Technical Information
Network activity
Connects to
- 'ed####rld.rzb.ir':443
- 'im##.tebyan.net':443
- 'pe###atch.com':80
- 'st#####.gamespot.com':80
- 'e2.##5dm.com':80
- 'lp###hive.org':80
- 's5.##cofile.com':80
- 'lp###hive.org':443
- 'mo###ngway.com':80
- 's5.##cofile.com':443
- 'pe##and.com':80
- 'i6#.#inypic.com':80
- 'microsoft.com':80
- 'wi#####elevenblog.com':80
- 'ed##land.ir':80
- 'wi#####elevenblog.com':443
- 'oc##.#ectigo.com':80
- 'im##.tebyan.net':80
- '1a##ar.ir':80
- 'rs#.#oolsir.com':80
- 'go#####agmanager.com':443
- 'on####.1abzar.com':443
- 's3.##cofile.com':80
- 'ro##p.ir':443
- 's6.##cofile.com':80
- 'uu##oad.ir':80
- '8p#c.ir':80
- 'pa##iup.com':80
- 'pe##dit.ir':80
- 'x1.#.lencr.org':80
- 'up.##sland.com':80
- 'st#####.wikia.nocookie.net':80
- 'fi###patch.com':80
- '8p#c.ir':443
- 'cd###.#oddingway.com':443
- 's6.##cofile.com':443
- 'uu##oad.ir':443
- 's3.##cofile.com':443
- 'on####.1abzar.com':80
- 'ro##log.com':80
- 'pa####nk.pichak.net':80
- 'r3.#.lencr.org':80
TCP
HTTP GET requests
- http://ro##log.com/temp/pro/ads_468.jpg
- http://uu##oad.ir/files/gaj6_pes-2015-neymar-face-by-cleiton-silva.jpg
- http://uu##oad.ir/files/n6yf__d8_a2_d9_85_d9_88_d8_b2_d8_b4-_d9_88_db_8c_d8_af_db_8c_d9_88_db_8c_db_8c-_d8_aa_d8_ba_db_8c_db_8c_d8_b1-_d8_a2_db_8c-_d8_af_db_8c-_d8_a8_d8_a7_d8_b2_db_8c_da_a9_d9...
- http://uu##oad.ir/files/1rgo_pesprofessionals-patch-v4-aio.jpg
- http://uu##oad.ir/files/gxt2_pesedit.ir_508.jpg
- http://uu##oad.ir/files/7l0b_adidas-2015-player-gloves-by-mfz69.png
- http://uu##oad.ir/files/62m_2627305-pes+cover.jpg
- http://uu##oad.ir/files/0hx_pesedit.ir_308.jpg
- http://uu##oad.ir/files/ie40_pes-2015-real-madrid-pack.jpg
- http://uu##oad.ir/files/bn0d_mailwasher_20free_207.5.jpg
- http://uu##oad.ir/files/ftms_pesed57152it.ir_.jpg
- http://uu##oad.ir/files/jsyt_scorpion-mkx-damage2.jpg
- http://uu##oad.ir/files/g45_pes-2013-new-facepack-internacionalwww.pesland.jpg
- http://uu##oad.ir/files/j8r0_fc-barcelona-2015-2016-nike-home-kit-wallpaper.jpg
- http://uu##oad.ir/files/litx_download-pes-2015-roberto-firmino-face-by-cleiton-silva.jpg
- http://uu##oad.ir/files/4sye_pjbg665f65j8.jpg
- http://uu##oad.ir/files/z6oi_v794oxt59vue.png
- http://pa##iup.com/files/139402/2381f02561304b4b8efd6b18a5a5b08e.jpg
- http://uu##oad.ir/files/93ed_untitled.png
- http://uu##oad.ir/files/j15_pes-2015-s-patch-v4.00-afc-champions-league-cover.jpg
- http://www.pe###atch.com/wp-content/uploads/2015/03/PES-2013-Facepack-vol.-5-by-azis99.jpg
- http://pa##iup.com/files/139402/6ce39e35d7eb0f238260147aacd45c4d.jpg
- http://pa##iup.com/files/139402/1fa593e6e93a90d4e1c1e3d1406ac156.jpg
- http://www.pe###atch.com/wp-content/uploads/2015/08/Malavan.png
- http://pa##iup.com/files/139403/3c3c4710016217d8d0e6a8a8ecb948a7.jpg
- http://www.pe###atch.com/wp-content/uploads/2015/03/Download-PES-2015-Nottingham-Forest-14-15-Kits-by-Juaniyo.jpg
- http://pa##iup.com/files/139402/916e07dd8003f0539aed6f1def073eec.jpg
- http://lp###hive.org/Civilization-V-Gods-Kings/Update%2033/2-Screen_Shot_2013-06-28_at_2.17.20_PM.png
- http://s5.##cofile.com/file/8150250368/sxbxnhbdtiew.jpg
- http://www.pe##and.com/wp-content/uploads/2015/03/Master-Legue2-300x113.png
- http://i6#.#inypic.com/e9t0kl.png
- http://ti##pic.com/images/goodbye.jpg
- http://www.fi###patch.com/wp-content/uploads/2015/08/mlspk.jpg
- http://uu##oad.ir/files/9zsx_windows_product_family_9-30-event.png
- http://www.microsoft.com/pki/certs/MicRooCerAut_2010-06-23.crt
- http://uu##oad.ir/files/at2o__d9_81_db_8c_d8_b3-_d8_b9_d9_84_db_8c_d8_b1_d8_b6_d8_a7-_d8_ac_d9_87_d8_a7_d9_86_d8_a8_d8_ae_d8_b4-_d8_a8_d8_b1_d8_a7_db_8c-_d9_be_db_8c_d8_b32015.jpg
- http://uu##oad.ir/files/mof1_fatal-fight-v1.1.1.jpg
- http://uu##oad.ir/files/81gz_patrick-james-coleman-paddy-mcnair-235x300.jpg
- http://uu##oad.ir/files/0g85_pes2015-marcel-schmelzer-face-by-a.-mussoullini.jpg
- http://uu##oad.ir/files/eb89_coach.jpg
- http://uu##oad.ir/files/eyh_f1.cover_1.jpg
- http://uu##oad.ir/files/zrto__d8_a2_d9_87_d9_86_da_af-_d9_87_d8_a7_db_8c-_d9_84_db_8c_da_af-_d8_a8_d8_b1_d8_aa_d8_b1_d8_a7_db_8c_d8_b1_d8_a7_d9_86-_d8_a8_d8_b1_d8_a7_db_8c-pes2015.jpg
- http://s3.##cofile.com/file/8197625242/IMG09382486_Copy.jpg
- http://s3.##cofile.com/file/8200826750/XX_Copy.jpg
- http://s3.##cofile.com/file/8202576476/899.PNG
- http://x1.#.lencr.org/
- http://s3.##cofile.com/file/8202400684/Capture.PNG
- http://s6.##cofile.com/file/8203612226/saq.jpg
- http://s6.##cofile.com/file/8198521800/cover_fifa.jpg
- http://s6.##cofile.com/file/8198966992/cover_fifa_Copy.jpg
- http://s6.##cofile.com/file/8200823976/XX_Copy.jpg
- http://s6.##cofile.com/file/8196695526/FF.jpg
- http://oc##.#ectigo.com/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBRDC9IOTxN6GmyRjyTl2n4yTUczyAQUjYxexFStiuF36Zv5mwXhuAGNYeECEQCk%2Bg7rG4A2WRkuEVBYwKk5
- http://uu##oad.ir/files/rgcd_pes-2013-dortmund-start-screen-pack-by-albiii.jpg
- http://uu##oad.ir/files/ocu8__d9_81_db_8c_d8_b3-_d8_b2_db_8c_d8_af_d8_a7_d9_86-_d8_a8_d8_b1_d8_a7_db_8c-_d9_be_db_8c_d8_b3-2015.jpg
- http://pa##iup.com/files/139405/d3d06b7ac875208b40b56dd11fd38e18.jpg
- http://ed##land.ir/wp-content/uploads/2015/03/Rec002_20150227151747.jpg
- http://wi#####elevenblog.com/files/2015/06/PES2016teaserstumble-678x380.png
- http://uu##oad.ir/files/b0vz_pesedit.ir_441.jpg
- http://uu##oad.ir/files/3a3t_preview8-900x408.jpg
- http://uu##oad.ir/files/s9lv_mini-motor.jpg
- http://uu##oad.ir/files/6p66_pes-2013-new-face-chicharitowww.pesland.com_.jpg
- http://uu##oad.ir/files/nral_pes-2015-camp-nou-2015-titlepress-start-screen-660x330.jpg
- http://uu##oad.ir/files/300v_total-war-attila.jpg
- http://e2.##5dm.com/15/07/768x432/man-city-raheem-sterling-goal-first-roma_3327813.jpg?20############
- http://uu##oad.ir/files/q5d5_pes-2015-inter-milan-2015-16-kits-by-amir27.jpg
- http://uu##oad.ir/files/de3v_truck-simulator-3d-cover_28downloadha.com_29.jpg
- http://uu##oad.ir/files/sdr7_pes-2015-real-madrid-kits-15-16-by-kolia-v..png
- http://uu##oad.ir/files/afs0_timthumb_(1).jpg
- http://uu##oad.ir/files/i7j9_timthumb.jpg
- http://uu##oad.ir/files/wfm2_odraex6jd1t2qebffkbz.png
- http://uu##oad.ir/files/9i2s_previa.png
- http://uu##oad.ir/files/zpzv_fifa-16-banner-.jpg?w=###
- http://www.fi###patch.com/wp-content/uploads/2015/07/Post_Ajax-300x268.png
- http://uu##oad.ir/files/d2qe_pesedit.ir_327.jpg
- http://s3.##cofile.com/file/8197175050/1325935_28512272_1600_900.jpg
- http://st#####.gamespot.com/uploads/ignore_jpg_scale_small/123/1239113/2627305-pes+cover.jpg
- http://ed#####ld.rozblog.com/images/smilies/smile%20(12).gif
- http://s6.##cofile.com/file/8196824226/FF.jpg
- http://s6.##cofile.com/file/8198058368/sj20130302p1a.jpg
- http://uu##oad.ir/files/us9f_pesedit.ir_245.jpg
- http://s3.##cofile.com/file/8196950426/974560_730.jpg
- http://uu##oad.ir/files/a2u3_ak5d6cmkmvqhvvdl6vbf.png
- http://s3.##cofile.com/file/8197181050/1325935_28512272_1600_900.jpg
- http://s6.##cofile.com/file/8199215676/cover_fifa_Copy.jpg
- http://uu##oad.ir/files/vep7_fp-patch-fifa-15-v1.0.0.png
- http://uu##oad.ir/files/6unz_milani8.png
- http://s3.##cofile.com/file/8198526000/cover_fifa.jpg
- http://s3.##cofile.com/file/8200143476/XX.jpg
- http://s6.##cofile.com/file/8203614118/saq_Copy.jpg
- http://uu##oad.ir/files/yskz_pes-2015-classic-facepack-by-amir27.jpg
- http://ww##.#arsiup.com/
- http://ed#####ld.rozblog.com/page/ad
- http://www.fi###patch.com/wp-content/uploads/2015/01/Blender-Cover-CR7-modified-high-resoluted-by-Stuphan_75.jpg
- http://ro##log.com/temp/rang/like.png
- http://s3.##cofile.com/file/8196824042/c2c07c95dc39fc742069c89c64b4d665.png
- http://www.pi##ak.net/blogcod/google/g.gif
- http://ro##log.com/temp/nuke/FBarrow.gif
- http://pa##iup.com/files/139405/7d8ecb64921966e120538c28dabb684e.jpg
- http://s3.##cofile.com/file/8206093392/3.png
- http://uu##oad.ir/files/jqh1_war_www_bplus_blogfa_jpg.jpg
- http://st#####.wikia.nocookie.net/__cb20120608180505/civilization/images/1/1c/Darius_intro.png
- http://s3.##cofile.com/file/8196455618/c2c07c95dc39fc742069c89c64b4d665.png
- http://uu##oad.ir/files/rg8f__d8_af_d8_a7_d9_86_d9_84_d9_88_d8_af-_d8_a2_d9_85_d9_88_d8_b2_d8_b4-_d9_88_db_8c_d8_af_db_8c_d9_88_db_8c_db_8c-_d8_a8_d8_a7-_d8_ad_d8_ac_d9_85-_da_a9_d9_85-_d8_b3_d...
- http://www.mo###ngway.com/screenshots/files/45629/big.jpg
- http://8p#c.ir/images/069129hrs7jqnrxqngiu.png
- http://s6.##cofile.com/file/8207573018/Capture.PNG
- http://s6.##cofile.com/file/8196863676/974560_730.jpg
- http://s3.##cofile.com/file/8200141868/XX.jpg
- http://uu##oad.ir/files/rnk4__d9_81_db_8c_d8_b3-_d8_b3_d8_b1_d8_af_d8_a7_d8_b1-_d8_a2_d8_b2_d9_85_d9_88_d9_86-_d8_a8_d8_b1_d8_a7_db_8c-_d9_be_db_8c_d8_b32015.jpg
- http://www.ed#####ld.rozblog.com/page/ad
- http://s3.##cofile.com/file/8197623468/IMG09382486.jpg
- http://pa####nk.pichak.net/rank/icon/?n=############################
- http://pi##ak.net/blogcod/pagerank/icon/25/pr5.gif
- http://on####.1abzar.com/1abzar-mini.php?ad##########################
- http://ed#####ld.rozblog.com/temp/site.css?22
- http://ed#####ld.rozblog.com/images/smilies/smile%20(24).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(10).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(27).gif
- http://ed#####ld.rozblog.com/include/captcha/cap9.php?na########################################
- http://ed#####ld.rozblog.com/images/refresh2.svg
- http://ed#####ld.rozblog.com/include/captcha/cap9.php
- http://pa##iup.com/files/139402/7fe1e7cb1b1fb9d5cd32055ae4ed6797.jpg
- http://www.pe###atch.com/wp-content/uploads/2015/03/PES-2015-Mega-Serie-A-Facepack-By-Bono18.jpg
- http://ed#####ld.rozblog.com/js/site.js?7
- http://ed#####ld.rozblog.com/images/smilies/smile%20(9).gif
- http://8p#c.ir/images/wsbag92nxmhgm0zn51d1.png
- http://ed#####ld.rozblog.com/images/smilies/smile%20(13).gif
- http://ed#####ld.rozblog.com/images/no_image.png
- http://pa##iup.com/files/139402/29694883aba78c513fc076684d9d779c.jpg
- http://ed#####ld.rozblog.com/images/smilies/smile%20(7).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(8).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(5).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(29).gif
- http://1a##ar.ir/abzar/tools/translate/?bg##############################
- http://ed#####ld.rozblog.com/temp/default/script.js
- http://ed#####ld.rozblog.com/code/popup
- http://ed#####ld.rozblog.com/temp/tarahi/fonts/yekanregular.woff)%20format(%22woff%22
- http://ed#####ld.rozblog.com/temp/tarahi/fonts/wdtv.eot')%20format('eot'),%20%20%20%20%20%20%20%20%20url('fonts/wdtv.woff')%20format('woff'),%20%20%20%20%20%20%20%20%20%20%20%20url('fonts/wdtv....
- http://ed#####ld.rozblog.com/temp/tarahi/fonts/fontawesome-webfont.eot?
- http://ed#####ld.rozblog.com/weblog/file/loading/88.gif
- http://pa##iup.com/files/139402/bf74a5c1a65c806f9c0fe0b11fe81f63.png
- http://ro##log.com/temp/music3/MTForumBlock_row.png
- http://ro##log.com/temp/music3/MTForumBlock_row_over.png
- http://ro##log.com/include/rozblog_ads_js.php?6
- http://ed#####ld.rozblog.com/images/smilies/smile%20(1).gif
- http://rs#.#oolsir.com/badge.php?ur####################################################################
- http://ed#####ld.rozblog.com/images/smilies/smile%20(2).gif
- http://ed#####ld.rozblog.com/images/smilies/smile%20(3).gif
- http://im##.tebyan.net/Big/1389/12/62722212513817111375240112352327423557188.jpg
- http://ed#####ld.rozblog.com/temp/tarahi/styles.css
- http://ed#####ld.rozblog.com/images/smilies/smile%20(0).gif
- http://r3.#.lencr.org/MFMwUTBPME0wSzAJBgUrDgMCGgUABBRI2smg%2ByvTLU%2Fw3mjS9We3NfmzxAQUFC6zF7dYVsuuUAlA5h%2BvnYsUwsYCEgRZ4JiOC1VR7b%2BkmQWPF8QE9Q%3D%3D
Other
- 'ed####rld.rzb.ir':443
- 'ro##p.ir':443
- '8p#c.ir':443
- 'mo###ngway.com':443
- 'uu##oad.ir':443
- 's6.##cofile.com':443
- 's3.##cofile.com':443
- 'on####.1abzar.com':443
- 'go#####agmanager.com':443
- 'im##.tebyan.net':443
- 'lp###hive.org':443
- 'wi#####elevenblog.com':443
- 's2.##pload.ir':443
UDP
- DNS ASK ed####rld.rzb.ir
- DNS ASK go#####agmanager.com
- DNS ASK pe###atch.com
- DNS ASK s2.#mg7.ir
- DNS ASK mo###ngpars.com
- DNS ASK st#####.gamespot.com
- DNS ASK e2.##5dm.com
- DNS ASK ga######1.cbsistatic.com
- DNS ASK lp###hive.org
- DNS ASK s5.##cofile.com
- DNS ASK pe##and.com
- DNS ASK up.##sland.com
- DNS ASK i6#.#inypic.com
- DNS ASK ti##pic.com
- DNS ASK up####.pescity.com
- DNS ASK microsoft.com
- DNS ASK ed##land.ir
- DNS ASK wi#####elevenblog.com
- DNS ASK ne###enbase.com
- DNS ASK s2.##pload.ir
- DNS ASK oc##.#ectigo.com
- DNS ASK public-trust.com
- DNS ASK 1a##ar.ir
- DNS ASK x1.#.lencr.org
- DNS ASK rs#.#oolsir.com
- DNS ASK se###an-pc.ir
- DNS ASK ro##log.com
- DNS ASK s3.##cofile.com
- DNS ASK s5.###eupload.ir
- DNS ASK 8p#c.ir
- DNS ASK 2s###game.com
- DNS ASK pe##dit.ir
- DNS ASK ro##p.ir
- DNS ASK s6.##cofile.com
- DNS ASK uu##oad.ir
- DNS ASK fi###patch.com
- DNS ASK pa##iup.com
- DNS ASK mo###ngway.com
- DNS ASK st#####.wikia.nocookie.net
- DNS ASK s1.###eupload.ir
- DNS ASK pi##ak.net
- DNS ASK ed#####ld.rozblog.com
- DNS ASK pa####nk.pichak.net
- DNS ASK cd###.#oddingway.com
- DNS ASK ww##.#arsiup.com
- DNS ASK on####.1abzar.com
- DNS ASK up.##sland.ir
- DNS ASK im##.tebyan.net
- DNS ASK r3.#.lencr.org
Miscellaneous
Searches for the following windows
- ClassName: 'MS_AutodialMonitor' WindowName: ''
- ClassName: 'MS_WebCheckMonitor' WindowName: ''
