.com | tcp |
| US | 104.18.27.193:443 | htlb.casalemedia.com | udp |
| US | 174.138.124.83:443 | exchange.kueezrtb.com | tcp |
| US | 8.8.8.8:53 | 231.107.19.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.36.129.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 83.124.138.174.in-addr.arpa | udp |
| N/A | 127.0.0.1:9229 | tcp | |
| US | 8.8.8.8:53 | chrome-devtools-frontend.appspot.com | udp |
| FR | 142.250.179.84:443 | chrome-devtools-frontend.appspot.com | tcp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| DE | 142.250.185.227:443 | beacons.gcp.gvt2.com | tcp |
| DE | 142.250.185.227:443 | beacons.gcp.gvt2.com | tcp |
| DE | 142.250.185.227:443 | beacons.gcp.gvt2.com | tcp |
| N/A | 127.0.0.1:9229 | tcp | |
| US | 8.8.8.8:53 | 84.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | btlr.sharethrough.com | udp |
| US | 69.166.1.32:443 | apex.go.sonobi.com | tcp |
| DE | 3.72.6.211:443 | btlr.sharethrough.com | tcp |
| US | 8.8.8.8:53 | 227.185.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | go1.aniview.com | udp |
| US | 172.240.45.81:443 | go1.aniview.com | tcp |
| US | 8.8.8.8:53 | optimized-by.rubiconproject.com | udp |
| US | 8.8.8.8:53 | 211.6.72.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6f606e63b2e1c07b94895a9eb91c907e.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | csync.smartadserver.com | udp |
| FR | 172.217.20.164:443 | www.google.com | tcp |
| GB | 88.221.134.168:443 | csync.smartadserver.com | tcp |
| NL | 216.58.214.3:443 | csi.gstatic.com | udp |
| BE | 35.210.130.15:443 | pm.w55c.net | tcp |
| NL | 46.228.174.115:443 | targeting.unrulymedia.com | tcp |
| US | 8.8.8.8:53 | match.sharethrough.com | udp |
| US | 8.8.8.8:53 | 168.134.221.88.in-addr.arpa | udp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 8.8.8.8:53 | ced-ns.sascdn.com | udp |
| GB | 88.221.134.168:443 | csync.smartadserver.com | tcp |
| GB | 88.221.134.233:443 | ced-ns.sascdn.com | tcp |
| US | 13.248.245.213:443 | eb2.3lift.com | tcp |
| DE | 18.184.119.72:443 | match.sharethrough.com | tcp |
| US | 34.98.64.218:443 | eu-u.openx.net | udp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| US | 8.8.8.8:53 | ssum-sec.casalemedia.com | udp |
| FR | 164.132.25.185:443 | rtb-csync.smartadserver.com | tcp |
| US | 35.71.131.137:443 | match.adsrvr.org | tcp |
| US | 8.8.8.8:53 | sync.mathtag.com | udp |
| FR | 45.137.176.88:443 | sync.adotmob.com | tcp |
| US | 8.8.8.8:53 | secure.adnxs.com | udp |
| US | 8.8.8.8:53 | pxl.iqm.com | udp |
| DE | 80.82.210.217:443 | dsp-cookie.adfarm1.adition.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 103.67.200.72:443 | sync.adkernel.com | tcp |
| NL | 178.250.1.9:443 | dis.criteo.com | tcp |
| US | 8.8.8.8:53 | dsp.360yield.com | udp |
| IE | 34.252.45.231:443 | dsp.360yield.com | tcp |
| US | 216.200.232.253:443 | sync.mathtag.com | tcp |
| DE | 37.252.171.85:443 | secure.adnxs.com | tcp |
| US | 8.8.8.8:53 | s.ad.smaato.net | udp |
| US | 8.8.8.8:53 | s.company-target.com | udp |
| DE | 162.19.138.119:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | equativ-match.dotomi.com | udp |
| US | 8.8.8.8:53 | ws.rqtrk.eu | udp |
| US | 34.96.105.8:443 | tr.blismedia.com | udp |
| US | 35.227.252.103:443 | udp | |
| NL | 185.89.210.122:443 | tcp | |
| IE | 34.242.173.27:443 | tcp | |
| FR | 154.54.250.81:443 | tcp | |
| N/A | 3.229.202.201:443 | tcp | |
| N/A | 34.96.71.22:443 | tcp | |
| N/A | 89.207.16.201:443 | tcp | |
| N/A | 57.129.18.121:443 | tcp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| US | 8.8.8.8:53 | udp | |
| N/A | 57.129.18.105:443 | tcp | |
| US | 98.82.156.207:443 | tcp | |
| N/A | 52.1.235.70:443 | tcp | |
| N/A | 34.160.19.107:443 | tcp | |
| N/A | 52.16.6.102:443 | tcp | |
| N/A | 154.59.122.79:443 | tcp | |
| N/A | 34.225.22.174:443 | tcp |
Files
\??\pipe\crashpad_3556_LOJAOHVROBWWZDQZ
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | bbf81074b25bf02980dec9d197dba205 |
| SHA1 | 6fc28a1317c5efc7c6b2728271785aa4187077de |
| SHA256 | 11cd71c22d70d115be4964b20e11cd3392ba9b7feaeccfebdcbfe52b24841470 |
| SHA512 | 2f161b33a7d48b9a3f1b7d87be7f12d799ec14eda078e25ac7fd90a102a8c2ede627d780cc1ce461d1a253270a0e4f803895b2422b885c26f1c950b508839ee5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | cfd12682607859033964e1c03050fd1c |
| SHA1 | eb53eae2b624db6fb4c1e5a2b3f89e2284a672a0 |
| SHA256 | f33fcf2081be707d7d172eee4ce34a4dd88b9222667f995d470ee61c011a9632 |
| SHA512 | 9b489973e53767f08cd3a88299d5f7169afc9f8f085fcf6c662c982f1b4704c5a8af865f10f34108677c80450b9ef049d250a3dd76c77de0c27af05c3ae04037 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState
| MD5 | 9d2a0486fcf4e2d2b9ad0e877831a8e8 |
| SHA1 | c94b9c382127a1e67b145dd803bdcda6fdce6804 |
| SHA256 | e361ec7455ada1c9d222162da08503d295ad4299242e59b4660afedd96940f9a |
| SHA512 | a34000a9025227757bae004f7e980fba3c71bb04f0dc28de073ec2f20d8e555378d764f5cff08b02e3d2aca3903c0ae8213eea853824fa59573ac7329c2f8733 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 958cd4194577c35c9a0b2aa817efdef7 |
| SHA1 | 3180e92bd234d80ba8b598649c969724f99c4b20 |
| SHA256 | d88ebbc503f8a5e0d4309c9fc58611faaa319cbafacfa4371ca39d491522e8de |
| SHA512 | ab4dd41c8d52a6e1bb62c55e8ddcf70ca11b72aa084930eac1e341ece3178694745932ee01114dc6a324482ff5cc7870a51f241595ec4a588babb4507214e0f4 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e81496fec8892e7e09af4ebc4bca1ec6 |
| SHA1 | a399e4b1e01a0807d2686666ae379d0cfe22132c |
| SHA256 | 40b4a897ed0d2c52b38e7469314399cdb5ecd7233cc6ce647aa98a6f635ba8c9 |
| SHA512 | d3a83c9bdd447901ee36040a27edbf1719aac01492b1a3bd8ce372132d799bd156dc434914981f12a7a4803a7a18d0d03da14cb9a6cad4e56045e1698b7367d6 |
memory/1740-320-0x00000000747EE000-0x00000000747EF000-memory.dmp
memory/1740-321-0x0000000000320000-0x0000000000336000-memory.dmp
memory/1740-322-0x0000000002640000-0x0000000002652000-memory.dmp
memory/1740-323-0x0000000004B40000-0x0000000004B5A000-memory.dmp
memory/1740-324-0x00000000747E0000-0x0000000074F90000-memory.dmp
memory/1740-325-0x0000000005110000-0x00000000056B4000-memory.dmp
C:\Users\Admin\AppData\Local\Client.exe
| MD5 | 9ec97349ebe965c21aa8687c8d8fdb38 |
| SHA1 | 7836dc2469e7f9be4d50a6f9395648a03b4f5cec |
| SHA256 | e74770e6759294f5fd7bf3f8a3fce86d65da7c9dfb75553f79d0cd46a08436ee |
| SHA512 | 373505523151ae034ece316ac0144ee1eeb6ed3a44e2e16295de11c926a5fe43cf8b6e431bb80e5f564d7d14fe41dfcb1cf01a7971500fc2c550e8d4991b7309 |
memory/1740-332-0x0000000004D80000-0x0000000004DF6000-memory.dmp
memory/1740-340-0x00000000747E0000-0x0000000074F90000-memory.dmp
memory/1740-343-0x00000000747E0000-0x0000000074F90000-memory.dmp
memory/1740-345-0x00000000747E0000-0x0000000074F90000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 9a6a102edbebb05cd205c897ddcdd30d |
| SHA1 | f0f557538bf039cedd85f7cae0c3cb2836d7c576 |
| SHA256 | f344475767b0c020eb1d4610e4d9b971bb1be12e7163da8f4a9b80fd6e75a047 |
| SHA512 | 5cc762037f7d99f132178969ab5e851ac38a149f7fc08bdb5f8bdaba83c509136d49232a88cf3809b48b4e9d9ac173daa3fe79217157c7c4a64f48e06ed4c50a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000012
| MD5 | 8a1c45fd9ffbb6cec3defb46318ff140 |
| SHA1 | 724c08dda9ec8ee6c0d516af60bfa96b2a2b0c4e |
| SHA256 | 26932cd6e1394609df099595548142880975bef3fb203120d640c191bb8e73f4 |
| SHA512 | a29c4f1881898b5869eea43599f51450ee50755f1335e46f18ec74ac55101067a6984fa75fb66d87c03ee687b1a4dde1e4406ae46fd0950a634cb4fbc19529ba |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000014
| MD5 | 1b2731006f2b2597b02859e501bc2d4c |
| SHA1 | 118d27a703cef3fb083593a56bbc93e62420f30a |
| SHA256 | 59dc184cbc1a318493460d1d78999cfdaaaac9a457b5a3a02c2567dfa17314bd |
| SHA512 | f7452f91afe2fbfcb04f80dc7b051d874224de8790bbc53858678332a6b49f7295a15989a587811e1e8fb58a38625ec3e15657d88a367fd50d5b201d7abbe90c |
memory/8184-376-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-375-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-374-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-386-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-385-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-384-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-383-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-382-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-380-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/8184-381-0x00000262DAF10000-0x00000262DAF11000-memory.dmp
memory/5196-389-0x00000000009C0000-0x00000000009D2000-memory.dmp
memory/5196-390-0x0000000004E60000-0x0000000004EF2000-memory.dmp
memory/7420-393-0x0000000002E60000-0x0000000002E72000-memory.dmp
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 3e96a10623590c691ed1753ea526a959 |
| SHA1 | c739394dd2eb98eacd287a30326c3c27d2d63ffb |
| SHA256 | ef483447a348f536ad2f00f725090f82afbbf58459ee8314947538a181b8970e |
| SHA512 | 9e679f7d7d524f6586a092f9e98160e278e7d0bea448fb2cf6b938862ae3990164985d8c3b1fdc355b218f209c3501c68b3b116fb451d63ef46fdaefee0504dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | a39d05b5bd816535eb51fd0e9072c813 |
| SHA1 | 92ead88eb69aed70fcc11d45f293de99ff933750 |
| SHA256 | 4d8d4386b02d9b3befdd2377537eacbc846a612b74ccf5e4fe2be5986aa253d5 |
| SHA512 | 050b19740c1c924a9a7cb0e2a0b0dfea42b3f4a3be2d4a1d3cce6ef67f801e2a54a570ecabfbc28b606e335e2e367da3b88c720bd9a03e7d5bb4a16efb94e3ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000036
| MD5 | 60dc4c8d075c2f821712c1d627bed9f8 |
| SHA1 | e9a5b07e40ff832ca6ea5647f2ce0c673216b5ed |
| SHA256 | ccac68fb2041f85eed7ed7c6bbcd88de575a5fff4d9e1951c85224582f857fd3 |
| SHA512 | 5f8f1cabdd1c2c42d868bd4e7c8e762c5c8a86034716926f21ecbec0b4a0aa4e6c87eac90febf256eeeb6009a699caa2e252c64ed8c385ef212fc29b28ce9b03 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1d299033e289e8189fa064cfa509de8f |
| SHA1 | a65d5d47e30129f458be520a0bac9078b4270c7a |
| SHA256 | 9b458c56fdc111ffc845e3cc1b59d0c0a61183ca86cdfbc687f6c0a42d2c0938 |
| SHA512 | e1f752382a58866d60e6ddc578b39ac99a23ad77cde682a4250aa444c13b9222e3d0c98b2411a2964a1431b3c7b0ac74d57cd22c0106e83f248755688e325ba1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f36e0b9599426f577048c572f36d6854 |
| SHA1 | 9ae95972832df15022233635bc32ef039d49e292 |
| SHA256 | e1463942928f731de1531e2467996d87143370473568665753a3ca627844f63f |
| SHA512 | dc315a482e86f70d1f1003f6ea0cb5b2c3286f2e74d382cd2c568b760d142b0d4c477dd1bb93a8ade3ff1df07475da3b22d3b8bcd910d95b01d6e50be1c44a3b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f866fe1f6e12561f487366dfd14cce6b |
| SHA1 | 68dcc116acb8744b3c7abe58b40b7c9010916856 |
| SHA256 | 45e734410689d30628af7e8c8559b335db86474a18a74f1bdb8e43cf1d8be137 |
| SHA512 | be3b3311c7a6df47003b85442896fd7e9ec32bd4f91c492daf9bbabfce0b4aeccac09d37d32764447676d8468828fd45ab6d6cb995757e9a13eaf2c848bace7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 1e8eee193bd00121161f1f5822199a3c |
| SHA1 | 407f3113c61dec3df034bb8cd3f459a9753f311e |
| SHA256 | cf2f205230770278cdede6332c7cf20e03ea38f06763b4f60b3fd6a8f1213723 |
| SHA512 | 783c3f714895b886b0bce8a560ebfb477dc7d168a2533256c90f2f12a78d186f5d25386edc6a1d28209bd9fe143445d385d0352b3ac25c699bc69c2dfd8e8198 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_00001f
| MD5 | 722a5c8e9a28cf3220825f4e555176a3 |
| SHA1 | c662f0371ee534a0e20b1b9e6a5f49e4609fb86d |
| SHA256 | 21b7757220221262068a3943e4c7ac09e690e65c40403f3a20af4f58d1e5cf81 |
| SHA512 | 0a9cc0a324b3bbc7046be76103ea9c909d6bce6017cfb7c409344d7610b8d720be6e115775ff56b4ade6e304e69cdd944482d5f2511865dd30bd60afd0282291 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\5a7cbc2f76b33d2b_0
| MD5 | c0b73bfe2cfc075ac164dd4aa19464ec |
| SHA1 | 5c0642481183c1a77e6fe659b6ade13cb18d476c |
| SHA256 | b2230980c8ff146cfabb0b37656a21c481d2c0a76e0e84de9de2c96917c59e7e |
| SHA512 | fcadcc4c78ae43a0307150680563d0a32a79ef91862288b4bf399841e423302baf07b31796d0605b37452f214ed98007bc6ba03ae6cb10fb4bb4b514e75c7733 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\0ca4572f3dbd7a1a_0
| MD5 | 5ca634b624253b49c961922e4571fbad |
| SHA1 | 287a724117cb78635b66f9f6c67ae030d2d3d8d0 |
| SHA256 | af57f9f2ba60d55cfb3b10d65ea59a442f92d1f4cea3dbd5e7cbd35f07b8b9af |
| SHA512 | bd7a8b08989c30b4fc698b6725328daad58d73b83990fb1cdac5d79e8bdb74189628309b9544b063aaadb48d1ed80852969f6b0a96b8bd248487c2fba58dd87d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6ad1a5bef090b736_0
| MD5 | 64c7a0cfca0d22d58be78a59f4d9d4b2 |
| SHA1 | c42c34a4ba866fe1a156c9b9118e419b2cd59bcc |
| SHA256 | ff6661011b61ca29536970717076c7fbef3adc3dc379a9084fef98cbf6156c8d |
| SHA512 | fa872b5dc03476ac08955aac3b297bc9126d663b0d7f561e228d86035ca91d0a626610b431632a6d6009be8b3400e68e84a0ae8ee450fcfa464cc0ab2e00b471 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000035
| MD5 | 1eebc0237ac9209f05bb86cb6bdb450f |
| SHA1 | 61e822a4c70509be8352b18fbc036b1d3ee109f5 |
| SHA256 | 72c10a214420ba943a71df14c089212290c7f64c315148303785fa455b9281b7 |
| SHA512 | dfc68a228d114aa885773d19a848e3a78402dfc88d78f38187f99f62caf1bd3055f05e4a4961d678b49507de852ab91ce84f718c0275679f2cfca785c74a0b4d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | c0fe803298d5cccf18d28dcb2e789b1f |
| SHA1 | 4b72e37f2522c03da3d0b312c7db35b20cf5c85a |
| SHA256 | bd3eedf3e75779f8af3fc1191dcae0cd7a6604d535c8eb1c87d8c4c4c6f037b4 |
| SHA512 | d68024560ace4bfe61dde9102583eb13109cee2304f647f2e518c09adf1bfaa5d77a71656ceff9c4d1b4351b1670d8497e9e63b6ab5bce556293ca886d8e9b21 |