Windows Analysis Report
https://secure-tracking-support.de/ch/?c=002918883

Overview

General Information

Sample URL: https://secure-tracking-support.de/ch/?c=002918883
Analysis ID: 1523273
Infos:

Detection

Score: 3
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Connects to several IPs in different countries
HTML body with high number of embedded SVGs detected
HTML page contains hidden javascript code
HTML page contains string obfuscation
Program does not show much activity (idle)
Stores files to the Windows start menu directory

Classification

HTML body with high number of embedded SVGs detected
Source: https://www.speedtest.net/ HTTP Parser: Total embedded SVG size: 117493
HTML page contains hidden javascript code
Source: https://secure-tracking-support.de/ch/?c=002918883 HTTP Parser: Base64 decoded: 1727776326.000000
HTML page contains string obfuscation
Source: https://5d11c261a793afc000e43f02abc53098.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html HTTP Parser: Found new string: script (function() {var u = 'https://googleads.g.doubleclick.net/dbm/ad?dbm_c=AKAmf-BGkMzlcSr9vypXoQcclcRqXPCuv-yKKhbfUlBpyUL1W1PQWZbEfIKlKctFgVON-jU0QSaFwfOBCdKDyRe8V2zTl81eHeWNXpzq9NHY9rdPyJEBnE2dTEgJcbF-LpNVHGN9HbZCOECZdoBWh3vz8iAPSJrXKIdbUs_SF5oWzQNpwxFXlhKcnSgJ1MqOCqwZKDkIjt3ldvVcRwIRJTWDpMuizbf7X5ppN6nbQNDrEySTrXFJ4xE&cry=1&dbm_d=AKAmf-CrxMewui5Ux-RT-VHq9sd0YyAewI3V47rxtWhW84Hxub7fVI3_x_OPV2QzhruWMMR5lH2KdajriIYVHmmTkSCCZ_HxdTv37eNu884CwkviSPOqXvob7P2j3kuIXPFSFcFH1KmEE80AwsnQ46CECQjLs69Wy1AHhWUjbTKGuv13ck5HVRS2ssaH467p8e3epMp86ZXEicdiW4AiN8B9tkmyASYus-iIoPqE6sGEJJma8N_bKoHuCX7xhsToIQf1qY8GqDgvHVOlCalFNM4pOFG1ERkb6_wmXlV6ctRlPR25H0WT3XtpXBilLx4Lgg91an5V0_GI8m7x4QHSsOhlqv_LFIkIDM6F7L0U8SxB0JgkMcLRA8tenOhJ1hcqxaZccX8_XFl4yYhQhHVm3aw2LtYDWnnoKgTJgIk6-Rq4mZmxsrxfQ2vgapj4_OQCxHasOxo5rzALCmNu9lKC0-Vbey_W9usGCGrvtxZklBIbQw2laXxa76SBOW8Rb17tQvd_r5F32N9CSE52nFSaeukSRRCFnK9HMCIhntlJQJdlm9byYIzbUs179CRmt5y5TIqmibxZFCh1StPnbpjc2enwc-SuyUNGDSxEow1P9i3C-IR6Nlw0K4L11hVkh6fB9IaQ3DnEmxuaekeUoRQyltbQfKRT10nFnT6quNWBpDQUDrHs6Jk63...
Source: https://www.speedtest.net/ HTTP Parser: Found new string: script . if (window.isBlocked) {. (function(){. window.aax =window.aax || {};. const btloaderEndpoint = "//btloader.com/tag?o=5075500865683456&upapi=true". . function isSSL(){. return('https:' == window.location.protocol);. }. . function getProtocol(){. return isSSL() ? 'https:' : 'http:'. }. . function writeBlockThroughScript(endpoint){. const source = getProtocol() + endpoint;. document.write('<scr'+'ipt src="' + source + '" async></scr' + 'ipt>');. }. . writeBlockThroughScript(btloaderEndpoint);. })();. }. ..
Source: https://secure-tracking-support.de/ch/?c=002918883 HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: https://www.speedtest.net/ HTTP Parser: No favicon
Source: Binary string: Ndb=function(a){if(!Edb.has(a)){Edb.size||(Fdb=new _.ah);Edb.add(a);const b=Fdb.resolve;a.requestAnimationFrame(c=>{Edb.clear();const d=Cdb[Ddb];Ddb=(Ddb+1)%2;try{Odb(d,c)}finally{_.Jdb=0,d.length=0}b()})}return Fdb.promise};_.Pdb=function(a,b){const c=_.Jdb;try{return _.Jdb=2,a.apply(b)}finally{_.Jdb=c}}; source: chromecache_551.1.dr, chromecache_548.1.dr
Connects to several IPs in different countries
Source: unknown Network traffic detected: IP country count 10
Source: chromecache_755.1.dr String found in binary or memory: <a target="_blank" href="https://www.facebook.com/speedtest" aria-label="Facebook - This link opens in a new tab"> equals www.facebook.com (Facebook)
Source: chromecache_537.1.dr String found in binary or memory: </sup>","Follow Ookla":"Volg Ookla",Twitter:"Twitter",Facebook:"Facebook",Account:"Account","My Results":"Mijn resultaten","Create Account":"Maak een account aan",Ookla:"Ookla",accessibility_modal:{link:"Toegankelijkheid",header:"Ookla Toegankelijkheidsverklaring",body:'<p>Bij Ookla zorgen we er toegewijd voor dat mensen met beperkingen alle content op www.speedtest.net kunnen bereiken. We streven er ook naar om alle content in de Speedtest app toegankelijk te maken.</p> <p>Als u problemen heeft om www.speedtest.net of Speedtest apps te bereiken, stuur dan een mail naar <a target="_blank" href="mailto:legal@ziffdavis.com">legal@ziffdavis.com</a> voor hulp. Noem dan graag "ADA Inquiry" in de onderwerpregel van je mail.</p>'},Login:"Log in",Logout:"Log uit","Email address":"E-mailadres",Password:"Wachtwoord","Remember Me":"Onthoud mij","Forgot Password":"Wachtwoord vergeten","Mobile Apps":"Mobiele apps",Copyright:"Auteursrecht","Install Flash":"Installeer Flash","Login successful.":"Succesvol ingelogd.","The email or password provided is incorrect. Forgot your password?":"Het e-mailadres of wachtwoord dat je hebt ingevoerd is onjuist. Ben je je wachtwoord vergeten?","try our apps":"Alternatively, check out our free <a href='https://www.speedtest.net/apps/desktop' class='link-desktop-apps' target='_blank'>Speedtest for Desktop</a> apps for more reliable testing.","You must confirm your account registration before you can login.":"Je moet je account de registratie van je account bevestigen, voordat je kunt inloggen.","Your password was successfully changed.":"Je wachtwoord is succesvol gewijzigd.","The password you provided is incorrect.":"Het wachtwoord dat je hebt opgegeven is onjuist.","New password cannot be blank.":"Veld voor nieuw wachtwoord mag niet leeg zijn.","Passwords do not match.":"Wachtwoorden komen niet overeen.","Password must be at least 6 characters.":"Wachtwoord moet minstens 6 tekens lang zijn.","Password change failed.":"Wachtwoord wijzigen niet gelukt.","Thank you for confirming your registration.":"Bedankt voor het bevestigen van je registratie.","We are unable to confirm your account registration. Please contact support.":"We konden de registratie van je account niet bevestigen. Neem alsjeblieft contact op met de ondersteuning.","This account has already been confirmed.":"Dit account is al bevestigd.","A confirmation email has been sent. If you don't receive an email make sure to check your junk folder.":"A confirmation email has been sent. If you don't receive an email make sure to check your junk folder. Een bevestigingsmail is verzonden. Als je de mail niet ontvangt, controleer dan je spamfolder.","Failed to register account. Please contact support.":"Niet gelukt om het account te registreren. Neem alsjeblieft contact op met de ondersteuning.","Please enter a valid email address.":"Voer alsjeblieft een geldig e-mailadres in.","Email is required.":"E-mailadres is verplicht.","This email address has already been registered.":
Source: chromecache_639.1.dr, chromecache_457.1.dr String found in binary or memory: Math.round(q);u["gtm.videoElapsedTime"]=Math.round(f);u["gtm.videoPercent"]=r;u["gtm.videoVisible"]=t;return u},dk:function(){e=zb()},od:function(){d()}}};var gc=ja(["data-gtm-yt-inspected-"]),KC=["www.youtube.com","www.youtube-nocookie.com"],LC,MC=!1; equals www.youtube.com (Youtube)
Source: chromecache_639.1.dr, chromecache_457.1.dr String found in binary or memory: if(!(e||f||g||k.length||m.length))return;var p={ih:e,gh:f,hh:g,Sh:k,Th:m,Ie:n,Bb:b},q=C.YT;if(q)return q.ready&&q.ready(d),b;var r=C.onYouTubeIframeAPIReady;C.onYouTubeIframeAPIReady=function(){r&&r();d()};F(function(){for(var t=E.getElementsByTagName("script"),v=t.length,u=0;u<v;u++){var w=t[u].getAttribute("src");if(VC(w,"iframe_api")||VC(w,"player_api"))return b}for(var x=E.getElementsByTagName("iframe"),y=x.length,A=0;A<y;A++)if(!MC&&TC(x[A],p.Ie))return wc("https://www.youtube.com/iframe_api"), equals www.youtube.com (Youtube)
Source: chromecache_516.1.dr, chromecache_1109.1.dr, chromecache_609.1.dr, chromecache_368.1.dr String found in binary or memory: return b}IC.F="internal.enableAutoEventOnTimer";var gc=ja(["data-gtm-yt-inspected-"]),KC=["www.youtube.com","www.youtube-nocookie.com"],LC,MC=!1; equals www.youtube.com (Youtube)
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: http://javascript.crockford.com/jsmin.html
Source: chromecache_667.1.dr, chromecache_376.1.dr, chromecache_409.1.dr String found in binary or memory: http://pajhome.org.uk/crypt/md5
Source: chromecache_878.1.dr String found in binary or memory: http://schema.org/SearchResultsPage
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: http://traffick.jivox.com/jivox/serverAPIs/evalDynamicRules.php
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: http://www.JSON.org/js.html
Source: chromecache_727.1.dr, chromecache_722.1.dr, chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
Source: chromecache_973.1.dr, chromecache_727.1.dr, chromecache_551.1.dr, chromecache_722.1.dr, chromecache_649.1.dr, chromecache_548.1.dr String found in binary or memory: http://www.broofa.com
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: http://www.opensource.org/licenses/MIT
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: http://www.runescape.com/
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: http://www.verizon.com/
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: http://www.webtoolkit.info/
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://a.tribalfusion.com/i.match?p=b11&redirect=https%3A//simage2.pubmatic.com/AdServer/Pug%3Fvcod
Source: chromecache_699.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/dcm?pid=4bd6ceca-c698-4782-a536-f380f757484c&id=F4BF7411-0F55-4
Source: chromecache_797.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/ecm3?ex=index.com&amp;id=ZvvGkNHM6IgAAEWBAEDPxQAAA-wAAAIB
Source: chromecache_892.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/ecm3?ex=openx.com&id=d3a7d5fb-6567-cda5-3f95-d093def2d37a
Source: chromecache_475.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/ecm3?ex=tappx.com&id=c2d39274-f47c-4e2f-9106-bb075c7641b2f1a
Source: chromecache_582.1.dr, chromecache_697.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-index_rx_n-MediaNet_ox-db5_n
Source: chromecache_907.1.dr, chromecache_364.1.dr String found in binary or memory: https://aax-eu.amazon-adsystem.com/s/iu3?cm3ppd=1&d=dtb-pub&csif=t&dl=n-sharethrough_n-onetag_ppt_rx
Source: chromecache_475.1.dr String found in binary or memory: https://ad.360yield.com/server_match?partner_id=1934&r=https%3A%2F%2Fssp.api.tappx.com%2Fcs%2Fusync%
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ad.360yield.com/ux?&publisher_dmp_id=15&r=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Fimpr_match%3F
Source: chromecache_890.1.dr, chromecache_342.1.dr String found in binary or memory: https://ad.doubleclick.net
Source: chromecache_890.1.dr, chromecache_342.1.dr String found in binary or memory: https://ad.doubleclick.net/
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://ad.mrtnsvr.com/sync/pubmatic?gdpr=0&gdpr_consent=
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://ad.turn.com/r/cs?pid=1&gdpr=0&gdpr_consent=
Source: chromecache_686.1.dr String found in binary or memory: https://ad.turn.com/r/cs?pid=9&gdpr=0
Source: chromecache_662.1.dr String found in binary or memory: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=156631&s=&predirect=https%3A%2F%2Fu-ams03.e-pl
Source: chromecache_475.1.dr String found in binary or memory: https://ads.pubmatic.com/AdServer/js/user_sync.html?p=158111&userIdMacro=(PM_UID)&gdpr=0&gdpr_consen
Source: chromecache_711.1.dr String found in binary or memory: https://ads.stickyadstv.com/user-matching?id=11
Source: chromecache_475.1.dr String found in binary or memory: https://ads.us.e-planning.net/uspd/1/5165e75550a79751?ruimd=1&du=https%3A%2F%2Fssp.api.tappx.com%2Fc
Source: chromecache_457.1.dr String found in binary or memory: https://adservice.google.com/pagead/regclk?
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://ampcid.google.com/v1/publisher:getClientId
Source: chromecache_475.1.dr String found in binary or memory: https://ap.lijit.com/pixel?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fssp.api.tappx.com%2Fcs%2Fusync%3
Source: chromecache_878.1.dr String found in binary or memory: https://aspr.hhs.gov
Source: chromecache_1004.1.dr String found in binary or memory: https://audigent-gps.ybp.yahoo.com/bid/vzd/adslot/13935/?pa=1&as=
Source: chromecache_817.1.dr String found in binary or memory: https://b.cdnst.net/images/favicon-192.png
Source: chromecache_817.1.dr String found in binary or memory: https://b.cdnst.net/images/favicon-512.png
Source: chromecache_797.1.dr String found in binary or memory: https://b1sync.zemanta.com/usersync/index/?puid=ZvvGkNHM6IgAAEWBAEDPxQAA%261004&amp;cb=https%3A%2F%2
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://bh.contextweb.com/bh/rtset?pid=562316&ev=1&rurl=https://ids.ad.gt/api/v1/ppnt_match?uid=%%VG
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: https://blueimp.net
Source: chromecache_520.1.dr String found in binary or memory: https://btloader.com/tag?o=4981716645576704&upapi=true
Source: chromecache_699.1.dr String found in binary or memory: https://c1.adform.net/serving/cookie/match?party=14&cid=F4BF7411-0F55-464D-80DD-0D8D7374E039&gdpr=0&
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_1109.1.dr, chromecache_609.1.dr, chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://cct.google/taggy/agent.js
Source: chromecache_412.1.dr, chromecache_611.1.dr String found in binary or memory: https://cdn-ima.33across.com/ima.js
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://cdn.cookielaw.org/scripttemplates/otSDKStub.js
Source: chromecache_412.1.dr, chromecache_611.1.dr String found in binary or memory: https://cdn.hadronid.net/hadron.js
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://cdn.hadronid.net/hadron.js?partner_id=700&sync=1&url=
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://cdn.ziffstatic.com/ajs.php?id=a
Source: chromecache_755.1.dr String found in binary or memory: https://cdn.ziffstatic.com/jst/zdconsent.js
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://cdn.ziffstatic.com/jst/zdvtools.js
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://cm-supply-web.gammaplatform.com/adx/usersyncsupply?pid=7&t=pixel
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://cm.adgrx.com/bridge?AG_PID=pubmatic&AG_SETCOOKIE&gdpr=0&gdpr_consent=
Source: chromecache_839.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=adobe_dmp&google_cm&gdpr=0
Source: chromecache_742.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_cm&google_dbm
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=audigent_w_appnexus_3985&google_cm&google_sc&google_ul
Source: chromecache_742.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=casale_media2_dsp_secure&google_cm&google_dbm
Source: chromecache_915.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=lkqd_dbm&google_cm&gdpr=0
Source: chromecache_654.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=lotame_dmp&google_hm=M2U4NzE3ZDE4YTE5OTcxODQ2ZDliZDAzM
Source: chromecache_654.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=lotameddp&google_hm=M2U4NzE3ZDE4YTE5OTcxODQ2ZDliZDAzMW
Source: chromecache_1059.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_dbm
Source: chromecache_892.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=openx&google_cm&google_sc
Source: chromecache_892.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=openx&google_hm=YTcxZTdhNGMtYjBiYS0yOGZiLWVhN2ItMDhiZD
Source: chromecache_521.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=pubmatic&google_cm&google_dbm&gdpr=0
Source: chromecache_915.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=rubicon&google_cm&google_dbm&gdpr=0
Source: chromecache_840.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=smartrtb_dbm&google_cm&google_dbm
Source: chromecache_650.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=spotxchange_dbm&google_cm&google_dbm
Source: chromecache_711.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=stickyxchange_dbm&google_cm&google_dbm
Source: chromecache_1059.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=teadstv_dbm&google_cm&google_dbm
Source: chromecache_650.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=tremor_video_dbm&google_cm&google_dbm
Source: chromecache_839.1.dr String found in binary or memory: https://cm.g.doubleclick.net/pixel?google_nid=triplelift&google_cm&gdpr=0
Source: chromecache_699.1.dr String found in binary or memory: https://cms.quantserve.com/pixel/p-5aWVS_roA1dVM.gif?idmatch=0&gdpr=0&gdpr_consent=
Source: chromecache_662.1.dr String found in binary or memory: https://cookies.nextmillmedia.com/sync?type=image&gdpr=
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://core.iprom.net/cookiesync?gdpr=0&gdpr_consent=
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://creativecdn.com/cm-notify?pi=pubmatic&gdpr=0&gdpr_consent=
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: https://creativecommons.org/licenses/by/2.0/uk/
Source: chromecache_475.1.dr String found in binary or memory: https://cs.admanmedia.com/081735c92c4aa336da0b87ec328727ee.gif?redir=https%3A%2F%2Fssp.api.tappx.com
Source: chromecache_915.1.dr String found in binary or memory: https://cs.lkqd.net/cs?partnerId=59&redirect=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://csp.withgoogle.com/csp/lcreport/
Source: chromecache_475.1.dr String found in binary or memory: https://csync.loopme.me/?pubid=11227&gdpr=0&gdpr_consent=&redirect=https%3A%2F%2Fssp.api.tappx.com%2
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://csync.loopme.me/?pubid=11331&redirect=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJn
Source: chromecache_797.1.dr String found in binary or memory: https://csync.loopme.me/?pubid=11466&amp;redirect=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%3Fcm_
Source: chromecache_800.1.dr String found in binary or memory: https://csync.loopme.me/?redirect=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%3D1%26
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://d.turn.com/r/dd/id/L2NzaWQvMS9jaWQvMTc0ODI0MTY1OC90LzA/url/https%3A%2F%2Fids.ad.gt%2Fapi%2Fv
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://d5p.de17a.com/getuid/pubmatic?https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZ
Source: chromecache_482.1.dr String found in binary or memory: https://dbushell.com/
Source: chromecache_878.1.dr String found in binary or memory: https://dictionary.cambridge.org
Source: chromecache_878.1.dr String found in binary or memory: https://dictionary.cambridge.org/us/dictionary/english/test
Source: chromecache_755.1.dr String found in binary or memory: https://diffuser-cdn.app-us1.com/diffuser/diffuser.js
Source: chromecache_654.1.dr String found in binary or memory: https://dmp.truoptik.com/f2d2e39fc16bc9cc/sync.gif?cbp=tpid&cbk=https%3A%2F%2Fsync.crwdcntrl.net%2Fm
Source: chromecache_755.1.dr String found in binary or memory: https://downdetector.com/
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: https://downdetector.com/c/20076
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: https://downdetector.com/c/20107
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: https://downdetector.com/c/34804
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://dpm.demdex.net/ibs:dpid=348447&dpuuid=
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://dsp-ap.eskimi.com/pixelGet?ex=50&gdpr=
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://dsp-cookie.adfarm1.adition.com/?ssp=9&gdpr=0&gdpr_consent=
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://dsp.360yield.com/dsp_match/275?ssp=76&gdpr=0&gdpr_consent=&r=https://image2.pubmatic.com/AdS
Source: chromecache_742.1.dr String found in binary or memory: https://dsum-sec.casalemedia.com/rrum?ixi=0&cm_dsp_id=85&cb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpix
Source: chromecache_797.1.dr String found in binary or memory: https://dsum-sec.casalemedia.com/rrum?ixi=1&amp;cm_dsp_id=85&amp;cb=https%3A%2F%2Fcm.g.doubleclick.n
Source: chromecache_537.1.dr String found in binary or memory: https://easylist.to/
Source: chromecache_475.1.dr String found in binary or memory: https://eb2.3lift.com/getuid?redir=https%3A%2F%2Fssp.api.tappx.com%2Fcs%2Fusync%3Fidmn%3D28%26type%3
Source: chromecache_839.1.dr String found in binary or memory: https://eb2.3lift.com/sync/google/demand?sync=1&gdpr=0
Source: chromecache_662.1.dr String found in binary or memory: https://eb2.3lift.com/sync?redir=https%3A%2F%2Fsync.e-planning.net%2Fum%3Fuid%3D%24UID%26dc%3D4d76b6
Source: chromecache_526.1.dr String found in binary or memory: https://ep3.adtrafficquality.google/ivt/worklet/caw.js
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://evs.jivox.com/asvar/
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://evs.jivox.com/trk/
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey200-36dp/2x/gm_alert_gm_grey200_3
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/alert/v11/gm_grey600-36dp/2x/gm_alert_gm_grey600_3
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey200-24dp/1x/gm_close_gm_grey200_2
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://fonts.gstatic.com/s/i/googlematerialicons/close/v19/gm_grey600-24dp/1x/gm_close_gm_grey600_2
Source: chromecache_667.1.dr, chromecache_376.1.dr String found in binary or memory: https://github.com/blueimp/JavaScript-MD5
Source: chromecache_1064.1.dr, chromecache_1063.1.dr String found in binary or memory: https://github.com/conversant/pubcid.js
Source: chromecache_1064.1.dr, chromecache_1063.1.dr String found in binary or memory: https://github.com/conversant/pubcid.js/blob/master/LICENSE
Source: chromecache_890.1.dr, chromecache_526.1.dr, chromecache_342.1.dr String found in binary or memory: https://github.com/google/safevalues/issues
Source: chromecache_482.1.dr String found in binary or memory: https://github.com/pure-css/pure/blob/master/LICENSE
Source: chromecache_890.1.dr, chromecache_342.1.dr String found in binary or memory: https://googleads.g.doubleclick.net/
Source: chromecache_661.1.dr String found in binary or memory: https://googleads.g.doubleclick.net/dbm/clk?sa=L&ai=CVUN-jsb7ZrX9MqfDjuwP3ojl-A7Rqv3Qdoamot3SEsGlpcD
Source: chromecache_735.1.dr String found in binary or memory: https://googleads.g.doubleclick.net/dbm/clk?sa=L&ai=C_1nTjsb7Zrb9MqfDjuwP3ojl-A7Rqv3Qdr6kot3SEsGlpcD
Source: chromecache_485.1.dr String found in binary or memory: https://googleads.g.doubleclick.net/dbm/clk?sa=L&ai=CnATxjsb7Zrf9MqfDjuwP3ojl-A7Rqv3Qdr6kot3SEsGlpcD
Source: chromecache_369.1.dr String found in binary or memory: https://googleads.g.doubleclick.net/dbm/clk?sa=L&ai=CxA5Cjsb7Zrj9MqfDjuwP3ojl-A7Rqv3Qdvanot3SEsGlpcD
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://green.erne.co/pubmatic/cm?gdpr=0&gdpr_consent=
Source: chromecache_447.1.dr, chromecache_1113.1.dr String found in binary or memory: https://greensock.com
Source: chromecache_447.1.dr, chromecache_1113.1.dr String found in binary or memory: https://greensock.com/standard-license
Source: chromecache_957.1.dr, chromecache_897.1.dr String found in binary or memory: https://gum.criteo.com/sid/json?origin=prebid
Source: chromecache_662.1.dr String found in binary or memory: https://gw-iad-bid.ymmobi.com/adx/user/sync?pubid=ZXBsYW5uaW5n&gdpr=$
Source: chromecache_797.1.dr String found in binary or memory: https://i.liadm.com/s/31327?bidder_id=14481&amp;bidder_uuid=ZvvGkNHM6IgAAEWBAEDPxQAA%261004&amp;gpdr
Source: chromecache_475.1.dr String found in binary or memory: https://ib.adnxs.com/getuid?https%3A%2F%2Fssp.api.tappx.com%2Fcs%2Fusync%3Fidmn%3D32%26type%3Diframe
Source: chromecache_662.1.dr String found in binary or memory: https://ib.adnxs.com/getuid?https%3A%2F%2Fu-ams03.e-planning.net%2Fum%3Fdc%3D8103fa85295fbe60%26fi%3
Source: chromecache_742.1.dr String found in binary or memory: https://ib.adnxs.com/getuid?https://cm.g.doubleclick.net/pixel?google_nid=appnexus&google_hm=$
Source: chromecache_699.1.dr String found in binary or memory: https://ib.adnxs.com/getuid?https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTc4
Source: chromecache_686.1.dr String found in binary or memory: https://ib.adnxs.com/getuid?https://us-u.openx.net/w/1.0/sd?id=537072399&val=$UID
Source: chromecache_759.1.dr, chromecache_965.1.dr String found in binary or memory: https://id5.io/
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ids.ad.gt%2Fapi%2Fv1%2Ftapad_match%3Fid%3D
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ids.ad.gt/api/v1/g_hosted?id=
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ids.ad.gt/api/v1/halo_match?id=
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ids.ad.gt/api/v1/ip_match?id=
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://image2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTM3MDcmdGw9MjAxNjA=&piggybackCoo
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://image2.pubmatic.com/AdServer/UCookieSetPug?rd=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Fpbm_match
Source: chromecache_521.1.dr String found in binary or memory: https://image6.pubmatic.com/AdServer/UCookieSetPug?oid=1&p=360&gdpr=0&rd=https%3A%2F%2Fcm.g.doublecl
Source: chromecache_878.1.dr String found in binary or memory: https://implicit.harvard.edu
Source: chromecache_878.1.dr String found in binary or memory: https://implicit.harvard.edu/implicit/takeatest.html
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://ipac.ctnsnet.com/int/cm?exc=14&redir=https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR
Source: chromecache_743.1.dr, chromecache_537.1.dr String found in binary or memory: https://itunes.apple.com/app/speedtest-net-mobile-speed/id300704847?mt=8
Source: chromecache_743.1.dr, chromecache_537.1.dr String found in binary or memory: https://itunes.apple.com/us/app/speedtest-by-ookla/id1153157709?mt=12
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://jivoxdevuploads.s3.amazonaws.com/as/files/44939/fit-css.png
Source: chromecache_878.1.dr String found in binary or memory: https://languages.oup.com/google-dictionary-en
Source: chromecache_878.1.dr String found in binary or memory: https://languages.oup.com/google-dictionary-en&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQvecEegQIGxAI
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://lens.google.com
Source: chromecache_548.1.dr String found in binary or memory: https://lensfrontend-pa.clients6.google.com/v1/crupload
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://match.adsby.bidtheatre.com/pubmaticmatch?redir=https://simage2.pubmatic.com/AdServer/Pug?vco
Source: chromecache_797.1.dr String found in binary or memory: https://match.adsrvr.org/track/cmf/casale
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://match.adsrvr.org/track/cmf/generic?ttd_pid=8gkxb6n&ttd_tpi=1&ttd_puid=
Source: chromecache_699.1.dr String found in binary or memory: https://match.adsrvr.org/track/cmf/generic?ttd_pid=pubmatic&ttd_tpi=1&gdpr=0&gdpr_consent=
Source: chromecache_892.1.dr String found in binary or memory: https://match.adsrvr.org/track/cmf/openx?oxid=8b71a986-79cd-765f-ff9b-5204b6c1189a&gdpr=0
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://match.prod.bidr.io/cookie-sync/pm?gdpr=0&gdpr_consent=
Source: chromecache_800.1.dr String found in binary or memory: https://match.prod.bidr.io/cookie-sync/sas?gdpr=0&gdpr_consent=
Source: chromecache_475.1.dr String found in binary or memory: https://match.sharethrough.com/universal/v1?supply_id=49574e61&gdpr=0&gdpr_consent=&tappx=1
Source: chromecache_662.1.dr String found in binary or memory: https://match.sharethrough.com/universal/v1?supply_id=H7IJBRjH
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://matching.truffle.bid/sync/pub?sid=161&suid=https://simage2.pubmatic.com/AdServer/Pug?vcode=b
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://onetag-sys.com/match/?int_id=180&uid=
Source: chromecache_662.1.dr String found in binary or memory: https://onetag-sys.com/usync/?pubId=5927d926323dc2c
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://opt-out.zdbb.net/local-optout
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://opt-out.ziffdavis.com/local-optout
Source: chromecache_1004.1.dr String found in binary or memory: https://p.ad.gt
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://p.ad.gt/api/v1/p/700
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://p.rfihub.com/cm?pub=224&in=1&getuid=https%3A//image2.pubmatic.com/AdServer/Pug%3Fvcode%3Dbz0
Source: chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://pagead2.googlesyndication.com
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&bin=
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=error&name=invalid_geo&context=10
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=extra&rnd=
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&lidartos
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fetch&later&start&control&fle=1&s
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-fallback2
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-later2
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-pagehide2
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=fle-fetch-start2
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=av-js&type=reach&proto=
Source: chromecache_937.1.dr, chromecache_506.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=fccs&
Source: chromecache_890.1.dr, chromecache_342.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=rcs_internal
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_1109.1.dr, chromecache_609.1.dr, chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/gen_204?id=tcfe
Source: chromecache_425.1.dr, chromecache_464.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/js/
Source: chromecache_890.1.dr, chromecache_342.1.dr String found in binary or memory: https://pagead2.googlesyndication.com/pagead/ping
Source: chromecache_654.1.dr String found in binary or memory: https://pixel-sync.sitescout.com/connectors/lotame/usersync?gdpr=0&redir=https%3A%2F%2Fsync.crwdcntr
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://pixel-sync.sitescout.com/dmp/pixelSync?nid=3&gdpr=0&gdpr_consent=
Source: chromecache_699.1.dr String found in binary or memory: https://pixel.onaudience.com/?partner=214&mapped=F4BF7411-0F55-464D-80DD-0D8D7374E039&gdpr=0&gdpr_co
Source: chromecache_686.1.dr String found in binary or memory: https://pixel.tapad.com/idsync/ex/receive?partner_id=1955&partner_device_id=8d0fda7a-22ca-4bd8-b57a-
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://pixel.tapad.com/idsync/ex/receive?partner_id=3185&partner_device_id=
Source: chromecache_654.1.dr String found in binary or memory: https://pixel.tapad.com/idsync/ex/receive?partner_id=LOTAME&partner_device_id=3e8717d18a19971846d9bd
Source: chromecache_548.1.dr String found in binary or memory: https://play.google.com/log?format=json&hasfast=true
Source: chromecache_743.1.dr, chromecache_537.1.dr String found in binary or memory: https://play.google.com/store/apps/details?id=org.zwanoo.android.speedtest&referrer=utm_source%3Dstn
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://playercdn.jivox.com/1700114009/player/images/close_24x24.png
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://playercdn.jivox.com/1700114009/unit/js/gz/jquery-2.1.0.min.js
Source: chromecache_369.1.dr, chromecache_735.1.dr, chromecache_661.1.dr, chromecache_485.1.dr String found in binary or memory: https://playercdn.jivox.com/1700114009/unit/js/gz/velocity-raf-disabled.min.js
Source: chromecache_485.1.dr String found in binary or memory: https://playercdn.jivox.com/1700114009/widgets/jivoxWidgetApi/gz/jivoxWidgetApiV2.min.js
Source: chromecache_797.1.dr String found in binary or memory: https://pm.w55c.net/ping_match.gif?ei=CASALE&amp;rurl=https://dsum-sec.casalemedia.com/crum?cm_dsp_i
Source: chromecache_892.1.dr String found in binary or memory: https://pr-bh.ybp.yahoo.com/sync/openx/1fb6cfc2-e961-e416-ce4c-44f14996d5d3?gdpr=0
Source: chromecache_699.1.dr String found in binary or memory: https://pr-bh.ybp.yahoo.com/sync/pubmatic/F4BF7411-0F55-464D-80DD-0D8D7374E039?gdpr=0&gdpr_consent=
Source: chromecache_662.1.dr String found in binary or memory: https://prebid.a-mo.net/cchain/0?gdpr=
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://pubmatic-match.dotomi.com/match/bounce/current?networkId=17100&version=1&nuid=F4BF7411-0F55-
Source: chromecache_800.1.dr String found in binary or memory: https://pxl.iqm.com/i/ck/equativ?cid=SMART_USER_ID&redir=https%3A%2F%2Frtb-csync.smartadserver.com%2
Source: chromecache_755.1.dr String found in binary or memory: https://rootmetrics.com/
Source: chromecache_840.1.dr String found in binary or memory: https://rtb-csync.smartadserver.com/redir/?partnerid=76&partneruserid=GOOGLE_HOSTED_PI&redirurl=http
Source: chromecache_662.1.dr String found in binary or memory: https://rtb.gumgum.com/usync/15581?r=https%3A%2F%2Fsync.e-planning.net%2Fum%3Fdc%3D1a6b1d3b3872943b%
Source: chromecache_957.1.dr, chromecache_897.1.dr String found in binary or memory: https://rtb.openx.net/openrtbb/prebidjs
Source: chromecache_662.1.dr String found in binary or memory: https://rtb.openx.net/sync/prebid?r=https%3A%2F%2Fu-ams03.e-planning.net%2Fum%3Fdc%3Dff96d1aa62deeeb
Source: chromecache_892.1.dr String found in binary or memory: https://s.amazon-adsystem.com/dcm?pid=6e1b1225-4dd8-4d7d-b277-465574a27014&id=d3a7d5fb-6567-cda5-3f9
Source: chromecache_797.1.dr String found in binary or memory: https://s.amazon-adsystem.com/dcm?pid=78af914c-e755-4b90-bded-1b172aedc763&amp;us_privacy=&amp;gdpr=
Source: chromecache_475.1.dr String found in binary or memory: https://s.c.appier.net/tappx
Source: chromecache_662.1.dr String found in binary or memory: https://s.e-planning.net/esb/4/0/1992d/f6ee63a0c2353004/lotame20220615.js
Source: chromecache_662.1.dr String found in binary or memory: https://s.e-planning.net/esb/4/1/3fb8/7bb4893a30d21aef/retargetly_030920.js
Source: chromecache_1109.1.dr, chromecache_368.1.dr String found in binary or memory: https://sb.scorecardresearch.com/b?c1=2&c2=
Source: chromecache_1109.1.dr, chromecache_368.1.dr String found in binary or memory: https://sb.scorecardresearch.com/c2/
Source: chromecache_662.1.dr String found in binary or memory: https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?&p=12186&endpoint=eu
Source: chromecache_475.1.dr String found in binary or memory: https://secure-assets.rubiconproject.com/utils/xapi/multi-sync.html?p=tappx&endpoint=us-east
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://secure.adnxs.com/getuid?https://ids.ad.gt/api/v1/match?id=
Source: chromecache_526.1.dr String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/car.js
Source: chromecache_526.1.dr String found in binary or memory: https://securepubads.g.doubleclick.net/pagead/js/cocar.js
Source: chromecache_475.1.dr String found in binary or memory: https://ssbsync.smartadserver.com/api/sync?callerId=36&gdpr=0&gdpr_consent=
Source: chromecache_475.1.dr String found in binary or memory: https://ssc-cms.33across.com/ps/?m=xch&rt=html&id=0010b00001siQHqAAM&ru=https%3A%2F%2Fssp.api.tappx.
Source: chromecache_662.1.dr String found in binary or memory: https://ssp.api.tappx.com/cs/usync?idmn=90&type=iframe&id=AIqH5qKvG41fCyfV&auxuid=
Source: chromecache_662.1.dr String found in binary or memory: https://ssp.disqus.com/redirectuser?r=https%3A%2F%2Fu-ams03.e-planning.net%2Fum%3Fdc%3De64f73568d2b3
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://ssum-sec.casalemedia.com/ium?sourceid=15&uid=
Source: chromecache_647.1.dr String found in binary or memory: https://ssum-sec.casalemedia.com/usermatch?d=$
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_609.1.dr, chromecache_457.1.dr String found in binary or memory: https://stats.g.doubleclick.net/g/collect
Source: chromecache_799.1.dr String found in binary or memory: https://stats.g.doubleclick.net/j/collect
Source: chromecache_755.1.dr String found in binary or memory: https://status.ookla.com/
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://support.google.com/websearch/answer/106230
Source: chromecache_797.1.dr String found in binary or memory: https://sync-tm.everesttech.net/upi/pid/ZMAwryCI?redir=https%3A%2F%2Fdsum-sec.casalemedia.com%2Frum%
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://sync-tm.everesttech.net/upi/pid/b9pj45k4?redir=https://simage2.pubmatic.com/AdServer/Pug?vco
Source: chromecache_686.1.dr String found in binary or memory: https://sync-tm.everesttech.net/upi/pid/ny75r2x0?redir=https%3A%2F%2Fus-u.openx.net%2Fw%2F1.0%2Fsd%3
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://sync.1rx.io/usersync/audigent/0?dspret=1&redir=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Funruly%3
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://sync.1rx.io/usersync2/pubmatic&gdpr=0&gdpr_consent=
Source: chromecache_475.1.dr String found in binary or memory: https://sync.1rx.io/usersync2/rmphb?gdpr=0&gdpr_consent=&redir=https%3A%2F%2Fssp.api.tappx.com%2Fcs%
Source: chromecache_475.1.dr String found in binary or memory: https://sync.adkernel.com/user-sync?zone=200784&r=https%3A%2F%2Fssp.api.tappx.com%2Fcs%2Fusync%3Fidm
Source: chromecache_662.1.dr String found in binary or memory: https://sync.admanmedia.com/pbs.gif?redir=https%3A%2F%2Fu-ams03.e-planning.net%2Fum%3Fdc%3D9937b3fd6
Source: chromecache_800.1.dr String found in binary or memory: https://sync.adotmob.com/cookie/smart?r=https%3A%2F%2Frtb-csync.smartadserver.com%2Fredir%2F%3Fissi%
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://sync.colossusssp.com/ebfa23da174faa55634171c5e49d0152.gif?puid=
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://sync.go.sonobi.com/us?https://ids.ad.gt/api/v1/son_match?id=
Source: chromecache_662.1.dr String found in binary or memory: https://sync.richaudience.com/f7872c90c5d3791e2b51f7edce1a0a5d/?p=25BiP9IMgN&r=https%3A%2F%2Fu-ams03
Source: chromecache_475.1.dr String found in binary or memory: https://sync.richaudience.com/f7872c90c5d3791e2b51f7edce1a0a5d/?p=skJudSCZ30&r=https%3A%2F%2Fssp.api
Source: chromecache_650.1.dr String found in binary or memory: https://sync.search.spotxchange.com/partner?adv_id=7025&redir=https%3A%2F%2Fcm.g.doubleclick.net%2Fp
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://sync.smartadserver.com/getuid?url=https%3A%2F%2Fids.ad.gt%2Fapi%2Fv1%2Fsmart_match%3Fid%3D
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://sync.srv.stackadapt.com/sync?nid=11&gdpr=0&gdpr_consent=
Source: chromecache_654.1.dr String found in binary or memory: https://sync.srv.stackadapt.com/sync?nid=lotame&gdpr=0
Source: chromecache_1059.1.dr String found in binary or memory: https://sync.teads.tv/um?eid=3&uid=&fb=https%3A%2F%2Fcm.g.doubleclick.net%2Fpixel%3Fgoogle_nid%3Dtea
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://t.adx.opera.com/pub/sync?pubid=pub8730968190912
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://tagassistant.google.com/
Source: chromecache_412.1.dr, chromecache_611.1.dr String found in binary or memory: https://tags.crwdcntrl.net/lt/c/
Source: chromecache_507.1.dr, chromecache_346.1.dr String found in binary or memory: https://tags.crwdcntrl.net/lt/c/15238/lt.min.js
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_1109.1.dr, chromecache_609.1.dr, chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://td.doubleclick.net
Source: chromecache_915.1.dr String found in binary or memory: https://token.rubiconproject.com/token?pid=2249&pt=n&gdpr=0
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://token.rubiconproject.com/token?pid=50242&puid=
Source: chromecache_755.1.dr String found in binary or memory: https://twitter.com/speedtest
Source: chromecache_989.1.dr, chromecache_1002.1.dr String found in binary or memory: https://u.openx.net/w/1.0/cm?id=998eaf06-9905-4eae-9e26-9fac75960c53&r=https%3A%2F%2Fids.ad.gt%2Fapi
Source: chromecache_957.1.dr, chromecache_897.1.dr String found in binary or memory: https://u.openx.net/w/1.0/pd
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://uberproxy-pen-redirect.corp.google.com/uberproxy/pen?url=
Source: chromecache_465.1.dr, chromecache_677.1.dr String found in binary or memory: https://um.simpli.fi/pm_match?https://simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZqcz0xJm
Source: chromecache_711.1.dr String found in binary or memory: https://ups.analytics.yahoo.com/ups/58269/sync?_origin=1&redir=true
Source: chromecache_699.1.dr String found in binary or memory: https://ups.analytics.yahoo.com/ups/58292/sync?_origin=1&uid=F4BF7411-0F55-464D-80DD-0D8D7374E039&re
Source: chromecache_686.1.dr String found in binary or memory: https://ups.analytics.yahoo.com/ups/58294/sync?_origin=1&uid=a5b52a0f-a1a7-4c16-acbc-930e2162ecf3
Source: chromecache_1059.1.dr String found in binary or memory: https://us-u.openx.net/w/1.0/cm?id=9ca165a9-d9fe-2ff6-d83d-d145a80b0d37&r=https%3A%2F%2Fcm.g.doublec
Source: chromecache_686.1.dr String found in binary or memory: https://us-u.openx.net/w/1.0/cm?id=e508c905-ddce-4732-92a4-0b0f5b72a28f&r=https%3A%2F%2Fid.rlcdn.com
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com/free-personality-test
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com/infj-personality
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com/infj-personality&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAXoECD
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com/infp-personality
Source: chromecache_878.1.dr String found in binary or memory: https://www.16personalities.com/infp-personality&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAHoECD
Source: chromecache_878.1.dr String found in binary or memory: https://www.av-test.org
Source: chromecache_878.1.dr String found in binary or memory: https://www.av-test.org/en/
Source: chromecache_970.1.dr, chromecache_430.1.dr String found in binary or memory: https://www.cloudflare.com/5xx-error-landing
Source: chromecache_755.1.dr String found in binary or memory: https://www.ekahau.com/
Source: chromecache_1109.1.dr, chromecache_368.1.dr String found in binary or memory: https://www.google-analytics.com/analytics.js
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://www.google-analytics.com/debug/bootstrap?id=
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://www.google-analytics.com/gtm/js?id=
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://www.google.%/ads/ga-audiences
Source: chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://www.google.com
Source: chromecache_679.1.dr, chromecache_799.1.dr String found in binary or memory: https://www.google.com/ads/ga-audiences
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://www.google.com/interests/saved
Source: chromecache_551.1.dr, chromecache_548.1.dr String found in binary or memory: https://www.google.com/log?format=json&hasfast=true
Source: chromecache_878.1.dr String found in binary or memory: https://www.google.com/pagead/1p-conversion/16521530460/?gad_source=1&adview_type=5
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_1109.1.dr, chromecache_609.1.dr, chromecache_457.1.dr, chromecache_368.1.dr String found in binary or memory: https://www.googleadservices.com
Source: chromecache_878.1.dr String found in binary or memory: https://www.googleadservices.com/pagead/conversion/16521530460/?gad_source=1&adview_type=3
Source: chromecache_627.1.dr, chromecache_335.1.dr String found in binary or memory: https://www.googleadservices.com/pagead/managed/js/activeview/
Source: chromecache_368.1.dr String found in binary or memory: https://www.googletagmanager.com
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://www.googletagmanager.com/gtag/js
Source: chromecache_679.1.dr, chromecache_799.1.dr, chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://www.googletagmanager.com/gtag/js?id=
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://www.gstatic.com/gb/html/afbp.html
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_medium.css
Source: chromecache_973.1.dr, chromecache_649.1.dr String found in binary or memory: https://www.gstatic.com/images/icons/material/anim/mspin/mspin_googcolor_small.css
Source: chromecache_516.1.dr, chromecache_639.1.dr, chromecache_609.1.dr, chromecache_457.1.dr String found in binary or memory: https://www.merchant-center-analytics.goog
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/Bechdel%20Test
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/Bechdel%2520Test&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZM
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/acid%20test
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/acid%2520test&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0g
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/litmus%20test
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/litmus%2520test&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/dictionary/test
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/thesaurus/test
Source: chromecache_878.1.dr String found in binary or memory: https://www.merriam-webster.com/thesaurus/test&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAHoECBYQ
Source: chromecache_755.1.dr String found in binary or memory: https://www.ookla.com
Source: chromecache_755.1.dr String found in binary or memory: https://www.ookla.com/about/press
Source: chromecache_755.1.dr String found in binary or memory: https://www.ookla.com/articles
Source: chromecache_743.1.dr, chromecache_537.1.dr String found in binary or memory: https://www.ookla.com/articles/introducing-loaded-latency
Source: chromecache_755.1.dr String found in binary or memory: https://www.ookla.com/network
Source: chromecache_755.1.dr String found in binary or memory: https://www.ookla.com/resources/guides/speedtest-methodology
Source: chromecache_1067.1.dr, chromecache_885.1.dr String found in binary or memory: https://www.playstation.com/playstation-network/
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/
Source: chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps
Source: chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAXoECBUQAg
Source: chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps/android
Source: chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps/android&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAHoECBUQAQ
Source: chromecache_537.1.dr, chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps/desktop
Source: chromecache_878.1.dr String found in binary or memory: https://www.speedtest.net/apps/desktop&amp;ved=2ahUKEwjF06LN9OyIAxVw8bsIHWtkKZMQ0gIoAnoECBUQAw
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/ar
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/de
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/es
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/fr
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/id
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/images/share-logo.png
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/it
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/ja
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/ko
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/login
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/nl
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/pl
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/pt
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/ru
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/sv
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/th
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/zh-Hans
Source: chromecache_755.1.dr String found in binary or memory: https://www.speedtest.net/zh-Hant
Source: chromecache_639.1.dr, chromecache_457.1.dr String found in binary or memory: https://www.youtube.com/iframe_api
Source: chromecache_537.1.dr String found in binary or memory: https://www.ziffdavis.com/cookie-policy
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://www.ziffdavis.com/privacy-policy
Source: chromecache_575.1.dr, chromecache_520.1.dr String found in binary or memory: https://www.ziffdavis.com/privacy-policy#cookies
Source: chromecache_367.1.dr, chromecache_1077.1.dr String found in binary or memory: https://x.adroll.com
Source: chromecache_367.1.dr, chromecache_1077.1.dr String found in binary or memory: https://x.adroll.com/bid/bidding-logic.js
Source: chromecache_367.1.dr, chromecache_1077.1.dr String found in binary or memory: https://x.adroll.com/bid/bidding-logic.wasm
Source: chromecache_367.1.dr, chromecache_1077.1.dr String found in binary or memory: https://x.adroll.com/kv/v1/getvalues
Source: chromecache_1004.1.dr String found in binary or memory: https://x.adroll.com/pxl/partner_iframe_content.html?audcs=$
Source: chromecache_367.1.dr String found in binary or memory: https://x.adroll.com/update/p/f6v?p=BQABkgMbKQABDXNwZWVkdGVzdC5uZXQBAAgueyEA_DyN9838PI33zQ
Source: chromecache_1077.1.dr String found in binary or memory: https://x.adroll.com/update/p/f6v?p=BQABkgMbKQABDXNwZWVkdGVzdC5uZXQBAAgueyEA_EqN9838So33zQ
Source: chromecache_662.1.dr String found in binary or memory: https://x.bidswitch.net/sync?ssp=eplanning
Source: chromecache_465.1.dr, chromecache_926.1.dr String found in binary or memory: https://x.bidswitch.net/sync?ssp=pubmatic&gdpr=0&gdpr_consent=&us_privacy=#US_PRIVACY
Source: chromecache_521.1.dr String found in binary or memory: https://x.bidswitch.net/syncd?dsp_id=16&user_group=1&gdpr=0&redir=https%3A%2F%2Fcm.g.doubleclick.net
Source: chromecache_520.1.dr String found in binary or memory: https://zdbb.net/optout
Source: chromecache_755.1.dr String found in binary or memory: https://ziffdavis.com/
Source: classification engine Classification label: clean3.win@89/1236@0/100
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps Jump to behavior
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 --field-trial-handle=1892,i,14550875244211589576,9012345206392933397,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://secure-tracking-support.de/ch/?c=002918883"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3592 --field-trial-handle=1892,i,14550875244211589576,9012345206392933397,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 --field-trial-handle=1892,i,14550875244211589576,9012345206392933397,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3592 --field-trial-handle=1892,i,14550875244211589576,9012345206392933397,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe Process created: unknown unknown Jump to behavior
Source: Google Drive.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.dr LNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Window Recorder Window detected: More than 3 window changes detected
Source: Binary string: Ndb=function(a){if(!Edb.has(a)){Edb.size||(Fdb=new _.ah);Edb.add(a);const b=Fdb.resolve;a.requestAnimationFrame(c=>{Edb.clear();const d=Cdb[Ddb];Ddb=(Ddb+1)%2;try{Odb(d,c)}finally{_.Jdb=0,d.length=0}b()})}return Fdb.promise};_.Pdb=function(a,b){const c=_.Jdb;try{return _.Jdb=2,a.apply(b)}finally{_.Jdb=c}}; source: chromecache_551.1.dr, chromecache_548.1.dr
Stores files to the Windows start menu directory
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk Jump to behavior
Program does not show much activity (idle)
Source: all processes Thread injection, dropped files, key value created, disk infection and DNS query: no activity detected
Program does not show much activity (idle)
Source: all processes Thread injection, dropped files, key value created, disk infection and DNS query: no activity detected
windows-stand
Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet
behaviorgraph top1 process2 2 Behavior Graph ID: 1523273 URL: https://secure-tracking-sup... Startdate: 01/10/2024 Architecture: WINDOWS Score: 3 5 chrome.exe 9 2->5         started        8 chrome.exe 2->8         started        dnsIp3 15 239.255.255.250 unknown Reserved 5->15 10 chrome.exe 5->10         started        13 chrome.exe 5->13         started        process4 dnsIp5 17 213.180.193.90 YANDEXRU Russian Federation 10->17 19 209.254.101.138 WINDSTREAMUS United States 10->19 21 97 other IPs or domains 10->21
  • No. of IPs < 25%
  • 25% < No. of IPs < 50%
  • 50% < No. of IPs < 75%
  • 75% < No. of IPs

Contacted Public IPs

IP Domain Country Flag ASN ASN Name Malicious
45.130.86.29
 unknown United Kingdom
1299 TELIANETTeliaCarrierEU false
142.250.74.206
 unknown United States
15169 GOOGLEUS false
91.228.74.200
 unknown United Kingdom
27281 QUANTCASTUS false
63.224.243.204
 unknown United States
209 CENTURYLINK-US-LEGACY-QWESTUS false
104.18.34.214
 unknown United States
13335 CLOUDFLARENETUS false
99.80.51.253
 unknown United States
16509 AMAZON-02US false
52.23.3.73
 unknown United States
14618 AMAZON-AESUS false
52.4.129.193
 unknown United States
14618 AMAZON-AESUS false
52.210.91.197
 unknown United States
16509 AMAZON-02US false
185.89.210.20
 unknown Germany
29990 ASN-APPNEXUS false
54.154.40.84
 unknown United States
16509 AMAZON-02US false
52.31.202.74
 unknown United States
16509 AMAZON-02US false
65.9.66.97
 unknown United States
16509 AMAZON-02US false
198.47.127.205
 unknown United States
62713 AS-PUBMATICUS false
104.17.148.22
 unknown United States
13335 CLOUDFLARENETUS false
35.71.131.137
 unknown United States
237 MERIT-AS-14US false
65.9.66.104
 unknown United States
16509 AMAZON-02US false
204.79.197.237
 unknown United States
8068 MICROSOFT-CORP-MSN-AS-BLOCKUS false
34.254.143.3
 unknown United States
16509 AMAZON-02US false
35.214.199.88
 unknown United States
19527 GOOGLE-2US false
172.217.18.8
 unknown United States
15169 GOOGLEUS false
104.22.53.173
 unknown United States
13335 CLOUDFLARENETUS false
74.125.133.84
 unknown United States
15169 GOOGLEUS false
172.217.18.6
 unknown United States
15169 GOOGLEUS false
142.250.185.110
 unknown United States
15169 GOOGLEUS false
172.217.18.2
 unknown United States
15169 GOOGLEUS false
13.33.173.196
 unknown United States
16509 AMAZON-02US false
107.178.254.65
 unknown United States
15169 GOOGLEUS false
239.255.255.250
 unknown Reserved
unknown unknown false
54.194.192.48
 unknown United States
16509 AMAZON-02US false
34.243.210.180
 unknown United States
16509 AMAZON-02US false
134.122.57.34
 unknown United States
14061 DIGITALOCEAN-ASNUS false
18.159.212.21
 unknown United States
16509 AMAZON-02US false
3.229.202.201
 unknown United States
14618 AMAZON-AESUS false
23.88.86.2
 unknown United States
18978 ENZUINC-US false
18.245.60.110
 unknown United States
16509 AMAZON-02US false
5.135.209.105
 unknown France
16276 OVHFR false
95.101.149.233
 unknown European Union
20940 AKAMAI-ASN1EU false
142.250.185.206
 unknown United States
15169 GOOGLEUS false
18.245.31.92
 unknown United States
16509 AMAZON-02US false
3.74.73.187
 unknown United States
16509 AMAZON-02US false
142.250.186.130
 unknown United States
15169 GOOGLEUS false
37.157.6.231
 unknown Denmark
198622 ADFORMDK false
34.90.215.194
 unknown United States
15169 GOOGLEUS false
208.93.169.131
 unknown United States
26228 SERVEPATHUS false
35.214.156.26
 unknown United States
19527 GOOGLE-2US false
216.58.206.35
 unknown United States
15169 GOOGLEUS false
162.19.138.120
 unknown United States
209 CENTURYLINK-US-LEGACY-QWESTUS false
151.101.194.219
 unknown United States
54113 FASTLYUS false
35.204.77.129
 unknown United States
15169 GOOGLEUS false
18.172.112.109
 unknown United States
3 MIT-GATEWAYSUS false
52.215.155.11
 unknown United States
16509 AMAZON-02US false
185.89.210.46
 unknown Germany
29990 ASN-APPNEXUS false
54.87.157.158
 unknown United States
14618 AMAZON-AESUS false
104.22.4.69
 unknown United States
13335 CLOUDFLARENETUS false
178.250.1.9
 unknown France
44788 ASN-CRITEO-EUROPEFR false
35.186.154.107
 unknown United States
15169 GOOGLEUS false
18.66.112.27
 unknown United States
3 MIT-GATEWAYSUS false
178.250.1.3
 unknown France
44788 ASN-CRITEO-EUROPEFR false
18.172.112.84
 unknown United States
3 MIT-GATEWAYSUS false
24.29.97.13
 unknown United States
12271 TWC-12271-NYCUS false
34.102.163.6
 unknown United States
15169 GOOGLEUS false
142.250.181.227
 unknown United States
15169 GOOGLEUS false
142.250.181.225
 unknown United States
15169 GOOGLEUS false
34.204.184.124
 unknown United States
14618 AMAZON-AESUS false
104.22.50.98
 unknown United States
13335 CLOUDFLARENETUS false
35.204.91.170
 unknown United States
15169 GOOGLEUS false
57.129.39.243
 unknown Belgium
2686 ATGS-MMD-ASUS false
172.217.16.130
 unknown United States
15169 GOOGLEUS false
162.19.138.118
 unknown United States
209 CENTURYLINK-US-LEGACY-QWESTUS false
18.198.84.9
 unknown United States
16509 AMAZON-02US false
52.73.131.117
 unknown United States
14618 AMAZON-AESUS false
46.228.174.117
 unknown United Kingdom
56396 TURNGB false
34.238.62.66
 unknown United States
14618 AMAZON-AESUS false
104.17.147.22
 unknown United States
13335 CLOUDFLARENETUS false
162.19.138.116
 unknown United States
209 CENTURYLINK-US-LEGACY-QWESTUS false
37.252.171.21
 unknown European Union
29990 ASN-APPNEXUS false
213.180.193.90
 unknown Russian Federation
13238 YANDEXRU false
35.190.0.66
 unknown United States
15169 GOOGLEUS false
52.215.101.103
 unknown United States
16509 AMAZON-02US false
18.66.112.19
 unknown United States
3 MIT-GATEWAYSUS false
35.214.174.141
 unknown United States
19527 GOOGLE-2US false
151.101.193.108
 unknown United States
54113 FASTLYUS false
104.18.37.193
 unknown United States
13335 CLOUDFLARENETUS false
13.32.99.20
 unknown United States
16509 AMAZON-02US false
103.67.200.72
 unknown United States
7575 AARNET-AS-APAustralianAcademicandResearchNetworkAARNe false
3.125.70.222
 unknown United States
16509 AMAZON-02US false
172.64.153.42
 unknown United States
13335 CLOUDFLARENETUS false
209.254.101.138
 unknown United States
7029 WINDSTREAMUS false
3.160.150.74
 unknown United States
16509 AMAZON-02US false
63.215.202.137
 unknown United States
41041 VCLK-EU-SE false
104.102.34.86
 unknown United States
16625 AKAMAI-ASUS false
45.137.176.88
 unknown Spain
60350 VPFR false
2.23.197.190
 unknown European Union
1273 CWVodafoneGroupPLCEU false
37.157.5.132
 unknown Denmark
198622 ADFORMDK false
142.250.185.142
 unknown United States
15169 GOOGLEUS false
104.17.208.58
 unknown United States
13335 CLOUDFLARENETUS false
154.54.250.80
 unknown United States
26558 FREEWHEELUS false
69.173.146.5
 unknown United States
26667 RUBICONPROJECTUS false
154.54.250.81
 unknown United States
26558 FREEWHEELUS false