Analysis Overview
SHA256
604d490b9d5dfff01c9fceb085798c6b42f5778c9f125457be654dc4f436ab04
Threat Level: Known bad
The file RvcDownloader.exe was found to be: Known bad.
Malicious Activity Summary
njRAT/Bladabindi
Drops startup file
Executes dropped EXE
Legitimate hosting services abused for malware hosting/C2
Adds Run key to start application
Suspicious use of NtSetInformationThreadHideFromDebugger
Unsigned PE
Enumerates physical storage devices
Suspicious use of FindShellTrayWindow
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious behavior: EnumeratesProcesses
Creates scheduled task(s)
Suspicious use of AdjustPrivilegeToken
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Suspicious use of SetWindowsHookEx
Enumerates system info in registry
Modifies registry class
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-02-03 16:05
Signatures
Unsigned PE
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-02-03 16:05
Reported
2024-02-03 16:08
Platform
win11-20231215-en
Max time kernel
150s
Max time network
150s
Command Line
Signatures
njRAT/Bladabindi
Drops startup file
| Description | Indicator | Process | Target |
| File created | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
Executes dropped EXE
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Server.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Server.exe | N/A |
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000\Software\Microsoft\Windows\CurrentVersion\Run\Windows Update = "\"C:\\Users\\Admin\\AppData\\Local\\Temp\\Dllhost.exe\" .." | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\Windows Update = "\"C:\\Users\\Admin\\AppData\\Local\\Temp\\Dllhost.exe\" .." | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | 2.tcp.eu.ngrok.io | N/A | N/A |
| N/A | 2.tcp.eu.ngrok.io | N/A | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
Enumerates physical storage devices
Creates scheduled task(s)
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\schtasks.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Extensible Cache | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Content | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Content\CacheVersion = "1" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Content\CacheLimit = "51200" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CachePrefix = "Cookie:" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\History | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\MuiCache | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Content\CachePrefix | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Cookies | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CacheLimit = "1" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\History\CachePrefix = "Visited:" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\Cookies\CacheVersion = "1" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\History\CacheVersion = "1" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-334598701-2770630493-3015612279-1000_Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.zunemusic_8wekyb3d8bbwe\Internet Settings\Cache\History\CacheLimit = "1" | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\RvcDownloader.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\RvcDownloader.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Dllhost.exe | N/A |
| N/A | N/A | C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Server.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Server.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Users\Admin\AppData\Local\Temp\RvcDownloader.exe
"C:\Users\Admin\AppData\Local\Temp\RvcDownloader.exe"
C:\Users\Admin\AppData\Local\Temp\Dllhost.exe
"C:\Users\Admin\AppData\Local\Temp\Dllhost.exe"
C:\Windows\SysWOW64\schtasks.exe
schtasks /create /sc minute /mo 1 /tn Server /tr C:\Users\Admin\AppData\Local\Temp/Server.exe
C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe
"C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21012.10511.0_x64__8wekyb3d8bbwe\Music.UI.exe" -ServerName:Microsoft.ZuneMusic.AppX48dcrcgzqqdshm3kf61t0cm5e9pyd6h6.mca
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\Users\Admin\AppData\Local\Temp\Server.exe
C:\Users\Admin\AppData\Local\Temp/Server.exe
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2688 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2076 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=2028 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3300 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1976,8801108219214333183,16758738545139428407,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2036 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1976,8801108219214333183,16758738545139428407,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1988 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3904 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1460,2402828706819251642,15831119380997953957,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1964 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3144 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4240 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4400 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4592 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4744 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5456 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6016 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5984 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6388 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6604 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3600 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7012 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7144 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7352 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4528 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7716 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xfc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7724 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8060 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8960 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7608 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9424 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8764 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xd8,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9804 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10308 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10468 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10624 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9628 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10872 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11552 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11024 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0x48,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11760 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12032 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12216 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12356 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9748 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://www.xvideos.com/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9bd003cb8,0x7ff9bd003cc8,0x7ff9bd003cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12764 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5756 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13308 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=13868 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14012 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2016,16275951856424502197,13323596241936279808,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=14124 /prefetch:1
C:\Users\Admin\AppData\Local\Temp\Server.exe
C:\Users\Admin\AppData\Local\Temp/Server.exe
Network
| Country | Destination | Domain | Proto |
| GB | 184.28.176.35:443 | tcp | |
| US | 8.8.8.8:53 | browser.pipe.aria.microsoft.com | udp |
| NL | 52.178.17.234:443 | browser.pipe.aria.microsoft.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| GB | 92.123.128.180:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | 193.178.17.96.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.128.123.92.in-addr.arpa | udp |
| DE | 18.157.68.73:13538 | 2.tcp.eu.ngrok.io | tcp |
| DE | 18.157.68.73:13538 | 2.tcp.eu.ngrok.io | tcp |
| US | 152.199.19.161:443 | grooveuwavideos.streaming.mediaservices.windows.net | tcp |
| GB | 2.17.4.7:443 | settings-ssl.xboxlive.com | tcp |
| GB | 2.17.4.7:443 | settings-ssl.xboxlive.com | tcp |
| US | 52.111.229.48:443 | tcp | |
| NL | 185.88.181.11:80 | www.xvideos.com | tcp |
| NL | 185.88.181.11:80 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xvideos-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xvideos-cdn.com | tcp |
| NL | 69.55.53.172:443 | static-ss.xvideos-cdn.com | tcp |
| NL | 185.88.180.108:443 | rpc-php.trafficfactory.biz | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| NL | 185.88.180.108:443 | rpc-php.trafficfactory.biz | tcp |
| NL | 93.123.17.254:443 | gcore-pic.xvideos-cdn.com | tcp |
| NL | 93.123.17.254:443 | gcore-pic.xvideos-cdn.com | tcp |
| NL | 93.123.17.254:443 | gcore-pic.xvideos-cdn.com | tcp |
| GB | 84.17.50.11:443 | cdn77-pic.xvideos-cdn.com | tcp |
| GB | 84.17.50.11:443 | cdn77-pic.xvideos-cdn.com | tcp |
| US | 192.229.221.136:443 | img-egc.xvideos-cdn.com | tcp |
| US | 192.229.221.136:443 | img-egc.xvideos-cdn.com | tcp |
| US | 192.229.221.136:443 | img-egc.xvideos-cdn.com | tcp |
| US | 192.229.221.136:443 | img-egc.xvideos-cdn.com | tcp |
| US | 192.229.221.136:443 | img-egc.xvideos-cdn.com | tcp |
| GB | 92.123.128.165:443 | www.bing.com | tcp |
| GB | 84.17.50.12:443 | banners-cdn77.trafficfactory.biz | tcp |
| GB | 195.181.164.15:443 | a.orbsrv.com | tcp |
| GB | 96.17.179.184:80 | apps.identrust.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| GB | 89.187.167.5:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 89.187.167.5:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 89.187.167.5:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 89.187.167.5:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 89.187.167.5:443 | s3t3d2y8.afcdn.net | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 185.88.180.108:443 | rpc-php.trafficfactory.biz | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| DE | 18.156.13.209:13538 | 2.tcp.eu.ngrok.io | tcp |
| NL | 185.88.180.108:443 | rpc-php.trafficfactory.biz | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 185.88.181.11:443 | www.xvideos.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
| NL | 95.211.229.245:443 | s.orbsrv.com | tcp |
Files
memory/2948-0-0x0000000000380000-0x00000000006F4000-memory.dmp
memory/2948-2-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/2948-1-0x0000000000380000-0x00000000006F4000-memory.dmp
memory/2948-3-0x00000000059E0000-0x0000000005A7C000-memory.dmp
memory/2948-4-0x0000000005C40000-0x0000000005C50000-memory.dmp
memory/2948-5-0x0000000006300000-0x00000000068A6000-memory.dmp
memory/2948-6-0x0000000005D50000-0x0000000005DE2000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\Dllhost.exe
| MD5 | 7f6ce9a396cae9d375cb1a56de268b84 |
| SHA1 | 4129cc4492f057cc2ec78c195c1badd7ab3d9c65 |
| SHA256 | 604d490b9d5dfff01c9fceb085798c6b42f5778c9f125457be654dc4f436ab04 |
| SHA512 | e3cfe5afbde8b7889767cd9556ddbff2a3652ab139f06f02ec27cbd638d05604b3cbd5dcc2732a62750ced77d32eeab69b92e7eca38fe434121611c8775c314d |
memory/2156-16-0x0000000000620000-0x0000000000994000-memory.dmp
memory/2948-18-0x0000000000380000-0x00000000006F4000-memory.dmp
memory/2156-21-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/2156-20-0x0000000000620000-0x0000000000994000-memory.dmp
memory/2156-22-0x0000000000620000-0x0000000000994000-memory.dmp
memory/2948-19-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/2156-23-0x0000000005970000-0x0000000005980000-memory.dmp
memory/2156-27-0x0000000000620000-0x0000000000994000-memory.dmp
memory/2156-28-0x0000000005AC0000-0x0000000005ACA000-memory.dmp
memory/2156-30-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/2156-31-0x0000000005D00000-0x0000000005D66000-memory.dmp
memory/2156-32-0x0000000006C00000-0x0000000006C18000-memory.dmp
memory/2156-33-0x0000000005970000-0x0000000005980000-memory.dmp
memory/2156-34-0x0000000006AA0000-0x0000000006AAA000-memory.dmp
memory/3492-44-0x00000261BC800000-0x00000261BC810000-memory.dmp
memory/3492-57-0x00000261BC5F0000-0x00000261BC5F2000-memory.dmp
memory/3492-55-0x00000261BC5B0000-0x00000261BC5B1000-memory.dmp
memory/3492-59-0x00000261BC5F0000-0x00000261BC5F2000-memory.dmp
memory/3492-60-0x00000261BCE70000-0x00000261BCE72000-memory.dmp
memory/3492-61-0x00000261BCE80000-0x00000261BCE82000-memory.dmp
memory/3492-62-0x00000261BCEB0000-0x00000261BCEB2000-memory.dmp
memory/3492-63-0x00000261C2B70000-0x00000261C2B72000-memory.dmp
memory/3492-64-0x00000261C3370000-0x00000261C3372000-memory.dmp
memory/3492-65-0x00000261C3440000-0x00000261C3442000-memory.dmp
memory/3492-66-0x00000261C3340000-0x00000261C3342000-memory.dmp
memory/3492-67-0x00000261C3580000-0x00000261C3582000-memory.dmp
C:\Users\Admin\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalState\backstack.json
| MD5 | 674a522d4da661e10bf2faeb26211654 |
| SHA1 | 53b554607f83d8c4af7a15a855c93933c1334efa |
| SHA256 | 493800fe0860fe9847458551d720bdbddfac2b45530cf39339e0ec34bf4dc169 |
| SHA512 | 8e229a57a169948f0e0726a31e0602d99eed38894c9c707d7966ef91997b946b4fb010099a086b9c4d8c348355c6bf947f7172fcd100af7272c0c28a180daa91 |
memory/3492-81-0x00000261C3E20000-0x00000261C41F6000-memory.dmp
memory/1828-83-0x00000000006A0000-0x0000000000A14000-memory.dmp
C:\Users\Admin\AppData\Local\Temp\Server.exe
| MD5 | f7639b31a20819e3ad4fc778e6803a16 |
| SHA1 | 47042f082c82dabc1d4cc4fb6abe76aa0ce0e2d3 |
| SHA256 | a0cdb0ca5ad8996f78960442cd567fd46bf6d2acfb118798893329b2453de1fd |
| SHA512 | 88fa736767ab22d7d6bc6d3c1a5e0fa2db0f7c3717df81b1c647d01a40d7eb37b4e8326bfaabebd89b2245a14cdcb95a0c29b52d813637a044884638f39b04cf |
memory/1828-86-0x00000000006A0000-0x0000000000A14000-memory.dmp
memory/1828-85-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/1828-87-0x0000000006100000-0x0000000006110000-memory.dmp
memory/1828-91-0x00000000006A0000-0x0000000000A14000-memory.dmp
memory/1828-92-0x0000000074470000-0x0000000074C21000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | e3517a9bbcb096b9fead92c5464885a5 |
| SHA1 | 5835b0c53952faa2e0dddd9cbf7ddc44947f3e33 |
| SHA256 | 3dcdc4fc986fbf04ec94afaf85a5d444fd563266220a0439fb5401f9ecef5181 |
| SHA512 | e8cad6a3b781fc330aba9595342c107030fd7239906e9f51dc615bc501813e6e50ee9af532a703f33588676002cc3c3b36c9b5942817c97ac6e7d3b13daeba1e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | bb88128b6b2d63f04c36ce68ed52d0a1 |
| SHA1 | 29cd0515976a9249fc96a9d77c9986238cd1c2da |
| SHA256 | 19341f9fde32349d43cf9951f118ebbff856499e0e6875101eaf2db37a7d7d8b |
| SHA512 | ab3071e116a32fc105a868fe9f3cd11cb282fc6cdc1e101b09c7f6269502f98b34b2f0a2ec32eb2b537073e2b20bd22cefd2fdcd4be87f8b169e6eed3bed1ae7 |
\??\pipe\LOCAL\crashpad_2188_BBWFSVODPURGUFGM
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | ee3c6b3d4f7bbc63040efb4381a1b667 |
| SHA1 | b281207298ec129ef4b32a8e7b8c1e64b6714883 |
| SHA256 | 20a69de6ff6393a8cdee7c02b386af101e04387b31cfcad8675d45bc36d801d5 |
| SHA512 | 0a8b668a3efdc5b283c198899be6b71d41c6ce7346e2cd8b8b3564d78a34c11f36b08dba9390b66cb7f28a2550418cc0fb7f1841b5294eecf94fc724851ee532 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | b6f0070057ff7a0d721d661b4a937bb3 |
| SHA1 | 1727bd9ee504920073f21cff0070053de2c9c3f8 |
| SHA256 | 86bb021436deb10ccb85d0bdd20bfaef5e61bf20f77a4a31437d8c89b3f3d771 |
| SHA512 | 673d80bf95fff02f437a935e6cbc95bedb3917619c018d61e6cf72e94018c9f894f66e7828c8b2ba2fd4c627d68001a9836584aa3a5045c65378398fadfd861b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ec790678de963dd2551aa38eb7565e6c |
| SHA1 | f687ad95e9b46a87ce7dd1854b031cc4eabd65bf |
| SHA256 | 0427d9a51b4d3bf167b06298088d4f7038b4b5acdd08c18276fbfb9792b8612d |
| SHA512 | d1a9aeea539d995c7ccadd5e6a7386d42aa3a7da27e326c175ef620f2d0b75e1bc835e92486b046894ff293bc9500c3cbc4057bb224cea30eb229af30f8dd8c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002
| MD5 | 13f1145c8b230df8e50a40f9ae4a27f0 |
| SHA1 | c2fb8db8fe41c669b50aa6871f941c996a98d98e |
| SHA256 | a0b0be656a8af7af6de6c7ac85fea0e418321caa3644cfeb39e0a75683b8070c |
| SHA512 | e0386b24ceb48228def8f819393c25d3f77395448125b1f49de69bee666cb062f66a74b44516f5389d5538463f2fb9d62d323d3ba20aadaf0613173944f3c863 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | 2c66f12c4d5f582f2e9ece7a8d1a5046 |
| SHA1 | b9c70eb040e4fd2795c13bd884f5bda727be5fc3 |
| SHA256 | d8b3519b602619e6f250046ffb6d94450c4428df6357137c71b98a9b4b30cb01 |
| SHA512 | ef583f9c55ca1381486d28c44cd6cba7b7ebd02b73bc7e40d07e6d6d3359c5c797ff633bd17752ec1cd41a69f54f16328c706a3947a9b07f15aa143648339c6a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004
| MD5 | 4112815a07b0fbb581f3d5c9cc927d38 |
| SHA1 | 7b58da0772b4e4f79971e666f74d81e8e7f6c467 |
| SHA256 | ad09c030d150cfab92d77f22ed3f2ea8c605a3556676c059944da114294cb86b |
| SHA512 | 24158c17b3048f860d60661045f89f1a106448c0d8a716b1a7d85a4c206346172bc38cdf4d19cd8f63b56357dea665a54b4a3b305774952488c061efeed169e8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4314c09985831994_0
| MD5 | 06008580754dd4d0ccd1e890ce0aee76 |
| SHA1 | 24064691e33230968833b26e8c88b4d775f4565c |
| SHA256 | 76fb11d39574bf8838ad33acfec7cd38b81f23c8c0cd269691bea4f9474b8f41 |
| SHA512 | 9bf0adf68b507ac5b4e7696947b203cf4e27e63263584b9390b0dd477cab27df0e14f587518dd721e954521178a4af690615cc9afe9063b25c95deb5f095e303 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000001
| MD5 | 17121e28d7a24503953efd69d8c4acbf |
| SHA1 | 58ab0bb637f6b2ed5baf4b6a73c4876e833ebe75 |
| SHA256 | 03f402fc2807aa21b20596172884ff9bcb3d64a25699bbd11e7429df39e18c32 |
| SHA512 | 0d4ac310571ad240d2ba4c53a4db5115dd85c47330fdb50ce540555afbb7068752a50d6202c591170432a745537e1e481f9689f77d1e8567741f43fa1466468f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006
| MD5 | a3d0372b64a8ebfb86de9b477d1ecf4b |
| SHA1 | ad7bd9dfd7a08e2b1c51dfa1059d68ece953633c |
| SHA256 | e3c8518e8cd447d85f475177958996a7534e42346f78cd9e7bb6ac0f10d738bd |
| SHA512 | 21f1eaa4b2a6b93490922f86ab4aba26d9d4430b8563cccbff687780816b7a09668073d91c5437d710282aca979e1bf2a24767e7d789a57bfb88f73a58c94637 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008
| MD5 | 913b54c862c47c35ada787d13efa3cc8 |
| SHA1 | 0632731bfe39085d083d8919ad8b1370996ceec0 |
| SHA256 | 9b8754debceb83206c49f18f95e739a968268c15fdfa5660665ea465a72f2d74 |
| SHA512 | 028bcff7d82f3fc330d2c13c6f4d7ab48f87c76d91c033e759941278ea3a311a368108588d0f4b066bea096dff30fcc07a6096560430c5f1c9b3cc700fa54cce |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d
| MD5 | 5ee6dab85dbf095b7b3719c2666412da |
| SHA1 | d29500d33d30b3dae061835b251d4b9d7076d55e |
| SHA256 | 5f42724df65b8b1c714ca3f1462ca30ebf2f631eab63f4ca325e6dc312cb9595 |
| SHA512 | 545205e6bbbea733efd802b0978c6177deea3f807eeb60b9c872a5e6cf612e12c782769a1d5458dd023030a6edca9f9a6010d4ec5f241ad5cb38af4fb26f2922 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000e
| MD5 | 4ba2ee37f00ad53ea5531907dbbb5e5f |
| SHA1 | 8a95a91011d02e412f30a5f1345d7d589cb1ee22 |
| SHA256 | c81b6929ebb4cb2398b51c74fa877ed4c1367518837177a23df827a20a28df82 |
| SHA512 | 008daf2881dc37441748d7049468f6c1b79a1f41630cf31f78040d3d9080f6654bcdd315646df8829f68163e7f3ce4ae576647befae66dca4a028e55f00d04a3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f
| MD5 | 2e5f2ccb5af7cea95d376dee75e04a11 |
| SHA1 | 72fb384a4f869ad59244361b9923f0aa32c39efc |
| SHA256 | 635428cd47aee6f3140b4ec9d33d820f528a52e112be4e1043f567dbd0f38c33 |
| SHA512 | 4e0bf5dd167d03115f0ae6ffd1b07b72ef413b06e53e0f8631986fb404e9c7d6e5369158b722e46201661f80276e33f1e6207955229ae2f019b7b983f27997cd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007
| MD5 | aff8a3c65833dcdc600ee3bcb445c72d |
| SHA1 | ea1d050f56de00bf7538039bf43da36076557770 |
| SHA256 | 6996509c77d72194d111058954f42621c919e52c8e242bd63bef10b8b78be20f |
| SHA512 | b2c9ae22617693389eeac6d924c5e12b2b01ff27741101ae4657c4391a57009caf842e94408bf86b7e94eac2f6334bd52d6a178974a6fa0358d24a870d3f286e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c
| MD5 | 8ce9323dcd74b51005d5d43acc38013d |
| SHA1 | 4fb4969c997b2fa2ff175affa7198d22720dff12 |
| SHA256 | 17cc7fb5310551c9372e79770cd2c855acb94878edc356e455179c0ee8b943af |
| SHA512 | 3db08e8f73a9e4fb25b785c39a8c5f6693d95eff08468a6a0477d596699cc1322af416c06b48cc2f2095daa92de3db68ac7e1a20e540f61fc2d14d6cd8bad0a9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009
| MD5 | 0ef92d49aaa00a4c1cd39b1778f8a9ba |
| SHA1 | e6bd564a4543f607338cf18964302b208fb772a2 |
| SHA256 | 8efae5037b36bc79f80088c68e739cf65d17ed1ef6680887063abf55863bd9b0 |
| SHA512 | d14f175ef6834c546825b954cc97dcf91d2b558eb46f7645cb6916e5247f731986fb9dc67951fff346005ad5a5d12d834a2aa7c317918e82d99ad48d22adfed6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014
| MD5 | acdb18f6fc076dd80b127b49afffd59d |
| SHA1 | e61b12181cb95f1d15c2bd47aa93eeedac75f0dd |
| SHA256 | 8276df66532ce4539d1227d9efdbe17cb125f639e31df00b7c171f9a9c9e288f |
| SHA512 | 0aa9c6372b65b52b4a40d9ad2a64722c9de59e53f2e9a55de545a68ff5d30dc58cc7419b865baa29d56e781d2b52b5bbb620403352fc4489e5cd0efeda4bc3e7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015
| MD5 | 1ad41885034642e30c7af40dda2980c7 |
| SHA1 | a69a5f27f48cf019c9ca4387e44c72eaa6bd48a7 |
| SHA256 | 1dfd666546de0a3521ffda53b4d750356661fbb7f3d43564f97d5f1b46e692af |
| SHA512 | f8a604493035fa3b39f367d1ec089f757ac93cf05ca8989e05c6251346f039f0fb1b0834ad826c5ec2d239092b4375c686bb7076cfcf0d9574087bbb48e06b55 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000010
| MD5 | e6d838b166dfa4cf68c975c2384ddd4a |
| SHA1 | 2f859e8beadb27d39badbb086372fc396a056051 |
| SHA256 | 97094632b8307489ca6e09ac6bd3d84407cffb4eaba0d7237ed22267b49c5f65 |
| SHA512 | a5946d1836e3977082b0c76fd14c12a84928228163926c3f5b11a70b3c946d8f0e4a413a54fad4f561152fa23d7ff21a1c5e4d624f3873d216a35c0f1b7e5f4f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000011
| MD5 | 9943011147796f879f7c8781b054185b |
| SHA1 | 3b688c0f56d4212b3135380281c30546de13e010 |
| SHA256 | 2af356d3981a673336f8a0675a020f1a8200b1ad9129fa5f12efc369498a2704 |
| SHA512 | 062e79e5c91cf6bfefdb462d948fd5105545d715c2278bb6078889f13abf0c78c4efaaee14d831570baa156927767c5121138dc67c4689b8a664a83f3c60c970 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012
| MD5 | 422529142e639885fe7005a4bcaa817c |
| SHA1 | f92934eb17ac850729e6db4a35b3490ff3903cfd |
| SHA256 | f71428668de8338fd421f449f4339c24928d88d018b45e2ee74d0393d87e8a20 |
| SHA512 | 71878dda310ac653f8da0eb7ea80562f1c1abfbe5019647c2ebcdec2755198261f8f921bd54e48c5a2b674a37b6f299f67b598894610fa46577e88af4165c2e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | e80febe202967937343d7af65f823970 |
| SHA1 | 52922bd16f637aea34f2715a3d682d53de039311 |
| SHA256 | 85b4fcfb850078e4ba30ef2d10cb526118b6845ed33ecde5ccb5358623733b55 |
| SHA512 | 42e4cab913bfd054b62788cd5018fefe65bf720e3c4c14b153fa2cdbc2fb66c08c4feadeb49ead9bd71103885ca1f912b8ff1026cd97f21c3792cc05d140370c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a
| MD5 | 02905bf03c34e7f236d48dc572bbcb7e |
| SHA1 | 246320e38f5e6f15c68fe3ddd06581519361a235 |
| SHA256 | 488ce33e101101dfda3f4ba2e6aecc8a30ef7ba8aeb3e797afc398a10212fa71 |
| SHA512 | 1dd7934c1b514439f41d5a01d955245aa215545beb382b7e6b4ef2607096a482ab9160369837db6db746ffb562acb35229f49e106dde4772fccccb08919b8c69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b
| MD5 | 8cee9c44c54d6c4a9fa54e41c7dec4e3 |
| SHA1 | 0a191c806fa188fe9f264419b31fb15491e486a6 |
| SHA256 | 951c431b9489108cf5fbd426258766b62a3b84ccd97423e90b66141ec003c2d4 |
| SHA512 | 05978a67770792056aa0172a2d3e67e483d1e635798cef2427d7ac1d77c3d58ca64cf927844a119b0cee50fe4523d13ae73668aa04e82fd9d6d19c1dc917e4c9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Secure Preferences
| MD5 | 87796f83a580ad1059639b7b6f48c978 |
| SHA1 | 3aeb3452c1d42aa82dcc46fac0eff546266958ca |
| SHA256 | ca9281ab005e47fe20e132b81ccfbf7a5f0e6d845cd3412129bcb07cacb1397d |
| SHA512 | 196d07ff37bf35b583ba80ef92e0277eee328925a77accb3dae1ca10a356a7924f49a7e6233db1b8b320eef6beeb9677ee7d642dd4bcdb2f1343cfe84fb186cf |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a8e96e2ca9bcac34b2bdadba0eea2fd6 |
| SHA1 | 04a66602aab91e1bfd4b30ff5e99017534a0e3fa |
| SHA256 | 09a2fe3ecd4a98d9575bd44c24ca5cc986db99dcca2a93b4823e2c795cc19e60 |
| SHA512 | d960c64135cc32d3c60abd97a61363c6fbb11a04c414d06f5c3956aecf5f7c2cec67a477454e10f39f016ce531854b425be4788c065b4c22b65d621f55dd50e3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3334162a0b82c0d9_0
| MD5 | 694489e3cb27ce3a6d54afa80935f015 |
| SHA1 | f2c9b7d994b6c973bca39b8bf371bfbbe7b3ae53 |
| SHA256 | 15ebf310d47afd19ca93482b9bc3ff285209d6bcb265e1dbc070116c0b97dc63 |
| SHA512 | be6c45b4d925cb26489448993157571086fa2dd1c7c6763935e05025a88a6b7301d431b77040c6a3cfcbea48b48639a17e6ca2adc2413746cafda00b586e5a38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a693d935caa19de9_0
| MD5 | d37b17ca2740a508ba00d1d5f506fba3 |
| SHA1 | 1ad63676521c5c300033b9029837b27838cdad4e |
| SHA256 | 1044ec3ab26d3478892f213d1fc984ece07fc1ff0e4367efcdb6b36f2d7a39b0 |
| SHA512 | e8536eaaf7233f1033b42541c2982a71327c12705dc865cee42843729fcd3f81a43d473ba687343e83c006570a3327b296eae303093785d8a4f6d296bb699a2c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\377332f89c67786b_0
| MD5 | d8521de4076deaa19edacc6042b0aaf7 |
| SHA1 | f13f8ce7d1954beecf025c2485f37b02e516de90 |
| SHA256 | 7aa0fcc8081909e4f37245e6eb0664b2944457254490fdd7ef7fe440a0ddaa87 |
| SHA512 | cf5688a58f0518f406d1dc498e8b60c17b1202d531e086a9599f67e79d742b6c0b428fe4d901b0633851317f314a08a11a9880826d8a5820ed76edbbc56c7919 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cf1cc3c4a658a58e_0
| MD5 | 7bd56d7aab9d37170adffb006ef36f41 |
| SHA1 | 125548d5e0111fe9b30fcfa15a2f9d564d130438 |
| SHA256 | 97f81fef61e0d8a1138955e6db6d7e8e5f7e9e19f397e433e8627fb199d87920 |
| SHA512 | 0f14bb7c409589d941487e5310f1889d01048d10dc9c2ba0253923b67c6e39b5ba0287a66154472f5db0f54c269a14e65096c06688efcf734c1a4e2d16ea7b13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8b54651e6727a2a8_0
| MD5 | 14fd73115b8b51506f8974d68406a8e5 |
| SHA1 | b6b3a60cac8c48892f0aa4c986485fc884c71557 |
| SHA256 | fe4addb925bed5548664f74901fcbbbec0f3768e4b6ab804e930f3e0300d2a20 |
| SHA512 | db075552be4d82ac023d6c0a32e12fd9acf5ba1c5600a59d253da8c02f4bfe25e5776de2ebc6a856127c3a0e6003fa256659eca8f1c4b1e1afd22d781dc334b8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4314c09985831994_0
| MD5 | a499cda7305d55d8a17abd42fbadb9ce |
| SHA1 | 164feeaa9ff05739ce69abba1809786804e817ad |
| SHA256 | 8c506ea07899da765094761d0f44949af78e24afbed36a77547f4cd7b2d9025c |
| SHA512 | 7b31541f55cdac36c48eb116517187023942b8d2d764dedabe10f3c506f6b59d36d4cfed8146f18cc3bb7a4693c6b0d7450a3e3d110d7165d4c695c0ba9b41a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\128b0be4cc9239e5_0
| MD5 | 0a522c8a97defadaaaac09a19ed4bd4b |
| SHA1 | 14da714b2317521690749894695eb2ff782d876d |
| SHA256 | 31f3f8df1b592797b30e74eeec48d323894e4ce09c651d35f8743f939fc17cea |
| SHA512 | 3b75ae925d33dfd9c5a78ce874478004e283679c9562f93aa773800d2999e2a558ba6ddd186f80a5189aabc1eb30fe16f3aed5ee8ef36ba829cd44b125f453f3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 285252a2f6327d41eab203dc2f402c67 |
| SHA1 | acedb7ba5fbc3ce914a8bf386a6f72ca7baa33c6 |
| SHA256 | 5dfc321417fc31359f23320ea68014ebfd793c5bbed55f77dab4180bbd4a2026 |
| SHA512 | 11ce7cb484fee66894e63c31db0d6b7ef66ad0327d4e7e2eb85f3bcc2e836a3a522c68d681e84542e471e54f765e091efe1ee4065641b0299b15613eb32dcc0d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6c6d6c873ae82896ede5a93a0f0c2526 |
| SHA1 | 91ac9c3771c48939608b608493329db058593f50 |
| SHA256 | 61d53585f957789ac7394e85bf1f94a4e1c0f9f09d4c21b970f57db08893a378 |
| SHA512 | acd148b2447a7c8411120b516e6625843b390eab9679d636b4d1c0e59174ae836e3f212c8d0f42dd337f4299dc8daae45d32a3fe9c247dea65b248739e721abd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1a278151eb696473_0
| MD5 | aa644f33cb2fa57122f898d4f688ce03 |
| SHA1 | 9515085c8b9183a43c637cc3795f3d006a5251a0 |
| SHA256 | 28912a2756afeac9297254ba5c033e328e4bad16df57a54bfe41a56d969de293 |
| SHA512 | 2478c371c77feafaea4a4bfbe98fdf456d8c70eb60125faad82b83b5d5e4bcc9eff77a405f66cf9bf721618b0cdbcd1efa10f1eea00d45b597509e71dbb04ec8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\90f7943e83f021e6_0
| MD5 | ead37333b913723a54d56ad2e6d724b4 |
| SHA1 | 464b123da6d5bdef59757ba753a69f718fe0344f |
| SHA256 | 10f734a737a1330f7fff91bec7a68e2f558764f7df852fdabfc7ae5cad782561 |
| SHA512 | 2b4138f312e40ae482bce14202cb95046b8874df9df5179ff7ab7c89c792ef07be56b7c253420e58be55132de01206429fedf491c350d2613f2c5c6f1d691494 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016
| MD5 | ebef50a74f2a8342e9ca19de3e7c1096 |
| SHA1 | 360f5f6390b2e72c2a33362904cffe7f5b563689 |
| SHA256 | e45543180dc3798a4bf0b41c6b885654abdeec1d0d79173b6c9c370760941122 |
| SHA512 | c0f394c7482a2ae65bdfb186ece0e33151647c234ad33bbfc69510ffc93e467667d33c93303318456380d4afe27c56c7325ef2cf6faf6a0f96b8a59d279a5bc8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000017
| MD5 | 14b4c4a3dff671838c793dd6ba191cc3 |
| SHA1 | 5f5b43f81dfca58d791b0a7e8ecdf917bdaff3dd |
| SHA256 | 9d05375e1aac65df6b5c0b025ee36c15b85a02e28fdfe6d22532da1c94bdc626 |
| SHA512 | 1b8a831747577db6ebdae7160470df39b77cdfd3697de79ed85cd41a5c7c44cb0b884df9937f0798e1cba50df81f49db819b5244d0439d13df8481c3d60ecf79 |
memory/10652-1043-0x00000000006A0000-0x0000000000A14000-memory.dmp
memory/10652-1044-0x0000000074470000-0x0000000074C21000-memory.dmp
memory/10652-1045-0x00000000006A0000-0x0000000000A14000-memory.dmp
memory/10652-1046-0x0000000005970000-0x0000000005980000-memory.dmp
memory/10652-1064-0x00000000006A0000-0x0000000000A14000-memory.dmp
memory/10652-1065-0x0000000074470000-0x0000000074C21000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9b020cb561376b49_0
| MD5 | df7c3f7d4a494dc0a2cfcd135ae8c20e |
| SHA1 | 75734385c4ed8deebe4a17b18e6bdf80ef52706d |
| SHA256 | 462d904b767160942b7d7a87e5fbdc43592db0787196aa4111160135463506e1 |
| SHA512 | 42d7d37c424f21ed9abc7371fd483d7eea949426fa36301a657b459042e6162a27c92e64a5a6b69b96a17a050d382eb893ed50032b416b9e502ec207c4c6977d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1a278151eb696473_0
| MD5 | 8d599ed2ee6e8381d84586f8c17db726 |
| SHA1 | fd8ca0dbc48a8f535470656caa0264622ad98cdc |
| SHA256 | 5efdf64c1efddd5eda1621b2ec9a7b99edfcd1723b0d7de2f1228aba6a647272 |
| SHA512 | 07059acd5993e24b99c27823d4924e30e3ddce58ff0b6b6b0d6854e67dd83a300e613d2bee79b57d75165aced90c4c63dd8c50f4ebc6f0d037bc0947171e7b76 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f42e9a5495c3f37f_0
| MD5 | 50393ff0c7dfd8309b17fe297b84b1c9 |
| SHA1 | 03dbcdd875ea2ff422c4aeb1465013e1cef31e3d |
| SHA256 | 719cad51b4b833e6b59ab35323b59e09d1078fbc9e17fd1f8c599ec869db65cd |
| SHA512 | 36bb13c2ea355780ec109033e70104bfab596c8abc3dcad7a8c549ec0dcce850834f7cd9874b101ab63e5d06bcfb8c8f7e62ec8382672eaa0af56521775f9629 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 145859cf4061c22bc7fc16ba18786aca |
| SHA1 | 0f569c190091bbd81651975f155773702f9eb446 |
| SHA256 | 024feafb9693609bc9c22a1d716ecc2315bd41c02c49045307898299b7517ad4 |
| SHA512 | b600033361073f1e11dc1c1d54f7298a3a4804a3f7bd4acc32ec5978c63dcbc1a701632d96c17660c91ab9e41045f089864e7d5f9aeaa30edf9b85b319465a0b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\595f8e39-6ea4-42ff-a5de-ad0ed08bfd65.tmp
| MD5 | 5c0220c1a55c71b9ecb0b70ae50effda |
| SHA1 | 48b147fa04c0d959043ab9230c906c63435a215d |
| SHA256 | eb48d8ac4636fc598d80e9469740e6c221f2854b89781a31d8a57f200cac26b4 |
| SHA512 | b89d534a05f099ef6d575bf1d9f5e8ed93a9ed4306272d04badc6af3ea38db19c7f53e3f9e1cffe5f87da1c2c94a06ae5859e4044688280ad7818553393a6087 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | febdc8401641770e49f2ab241a0ae815 |
| SHA1 | 31ab01039fb126710e9eb2b4008d253aaabd3146 |
| SHA256 | 23290a8367a68a483d94c9f145a11bb2b5ba8659828b355d5ecec01963313774 |
| SHA512 | 0b02e1e5232c5da0c2696316a013685176659ab20e17d8c6d6bf6b7a99d658950e3676afa344751ff4b218eaff7423131edaaa13f2e796457a637fdce4bdb22e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | d44fc80821c6b1d48e456003f965633f |
| SHA1 | 27733fa8cd68f96e63729da5f3cda5c86dbac006 |
| SHA256 | e91f42443a02e804423c73f9d96cd2d49fe3820e97548f92a4f9fda561071753 |
| SHA512 | 36118d4705e9353c38cc18306bb1cb2b06670b1294f70b863ce2e9af1470480673101bc9bff5806ee2ce703af128f8a97488ae29e6bbd689df9538f723ef0411 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | b90dcfeb88c8999d2545ca0f0f27d39a |
| SHA1 | c605873c1cd45f156c9ef06713e2a7894d2b47b3 |
| SHA256 | 625b438b85562a5b4283d453590c709632fcee142811732e911fc8fe18b764cf |
| SHA512 | 4d262daa9c76617b92de9a983a29e8bc35783d355946590968fbbc5de86ae96af080ade92eca9fd02d6010d536bea51904bc9e2ee7c6c804f1aac8ee025184d3 |