Analysis
-
max time kernel
565s -
max time network
606s -
platform
windows10-2004_x64 -
resource
win10v2004-20230220-en -
resource tags
-
submitted
01-04-2023 01:14
General
-
Target
-
Size
14KB
-
MD5
19dbec50735b5f2a72d4199c4e184960
-
SHA1
6fed7732f7cb6f59743795b2ab154a3676f4c822
-
SHA256
a3d5715a81f2fbeb5f76c88c9c21eeee87142909716472f911ff6950c790c24d
-
SHA512
aa8a6bbb1ec516d5d5acf8be6863a4c6c5d754cee12b3d374c3a6acb393376806edc422f0ffb661c210e5b9485da88521e4a0956a4b7b08a5467cfaacd90591d
-
SSDEEP
192:sIvxdXSQeWSg9JJS/lcIEiwqZKBkDFR43xWTM3LHn8f26gyr6yfFCj3r:sMVSaSEglcIqq3agmLc+6gyWqFCj
Malware Config
Signatures
-
Checks computer location settings 2 TTPs 2 IoCs
Looks up country code configured in the registry, likely geofence.
-
Writes to the Master Boot Record (MBR) 1 TTPs 1 IoCs
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory 1 IoCs
-
Drops file in Program Files directory 2 IoCs
-
Drops file in Windows directory 57 IoCs
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s). Likely ransomware behaviour.
-
Checks SCSI registry key(s) 3 TTPs 23 IoCs
SCSI information is often read in order to detect sandboxing environments.
-
Enumerates system info in registry 2 TTPs 12 IoCs
-
Modifies registry class 3 IoCs
-
Suspicious behavior: EnumeratesProcesses 64 IoCs
-
Suspicious behavior: GetForegroundWindowSpam 3 IoCs
-
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 64 IoCs
-
Suspicious use of AdjustPrivilegeToken 9 IoCs
-
Suspicious use of FindShellTrayWindow 64 IoCs
-
Suspicious use of SendNotifyMessage 64 IoCs
-
Suspicious use of SetWindowsHookEx 27 IoCs
-
Suspicious use of WriteProcessMemory 64 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]"1⤵
- Checks computer location settings
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /watchdog2⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /watchdog2⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /watchdog2⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /watchdog2⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /watchdog2⤵
- Suspicious behavior: EnumeratesProcesses
-
C:\Users\Admin\AppData\Local\Temp\[email protected]"C:\Users\Admin\AppData\Local\Temp\[email protected]" /main2⤵
- Checks computer location settings
- Writes to the Master Boot Record (MBR)
- Modifies registry class
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Windows\SysWOW64\notepad.exe"C:\Windows\System32\notepad.exe" \note.txt3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+code+a+virus+in+visual+basic3⤵
- Enumerates system info in registry
- Modifies registry class
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
- Suspicious use of WriteProcessMemory
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x114,0x118,0x11c,0xf0,0x120,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 /prefetch:34⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2752 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3552 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3580 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5140 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3888 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5844 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe" --configure-user-settings --verbose-logging --system-level --msedge --force-configure-user-settings4⤵
- Drops file in Program Files directory
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\MsEdgeCrashpad --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\Installer\setup.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x238,0x23c,0x240,0x214,0x244,0x7ff6e4cb5460,0x7ff6e4cb5470,0x7ff6e4cb54805⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5844 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5436 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5312 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3596 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3136 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6216 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3900 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3872 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5372 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,13790644108028909274,1608858626528260297,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6040 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://answers.microsoft.com/en-us/protect/forum/protect_other-protect_scanning/memz-malwarevirus-trojan-completely-destroying/268bc1c2-39f4-42f8-90c2-597a673b6b453⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://softonic.com/3⤵
- Enumerates system info in registry
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
- Suspicious use of FindShellTrayWindow
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2156 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 /prefetch:34⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3368 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=3008 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3792 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4468 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4580 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3952 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3568 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3628 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3652 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3624 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6588 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7904 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7904 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7504 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7656 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8036 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8016 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7284 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7328 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7640 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4804 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6724 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=7220 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7204 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7504 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7440 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7984 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5972 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7364 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,11839805633258206101,16466533143816191192,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6900 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=internet+explorer+is+the+best+browser3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Windows\SysWOW64\cmd.exe"C:\Windows\System32\cmd.exe"3⤵
-
C:\Windows\SysWOW64\explorer.exe"C:\Windows\System32\explorer.exe"3⤵
- Modifies registry class
-
C:\Windows\SysWOW64\mmc.exe"C:\Windows\system32\mmc.exe" "C:\Windows\System32\devmgmt.msc"3⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\system32\mmc.exe"C:\Windows\System32\devmgmt.msc" "C:\Windows\System32\devmgmt.msc"4⤵
- Drops file in System32 directory
- Drops file in Windows directory
- Checks SCSI registry key(s)
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://play.clubpenguin.com/3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0x118,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://play.clubpenguin.com/3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=dank+memz3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=what+happens+if+you+delete+system323⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+code+a+virus+in+visual+basic3⤵
- Enumerates system info in registry
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2792 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2192 /prefetch:34⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2112 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3324 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4900 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,15602095311632649263,14714220575104537873,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3564 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=facebook+hacking+tool+free+download+no+virus+working+20163⤵
- Enumerates system info in registry
- Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2152 /prefetch:34⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1936 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2892 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3244 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3232 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4936 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4368 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4368 /prefetch:84⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5132 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5616 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5648 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5528 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5768 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1896 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5136 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5540 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1284 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6136 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5852 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5844 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6544 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6668 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5848 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6840 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5016 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6684 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=5140 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6848 /prefetch:24⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6940 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7276 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6888 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6684 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3812 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6936 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7668 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6944 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7684 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7828 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7616 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8412 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8076 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8680 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8904 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8068 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8196 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9060 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8944 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9184 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,11974427188467970532,13945182068474818853,131072 --disable-gpu-compositing --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8032 /prefetch:14⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=my+computer+is+doing+weird+things+wtf+is+happenin+plz+halp3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+send+a+virus+to+my+friend3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=minecraft+hax+download+no+virus3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+create+your+own+ransomware3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://pcoptimizerpro.com/3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xfc,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=vinesauce+meme+collection3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0xf4,0x12c,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=facebook+hacking+tool+free+download+no+virus+working+20163⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=virus+builder+legit+free+download3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=g3t+r3kt3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Windows\SysWOW64\notepad.exe"C:\Windows\System32\notepad.exe"3⤵
-
C:\Windows\SysWOW64\Taskmgr.exe"C:\Windows\System32\Taskmgr.exe"3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=virus+builder+legit+free+download3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=my+computer+is+doing+weird+things+wtf+is+happenin+plz+halp3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+send+a+virus+to+my+friend3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0x118,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=dank+memz3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=stanky+danky+maymays3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=stanky+danky+maymays3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=my+computer+is+doing+weird+things+wtf+is+happenin+plz+halp3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=what+happens+if+you+delete+system323⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x118,0x11c,0x120,0xf4,0x124,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+download+memz3⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x124,0x128,0x12c,0x100,0x130,0x7ff92abb46f8,0x7ff92abb4708,0x7ff92abb47184⤵
-
C:\Windows\SysWOW64\Taskmgr.exe"C:\Windows\System32\Taskmgr.exe"3⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\rundll32.exeC:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\system32\taskmgr.exe"C:\Windows\system32\taskmgr.exe"1⤵
- Checks SCSI registry key(s)
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\system32\AUDIODG.EXEC:\Windows\system32\AUDIODG.EXE 0x4f4 0x5181⤵
- Suspicious use of AdjustPrivilegeToken
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
-
C:\Windows\System32\CompPkgSrv.exeC:\Windows\System32\CompPkgSrv.exe -Embedding1⤵
Network
MITRE ATT&CK Enterprise v6
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\091c5025-bbce-4291-abae-800d593b7000.tmpFilesize
13KB
MD55e8aac25160982e30b8482ac7d1fdad5
SHA15ddc24581f20a721522bd94dcb8f6f61f713fd15
SHA256dc14ecf862bc1c66920eb98a96760cc450dcef00aa8a46fcfa54524a6fa8646e
SHA512da0c19fdf96ef1d67a6de12ab5ed3012099f4ebbd4ed33e17a223359b49654c141c56664d402b40e03f9422689b42788c2ee4605b37075eefbcce8ef10b392a6
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD50820611471c1bb55fa7be7430c7c6329
SHA15ce7a9712722684223aced2522764c1e3a43fbb9
SHA256f00d04749a374843bd118b41f669f8b0a20d76526c34b554c3ccac5ebd2f4f75
SHA51277ea022b4265f3962f5e07a0a790f428c885da0cc11be0975285ce0eee4a2eec0a7cda9ea8f366dc2a946679b5dd927c5f94b527de6515856b68b8d08e435148
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD551553f19d66c3777492a19cc41b7d7d6
SHA1d2997ebee5032c0eb54d308dcfca5f0b70658b03
SHA256fd5decdd63082dcaf5b3d0a17f4a87006b15ccf762e906b8966905c4f241bd52
SHA5128fadbb6e0bb6bf9f58b7eda2cd2a39280015254aa0cf57a135570b64bf88f5a168aad18bbd77051b05ad15851dd5354dedc84fd43d0a87a9c6c5cb0021d51d87
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5425e83cc5a7b1f8edfbec7d986058b01
SHA1432a90a25e714c618ff30631d9fdbe3606b0d0df
SHA256060a2e5f65b8f3b79a8d4a0c54b877cfe032f558beb0888d6f810aaeef8579bd
SHA5124bf074de60e7849ade26119ef778fe67ea47691efff45f3d5e0b25de2d06fcc6f95a2cfcdbed85759a5c078bb371fe57de725babda2f44290b4dc42d7b6001af
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD50524b314c3fe58329e47420de4dcc040
SHA125aef3f14642903998f989e2a34415e248095973
SHA256da916b9c10752e6c02e78eb2efa7738f764f483a3e7523229d508472c4c404d0
SHA5128acf9a2541343e550916bfabb2062cd2bb5cf8708d29a5a8069b9a97631cf379dca624e94501b4ec859335cc2f7c782f74095b1742bc5e0609ec37ec5d0f0a93
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5163202a097983b20ce2bc01b538ac220
SHA1d6687b7a0da5b733e677f7f9bc909527e97ff748
SHA256031eb7b5db01a3ac72cce6caa1b26a3abd390d0bb06ae09af624088979c9330e
SHA512dd1323e23848cfc3bc9d025e856bb2e48c94dac3093110356ca9c1fdac2ebd5ea304d0c79424197e6153126d29189c07a2993ce03873392023aaa967e5345a13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5163202a097983b20ce2bc01b538ac220
SHA1d6687b7a0da5b733e677f7f9bc909527e97ff748
SHA256031eb7b5db01a3ac72cce6caa1b26a3abd390d0bb06ae09af624088979c9330e
SHA512dd1323e23848cfc3bc9d025e856bb2e48c94dac3093110356ca9c1fdac2ebd5ea304d0c79424197e6153126d29189c07a2993ce03873392023aaa967e5345a13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5163202a097983b20ce2bc01b538ac220
SHA1d6687b7a0da5b733e677f7f9bc909527e97ff748
SHA256031eb7b5db01a3ac72cce6caa1b26a3abd390d0bb06ae09af624088979c9330e
SHA512dd1323e23848cfc3bc9d025e856bb2e48c94dac3093110356ca9c1fdac2ebd5ea304d0c79424197e6153126d29189c07a2993ce03873392023aaa967e5345a13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5163202a097983b20ce2bc01b538ac220
SHA1d6687b7a0da5b733e677f7f9bc909527e97ff748
SHA256031eb7b5db01a3ac72cce6caa1b26a3abd390d0bb06ae09af624088979c9330e
SHA512dd1323e23848cfc3bc9d025e856bb2e48c94dac3093110356ca9c1fdac2ebd5ea304d0c79424197e6153126d29189c07a2993ce03873392023aaa967e5345a13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD5e52493c495a76ce758c7ed39bcee2ddd
SHA132b9bb4d38611af20c46628fbcd99c4cefd831d5
SHA25650db5e5d29008645c7fdbd2cb99df88bd2e8df74cc47e4e90d93be3dabc022a4
SHA512bf929a59f42691d8e62badbfb669914af23deb9f5e5f98f77648c1fd7821cb5f119c7067282f4f98c76c727277592bac09061c776ced46e3e32f1ae994ed25b0
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.datFilesize
152B
MD55e4b59151b6c45ee7367e0afe36321a4
SHA135ccc64c7d370d8b23e6285c44c841286406ff3a
SHA25658c2b84fdcce571bb25cd3670a391ee672fddb7bdc13b03803873e03423102ad
SHA512ed5ccde478686133467e5a603fa2b4f53dd386d8cc6c3e01bdf83b4a3861762357a5adde9c97f3c9077863d6793b1e014b04ba752069efd8dadf5981e347b9fc
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\203a6cdc-91ea-49a7-88d7-85732ac35b6b.tmpFilesize
7KB
MD534374d9a5ed3ead95403732c3bf060ca
SHA10081f8076619a0982bef469079fcda4c6f7bcf93
SHA2561c5c4280686fe90683938011412ea3673eb613274e3865862a00a42bdcc642c1
SHA51227c01d2b7419dce423646fe6d0e5cce43c01fe5404ca6837a4ca226c31dd4dfafc198bffc1e247971f968c3f5cacdb90e7768d7c36fdb51e624830c9882e2d08
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\99c17bf2-bd7e-47fa-ad34-ed6dcda68aee.tmpFilesize
15KB
MD5d100c1408a7709fc79c8ca1182e2f358
SHA17c534879ab3b3342f7e7859edf05f0ace6dc0121
SHA256636dabe4506bfb6483a77f7ae1fcd292bce2520456702bb4915fa6ccc67843a3
SHA512b5afd2284ea296f76469071bf5fd142344b99b4188b9f2cf185a717ce13e42bcb9bf4bb8e5bbd58c1e9681eaac5de65298bd6d6587ddb8820749be95587b1c39
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045Filesize
55KB
MD5de5f8da15ec077c7ff8b5bad5763a70a
SHA1668c58903a20d88baffefa1e1148be2fe9f2ead0
SHA2564ea999ce720252c37049bd049642e650272d49664a6150d4412de2bf238e19ef
SHA512b853745908a1a6eff91d836018402268055fde18a57223dc668507ba5abb7d9dc76b9d78a6a9904bad13b5b0e3b09cccaa9dc4cd737764e659131b9e46e2bc2a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004bFilesize
135KB
MD5d1d3495cc341e24788e2c2f9aec562aa
SHA15eee2cef8d3c8ecce76b58843bca2360f675e277
SHA256e2a60fba1e47800672074615e2adc24e1f31b6785a242c62fe5827938f6b6cdf
SHA51239ea119f40afa23d517b7c2117525f77259242930fd3972fd514b2fefee97a221a2ab5c854b7102b20d3ded8bb2f899b5af0bb5ac7ed5e69eaf9ffab9cd985fd
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000073Filesize
91KB
MD57290674ff8c7ccc09204db1c4a4ccf73
SHA1d5eaeeb9079ab9849c0f77019c69f5ba0aeef3e6
SHA2568a81879294578fd57350e9fcbb20dbf23a5ffdbbbbec6fe5b508b0a3f5ba6e66
SHA512362ec6027263b4979c87d5ca30df80fe22535826f1e1670975ead6237e3dc7af04909524644b97633e94bd9dc3912f2af28df0d82b197e877e9add697e3ca7cc
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000075Filesize
242KB
MD5504d2c654e31169295574d25e25e26e1
SHA12d47d5979b7878471d495b48137a87033b8f0245
SHA256f724510b51a53ddca63bdba44f21ce993bb43a630fd9447171cab08714271f2d
SHA51263d592a746b91b25b52307c3d7aa2fadeafb7699d8a5a52312dffed3b51d51237bb82ce66c682d9befd5646f7e0c144179076c94bbf1ee86770b849793cb7d9d
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
1KB
MD516495c76180089208c30bd11a6c55c1c
SHA1a06a2bdf35e1f044048d54005faf4ba32329d705
SHA256f21565d269306569c6f61f553534900f660ef863ab48d8318eba61b065fc5a3a
SHA5120f78b84804c28ced90878723f1dfa05a9029f2a8f25a8dbd63a309c34ff49f11f43897c28c1bce99137528f22f804f5643e5294c9035211552e2d20a46925ec6
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
1KB
MD52784581fea23c54b6bc86eb4c1adf6a7
SHA16673bf68f4a7acbb208b0ead653bbb4ec92d25ee
SHA25625753dc7e6677eed85aeb6083605daf6af459e0c0b0e8c2eccbfa64d82a40064
SHA5127f4e5179a93f169a7a4106f2958c448223881f54ba8ba6e1d88150b54ce692c0b75c84fbdb0e41b9754e0bd9d1f1f4657dfe9d54faf7e0c92b2685bfdfa0b29e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
1KB
MD52784581fea23c54b6bc86eb4c1adf6a7
SHA16673bf68f4a7acbb208b0ead653bbb4ec92d25ee
SHA25625753dc7e6677eed85aeb6083605daf6af459e0c0b0e8c2eccbfa64d82a40064
SHA5127f4e5179a93f169a7a4106f2958c448223881f54ba8ba6e1d88150b54ce692c0b75c84fbdb0e41b9754e0bd9d1f1f4657dfe9d54faf7e0c92b2685bfdfa0b29e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
2KB
MD5e5f1fff4e03de44588604942813bc834
SHA1ae288ca550e2209c04517532139b2ae24c0b4492
SHA256416758e48bab4a949a1044880f6a582b3c36682b1bd6ecd6b37760a74fd88ed0
SHA512e1ef8d3fd0a3884a59ee4d4daf666b466c66327ce6d376d6ecb5393dd3d0b9828a921cbfee9c84efcce70f8b31ca4ff17754c1a709ca5b4444491c3ee33ad706
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
2KB
MD5bb7af95f49c252d641e0db4214bc1e37
SHA17134316d42b80a337cee8713ba28b97a8eca467e
SHA25627a0b1c977838f5e36b943756f7571047e8f01b1e501f95baf6c349be355a342
SHA51231f73ba914f543f53c5cb9eddc4c9d0d0b40132771995be6dfbf580cee6f988b38988d622e0d40fa8a7d690e45f2211b6d81ae7374445ddc1dd431d934ab080a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
696B
MD57656451a7fc46b3a38a9e1de44512370
SHA1bcdb5b6370f9090d535c5f1fb4277bfa8abc8f83
SHA256ec089735e296ecff0692dff885970a3ec8fb089f48b2f3b8d00380ad67059771
SHA512072fac3218c871a417293b3b8943f7827cd3a0c847b40214e3988080fcd4b2505e5c6e4c04ba4f09cdd44a586ce7e654d4c2b2013a264c2493fb077799f57cd6
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-indexFilesize
3KB
MD5a881fbc6be5a0243bda936fc53f0aede
SHA1a923e0f5e8907c2688da675cc148d85cd087cb0b
SHA25654ee6a6ea781390a33a47a1daad59cd38a0a06df23e4e4a75ad55356c8d55f6a
SHA512e01e2d61a5518b85627b0550c4735988bdac54ea9a046693819a89c5e732e040eaf3532a8113384e03bf9a34abfcdcc337ce95ca1b649bc2b71e702e85fb9fb9
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index~RFe57a141.TMPFilesize
48B
MD558d2c79324171c11ebbfc902e952f7ec
SHA10ef7aacf0e228327ffd966272f1c4fd9f7a1a35d
SHA2564fdd2e6b51630080176569960259d45611636830881e6d780b7a2f889d313a93
SHA512cf6545be8fd3cf305f6a3baf6cfbc6155c8d5c57e2f75ee614f17e2802a3aa8ef6b6212a61289b7e162e604321dd629216fbb5715fd249329973d886e24d6434
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\wasm\index-dir\the-real-indexFilesize
48B
MD5010c9475c0aaf63f20a1f7ecaee127ef
SHA147cedc7c471c51ce3288f28bd80c671a9e0858b5
SHA2564afc52d0cce5f098cae5dcb50d55b58e380f18e5c9370b1ae563aaff724a17b9
SHA512a2cea7f23aebf737d66962d161caec76e00f9e485ef7318565e42d09dba94550dcb9e40356ae46dfc95de4a03cc61023dac4ff99617a20d52178255ede5a818c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\CookiesFilesize
28KB
MD5eb6dbeff9ff0877b1299a83666d8f84f
SHA1d60063110138f351105ae07e8433828616d765c7
SHA25655dda66e1349027bcc48193173d38357afa8e71569494a18a9da3d2ce1be4430
SHA512c4441b8bb9814a5f8d681d905463c095c43b8241b81fca7d6041cf288628f10dccf8c4dff468bec2632d60c6f9a61808929ccd9ce94ee3cc7a6c19c5a5881335
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Edge Profile.icoFilesize
70KB
MD5e5e3377341056643b0494b6842c0b544
SHA1d53fd8e256ec9d5cef8ef5387872e544a2df9108
SHA256e23040951e464b53b84b11c3466bbd4707a009018819f9ad2a79d1b0b309bc25
SHA51283f09e48d009a5cf83fa9aa8f28187f7f4202c84e2d0d6e5806c468f4a24b2478b73077381d2a21c89aa64884df3c56e8dc94eb4ad2d6a8085ac2feb1e26c2ef
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\FaviconsFilesize
24KB
MD592ed4fc5a62bf1308bd3ce253d6af84e
SHA1f83f4ff065ab422487a4b43663aa4ad1e2755cfb
SHA2566f8f3477d65e9968ae04dc7af0192094adfa5b612549d7028d2c3fb6b94a0514
SHA51235531e3c4feb86edac416330931dd394ccaeca25505603b6701bb2e301878ce8ba1b267fe9c8c85390811bc46b749649f9f712d66be4bd6c4f1f87de68b252ab
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_0Filesize
8KB
MD5cf89d16bb9107c631daabf0c0ee58efb
SHA13ae5d3a7cf1f94a56e42f9a58d90a0b9616ae74b
SHA256d6a5fe39cd672781b256e0e3102f7022635f1d4bb7cfcc90a80fffe4d0f3877e
SHA5128cb5b059c8105eb91e74a7d5952437aaa1ada89763c5843e7b0f1b93d9ebe15ed40f287c652229291fac02d712cf7ff5ececef276ba0d7ddc35558a3ec3f77b0
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1Filesize
264KB
MD59153218cda27e565ad4f514b3cd75277
SHA146f07119fceeef7eeafd968b6641059e45958b23
SHA2565f7a870cf1968e7974a0440caf42aa4f1124b22ad6d2438ad8339d8ede1c4898
SHA512f3225a5c17eff3daf179000bf9c2d36eeaa88d28c367b85f8dfdfbfcb97706de7e30975202ae45abf0ec79baef348d8ffbf555a72a600d67a963bd7eeb0935dc
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_2Filesize
8KB
MD50962291d6d367570bee5454721c17e11
SHA159d10a893ef321a706a9255176761366115bedcb
SHA256ec1702806f4cc7c42a82fc2b38e89835fde7c64bb32060e0823c9077ca92efb7
SHA512f555e961b69e09628eaf9c61f465871e6984cd4d31014f954bb747351dad9cea6d17c1db4bca2c1eb7f187cb5f3c0518748c339c8b43bbd1dbd94aeaa16f58ed
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_3Filesize
8KB
MD541876349cb12d6db992f1309f22df3f0
SHA15cf26b3420fc0302cd0a71e8d029739b8765be27
SHA256e09f42c398d688dce168570291f1f92d079987deda3099a34adb9e8c0522b30c
SHA512e9a4fc1f7cb6ae2901f8e02354a92c4aaa7a53c640dcf692db42a27a5acc2a3bfb25a0de0eb08ab53983132016e7d43132ea4292e439bb636aafd53fb6ef907e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\indexFilesize
256KB
MD5004173f9cd71583a65a53b820f4a12c4
SHA1f77a2466ca9e402473361babb90ab2673797821b
SHA2563057e2501fde43ecda5a4d9f47eb089b9cc5ccb9f45b9b199abaaee5a2945189
SHA512a22156e07415347cb0b845a1386b94a2be50df8ce8acf47c8f6c4d136d2304e38d7c14a93df5facbaefc9e11a1e10ded2aa89d96cb24f84b3786c6b3352a7061
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\HistoryFilesize
124KB
MD5d6de41bc516805d4c59b71ba446f36b5
SHA131feddef8c1c9dc422384dbb64ef3d74ee8423d7
SHA2564ca093ef597a3046fd417018497068f7ae158ec1ea178a5640b770e979999b70
SHA512f83d3ac7ce9f133eae6398e8385ef391f6e50f13f06226c572df71499dcfd955dd60ab784570b5c7c7dc137363b04cfad72b6b824e815aaef9bef6d6277afe49
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider CacheFilesize
6KB
MD56e595dc96e92e169d4c7d5f8eafb3a36
SHA17a51ff254426ed3e291ca45c2b3719393f500867
SHA256b094506e08066e4684aae1edfe979d955a860ddfdabd0a6fd39c7d528f1226ad
SHA51282d85855f1a97bea96e594a08d15d52dae3ecbe66f856ea644170c6a974e1a71f822135809ee8ee1d44c953e0d6dcff92dfd7f699c937b066f82dcde6eb392dd
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_en.softonic.com_0.indexeddb.leveldb\MANIFEST-000001Filesize
23B
MD53fd11ff447c1ee23538dc4d9724427a3
SHA11335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA51210a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.logFilesize
8KB
MD550525079212ae5815b90e006793adaaf
SHA1c2672887b154a5aa877359644571cd7788b0c38c
SHA25659a703c0f42828ffc63a6c785b71aaa3c0654ec6e15fbff8086d5b98204ee696
SHA5127a41cd75f0ab6f62fb828a637b2bdb32966507d99c937f24ab1b666a4271deecf18ce191e699f620aacfc21730a2030a718c8447344d696d7bdbc1b46440b2ab
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOGFilesize
331B
MD54e6499eecf7124548719f57b24da56a7
SHA18100256dc28f88e56b00f35624e657b1be382baa
SHA25687b216aa0b8a4a5b36c0cbd020e790f5e27b0e4842cdfb670e6e1b506ca3daea
SHA5120c28bbae5f509e41ce9dec44ecd2fd5f6b04c1ad2ea28aa2bfce6155c8478d65ba500c93d3647bacf61b2a169b30e30ec6263ea0b0d8432ba0d334489a527b1a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnkFilesize
2KB
MD52c9f8e51152be6d2fc66dcead9dba41c
SHA1c549453284cfe6d12c0308db2d75907ba8f2579c
SHA2561782a5745a05411d3225376797420ba7e8bb37da0c9a28501c8857ec5bad6339
SHA512f36a769ea292246fe56435ebbbd91bbe3a7cacd25f7e2f956045d633c22daf002f5e91f2338a40ee333b7eb42c4f897da82d3497bb39bac543fc1d0e2987282d
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
14KB
MD50fea748f76c949956b7b8d5091d039d5
SHA1ce02a11c0992c5f0baa7486620c1fb2c3467e7a7
SHA256a5acb1333af4f89e89ecf8c4a3be0de68aed2bcc1c89ae4d5c250316b582630c
SHA512403cde27cecaf24e331d030243bd84cae42ae72f322e16c0c40a1adb6aa609e8d3c79fa1caf40a7ce517e68bb52a0f12c303943b0bf9015cf221486754ee8da8
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
14KB
MD575ea5fd241beb9efa5c1eb760ce7b627
SHA1ff3a070e74b82273c355bbbb02f27e0248fe5f7e
SHA25692f8d33311d9d6fce42931d1ff3ee007ef1d0dabba68dd6c47a2270bbe68b75a
SHA512c969dffe5361460fd89d231ebbf460f8eafeee0bad3591c7bd27edbddbfa76b93e5faea17692bca0f831fcbc1a4e970ef0750abc48f2a773c5ace5ea1894ca22
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
3KB
MD5fcc9e8ae83941a5ef3209ed49c2940cf
SHA1c2f70a0f4399287dc51546f6f94976282acad1fd
SHA2566789651e7d86f3244e3fdb432567a78f5493371ce1af1ff42d66dd8ac9f0c60b
SHA5126585323e1dc71c66b6847430df0dc62d33f7a4073dc6008a551956626ca9c509958555e60e62a92adbbe199a04e62ca9d81fe602794cef7501fae8e1ec2cd506
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
14KB
MD5bc4a4e5d375314db66c6c84c75f44981
SHA1c53de87fd232c4ee4e4031ba54ce39f0f801022a
SHA2564a2d0106cf68c08331d9cb52acefadeabcbeb0ecfe66b86464914b0fc3357f97
SHA512817ae20678c13e95bb2f33916dccdc159c6dbd2bc7449d3e067f3fc61ee4af918c4c7f1f916173515597aa64ec560839124a868bb9a6ce67a9b6116aa2c053b7
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
14KB
MD50abed8e9b03c1bce5dbae8b732bd80bb
SHA1dafc27cb47f9f7e1e0a1880202be45d349542ebb
SHA256af3b88752e19475050924864b554f561507b1923cd36e1bb7285bc2fda842dca
SHA5123de856e4bef5b2dff94501106c311e1c56f1a1a22e408ef5855dcd09cfb453125ec10d597a7bedb8108aa90847e30ad9beb0f280bec4fbeb77f26f26fe8c651a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
111B
MD5285252a2f6327d41eab203dc2f402c67
SHA1acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6
SHA2565dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026
SHA51211ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
14KB
MD575a4a4e3cf3af1843dd3e4db658870d2
SHA1eef0a8ed77a92b9aa4850679f5b6fef74e29082a
SHA256a471a43e882f8655ced3b95ee276b9a71d7adcf9412d5441391080ea0f52c4e7
SHA51213c0525e065a4797c025fac2c798278ffd8bc21502f092859c53d27c3e7ee8e07b5100c14d707eecabdb31d719fb3554e4d082c5a1b4b62e17b43374daa37116
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
15KB
MD5cbd420360672be0c99d3aa54ad9254c7
SHA1d8664144a00ddecf62890f5705967365f67666d4
SHA256dfa8c8cd4b4e6222dc33e88610a3b5b4e8785e7a3efe8d66cd7cba1f87518247
SHA51253c8fa32fccb6576dab644ef93f83f512c4e8a3699e797af2f15d83cfbba2ea497fd5c0beb65447073ca780f7bd011f8a573a5ae04490d1ff92b07d282fdaddb
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent StateFilesize
15KB
MD508355b6f7d3db4221550db4b3bac0ded
SHA1867df58f6ba1bd8291c602454dc5f68bf64d325b
SHA256bcacbee60afc554a14768fdfc0e444e2a6a8373a3331eb013698b0f0663c7817
SHA512fc924955b8d6159f57edeaeeef4eaecc4e0e9fc6b0d52afe9ee4431d7b50837b83de3c3c21cc9ca34f6a7e752040134e5a186a5c1fce97d232620d0edba2fa94
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD59a88dee762dc6f1f5f96114d7e915762
SHA14e260205a541ec6c83ba2037f730a61f71b91752
SHA25667f21613e27d8d5491b96347ee79197845787e25350db145a68d93577e73fb46
SHA51258d5620d2d5f17ad098132c5e367086b80abfc103e2825fe9596708968a5faf75ca3ac227e578dfef02636e2e819bf872156affd9ef3bb0c0577bfafd6b1967a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD53454c8c6b1bc38c60a91c699aa70272e
SHA1c11a83cb402ef7202c1acab702d778a2183c1371
SHA2562706bb93cc8c64c6bff6f8c40d579de3db871cbbe19881247b494d498cf96121
SHA512b1bd63e1e7a80d853b6e7eb004350dc9b455a4037579608f2ccb1ae1b335eebfc5c74d5d01ec377b92d8189b27847252ec7fe4fe8e9634906d11629fdb1ea38c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
14KB
MD51d2fcca4b2076d6214202cdd9b4efad6
SHA18abd8f66853fa1cd1a16e73ec28606f8329e585f
SHA25607afb09b8c011b58cbf5479392ab5b1c02e309c5730d2ae2cd1644aa4f39e69f
SHA51234d90ae63661a4bffef1095c8a50bf9a6ab1be5acbbecf3e2b82db97641cdaa9bf318a431ca143a7f2dc57ddb81cd157b2230f0d820ca6d404f389075c6f79a7
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
14KB
MD587fb47538c55d35935c44972f789308f
SHA176db54bf4bdee9b956525be2dc92032f4c3204bc
SHA256261366a77309f31d6b725032d68aac52209fd2878266c819e357414ebe840c49
SHA512e6194be865e46d10ed2515489c123067b7cd011e903bfba3dd8b8a4c90aa85e0be024230c86033b7b68ab84f9ee7095bf9aebe29c8c3786165f6b3c51cca2bb3
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
4KB
MD5099279521befde245c6e18159368c3fd
SHA131ba801e2d17029c94b99abe671be86da4aad3d4
SHA2565972e068dce5779bc18db44d04b49334ed27a2692d009a9e01e947ecfaa6908d
SHA512934766db46e1edcd3a207f7a7baa71e671f2ad66b384c15d7309181fb49b1abf3470dd4387e3a8816a7558bf15fa8ff68d1d91d5e32ec3780fcfada1c4e8cfde
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
5KB
MD5ef92a5de5f7af101c2a8e3e8640e5d06
SHA14aaa0192bfa1446768052a763414c03d2926a067
SHA256f8513650c0c7a95ebf90dda6871fe764a0101221d9038e6d7c56425de1bb62e5
SHA51225709b65a5f9fdfd36a38a31dbc8df974ca5b5aaa1f8d93b6ca5e4ff7ea6a01dd13b6a9bdbeb68a6f10a1382d0fb5783a2a575c05d572c16a25b8e26179b9d14
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
6KB
MD54f3ad07048743e27619e9ea405723182
SHA1095b3fb2794f68aa0b4ca11d7b20d939d0a39729
SHA2569e1d9c0384eb1aeed524e2f884c75f73b129ee58383233f62a482c94cda07cde
SHA512c0ae4f48c17748e3c06f8d217852473a9da975e85fafd9796bcb9829cbba9c0fa226761427114df946555f8131a75d71521b3f3e3f190c624b6e272a8b3c9d13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
7KB
MD503d5f20164901c1798962ab7f113d8ab
SHA1dfefca3c9f42958dcbc502bd0a721c94394eb434
SHA2560277b88c9c3ec972eb7589b2fe440affa103ad300afc639e8dbcf05efdf6b586
SHA512301459435f4736cdf9bab71d521d506d7778a4d32767ecfb45cf3546dbcf7b0337b89153e951408c204be1ed1d93adba9218610900ad8d4278d92f6864088ace
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD52d0c3edbdb94dd21ebf1ad12296d3efc
SHA11c70ee12b8e79b3b3c1139720a5187c97e6a5f76
SHA256fcbdcdef8cf15f83cf45e9e04e90a4cba75a1e3d07aa0af1ccddf4479a83818a
SHA512840a8c2336bd42c65449141792affcbccad75159428162e46c99345a090a1d4fe6dbd5b7615f242a76fae9b1e48c6fc336881769289db8c08cee1a7a7c0e091e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD5109f8d6cec9bcc29daf9a29e50c70b02
SHA157c8475c77b9726ee394e37b4bf8fb2a56c02f7c
SHA2568a2c9c761827d8fb2a5e0a96db7f5c94a648bdc56adbed4e80634569731bc61b
SHA51252e78bbd413b43b56c885bdabf376ed8cf4b72f8aefa0135f5618aba3ce8d5dfd00d6493ef96c63e1c71622e21c3c974605efb51250fe701f47a14c4023edbd1
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD52445b6e902e6b3b1fccd65f96742badb
SHA1bbb0dc0d492f4c7d78eadf84c348647f2c0ec16b
SHA2560ecb114f33919570af8496f2101539c3d48220cda6043daff76dc0601e0382b6
SHA512a282de010513edd00c18972fb3f9ba0ca669c7f75bc1ca8dc34941e939ac88d699bce03e6e7052dc84b76c7698a4f972b7347465de60b5e066cbde548c1ca057
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD517c1b233d967cbb1c28feea2a77748f3
SHA1e1a99b64dae69dc141ff79dadcebdc402c9a6666
SHA25688958cff0a5cacbc7dae2899a2b9dfe2946f298d90718d13507c8f4f2b3dd5ec
SHA5127fbd43534d7605190defdbc8e4b7aec1a9547b46b7d017f7253d3f01b59c36b881b551c8ec4cbe0274ba43abfe0e1b6f3278a2d3bac89890ee8de03f4c7f3692
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5d65993afee44a327946d872a0275eab8
SHA181dd170989c535a07694dca6bae1db7a03d9dee1
SHA25670bfc52753a0ec543f552717be263b09eafc09f0cac185ae0cfb8e9e2f49fd51
SHA512e9a080e088fe63b84b68b7cacdb798b0bbdeee8b25ca136dcd79a9f6a7baa8a9b713873986ac08f15891f02569c6e487484675d663ff7978b60bf7a5875458cb
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5cff7ee7d1365102ad5e86848e251d457
SHA1dc3a76c59626dd39d5045b7c20d199c0f6680e9b
SHA256dbdcc58582ae8e7b80ef98b20bf7884d6b6da970e1468dac136c3b1455726d54
SHA512bbfa65831b52525f0a7b1f74df73685a734f443475fe4316dc66e6952505bcdfc4741a73a1ac3dc70154f60755ad9af54c155abd698d77be80c34875aed56e06
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5faefe4b154a8db46e6adcf26daa4fcf8
SHA170b62a4211d9925c6fef1f3c0a7aed95908d6dad
SHA2563cfc3aca2515249cf0a6f630c61aa4a0fe05238b01176a8fb5299ef656bc0521
SHA512b952684323e7dabc6ed99e22f46f2f9d11e6f9f276784294427f3b88e7cbbc2dfc4377c0b3f68794d7348352d91bf69bdcd813378d7859a6a208292503dd7147
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5cf44e81a759d68649f35d14acae5cc75
SHA1023e72388dece2f4c5204682638c36657e38eeaf
SHA256160c00a405a8b112b2ce018e7b8e675311bad3eca3a31594644d16ab82ff8957
SHA51285ec0564727488dec83e559a6158a421b3f2e483ce5260dbf5e8bcadc10af6765f582366573573f69ad55ee4255990b9d5490cb520c1fc34d57fa06fb4b9f48f
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD58ff51124ee43844be3ae69533f2e8df3
SHA177b49c2d9e75b61c859be332897641688cd4fae7
SHA256ae6b6a77022f68baea79a3ca7e6f47e61ae4d99b9873b573f6cdff289a86d3ca
SHA512831dfc4a603d1f56d786d68d189f60aa4636370a40b4305f90f44d50e93ddaecb4ef7b8b18dc9a8fe8e2879a94d4d716e1e4ee20c25e011f654f6856d6299457
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD571da1d0f9cf5073df8685ef3583c3fac
SHA1a54297e2f190e1cb13ced982493dd24c225539e6
SHA2567f5890594228af1507401eb58f66f13ec8da2cfe946166698d8b7b843308f680
SHA5129b8517ceac4384ca8dafab3dc56aa271ed6661f47f432c287e6e856f1303d34acf97fdb7794fae62db6e54091105b71f5d8c1d4151a98e2e89f7f1a565f2cbdb
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5841ecfeaa5f1a84e2876b2f07b9c6cfb
SHA122c49bc5182bffb64a64f579440c63aa41188aaa
SHA256a5b7f75cfda463cfd73505b3ca53d0b399e0995135e7feae0f7014e4f1786791
SHA51291ed954b5b0750d3bff840e346a6f8770f78aadcecfda84a0a184ad96509ecb3942a7cd9c754444d4f6501ab4b0fe38f0d9b339ccecb94be49d3c2421dc33f4c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD57998d7fd925f08f8c5478b4eaf4eed97
SHA18200be6d1c60c850b6911b90682a55ccb65e467c
SHA256ced5d803f85f89a8dca7b11c5c2a4ed6cf5b5766478e218b8246c0f1a54eb00d
SHA512e47a0a7ff3c70dcc22783605ea70517061a4cc80465cc9b3b8a301a2cf0d0c22d23eda34b81bbae5c729a3abcd77ac2ef2718efd1c54e50441debf0ca5999a37
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5b5037df2bd5a8cc522780a125234860a
SHA1a85ccc39cf3af7ceea59c8fd7f5ace50d6b48d50
SHA256eef8e925e510aa6b82fead9630ad577d4a404901afa9bce3148e59b84538583c
SHA512dae4972e1bbf772ecb4330bfc9036b4e01270e6c6f6d2d997bac0a74c0ccbd16be5fb30c4d5eff420daefe6b2a418ef3d502a7b3a354ba9fb4b0717b5c41cf94
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD512458f80ee6f6a3c46c8faa8ca68da9f
SHA183578efde3dd34d7cce95294fbeca6e88e972020
SHA256ae95d29aa2861574201a31489b647fdb9456132c0add70bb4abc8b446d060b56
SHA5122932b42ac404c9a7d372da27bb9bcab62b4ee4181a168ce98ff0a43f72f1a3bbbfadc4abd8ed3dcbff202fea46c2450b49fa070c81648f755d52140d17e15acb
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5293788d2b7bf80d83df9b8f2a69e6899
SHA1fd82afc108d28acd405e87e6a8e3a1fe0dac36ab
SHA2561f68e158196fe8a79a01ee6da34c8031a4a7b9ccfe504a1edbd2c16e10199ccd
SHA51241fea9c03439ac272069920f58001394242025728fcd4210502439e6863e500c71d3f57f1eddcd7a3fa348c0f85a07c6462a48db700247971e1c19d67c6fa1ee
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5632d90c604c223dedfbbc40d0b7bc3bd
SHA15b791978a71a315fa5b6f6b8c924e866c1e21df3
SHA2562530fcdd739973ad98b5953f170ef1d66c191a37a8434b1fca7eee53e657f882
SHA512561bfae51f782cabdc6fb0e09778bc5f79f5907e984009b811400c2c719f0b07fc070e6eefd5b519f59664e62f9ad9c416353de4fd8bb6f05431b339f46b81ab
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5a8416725191fc87b5f9d40d56777ccf4
SHA1d36fe76bd1766a1d67a176c0af28172a21a7a9d0
SHA2563c69f4e2b379ef316d4af8a5ac4692ad21a759862e4fee4db2bc4ec5b91fcaff
SHA5124e5def458d7f25ba7cadf527facfd5840271813f8b0cb9a75c103fb1c0b90cd368d07bdebc559394126502e9861cc8a2a750da07d2cbefeee2e0a8f512bfc745
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD533ab9c5955855fe84912c94c2edf6a2a
SHA1a74f48670de148d0f2c1af0598ede9775c4578eb
SHA256eac01f5aaf16a53647ffb88cbf653bdb587f5d97a9a6ab1cc6b494aea926e78d
SHA512de310c1eb986720e88683f59a41dfd81c2c990383bc3bede31766f3b7e1d3829abd13be08dfa35dc9271dfe94a84873e070cca5756d74141968edfc1d45396fe
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD56067eedfb0962fc20e8133baa92ff03b
SHA1327c7e1d8813cfc0e924f7c656ff7b50a85c72b3
SHA256f947a69c681226c1a1aea080d955c070b06c5d734007bbf9847111a0eb0bf790
SHA5125b01bd7e654be637632cca8ec15ee2e47a815bac7674976f222bb3ae9c2a4acfc733557604aec1b5389cc8530c4d0077a8829c5f38d350255a156006388eecb7
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5c783ae4939c9d68af0d32d1735fb7c0e
SHA163e7cf23e097939f31b844bfcefbe1bbdd828bc4
SHA256d82f7e47669b8be68e5c5e9b189d162fb9b973436364d0550301b988a4440dd2
SHA512305b03e36bf8016d2821bab749f4c80b9ffcdb764652b0092fd00d127c3561aaad7d7b0457880c6a8c100fe285aa805d87062a10594f10b7f84c4e563fdc381f
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD526c42ba18ce07014df7810549dbe9cb8
SHA1aa96fd6cccbcf89d65ab03ef3dcd2a37a67a0174
SHA2560a5926f9a2f1d9f88f5c242dc9e337282abbd28199e2a4f959b5a579e6a27cc7
SHA512d0965d607d6a76ad74440e8671c47b92f914c43e6e06fc47313c2b5bbb5cf6f8d84834db75e307a80d356a457ac10c95e4bab7d19631cbebb7f8b059c94ea99c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
15KB
MD5c34251e06c38d0157044fba985605156
SHA1b9fc05288a7a515f36f3a38d90998f7f413e04e1
SHA25642a36775f012bf3940d7019827fe8e5d19d83a3782a0aa87bb66ddf8d62f4c4f
SHA512691af6735281d23f7f1bcf63365551b61b1f0012f3c68ff7eeb6a5e22763a0dbf98be4da1e71a2fa9c5d3994f40af768049958c4148b632ac36b4c64bb1873e1
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
7KB
MD534374d9a5ed3ead95403732c3bf060ca
SHA10081f8076619a0982bef469079fcda4c6f7bcf93
SHA2561c5c4280686fe90683938011412ea3673eb613274e3865862a00a42bdcc642c1
SHA51227c01d2b7419dce423646fe6d0e5cce43c01fe5404ca6837a4ca226c31dd4dfafc198bffc1e247971f968c3f5cacdb90e7768d7c36fdb51e624830c9882e2d08
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\PreferencesFilesize
16KB
MD5a0db8bb6b10eb722dc8dd7dda4378e46
SHA15a70808fe35097fbec1843cbf3d603b02f84e4f7
SHA2562eca526a75d16fab0f21c83473d11a4eb0f236a2891a32dc304e67fe7814b63e
SHA51252c2082e336cc5d85e35ea213a65ec435d1a5e8e640b600a6138b0634b1c45aaacbff99fdc55071d967833ad744652975616d2279dd4bd282b42c9598843cf0e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure PreferencesFilesize
24KB
MD5d53ac35ab3976e67caeed75c4d44ffc1
SHA1c139ab66d75dc06f98ada34b5baf4d5693266176
SHA256647867c7236bcb78b7d585b476d82a101a077fac43c78dc59e612253fbf69437
SHA512391355c71734ded913239a6db10a3202087e756bccc8e29411108f21b3f2460d9a9c606619aadd785285be70eddcf61ef9519441cd387cd3823c1399a6967cc2
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure PreferencesFilesize
24KB
MD58d7ee92369af9a61cce705c5a8b901a9
SHA18e58ab896d740ccc90d71d10474eae15c052a566
SHA256b4912d40980b666264a31ef06e7722d44881e8acf92df8a3338bf74519cf353b
SHA5120c0c12b521a3a5780a1428c3166c04ed028adb266c250dd80c4ff2cad62c97793f9f09c910d0cf2615d70cd99104f091429f57d25978ca7822560cc67ddeb423
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\cb0076b4-ea97-4499-b180-2e3ff8bbff10\indexFilesize
24B
MD554cb446f628b2ea4a5bce5769910512e
SHA1c27ca848427fe87f5cf4d0e0e3cd57151b0d820d
SHA256fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d
SHA5128f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD52ddf442b0aafe3fd6bb39b1c956ca78e
SHA1a6bba54709ff0f6da9925359d12b2dc9190f0216
SHA256eb274ef1b7d90b5f647059baaad0d7890a0f7c6fda1799b949b05a2b01fd6fe2
SHA51264ac62abd0693712c479e5cd41dfebe30a477aad82ff52ffd8c723b88a6037ef087c4fd87712c62666f381a042e3d0452c08fbea20c2aa77886570e03140d57d
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD571afbc3e5b13064d7dbf9b5271cb67b3
SHA1feeecd38c2e1df7c29a1a3776c0d05a92a7cb934
SHA256a681b965f46edf06dd0a339dc3e334a692e296382bd19a8cf901e6a2b2291930
SHA5126d11fc198258aebb94776758f28abb1b41c1bfc4d1381b831df6bbf8bca432ce2f4343df9523599b6ed308ad12814c82e9ecb48c04479a95d83d97290927b9e3
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD5ed0128bcd5b9b172e5728e977cf57685
SHA1cc2a91ecc4c3246baf7d9ae07a11893e46df5ba6
SHA2565a0545c29da151466e604f05b00d52230287fc9a179687898bc23bd48b9eeac4
SHA512766c467e18ee7081cb553db0d90395fc0a21601ca4c37871b4c5ea084a785a12f3dc4b6590bf0befeeebf2a56fe71bbbdfb682271f1b14c2b33fa8e1d2c0558e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
26B
MD52892eee3e20e19a9ba77be6913508a54
SHA17c4ef82faa28393c739c517d706ac6919a8ffc49
SHA2564f110831bb434c728a6895190323d159df6d531be8c4bb7109864eeb7c989ff2
SHA512b13a336db33299ab3405e13811e3ed9e5a18542e5d835f2b7130a6ff4c22f74272002fc43e7d9f94ac3aa6a4d53518f87f25d90c29e0d286b6470667ea9336ae
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD58612fdb5b604d50f805753f4cf24db62
SHA15603669075cc043eba4463a9f55b834f791949e4
SHA256563535b85572cd6751d77f8718eb80b5eb2afe0118337b22d861d39ad1091e1f
SHA5128c08976887dcbb4b8891c407f86e5b6362902272659418a695251765605a85cb9b0b9f4231ed44003647d374f149e097a11cd2748440ace9acffd290791495cc
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD5171b082399a8f924be5433029a3b9b47
SHA19df3126523910db3ca3f387356a3a186d213a2eb
SHA256f3457bbd57e1adb30ac550b53fc84ee5a6e715d6210ea92c4057cd3a02cff72b
SHA512fe554fb50d0dcfe98fddac2fae49f755d5ae2c4187f85bbd0607fcdcadb22573ea6664c7a5a01e7d9a1d5b8c8101b21d67e3d834ecf0de1a9862749595f5b784
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD55dac4c6acde9a6c89506cda4702ad431
SHA108fdc58a521eb6856132c49a3f984876fbafbfde
SHA25619b5e4d2326552c7537d20a6323fe82e1ab627d81560b143872fa01d17e00c56
SHA512f73a9c928525b19afac01745a031bc4f3ac49f1d452b6b5b469d9b45839b8686983fea27cf63eb6ed17a34d1580c9920a31d3c1a4266d29c0c035c526c2574ea
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD54e14a677c915024d165d4b3ad8d6e691
SHA1628e20d3544f906cb04000d1e6d681370cd2cc9f
SHA2563db9266da0e6f192f5cb8b3243d01a5514fcc8dbfdf4ee0d114856c909008c63
SHA512d5a36bf1009f524f6fe2649fed47ff135367b99c48665b2fc8f55ef1934936855e0ed74c81b916262723d338aa49a71de60e7c0740db5ac607cb2ff6fa48bef8
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD5ca8a1fb2a58f3f3a886faf63321afff1
SHA17fc1596fcb3bc55d94009e4f5b9205f707d13556
SHA25640f953b3b4da4b576f11b7f1550119b459dc88b01e4a32d85591d24f6da348ac
SHA5124f822dd8f58c4a8166dad22724951487803ec432245e245b6966fb94ac7ac863df65822f739d44ad0481a18f339b06883ca700d5b203cb0ded24a5a2ed87c23c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD58688d2ba216723f3d37106cddb71d24d
SHA160ac219dda303eecba4673247b50d6d0b985495c
SHA256241d5b247277c83aba56c024ff9ef88c2fdc0f268090d6fa76c46156724b6852
SHA512cf3d69fdca1e5b89b6900c8817d8a91b3047b2ef539e26f5b4cfaa6b422e874138f036765f7852333ca1ad0fce65fb32c773fa6a596194e55009eae0b228acb3
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD5ebe779b6774c9b7b3157885cbf36b7a6
SHA1a058aad25358b3ba7f6ea0c30aab359faa9c9054
SHA256bbca65d8dfab230878344653d4cb520da36324419033840ccd57fe181640c84e
SHA5124a45ffaa09c7768bd37e27a30c37062bebff1d25388c1d966bb9c748b62cb10a7670b7a2158bc407214e1a5f3474ebf13a6bc0ccc3c3c733b315c0ac21fde758
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD525dc76ab3f50f8f72ffa5ac4bf988060
SHA119dd1b042fe4d5e2c8ba0d9cdbb95a5fb953a963
SHA256996c7aef799df983b3f2a122477e2562cc9da5107069ca75733201f297363d75
SHA5128626ed2f7c45ba1614816db71349daca58ce00f83a3a97e04dbf160b1d3d5e6f44617a6f9c3e79dcf82505ca73824e52cd292a67830d70e89ed3aafa6c1bf6ea
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD5a11f44db2514955c361ea57fb5c98a5e
SHA1ede20734ffc355269e7801fc5c1f38a19e92702a
SHA256c20ce9153e61b1f577d729e13340ae8f0ce877c959ce7ab8da60ce15c5ffd8b1
SHA512a62f0d888de8ecfa087293c57c900ce5a20b5424f89025f6b3e75a7be23eea85fab737cdf727e698f9fc491b8482218361764b073e104a68d429397d70d03bb2
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD56e729a15d5b3e9c599c07e953d08c667
SHA1d42c3a43e83d965bd9717ad581051dc35b97a3ac
SHA256ded35bc28d0e3cd3f98af200a2d1b4f9adf2788a706c8a421f5a86ecd6783035
SHA5129071237dc9dc5f1638e2f584542050cb1abe33710e2f381eb3eb4ef6df0e84f6420aaee044abc3f21aaccda07302997d47806d45d2799e3327636f692294da22
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD540196ab4a4fb4b09c5cc7e3cf84948ef
SHA16d410150c8fffadf45699798c35568bea5a1d809
SHA256951926dc51a560d9bfb9032946123ca6c82368ea091249099fdfdd2972377982
SHA5121e95b48c9d2863726a62c3f6d0bb148f5c58d064651852586b4d53a6f2450ffeab5bc50b58cb389f9602acba30b4f095809b7a03e0ae8b0ceb7934ae1d406996
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD56296fe59007711f4bf112f3f1c145645
SHA133b578200f98798f569142aaf95157d70dcfb8ce
SHA256f2a890ff1cacf42f316f469efc1998d2cf0f124120c4e6bc77c7707af174ab80
SHA512bc0b64383fe604884dd61930f82de5028ab72125513c469d43744d3c67dc96dd71bc757700006e623ca2c0476057c852a5101972936c9b12db74eba0f3ce5ea5
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txtFilesize
90B
MD55f3df07274a9869dd34ca3e0e21f66d3
SHA1219e839d2a528715570082e5e4edff2fe8cdbf86
SHA256388835812b61d42352ae0c5aa152555f12815cc8ce7614950326cad94a6e987d
SHA512ce20c06dbe76dd380fd6cefac3ae4bc5db22e8f6178d3ddb4187bb173ab4b66893937673ef2e0041ef9f03dcfeeb1a745e197a3083c56dfc10ce176fece7fd5c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOGFilesize
279B
MD513a108b83fcc8c148b4d32dcb8d8e88e
SHA193c723f75575449d8fe69e6fd89f1f451b84257f
SHA256ac3e83106471ffff752de5c61fd5ab395efae3af5ef8145dbedd9fbbd9a0cbe4
SHA51280ff4e42bbdfe790169ef57759a80361087dab95fc3f8daab3e3cf7495ae76aedd4ea18ff073255f5e1446b514d5cf47b06c16aedf5c6019a1d5e00eb8630453
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13324792586927405Filesize
8KB
MD5f22acd31b8a224ab1b03a9a768deb4d1
SHA16f1fded8ac8e8c35863db6552a8fda7c2de3fbe4
SHA256b2d6de390da518994fad0a76493d542599dd4f26b484c26b44e6163c5bdc2cae
SHA512fabb4a2b6159be44be0866f7192b616b1e39212a9b6e0ef0155b551e4872ca49434cf4217331c5bd3e8a34aa4c3bef84d077567b01a2f1940fe1c3cada85efb4
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.logFilesize
184B
MD5f5c7ebb68e4f1843b24fe60bb024ecdd
SHA162d24659a6aecc477f3872d11ef7c08a12396c1f
SHA256029e1406bc91b5833cb8ebffbd7ced02ec581b09bd0a3dd92d8cb0e30a7869af
SHA512910ff2ea5c1bf509d46d7a5c9448778f1b656cc28409e53419e2180ca999c9977fe9349510fee8e85394f7698f774e364da6a00b1cdd091d3d53e30f9891eed4
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOGFilesize
347B
MD53712538f21f1c73a289a90f49cb79f94
SHA10f4eaaf751cd8695b23794576e0a889cadcb41ca
SHA25697da368fd27be2ffe011d0b8640845c97f9db9541b2f46ec4a26c3034c0a56ec
SHA51211d4ad03d73e4c217e6e42fd4200f62a29d9896c78a420efc1947dc4e2401465605f5c192c16d2915259507baed28c9014a86330b2fe661d2e69c4074716b63c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOGFilesize
323B
MD534314a5fd0025d4a78fe795acda6421d
SHA1e1bb30a168f7ec4ef03c02c5daa84dc085e5a309
SHA2565c594c7d6b257dc27a13e1727cf041b4c62623ad255afec52873797a718a5561
SHA512ab2c929b6984c5406cb6d9300e234cae0e0eaea43b4f5ae6ab99381e83561b63585cda4ba9651184b564151d265a0c2bb2fb6703ba20f61637a17f871b0a6053
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Top SitesFilesize
20KB
MD5f44dc73f9788d3313e3e25140002587c
SHA15aec4edc356bc673cba64ff31148b934a41d44c4
SHA2562002c1e5693dd638d840bb9fb04d765482d06ba3106623ce90f6e8e42067a983
SHA512e556e3c32c0bc142b08e5c479bf31b6101c9200896dd7fcd74fdd39b2daeac8f6dc9ba4f09f3c6715998015af7317211082d9c811e5f9e32493c9ecd888875d7
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD50f0f55ac796ff4db29b5a2061ee54905
SHA1d6f7d6b0cd53337f738c856279ae7f86ff2ee9a9
SHA256a974c48a9fff71399cae8f53f7d292c0f52f2d6cbb5c55dd7473cd181a2d64eb
SHA5125d50119d5700166efb492b860be993fad37d2ba4348e29f82f678099e71560d5bd1d83c25055735444fa5e1f71e3a9f145d08ea677ab37272f57e4643dab0c93
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD5873319e7422874d8e250dbafa93576fe
SHA13f8e1d74a69ea92de296b8849fd2a3d38b534c94
SHA25679c903ef56399d1ba8af642a6163be763ff6f1a6984230723eaacde2841b4878
SHA512b00981f66ea1d5abe52bfdee81e9b4eefef39f74de8b2db4b6556da24ec4f05fc5d548cfd067c9c77ae69168bd69dc20805600699c7348b3e68c11cca0501e33
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD553b1a6d0c0bb0cea67a3812880cd5c1a
SHA10980f300e777b7fa06256ed6d4bfceb0ff999009
SHA2568e484baea93e26750ae2b726f4e748b566ca2d5ac7c37f08b4be58ad56e5dadf
SHA51222ce82b92338d1c9d246bde2d4620894afd540951474c56046b14ae5192d7ea727b1ac5594c0a8268df433725c9cf232f58e1f11d0326e2e58361d54f3945d13
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD54529c5b1341a958bd705c1ee81805314
SHA1feb1a989ad3fb2bb471a2bc323d966510726acbf
SHA2562674e8f14e6cb96827329d6da4f77631e67051833677fa7ecd0dd3c56b849734
SHA51215594d422152506400366ccb7281f78b5bc5e74b9363126e6e0fe52d56341ec7241678d383ebee409c219fb1cb9ba1ed0d5ece0ea04f247da193d7f3aa5fc27e
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD540a9e324a592576c828be0e71cb18f90
SHA10cdf66195c5b7c43fc30c6c87c5e208478603ff9
SHA256f4a67ae58bfab2aed794bbdd3e48155c91fad98d5cfb9c99a780ea2387f5c94f
SHA5125bd83e5b7039c0cc65fd19fefeb16c90159ffed00bdd77ee1667bfa8525389dc924d1648812b16ced3f9077e0389ba568e6351472e7b4d1d82f9dde96636699f
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD59de260e8d812ed93ab82dbb1d647fb08
SHA13b30350e33925d46889d73c916b708859c7f53bd
SHA2563dab6b129bffb3d3f203a30fccdb6f7c5d56532e273ebd06886ec88c0eb0b342
SHA512c06ef85f30b890fe1807357703483d795ee30c865930a6db11257e0125a97b860cfd296f64e295e82e7c3010dc3a6c3d3a2bd9cf316b4c9f0c2ad0546d800149
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
1KB
MD54d2e9e9d13edf18f625d43dca59b696c
SHA1c0d91640d7e0e7195052a11e0c87f1552879868f
SHA256b64787fa9f98e04e2a9183db2a5e3e38b92e20a08ffbdb653b44519536565877
SHA512c8769e285ec06a89667029ff6011051cf06591d9fba93c7043992b415afe5345ee54f3aa7a4156ff407f1efbecadf9cf862089d01b6a55ffa51c27ead1fbbeef
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD50bf278e13dcb5ba06f4a6f003e3e3d07
SHA169bd0028b6279e9b9dfbb8adf6a9a2aa8ec8abc7
SHA25685d23dce4568f1ad9f111289f347a54aaeaa39db75eae28c158d266d3d31a22d
SHA51216c307f307c4bea94bee271adfbdc0342e3a1ecb68c541deb6f3b5c783e814182bb62574ae2251d23dfe6f21be02af983b753f8b4a5eb0d52d8b0803b88bda92
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD55025eb9d4c0d7850c64907d3d62696ea
SHA1dbbc860d363624d78bd842048795cbb43301e891
SHA2566d4b6bacd1895a1921984984abffe35d1c358f01e43f7d799e309bcbb5e9e60c
SHA512aaf89c1d7c0676c7696084a379fd02fb0d8b1ee9a7ec46154d504d60dca723b8967b950e953e9e7ffb4df5ed33e0c5fcc1e4f528c7829a6d47f7b8a7745911f2
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD5f3a1c998b9aededafc040693bb82addd
SHA13db7ac4ca316cb61f09d97ee8bdaf83a1f6f2517
SHA256b7cd1e413e809cf1f23296f19f28344bbf72a99fb3935fd163b8b6742058acce
SHA5126ee9da173bf1bcb43cee36f8b4a2c3a19f2e482e88ecdad62983ac52dd1663fcc2ac366088f5e6b8e0d5638461d6bebfbba797e7e3d321d9e72b739264cedf1a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD5800c2b2df0aa7660a1d6f683ff46a108
SHA186e0bf49f9034916ebb1b6d84d18d92440ea2d8a
SHA256dd8291e3c3f483d84b86eb7d84ab1de59c0ee37b65ec6b56bc7e3f878324d9fa
SHA512753f43ae0535f014ad0e261dd2c4119e06047ae97a6bc4513c8a9cd44e22336df1f7eda6695717679773afeb0c36d651d0ff5cb5953afacd24d70b03d8abec77
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
1KB
MD563c912bc66eb3cf25a5b128a1b6c0b72
SHA12e6e3a2f5fec7a6fc84118c21ccea2ad9247dc7a
SHA256f6ebc3782bfd9890800a3414d5de58fbf1699803b155780e29ba9cd96256ebd9
SHA51254d1e45ae2d9df11423b0f070621d0f14ce0b129d2f5f2bdf7137750b176ce8b48db08da2bc37df36d683f550b782554074fdde69f0f557a7b13b1033c381bcf
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD56afe2ce1295ded6e0345d1325479d382
SHA1fbdee2bc2dcc1bfd490dba66a39761654a7b1000
SHA256016c3fd83bc8a9f642a6ab57ccad8d6f97180c89a75e4a9ee46e0b4769de7310
SHA5127e6c29210215c9a63023e334b3b4b3f9bdd3b49ee914c89fd10ee1a426121c870a04e7d542702863d51f451b5ecab2ffd2c8a8dabb09bb9cbc2bb415c6fbfa9a
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD5ed6eaeaad8a75bf4609e480f35eb699c
SHA13c9313472834f647050def8f51d8cda8ab42fd5d
SHA2562d18512d2a414e6a5ecdee15fd23751aa98f2665a260b8fa50938d92f6083d70
SHA512d576bcd05dc692d13bdbc4939cb3489e7f503ee7147f319e8ffc46ee716b589ec12c1a899c2fba4f2dd3d3eb735a221c60131c156d03c636e667cc222d84c159
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD55bc743fc843eebe49cdbdfb929dbaaa9
SHA17e3aa6750c985d0be5b37e9a866e30f648a1bc3b
SHA2567cfbea3fd34c9ede4437627be355694c153ce1eb41106314c71ed877849fb83a
SHA5123bcee1dfb7ba0cfdbde476ae2e8387338783355a9aa160fa5a10838d7c7072e678ad83629d2dda43746b6420e3b2e5f9399d349089d768de5a23a3d4a1f53947
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD5f99c67d0b644f0b17b794c071eb8aedc
SHA1b51757c43dd398952c69b9c6d170cf8132123735
SHA256b9b9fe052b4aac0d41c81c66f5bd0b1ad7036567c9d984f2062ea0283df19126
SHA51220e90834806716fa44fafc5076297a66ce0b6ae67b4791668c74233221cc3f0e4ea4631b05fe2e2a24d31ce7cda5e5754537814994b264d7feecd6a2f6de6209
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD532037ed90bfbd810e0d2af0d046ee228
SHA15f226dafbc6b5e4d1543adb9e89043dd9e49a083
SHA2561b23ba67a5e30590d84295ed8a09ba0ed7ae9830a63f7f47eb787ac042422211
SHA5126408609ff92b4d5a9a1d39b9dfe237f3dc8b64e58278781e00a4a1adbe50a016a17612644b210c1bb539006d86f68331c0e786eceb3b4f9ad46b0edfbe90d150
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD5e9a0a2e95e418f0ece22367dc1a6cf4f
SHA1fabb9f30cf4858878bb934a0c897ad28508988c1
SHA256b31c7bc8554abc137da196678788462c8cd1285d05cbe80e8957f193bcb2d47c
SHA512383cebadcbbacee188b0cd38018acc34d1fb30971f6576fe54d9692bd5e8a5e7c8e918f75ad725a27ee3c4f8a12d83f4ca9b8b438a7a65a9f3975911ab29711b
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
4KB
MD5dfb6849a36bf6c3829f96da9afc11c54
SHA133440599dc37006ac6ded87a3f1a285be933aaa3
SHA256bea851436bcb140b83e778057e25d09548653b1d9156aff734469cb1ac39c659
SHA512b7d3feed19df0b85a9c8d87bc00cbb069bd170ddf2c386fdc303bcb8792bf24beb6de14c7dd6c73c36b15a4adf90ede673fc5eaa0b825fa4fe353fa260ea1262
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurityFilesize
3KB
MD5765f087035e9ea4fdfe0ec7df92734cb
SHA1ead4777e2b3a7018ce560a5e3ab79186e0da0833
SHA2569ee740fac032ab0241c5a63874924d5dd111e71dabdf5fb7b0a2244f0e5b0fdb
SHA512066ff8534b10ba12fb5bc205a7f4c3dad64d22a989a0300ad526fe7b772e0c0ddbaf615fe4a9b3201d20359358dca34ef392fd8e4d5f1a5424f16aea53466758
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57c071.TMPFilesize
370B
MD555e141dad763fe4ae3134d15575ca170
SHA17c0318fad4461a5f6cf6fe5acdcad3725ecb630d
SHA2561cda65bd5213ea3728e651d56806996dcd8b7fb139d0be52684c5b15a6d3f435
SHA5123cd56f1e0272dd0797cb7e05952d2e333af1b4cd2c41295d1d383afe0fd92cc9a50d33b1625193a3253c504886729788b7eaaaf44d730d22c45125f7c54eaca2
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited LinksFilesize
128KB
MD57f02a3f9baa75dfa59c2c6c1af19a8fe
SHA189f2e10907f52c4e5f53b41d80aadb38f9508b03
SHA25648e7f6eb8a9fd65acfd67e55db865b4491847eb64cf597df4911f5b3a05a2de0
SHA512982e1fa58d18fc2b8fe62116399c2e24830c52589f61bc41836d306ca6229f253d602c75a3b8fb689479d729346987af9925e990536d164dae66827ca140b2cb
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web DataFilesize
116KB
MD5f70aa3fa04f0536280f872ad17973c3d
SHA150a7b889329a92de1b272d0ecf5fce87395d3123
SHA2568d782aa65de6db3538a14da82216e96d5e0a3c60496726e3541a8165bccc65f8
SHA51230675c5c610d9aa32a4c4a4d9c3af7570823cd197f8d2a709222c78e2cd15304bbed80e233e3674ec2f6e33d1961c67fd6a46dc8ba8b1a301cd0722932c03c84
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENTFilesize
16B
MD56752a1d65b201c13b62ea44016eb221f
SHA158ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA2560861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA5129cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENTFilesize
16B
MD5206702161f94c5cd39fadd03f4014d98
SHA1bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA2561005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA5120af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENTFilesize
16B
MD5aefd77f47fb84fae5ea194496b44c67a
SHA1dcfbb6a5b8d05662c4858664f81693bb7f803b82
SHA2564166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611
SHA512b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\f9250918-a927-4cd2-9c63-0f071543e6e8.tmpFilesize
3KB
MD51a24ddd78a9ee2e70e69176d1a59d3c7
SHA16823c2af20007c6c6ab9d9002e051cd6b164d3ef
SHA256da759e08a6268dab1a467b5ebcf9e2b415ba45e5840b7ab0a6856e0fdccf6025
SHA512e04659b22fde992b0015b359c0ddb19ccf7a53dd675c82999b6efd06339ed273e0fb174f0e297b845b09dfad2a48c84be4ec945c07560e7478e4573ea65445a9
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\fbe3e851-6fcb-4978-a152-ca3e83c32357.tmpFilesize
1B
MD55058f1af8388633f609cadb75a75dc9d
SHA13a52ce780950d4d969792a2559cd519d7ee8c727
SHA256cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA5120b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.dbFilesize
4KB
MD5d9f84c8cf73422f2ca07d7e7462b9534
SHA1cff6e092bf5bf1f3f47b7074847e204042a881ae
SHA2565bf7b14dde109f722782628bbcf3011a23cd2416e7621a62b49ee0333cdec6c2
SHA5121ea893c62d64304c35b9086e2c7e760716ea5ce220bafb76632670fcd2f97eca5c6693ff98004a861b190060c47c9d97ac92b41e3b1da1a4e8f89d9638548c38
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-walFilesize
1.3MB
MD525e3070eefcf73cc6f8919d5a74fa21b
SHA128d4cf841dcf57cfb92fea0fbcda07e2060d869b
SHA25662da273fc06aa6a9983a2badd0bb016499528ff898fa2a6d40fee6d36aed63f6
SHA5123b5ecb9ec309360b3eea1713f23deb74df217b5fa20f72df6741742f9e52659c85242528be8677764de1a29df275acb226dad14e06beb6b3e00b269e6815b567
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.logFilesize
187B
MD5ca880984fe10f621e776f88ab5cb5084
SHA1bd694bd76e7190553fb301d7ed1c3e5b9d295a82
SHA25649f78bc5ac08decf2498c710eb3b94934a5c5bddda5d54e11c5a9e1345351198
SHA512f66ce7558ed55182a501f1a23c61ceb50d23d48b30a7a773f0406c29c61f072bd52f6a6e319fef65a883da250038e4e2721afaa68e5dc976f4e17ea61eb93da5
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\CURRENTFilesize
16B
MD546295cac801e5d4857d09837238a6394
SHA144e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA2560f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA5128969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOGFilesize
279B
MD58dea3091fb7829de6c70c73da7a6630a
SHA16ae830dfb33e91c76a6c10e4b9be6d6b62cc3765
SHA2561a87d472accfd0bb676e3d374663338a69d846b1151d16d5bfecb8dae277ef09
SHA5124ca7001e685563d897c087f17bbe25aee40e3ddae01751ac0a641fb30cdb53d1f5412fa492a8f82f4296ca501ee40909fdecc7869489c983c48135cb3f87f747
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\MANIFEST-000001Filesize
41B
MD55af87dfd673ba2115e2fcf5cfdb727ab
SHA1d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.logFilesize
531B
MD5ab863439c9f8478dc396057d885ed26a
SHA1233de80912615fe2b317c6c52dc3191ec3fdac81
SHA256e2b716ab6087cf49da5c527eedb651d5091cdb5bee86c346e66f49af8a171531
SHA51210b7154fdb9d75103e73e72be18d00b8a9127a2e7d9d67460711ecb5e812632dca95bab205080e8b2e17860d8480b1f269b96192d9410060c1264234cf2e1c32
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\CURRENTFilesize
16B
MD546295cac801e5d4857d09837238a6394
SHA144e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA2560f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA5128969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\CURRENTFilesize
16B
MD546295cac801e5d4857d09837238a6394
SHA144e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA2560f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA5128969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOGFilesize
297B
MD5e7214992e4632631b7050ad863ae2c3d
SHA117a41254eb1295299dbd6ae87b3ad6bdf5c13d39
SHA256bf7b257a10b83ed9a6755450583abb5e6b03cf4fb5fb2854b8b6fccfe0e4d409
SHA51206d055824c75e0a8a9dd78d7a2eaaafdf3198328fe6bb47743e503fe5fa1943ea13ae05eb4307c9fce276d12130b9627acd6e77d8f504b329ffb9cb2f184c5f2
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\MANIFEST-000001Filesize
41B
MD55af87dfd673ba2115e2fcf5cfdb727ab
SHA1d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\MANIFEST-000001Filesize
41B
MD55af87dfd673ba2115e2fcf5cfdb727ab
SHA1d5b5bbf396dc291274584ef71f444f420b6056f1
SHA256f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4
SHA512de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1Filesize
264KB
MD52ae386901d74508e571d0c33c972f309
SHA1c4e8952aafd501310cd62a17dbab7fcff47f28e5
SHA2567236ded8c7cdd5ba05950421a770b42b3fb8073cac8f66e4a5cdb34613a9a403
SHA512cad9ffa7b5ecddbdd82420627b1ab27adfd305b02f0b7c1299701dd56894c739c38cb2c6dc58a01a883b121880f8ddfe5d9096538eeaeee1deade837ffe0cd40
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last VersionFilesize
11B
MD5838a7b32aefb618130392bc7d006aa2e
SHA15159e0f18c9e68f0e75e2239875aa994847b8290
SHA256ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa
SHA5129e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5f2616b2b21f293481a8a12efd43cd590
SHA1ef03fbc9aa93aa54da989f4f72b2ed72c11a8150
SHA2561b6f35ad4866e0fff99f401c46b8dedd43197571bdfc3872bb65e184eb4f4585
SHA5122e01758befdd50a4f1cb5cbf50099845cc73754b6bfab08a55dc454bf725a9c54531e861286380458ab82f1bae2cd2013e76e1199053370f82f1b867b4a4ebd3
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5a9e028383c5cd8b475dcd51e217d0b22
SHA112574a3d97af103aa762eb7ffb7fd1bbef44aa78
SHA2568c9e0d61888442b24087ac44fed0d1d5238395560d4cd456a2f355d08f708b91
SHA5129db935a1c6b05f4af0a308d7afeed4d18d9205215f9b2e5fb61428708374b71d00e69d98368253a930d519409f7ea353bfafed5e549b0a514a6f65ac16846e40
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
9KB
MD59a2d62825ec14539d81c17ee217210c2
SHA13a56f11fd5ea76cb01c8414ca2d6ab26c98cac10
SHA256d606c95c237b66d8aa7286f2e204c629124aee75d81f4891aacfa8a6b982a9dd
SHA5126f86978e36fdb20348f66fc034864616464ea9baeb550f7afae711a84752c86168fd70e8913553e241dbabb3f58046e03d9be7e2b2db69215829d2a32271287c
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD500a5352f257dca7cc23e936820fedf55
SHA1db955aed89ce442aa3787a7f7e8f3aeaee6a9817
SHA2561c0fd0ead40ca210fd19e2c2fd348b13ae15283904e73bc526312b33127846cf
SHA5120103f9478911db4b8bbed0604104366ee9817ca150a5e18d88ea631d84e860cb12a70ec644a4c24f77734ff357614de121a8bee8e91f2b5102ee06d639311a2f
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD566fc64e1fe8730e0dd796c488d829789
SHA1efba74a5fdaaab3533ac28bf8555bc8dab9f102d
SHA2565cb1f40a644d69d41d66da2812eae799c6bba55a27da76d18df74b1c1aed5185
SHA51274edac9ad99e49de64c363f8f1df5a132c57739736695a60008acb3764f48f26cbb24c968a55562151e1ff9bface8227fee21e57371077ef393eabb284027dbe
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD522b9ba147fd371eba523123bd3b2fd9f
SHA1a55101fa476c4a8f9c190038b8526d0fe20f4e42
SHA2565a42c348c1ab885c22152125c8ccf90e22af09297790ae696cb86d9e1211f161
SHA51233c5725d917134a826fdc40283bf90f3d88a8b17f7fc0ea7c79f4d7ca016edb82aeb84ad821f1bf3ab7a40f14593df58cbc635cfcbd053c1ff589991aaa0ebad
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
12KB
MD5c600121e312ee40e2ab48ea63bc4c62b
SHA197ba3bf2979c2adcbcbac2a4d7ddaa95f3d8523c
SHA256d7992e4fbca5cefe3468825ff7c1b7ebda4911f606af9e141b120d11b917d28d
SHA5123eb5cb020960ae7ea8074dde30d1e67b7e3b6035ed940466ceb37c1ef2ae0c26e3225e8773f3941143ba2cb0b0056eb992a13c3aa35ddc66f839f6bc93114dec
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5761dd0fb931c7bd013681432c256b10f
SHA14a8557e3e4f7f831b07d24e3e3898f9c7d5f2153
SHA256ab664c4afa1efaef6483becb3a8fc57250527d54401adc48c012367007135d31
SHA5125602c7919be39782235054834c42247ee3d98b3e374e54992fc9612a599b14c4fe54bf7d2c4aeeaaa0bbdf82019ce17a690a6513dfc0e0f35d3b8d23e7f6473f
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD500b76ae276ad70297c9995b33e18b845
SHA1e06d3884635076025ba2e73ef226ac5220544da9
SHA2566c26523244c41d54b8444d0fc3db4ca0698ae85ad9ba550b78f1be609de374cd
SHA512a5e7de75b9399298ead6d7cd3b63dc78617ea38b088b7a1383d1ef12cd43b0d610540c2ae077b5b91aa0c2872fda883e8c3204f2a210faeaa7d80ffca2ddb24b
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5ec3cf4a58408dec65a1fb6550fb51c79
SHA14da6ee58d302a228cde7a06a049c19f691c7b54b
SHA2565c27c7f13272d081592ca5c0a90a58c68fa7c0fc12a318cce716b64216b637a8
SHA512ce69223762f55efda34b291e1b0de5fa7e33869ad5f4785fa94a2f6ae3582377c1632103e38621f80582843d8d63acc061625a06585e27ac4c65007d87c260a6
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5c81c39d16a17e9075ef17fb0c8369f16
SHA14941bf241f60bc25b22519c60ffe6add4836f320
SHA256848f68d2cd5817c5b962111d9107a197b021deaf695d4f90862a844a342fc71a
SHA5126afd8a724fd5e2eb5e3b970cd097485b8ca3ba45cbe15c8de7ddbe8bcf7c09e78bc4013c04638b29290a11f6920ffad629dc9cdc7a2720dba78042e4e10b06a5
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD571417b3cc50a945107d3958255232d14
SHA12570c71ae8f374f8007f1d494c45617d90713c60
SHA2567f5570330b36a9abbc8f6f21f22707fdbc3888693e6e31c1e96a2d459dd3c937
SHA512cf5a1b060ec8c8415de4390ec32eae0a67269908edcd807d33f895743033a76ed71e74c3cb8349471d611db51a58c9c2219e88d27897370c01102f00f174a556
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD59dd87db93556e6ad226131dfaa157c82
SHA1ae0f083ff0503771e477a6a869cf6c868fc6e03c
SHA25677c3edb74854a29e2789614dcf539d66231e4043bcb6876dcad40b65c209c502
SHA5122857b945a550177335b1927f53bb8c2b114e14e1d3c6e4bf3ae47bd0a40f5747e5aa72c126699cd800481bb0cf41170bd4bd73112f4216969f8c724e294bd300
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
13KB
MD5a469cb384c3482d8a9d11368d272b44a
SHA1c63e3e3e415def71ffb53afe7ce0c4c26b4a7cc4
SHA256e054b36437e89125759f1c300ea2283942f386ff0a20ba3553deb8e40f7770e4
SHA51217dc904ac594829c8ad26d6321170a0b9807bf347737228fb65a064e5a5c14c896c3ec21b6fba03c8cd48bb596b986fd7ee30de52cbf158f2d28aaf34f4681ac
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
12KB
MD54486db6c6cca2746b3db5ef003544d5f
SHA16c6b1bc786a3b6a5e9ff630f351f85ef22a62f9f
SHA2562a5a8267214fac2a99ab2165dc1fcc242bf1642afc0af3d9064091daf5de04d4
SHA5128b9a7bdc9c2d2ead3ddc89fda67eb08173081afb35ae18ea59fb6c0b8f5a3bd9c86ed49ed17b101e222e7a55d98c1ef639aa3af413f7777b78a240317a6ffb61
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local StateFilesize
12KB
MD5c600121e312ee40e2ab48ea63bc4c62b
SHA197ba3bf2979c2adcbcbac2a4d7ddaa95f3d8523c
SHA256d7992e4fbca5cefe3468825ff7c1b7ebda4911f606af9e141b120d11b917d28d
SHA5123eb5cb020960ae7ea8074dde30d1e67b7e3b6035ed940466ceb37c1ef2ae0c26e3225e8773f3941143ba2cb0b0056eb992a13c3aa35ddc66f839f6bc93114dec
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1Filesize
264KB
MD5295e71d036a8e1e10753908481a11ee4
SHA14f9916a51942ebf142fd64d0255c9a939e54d079
SHA25690575cd963a4483ac717b43385d02715a2f1a5c4ccded6bd7efed9b3daa7d214
SHA5125abb3f02bb1d518e2d9ad231781e41b19bddc2092be69cb9b0dbb86481cd0cd609f1153fcebc9522d653b8c86a5920e9e906bf7817f2bec21294bfaeeda3d418
-
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1Filesize
264KB
MD5295e71d036a8e1e10753908481a11ee4
SHA14f9916a51942ebf142fd64d0255c9a939e54d079
SHA25690575cd963a4483ac717b43385d02715a2f1a5c4ccded6bd7efed9b3daa7d214
SHA5125abb3f02bb1d518e2d9ad231781e41b19bddc2092be69cb9b0dbb86481cd0cd609f1153fcebc9522d653b8c86a5920e9e906bf7817f2bec21294bfaeeda3d418
-
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-msFilesize
3KB
MD513808abf257d6f2fa96ea1456b726788
SHA121b8102900987fc3dc6d142af4d4b1fe44e245fe
SHA2560c940e55ef08dbbdfa5f11892cf5f1ec409a45ac09b4f641b4756e4b551ffe06
SHA512e4c5c1a9bba3089d27f08fa1dce3b20266e3e74ea85688e58359e71f0c1a7a008e9bba85e02dee0740330d1d32eaa3cbcfff0b7aca2ba08f7a13b2160b456966
-
C:\note.txtFilesize
218B
MD5afa6955439b8d516721231029fb9ca1b
SHA1087a043cc123c0c0df2ffadcf8e71e3ac86bbae9
SHA2568e9f20f6864c66576536c0b866c6ffdcf11397db67fe120e972e244c3c022270
SHA5125da21a31fbc4e8250dffed30f66b896bdf007ac91948140334fe36a3f010e1bac3e70a07e9f3eb9da8633189091fd5cadcabbaacd3e01da0fe7ae28a11b3dddf
-
\??\pipe\LOCAL\crashpad_5016_ABFJMJIJOPBJSZJHMD5
d41d8cd98f00b204e9800998ecf8427e
SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e
-
memory/4604-844-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-840-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-835-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-833-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-839-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-845-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-843-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-842-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-841-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/4604-834-0x000001D1D6610000-0x000001D1D6611000-memory.dmpFilesize
4KB
-
memory/6256-3007-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3008-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3013-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3014-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3016-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3017-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3015-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3018-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB
-
memory/6256-3009-0x00000000059D0000-0x00000000059D1000-memory.dmpFilesize
4KB