Malware Analysis Report

2025-08-10 18:04

Sample ID 240507-p18yvsba33
Target https://steamunlocked.net
Tags
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file https://steamunlocked.net was found to be: Likely malicious.

Malicious Activity Summary


Downloads MZ/PE file

Executes dropped EXE

Enumerates physical storage devices

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Suspicious use of SetWindowsHookEx

Suspicious use of SendNotifyMessage

Modifies registry class

NTFS ADS

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-07 12:48

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-07 12:48

Reported

2024-05-07 13:06

Platform

win11-20240419-en

Max time kernel

1050s

Max time network

1049s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://steamunlocked.net

Signatures

Downloads MZ/PE file

Enumerates physical storage devices

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Users\Admin\Downloads\BonziSetup.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2878097196-921257239-309638238-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Users\Admin\Downloads\BonziSetup.EXE N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-2878097196-921257239-309638238-1000\{E05ED62B-4C2D-4BCD-B0A3-0160B2D40826} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2878097196-921257239-309638238-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE N/A
Key created \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE N/A
Key created \REGISTRY\USER\S-1-5-21-2878097196-921257239-309638238-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\winrar-x64-700.exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\winrar-x64-700 (1).exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 128102.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\bonzi-buddy_softradar-com (1).EXE:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 387399.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 586843.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 940774.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\winrar-x64-700jp.exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\BonziSetup.EXE:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeShutdownPrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A
Token: SeCreatePagefilePrivilege N/A C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 4188 wrote to memory of 3900 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 3900 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4436 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4804 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4804 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 4188 wrote to memory of 4132 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://steamunlocked.net

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff86f8f3cb8,0x7ff86f8f3cc8,0x7ff86f8f3cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1936 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2380 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2652 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3224 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3244 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4972 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3920 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5756 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4856 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4592 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5300 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5296 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4712 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1352 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2504 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6544 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6036 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6852 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2160 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E4 0x00000000000004D8

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k LocalService -p -s NPSMSvc

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3324 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6732 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=6716 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6684 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6748 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7624 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7880 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8044 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8228 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8412 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8356 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7864 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8556 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8684 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8952 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8352 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9400 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9924 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7436 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10336 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9240 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10360 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10860 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11296 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11312 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11576 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10716 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11928 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11980 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12296 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9408 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11712 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11400 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6932 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4576 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10820 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6968 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=11912 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9544 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=11204 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=78 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8440 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=80 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8504 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=11592 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8488 /prefetch:1

C:\Users\Admin\Downloads\winrar-x64-700.exe

"C:\Users\Admin\Downloads\winrar-x64-700.exe"

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3528 /prefetch:8

C:\Users\Admin\Downloads\winrar-x64-700 (1).exe

"C:\Users\Admin\Downloads\winrar-x64-700 (1).exe"

C:\Users\Admin\Downloads\winrar-x64-700.exe

"C:\Users\Admin\Downloads\winrar-x64-700.exe"

C:\Users\Admin\Downloads\winrar-x64-700.exe

"C:\Users\Admin\Downloads\winrar-x64-700.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3608 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12280 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=11568 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=11268 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=12480 /prefetch:8

C:\Users\Admin\Downloads\winrar-x64-700jp.exe

"C:\Users\Admin\Downloads\winrar-x64-700jp.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7964 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1260 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E4 0x00000000000004D8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7880 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8496 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12592 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=99 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3992 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4648 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=101 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7876 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=102 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10840 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=105 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10916 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=107 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11520 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8444 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5968 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=110 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12676 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6332 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=112 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6888 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10828 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=114 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9588 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8460 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10680 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12460 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12696 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11288 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2980 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8460 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=9568 /prefetch:8

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE

"C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10664 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11188 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9768 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12152 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6972 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6844 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6452 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=12552 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6088 /prefetch:8

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com (1).EXE

"C:\Users\Admin\Downloads\bonzi-buddy_softradar-com (1).EXE"

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE

"C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE"

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE

"C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE"

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE

"C:\Users\Admin\Downloads\bonzi-buddy_softradar-com.EXE"

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\Meet BonziBUDDY.bat" "

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://electus-studio.itch.io/bonzibuddy

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xb8,0x10c,0x7ff86f8f3cb8,0x7ff86f8f3cc8,0x7ff86f8f3cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11624 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8480 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11460 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12616 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4612 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=140 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9244 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=142 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5128 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=12428 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6464 /prefetch:8

C:\Users\Admin\Downloads\BonziSetup.EXE

"C:\Users\Admin\Downloads\BonziSetup.EXE"

C:\Windows\system32\NOTEPAD.EXE

"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Admin\Desktop\Security Terms.txt

C:\Windows\system32\cmd.exe

C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Desktop\Meet BonziBUDDY.bat" "

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://electus-studio.itch.io/bonzibuddy

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xe4,0x10c,0x7ff86f8f3cb8,0x7ff86f8f3cc8,0x7ff86f8f3cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=145 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8160 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=146 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9776 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=147 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11484 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,12835490414119459587,5397832867829055052,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=149 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6344 /prefetch:1

C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe

"C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe"

C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe

"C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe" --type=gpu-process --user-data-dir="C:\Users\Admin\AppData\Roaming\bonzibuddy" --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1568 --field-trial-handle=1672,i,14297021790500695813,2749183703578278843,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:2

C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe

"C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --user-data-dir="C:\Users\Admin\AppData\Roaming\bonzibuddy" --mojo-platform-channel-handle=2060 --field-trial-handle=1672,i,14297021790500695813,2749183703578278843,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8

C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe

"C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe" --type=renderer --user-data-dir="C:\Users\Admin\AppData\Roaming\bonzibuddy" --app-path="C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\resources\app" --no-sandbox --no-zygote --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --mojo-platform-channel-handle=2484 --field-trial-handle=1672,i,14297021790500695813,2749183703578278843,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:1

C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe

"C:\Users\Admin\Desktop\BonziBUDDY64\BonziBuddy\bonzibuddy.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --lang=en-US --service-sandbox-type=audio --user-data-dir="C:\Users\Admin\AppData\Roaming\bonzibuddy" --mojo-platform-channel-handle=2764 --field-trial-handle=1672,i,14297021790500695813,2749183703578278843,131072 --disable-features=SpareRendererForSitePerProcess,WinRetrieveSuggestionsOnlyOnDemand /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004E4 0x00000000000004D8

Network

Country Destination Domain Proto
US 104.27.202.89:443 steamunlocked.net tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 89.202.27.104.in-addr.arpa udp
US 8.8.8.8:53 172.210.232.199.in-addr.arpa udp
US 216.239.32.36:443 region1.google-analytics.com tcp
NL 23.62.61.113:443 th.bing.com tcp
US 8.8.8.8:53 113.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 36.32.239.216.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
NL 23.62.61.72:443 www.bing.com tcp
NL 23.62.61.75:443 www.bing.com tcp
NL 23.62.61.75:443 www.bing.com tcp
NL 23.62.61.72:443 www.bing.com tcp
US 13.107.5.80:443 services.bingapis.com tcp
US 104.21.86.242:443 www.games-4-free.co.uk tcp
US 104.21.86.242:443 www.games-4-free.co.uk tcp
US 2.18.190.80:80 apps.identrust.com tcp
US 18.239.208.87:443 www.clickcease.com tcp
IE 20.234.104.33:443 monitor.clickcease.com tcp
US 52.207.66.72:443 wlg-scrty.com tcp
US 52.207.66.72:443 wlg-scrty.com tcp
US 54.208.166.52:443 wlg-scrty.com tcp
DE 212.48.98.37:80 om.forgeofempires.com tcp
DE 212.48.98.37:443 om.forgeofempires.com tcp
DE 212.48.98.38:443 en-play.forgeofempires.com tcp
US 52.207.66.72:443 wlg-scrty.com tcp
US 52.207.66.72:443 wlg-scrty.com tcp
US 151.101.2.109:443 onelps.innogamescdn.com tcp
US 151.101.2.109:443 onelps.innogamescdn.com tcp
US 104.21.96.72:443 www.ovardu.com tcp
DE 212.53.143.141:443 cst.innogames.de tcp
US 8.8.8.8:53 37.98.48.212.in-addr.arpa tcp
US 8.8.8.8:53 38.98.48.212.in-addr.arpa tcp
US 104.21.96.72:80 www.ovardu.com tcp
US 104.21.96.72:80 www.ovardu.com tcp
BE 23.55.97.116:80 profile.gtarcade.com tcp
BE 23.55.97.116:80 profile.gtarcade.com tcp
GB 143.244.38.136:443 static.24metrics.com tcp
BE 35.233.96.203:443 j17lsy2zdf.clicks.24metrics.com tcp
BE 104.68.69.181:80 flash.gtarcade.net tcp
BE 104.68.69.181:80 flash.gtarcade.net tcp
BE 104.68.69.181:80 flash.gtarcade.net tcp
BE 104.68.69.181:80 flash.gtarcade.net tcp
BE 23.55.97.116:80 profile.gtarcade.com tcp
BE 23.55.97.116:80 profile.gtarcade.com tcp
US 216.239.32.36:443 region1.google-analytics.com udp
DE 18.157.218.149:443 www.myjackpot.com tcp
DE 18.157.218.149:443 www.myjackpot.com tcp
US 151.101.2.217:443 vjs.zencdn.net tcp
US 151.101.2.217:443 vjs.zencdn.net tcp
DE 18.197.167.79:443 eventlog.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
US 104.19.178.52:443 cdn.cookielaw.org tcp
DE 18.197.167.79:443 eventlog.jackpot.de tcp
US 104.19.178.52:443 cdn.cookielaw.org tcp
GB 163.70.151.21:443 connect.facebook.net tcp
GB 163.70.151.21:443 connect.facebook.net tcp
US 18.239.208.92:443 web.cdn.jackpot.de tcp
NL 104.97.14.210:443 whow-sharedstorage-28.akamaized.net tcp
US 18.239.208.101:443 shared.cdn.jackpot.de tcp
US 18.239.208.101:443 shared.cdn.jackpot.de tcp
GB 163.70.151.35:443 www.facebook.com tcp
GB 163.70.151.35:443 www.facebook.com tcp
US 8.8.8.8:53 210.14.97.104.in-addr.arpa udp
US 8.8.8.8:53 101.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 35.151.70.163.in-addr.arpa udp
DE 18.157.218.149:443 www.myjackpot.com tcp
US 172.64.155.119:443 privacyportal-de.onetrust.com tcp
NL 23.62.61.129:443 www.bing.com tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
US 104.18.3.223:443 infinity-js.gamepur.com tcp
US 104.18.3.223:443 infinity-js.gamepur.com tcp
US 192.0.76.3:443 stats.wp.com tcp
US 8.8.8.8:53 sb.scorecardresearch.com udp
US 8.8.8.8:53 gamurs.group udp
US 192.0.73.2:443 secure.gravatar.com tcp
US 192.0.73.2:443 secure.gravatar.com tcp
US 104.18.14.215:443 gamurs.group tcp
US 18.239.208.18:443 sb.scorecardresearch.com tcp
US 18.239.209.121:443 static.chartbeat.com tcp
US 18.239.209.121:443 static.chartbeat.com tcp
US 18.239.208.121:443 htlbid.com tcp
US 34.110.181.170:443 importantmeat.com tcp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 151.101.1.91:443 s.skimresources.com tcp
US 18.239.208.121:443 htlbid.com tcp
US 8.8.8.8:53 pixel.wp.com udp
US 8.8.8.8:53 spc.gamepur.com udp
US 34.120.157.206:443 spc.gamepur.com tcp
US 35.190.59.101:443 r.skimresources.com tcp
US 34.120.157.206:443 spc.gamepur.com udp
US 18.239.208.69:443 static.adsafeprotected.com tcp
US 8.8.8.8:53 t.skimresources.com udp
US 8.8.8.8:53 p.skimresources.com udp
US 8.8.8.8:53 geoip.gamurs.workers.dev udp
US 8.8.8.8:53 www.clarity.ms udp
US 8.8.8.8:53 silo48.p7cloud.net udp
US 8.8.8.8:53 p.gcprivacy.com udp
US 18.239.208.69:443 static.adsafeprotected.com tcp
US 8.8.8.8:53 ping.chartbeat.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 8.8.8.8:53 3.76.0.192.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 8.8.8.8:53 2.73.0.192.in-addr.arpa udp
US 8.8.8.8:53 215.14.18.104.in-addr.arpa udp
US 8.8.8.8:53 170.181.110.34.in-addr.arpa udp
US 8.8.8.8:53 121.209.239.18.in-addr.arpa udp
US 8.8.8.8:53 121.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 206.157.120.34.in-addr.arpa udp
US 8.8.8.8:53 101.59.190.35.in-addr.arpa udp
US 8.8.8.8:53 mab.chartbeat.com udp
US 8.8.8.8:53 91.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 18.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 52.217.235.249:443 ams-pageview-public.s3.amazonaws.com tcp
US 35.201.67.47:443 t.skimresources.com tcp
US 13.107.246.64:443 www.clarity.ms tcp
US 35.190.91.160:443 p.skimresources.com tcp
US 35.190.91.160:443 p.skimresources.com tcp
US 104.21.76.254:443 geoip.gamurs.workers.dev tcp
US 18.239.208.3:443 silo48.p7cloud.net tcp
US 151.101.2.202:443 mab.chartbeat.com tcp
US 35.169.54.139:443 ping.chartbeat.net tcp
US 18.239.212.129:443 c.amazon-adsystem.com tcp
US 18.239.208.98:443 p.gcprivacy.com tcp
GB 216.58.213.2:443 securepubads.g.doubleclick.net tcp
US 172.67.41.60:443 btloader.com tcp
US 104.17.249.203:443 unpkg.com tcp
US 35.201.67.47:443 t.skimresources.com udp
BE 64.233.167.156:443 stats.g.doubleclick.net tcp
US 216.239.34.36:443 region1.analytics.google.com tcp
GB 216.58.204.67:443 www.google.co.uk tcp
US 151.101.1.229:443 cdn.jsdelivr.net tcp
GB 216.58.213.2:443 securepubads.g.doubleclick.net udp
BE 64.233.167.156:443 stats.g.doubleclick.net udp
US 3.227.200.193:443 p2.gcprivacy.com tcp
US 18.239.208.31:443 config.aps.amazon-adsystem.com tcp
US 18.239.207.196:443 aax.amazon-adsystem.com tcp
US 151.101.1.91:443 cdn.growthbook.io tcp
US 104.26.2.70:443 ad-delivery.net tcp
US 104.26.2.70:443 ad-delivery.net tcp
US 130.211.23.194:443 api.btloader.com tcp
US 34.110.181.170:443 importantmeat.com udp
US 18.239.208.102:443 ua.p7cloud.net tcp
US 18.239.208.97:443 location.p7cloud.net tcp
US 18.239.190.175:443 d2tbszkvx1p56e.cloudfront.net tcp
US 130.211.23.194:443 api.btloader.com udp
US 15.197.179.7:443 aggle.net tcp
US 20.114.190.119:443 x.clarity.ms tcp
NL 185.89.210.180:443 ib.adnxs.com tcp
DE 79.127.216.47:443 id.a-mx.com tcp
US 104.18.19.49:443 images.getadmiral.com tcp
US 8.8.8.8:53 2.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 98.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 249.235.217.52.in-addr.arpa udp
US 8.8.8.8:53 139.54.169.35.in-addr.arpa udp
US 8.8.8.8:53 60.41.67.172.in-addr.arpa udp
US 8.8.8.8:53 203.249.17.104.in-addr.arpa udp
US 8.8.8.8:53 156.167.233.64.in-addr.arpa udp
US 8.8.8.8:53 229.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 36.34.239.216.in-addr.arpa udp
US 8.8.8.8:53 193.200.227.3.in-addr.arpa udp
US 8.8.8.8:53 31.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 70.2.26.104.in-addr.arpa udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 70.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 196.207.239.18.in-addr.arpa udp
US 8.8.8.8:53 102.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 97.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 175.190.239.18.in-addr.arpa udp
US 8.8.8.8:53 7.179.197.15.in-addr.arpa udp
US 8.8.8.8:53 47.216.127.79.in-addr.arpa udp
US 8.8.8.8:53 180.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 119.190.114.20.in-addr.arpa udp
US 8.8.8.8:53 49.19.18.104.in-addr.arpa udp
IE 68.219.88.97:443 c.clarity.ms tcp
US 204.79.197.237:443 c.bing.com tcp
US 216.239.34.36:443 region1.analytics.google.com udp
US 34.120.157.206:443 spc.gamepur.com udp
GB 142.250.187.193:443 2552234c2f24442badc5e8e25b900b96.safeframe.googlesyndication.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 8.8.8.8:53 prebid.media.net udp
US 8.8.8.8:53 s.seedtag.com udp
US 8.8.8.8:53 ads.yieldmo.com udp
US 8.8.8.8:53 g2.gumgum.com udp
US 8.8.8.8:53 live.primis.tech udp
US 80.77.87.204:443 us-east.pgammedia.com tcp
NL 145.40.97.67:443 prebid.a-mo.net tcp
DE 3.72.203.236:443 btlr.sharethrough.com tcp
DE 3.72.203.236:443 btlr.sharethrough.com tcp
US 172.64.151.101:443 htlb.casalemedia.com tcp
US 35.186.253.211:443 rtb.openx.net tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 18.239.208.84:443 hb.yellowblue.io tcp
US 34.120.63.153:443 prebid.media.net tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
US 34.149.50.64:443 s.seedtag.com tcp
IE 52.51.34.111:443 g2.gumgum.com tcp
IE 52.51.34.111:443 g2.gumgum.com tcp
IE 54.77.35.70:443 ads.yieldmo.com tcp
US 18.239.208.6:443 live.primis.tech tcp
IE 54.155.218.74:443 hb.minutemedia-prebid.com tcp
US 18.239.208.60:443 hb.yellowblue.io tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 217.174.245.215:443 tags.adzip.co tcp
US 23.53.113.212:443 z.moatads.com tcp
US 2.18.190.133:443 cdn.doubleverify.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 64.50.149.34.in-addr.arpa udp
US 8.8.8.8:53 6.208.239.18.in-addr.arpa udp
NL 185.172.149.104:443 cdn2.adzip.co tcp
NL 185.172.149.104:443 cdn2.adzip.co tcp
NL 185.172.149.104:443 cdn2.adzip.co tcp
GB 217.174.245.215:443 metrics.adzip.co tcp
US 23.53.112.234:443 ads.pubmatic.com tcp
US 34.98.64.218:443 u.openx.net tcp
US 54.175.79.127:443 cs-server-s2s.yellowblue.io tcp
US 34.98.64.218:443 u.openx.net udp
US 130.211.44.5:443 tps.doubleverify.com tcp
US 8.8.8.8:53 cs.media.net udp
US 8.8.8.8:53 mb9eo.publishers.tremorhub.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 52.223.40.198:443 match.adsrvr.org tcp
IE 99.80.24.205:443 ap.lijit.com tcp
US 184.30.156.32:443 cs.media.net tcp
US 3.214.117.243:443 mb9eo.publishers.tremorhub.com tcp
DE 3.75.62.37:443 ups.analytics.yahoo.com tcp
US 76.223.111.18:443 eb2.3lift.com tcp
NL 69.173.156.148:443 pixel.rubiconproject.com tcp
GB 216.58.204.66:443 pubads.g.doubleclick.net tcp
NL 35.214.163.92:443 csync.loopme.me tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
GB 216.58.204.66:443 pubads.g.doubleclick.net udp
US 8.8.8.8:53 205.24.80.99.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 92.163.214.35.in-addr.arpa udp
US 8.8.8.8:53 37.62.75.3.in-addr.arpa udp
US 8.8.8.8:53 ads.stickyadstv.com udp
FR 154.54.250.150:443 ads.stickyadstv.com tcp
GB 142.250.178.4:443 www.google.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
US 20.114.190.119:443 x.clarity.ms tcp
NL 89.149.192.197:443 ssbsync-global.smartadserver.com tcp
DE 54.93.136.21:443 match.sharethrough.com tcp
DK 37.157.2.230:443 cm.adform.net tcp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
GB 130.162.160.243:443 mb.moatads.com tcp
DK 37.157.2.230:443 cm.adform.net tcp
DE 54.93.136.21:443 match.sharethrough.com tcp
GB 217.174.245.215:443 metrics.adzip.co tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 8.8.8.8:53 150.250.54.154.in-addr.arpa udp
US 8.8.8.8:53 162.87.77.80.in-addr.arpa udp
US 8.8.8.8:53 197.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 150.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 243.160.162.130.in-addr.arpa udp
US 8.8.8.8:53 21.136.93.54.in-addr.arpa udp
US 8.8.8.8:53 230.2.157.37.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
GB 217.174.245.215:443 ping.adzip.co tcp
US 159.89.50.93:443 sync.kueezrtb.com tcp
US 18.239.208.79:443 video.primis.tech tcp
GB 172.217.16.225:443 cdn.ampproject.org tcp
US 34.149.50.64:443 s.seedtag.com udp
US 35.186.253.211:443 rtb.openx.net udp
US 34.120.63.153:443 prebid.media.net udp
GB 172.217.16.225:443 cdn.ampproject.org udp
NL 185.89.210.46:443 ib.adnxs-simple.com tcp
FR 5.196.111.64:443 prg.smartadserver.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
IE 52.94.223.37:443 aax-eu.amazon-adsystem.com tcp
GB 142.250.178.4:443 www.google.com udp
IE 52.48.17.214:443 id.crwdcntrl.net tcp
DE 162.19.138.119:443 id5-sync.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 104.16.183.87:443 cs.seedtag.com tcp
BE 2.21.18.175:443 eus.rubiconproject.com tcp
NL 145.40.97.66:443 sync.a-mo.net tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
US 80.77.87.200:443 cs.pgammedia.com tcp
BE 2.21.16.25:443 contextual.media.net tcp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
NL 145.40.97.66:443 sync.a-mo.net tcp
BE 2.21.18.175:443 eus.rubiconproject.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
GB 142.250.187.194:443 cm.g.doubleclick.net tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
US 104.18.38.76:443 js-sec.indexww.com tcp
US 18.239.208.107:443 cdn.undertone.com tcp
NL 69.173.156.148:443 pixel-eu.rubiconproject.com tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
GB 142.250.187.194:443 cm.g.doubleclick.net tcp
US 104.18.38.76:443 js-sec.indexww.com tcp
US 18.239.208.107:443 cdn.undertone.com tcp
US 8.8.8.8:53 66.97.40.145.in-addr.arpa udp
US 8.8.8.8:53 171.78.68.104.in-addr.arpa udp
US 8.8.8.8:53 200.87.77.80.in-addr.arpa udp
GB 142.250.187.194:443 cm.g.doubleclick.net udp
NL 46.228.174.117:443 sync.1rx.io tcp
US 18.239.208.129:443 usr.undertone.com tcp
US 8.8.8.8:53 bh.contextweb.com udp
US 104.19.158.19:443 assets.a-mo.net tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
US 104.19.158.19:443 assets.a-mo.net tcp
US 18.239.208.116:443 cs-rtb.minutemedia-prebid.com tcp
US 2.18.190.75:443 csync.smartadserver.com tcp
DE 51.89.9.252:443 onetag-sys.com tcp
DE 51.89.9.252:443 onetag-sys.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
US 18.239.208.116:443 cs-rtb.minutemedia-prebid.com tcp
DE 51.89.9.252:443 onetag-sys.com tcp
US 2.18.190.75:443 csync.smartadserver.com tcp
DE 51.89.9.252:443 onetag-sys.com tcp
DE 162.55.236.225:443 sync.richaudience.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
US 67.202.105.22:443 ssc-cms.33across.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
DE 162.55.236.225:443 sync.richaudience.com tcp
US 67.202.105.22:443 ssc-cms.33across.com tcp
FR 185.255.84.153:443 visitor.omnitagjs.com tcp
NL 35.214.163.92:443 csync.loopme.me tcp
US 18.239.208.129:443 usr.undertone.com tcp
DE 162.55.236.225:443 sync.richaudience.com tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
DE 37.252.171.21:443 secure.adnxs.com tcp
NL 81.17.55.106:443 sync.smartadserver.com tcp
US 47.253.61.56:443 gw-iad-bid.ymmobi.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
IE 34.242.102.151:443 match.prod.bidr.io tcp
US 64.74.236.223:443 b1sync.zemanta.com tcp
IE 54.78.151.22:443 ad.360yield.com tcp
IE 34.242.102.151:443 match.prod.bidr.io tcp
NL 193.3.178.4:443 ads.us.e-planning.net tcp
NL 81.17.55.106:443 sync.smartadserver.com tcp
US 64.74.236.223:443 b1sync.zemanta.com tcp
IE 54.78.151.22:443 ad.360yield.com tcp
US 47.253.61.56:443 gw-iad-bid.ymmobi.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
US 20.114.190.119:443 x.clarity.ms tcp
NL 82.145.213.8:443 t.adx.opera.com tcp
US 80.77.87.200:443 cs.pgammedia.com tcp
US 80.77.87.200:443 cs.pgammedia.com tcp
US 8.8.8.8:53 22.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 21.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 4.178.3.193.in-addr.arpa udp
US 8.8.8.8:53 153.84.255.185.in-addr.arpa udp
BE 2.21.18.175:443 eus.rubiconproject.com tcp
US 80.77.87.200:443 cs.pgammedia.com tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
US 64.74.236.223:443 b1sync.zemanta.com tcp
SE 192.229.221.95:80 cacerts.rapidssl.com tcp
GB 142.250.187.202:443 imasdk.googleapis.com tcp
DE 91.228.74.166:443 cms.quantserve.com tcp
GB 142.250.178.2:443 googleads.g.doubleclick.net tcp
US 18.239.208.79:443 video.primis.tech tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
DE 91.228.74.166:443 cms.quantserve.com tcp
DE 141.95.98.64:443 lb.eu-1-id5-sync.com tcp
US 18.239.208.57:443 s.ad.smaato.net tcp
NL 81.17.55.172:443 rtb-csync.smartadserver.com tcp
DE 3.72.203.236:443 btlr.sharethrough.com tcp
US 209.54.182.161:443 s.amazon-adsystem.com tcp
GB 216.58.213.2:443 securepubads.g.doubleclick.net udp
BE 2.21.17.83:443 a.teads.tv tcp
NL 178.250.1.9:443 dis.criteo.com tcp
NL 81.17.55.172:443 rtb-csync.smartadserver.com tcp
GB 142.250.187.202:443 imasdk.googleapis.com udp
GB 142.250.179.230:443 s0.2mdn.net tcp
US 8.8.8.8:53 22.151.78.54.in-addr.arpa udp
US 8.8.8.8:53 151.102.242.34.in-addr.arpa udp
US 8.8.8.8:53 56.61.253.47.in-addr.arpa udp
US 8.8.8.8:53 223.236.74.64.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 2.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 166.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 64.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 57.208.239.18.in-addr.arpa udp
US 8.8.8.8:53 172.55.17.81.in-addr.arpa udp
US 8.8.8.8:53 161.182.54.209.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 83.17.21.2.in-addr.arpa udp
US 8.8.8.8:53 230.179.250.142.in-addr.arpa udp
GB 142.250.178.2:443 googleads.g.doubleclick.net udp
US 216.239.32.3:443 csi.gstatic.com tcp
US 2.18.190.78:443 ced-ns.sascdn.com tcp
US 216.239.32.3:443 csi.gstatic.com udp
DE 79.127.216.47:443 id.rtb.mx tcp
DE 79.127.216.47:443 id.rtb.mx tcp
GB 185.64.190.84:443 ow.pubmatic.com tcp
NL 79.127.227.46:443 id.rtb.mx tcp
DE 51.89.9.252:443 onetag-sys.com udp
US 216.200.232.249:443 sync.mathtag.com tcp
US 104.22.50.98:443 spl.zeotap.com tcp
DE 35.156.181.136:443 rtb.mfadsrvr.com tcp
DE 35.156.181.136:443 rtb.mfadsrvr.com tcp
GB 217.174.245.215:443 ping.adzip.co tcp
US 104.17.44.93:443 gum.aidemsrv.com tcp
FR 5.135.209.101:443 ssbsync.smartadserver.com tcp
NL 35.214.163.92:443 csync.loopme.me tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
US 8.8.8.8:53 93.44.17.104.in-addr.arpa udp
US 18.239.208.129:443 api-2-0.spot.im tcp
US 54.211.105.244:443 sync.srv.stackadapt.com tcp
US 192.132.33.67:443 bttrack.com tcp
IE 52.50.53.225:443 jadserve.postrelease.com tcp
US 35.244.174.68:443 id.rlcdn.com tcp
DE 79.127.216.47:443 id.rtb.mx tcp
IE 34.251.135.220:443 a.audrte.com tcp
DE 85.114.159.93:443 dsp.adfarm1.adition.com tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
US 20.114.190.119:443 x.clarity.ms tcp
NL 178.250.1.11:443 gum.criteo.com tcp
GB 217.174.245.215:443 ping.adzip.co tcp
FR 185.235.86.112:443 gem.gbc.criteo.com tcp
NL 185.235.87.179:443 ag.gbc.criteo.com tcp
FR 178.250.7.13:443 dnacdn.net tcp
GB 217.174.245.215:443 ping.adzip.co tcp
US 20.114.190.119:443 x.clarity.ms tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 2.17.251.5:443 aefd.nelreports.net tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
US 2.17.251.5:443 aefd.nelreports.net udp
US 20.114.190.119:443 x.clarity.ms tcp
US 80.77.87.162:443 cs.admanmedia.com tcp
NL 185.89.210.180:443 ib.adnxs-simple.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
DE 3.72.203.236:443 btlr.sharethrough.com tcp
US 80.77.87.204:443 us-east.pgammedia.com tcp
US 20.114.190.119:443 x.clarity.ms tcp
US 104.21.66.13:443 kiwix.dev tcp
US 104.21.66.13:443 kiwix.dev tcp
US 67.199.248.10:443 bit.ly tcp
US 67.199.248.10:443 bit.ly tcp
SE 192.229.221.95:80 cacerts.rapidssl.com tcp
US 172.67.149.138:443 filesilo.cloud tcp
US 104.18.11.207:443 stackpath.bootstrapcdn.com tcp
US 151.101.130.137:443 code.jquery.com tcp
IE 99.81.215.223:443 save.enabledstats.com tcp
SE 194.54.164.123:80 glovedinosaurs.website tcp
SE 194.54.164.123:80 glovedinosaurs.website tcp
GB 142.250.200.46:443 google.com tcp
DE 51.195.68.163:443 www.win-rar.com tcp
GB 142.250.178.4:443 www.google.com udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 216.239.34.36:443 region1.analytics.google.com udp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
GB 216.58.204.67:443 www.google.co.uk udp
US 20.114.190.119:443 x.clarity.ms tcp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 130.211.44.5:443 tpsc-ew1.doubleverify.com tcp
DE 51.195.68.163:443 www.win-rar.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
DE 51.195.68.163:443 www.win-rar.com tcp
NL 23.62.61.113:443 www.bing.com tcp
NL 23.62.61.160:443 r.bing.com tcp
NL 23.62.61.160:443 r.bing.com tcp
NL 23.62.61.129:443 www.bing.com tcp
NL 23.62.61.129:443 www.bing.com tcp
US 204.79.197.200:443 tse1.mm.bing.net tcp
NL 23.62.61.129:443 www.bing.com tcp
US 52.167.30.171:443 fpt2.microsoft.com tcp
US 104.26.10.119:443 softradar.com tcp
US 104.26.10.119:443 softradar.com tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
GB 172.217.16.238:443 fundingchoicesmessages.google.com tcp
GB 142.250.187.226:443 cm.g.doubleclick.net udp
GB 216.58.201.98:443 www.googletagservices.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 142.250.200.34:443 partner.googleadservices.com tcp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 104.16.80.73:443 static.cloudflareinsights.com tcp
GB 216.58.201.97:443 lh3.googleusercontent.com tcp
US 104.26.10.119:443 softradar.com tcp
US 8.8.8.8:53 www.google.co.uk udp
US 8.8.8.8:53 119.10.26.104.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 226.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 3.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 98.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 73.80.16.104.in-addr.arpa udp
US 8.8.8.8:53 97.201.58.216.in-addr.arpa udp
US 216.239.32.36:443 region1.google-analytics.com udp
GB 216.58.204.67:443 www.google.co.uk udp
BE 64.233.167.157:443 stats.g.doubleclick.net udp
US 198.187.29.31:443 bonzibuddy.org tcp
US 198.187.29.31:443 bonzibuddy.org tcp
US 198.187.29.31:443 bonzibuddy.org tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
NL 172.217.132.39:443 rr2---sn-5hne6nsk.googlevideo.com tcp
US 173.194.204.120:443 csi.gstatic.com udp
GB 142.250.178.4:443 www.google.com udp
US 104.16.80.73:443 static.cloudflareinsights.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 104.16.80.73:443 static.cloudflareinsights.com tcp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 216.58.204.67:443 www.google.co.uk udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
GB 142.250.187.226:443 cm.g.doubleclick.net udp
GB 216.58.201.98:443 www.googletagservices.com tcp
US 216.239.34.36:443 region1.google-analytics.com udp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
GB 142.250.200.34:443 partner.googleadservices.com tcp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 104.26.8.198:443 static.itch.io tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
IE 2.18.24.18:443 img.itch.zone tcp
IE 2.18.24.18:443 img.itch.zone tcp
IE 2.18.24.18:443 img.itch.zone tcp
IE 2.18.24.18:443 img.itch.zone tcp
IE 2.18.24.18:443 img.itch.zone tcp
IE 2.18.24.18:443 img.itch.zone tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
GB 142.250.187.214:443 i.ytimg.com tcp
US 216.239.34.36:443 region1.google-analytics.com udp
US 18.239.208.88:443 js.stripe.com tcp
US 151.101.0.176:443 js.stripe.com tcp
US 52.33.51.5:443 m.stripe.com tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 104.18.9.90:443 itchio-mirror.cb031a832f44726753d6267436f3b414.r2.cloudflarestorage.com tcp
GB 142.250.180.2:443 googleads.g.doubleclick.net udp
US 173.255.250.29:443 electus-studio.itch.io tcp
GB 172.217.16.238:443 fundingchoicesmessages.google.com udp
GB 216.58.201.97:443 lh3.googleusercontent.com udp
GB 142.250.200.33:443 tpc.googlesyndication.com udp
GB 142.250.178.4:443 www.google.com udp
GB 142.250.178.4:443 www.google.com udp
US 173.255.250.29:443 electus-studio.itch.io tcp
US 173.255.250.29:443 electus-studio.itch.io tcp
GB 142.250.187.214:443 i.ytimg.com udp
US 216.239.34.36:443 region1.google-analytics.com udp
US 44.229.0.33:443 m.stripe.com tcp
US 8.8.8.8:443 dns.google tcp
US 8.8.8.8:443 dns.google tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 bdf3e009c72d4fe1aa9a062e409d68f6
SHA1 7c7cc29a19adb5aa0a44782bb644575340914474
SHA256 8728752ef08d5b17d7eb77ed69cfdd1fc73b9d6e27200844b0953aeece7a7fdc
SHA512 75b85a025733914163d90846af462124db41a40f1ce97e1e0736a05e4f09fe9e78d72316753317dabea28d50906631f634431a39384a332d66fa87352ff497f8

\??\pipe\LOCAL\crashpad_4188_SLIAPSZURNMXJFTG

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 7c16971be0e6f1e01725260be0e299cd
SHA1 e7dc1882a0fc68087a2d146b3a639ee7392ac5ed
SHA256 b1fa098c668cdf8092aa096c83328b93e4014df102614aaaf6ab8dc12844bdc0
SHA512 dc76816e756d27eedc2fe7035101f35d90d54ec7d7c724ad6a330b5dd2b1e6d108f3ae44cedb14a02110157be8ddac7d454efae1becebf0efc9931fdc06e953c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\bf6fca06-0acc-4c08-a75d-2075a8e8b9a5.tmp

MD5 a7938a52f8326b2f773e4f5d3af32a36
SHA1 09ff2f15ce284416b03b089a872334c49b269c57
SHA256 43e87ca1dd51782f3020f60e6f6f9f74c63147cc2bec86430786d88a2082922b
SHA512 744233f887df97330f71a11a9c817985426dc7f8d69e33c65a23a8e786158d02ebb379b7ddd3cb6e82a5885442e809c62f3ac9a4e37d2b006248b184d5241080

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 327e87dea49ea36dc8cb19bc00fa43e6
SHA1 0259ba63eae026fea2b2aadf85fc1573d1e45da8
SHA256 1b70210d25f6a1ba8d01de4f4157ba7f80ec873cd72248ea0ac62222b58eb6ac
SHA512 587690e8378d8094348f4f3f8e0418df7125fc65f5f2da458c35eb9447717528900eec0191de1e2c0be97e54a26c6049417348d0676b16edd30174139b6f2a91

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 66ccfe46c2dd44da9909e9f77fbc65f3
SHA1 1c990c89006de4ac10e798daf02b3e5e10995d2e
SHA256 2f40d5266c1bf71f1ce1f1faef2124dddaa1a807b23a1f050d37ac8042afd529
SHA512 884bc4b8a68a934a55e39425bbb1326cb511f20b6cd864551add6621185a8236bd8907dac9be8df3425b5d03ad6abc3a65a28f38bc45c74953c6400ad3d90dfb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0c0e85142ea6a7ccfca412276422e3eb
SHA1 089ab96a5271aeaf6dd637550c0976ad1b9cd8bb
SHA256 86e22c548d2facdd52ce12abc0f3fe0f452ef52d433badd412f03621c76c9c78
SHA512 ab788e88357e7931cb0233b3b392fa5dbdb0d25cf68b6aed31e45a89366ed6e6426303588b18947ef0621da5f3a4b2421572edf2574d182184362802cbbfdc43

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 89b5b37fdafed8db6ac73ac190b91fbe
SHA1 e5de539c1972dd740104c6788da090603d2bc5d6
SHA256 bc4091b90e081ae65dd66d9712158428a59c0eb63d6dbbec193b726576deaf2e
SHA512 37d9c1b656282161a0ef62e5dfea7bbce8d4f71d2048d9ef510d8213b86c866934ddca4290f748db6c60630e5573a2bc4decc73c92ef3d1bb1c7d1fcfda3efa4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57ca45.TMP

MD5 3e8aca4f87458bfb6b6033311275ffaf
SHA1 f19b8992f63c963c3632c6ffcfcbd0d87223dd5d
SHA256 c40b47e599fe28ab3b2619a210169e0914abbf7fe7e9bd8f9b40eae2951eca34
SHA512 80f12a3b5520a1d936210b834e3adb1db27db29b2c9d577d34f5259052a81c74bf5fced1e035bfd2d7c08dd1f3d878d0a9a21d47128dc38a788784deea55d5e2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 05f3ea67830d3ccbafaf4615d4428ae1
SHA1 611479a6b1d5a76df508552d95bce76027b795c8
SHA256 8cde329a14bcfc17d6ac786c602ea2f6a2350c074f536d752c7667309e1c9f86
SHA512 d946012fd36688e5b331eab0135b2d7e107b24c6e850af4c6eecebec3bccccac35c4d7416ea174ec46590335bdc831838017eaf576880d3e4b091d6bcab6cbf8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 bd3514d83b9e8ffd346fd977b3a0911a
SHA1 30d7aa4c841e170c4eccdf40574b05dc28aa8c5d
SHA256 9630e397e8ca12afd7d90bd331348492d933381c3ceefd36c5ae9c76e7fff02f
SHA512 65c781cbc6a6b9dd7802e591cd5c2bc917e0ffffbd187a6c1ea93a26471d5312c1c2fa886615db80790f8b11663bb77cbea57fdbb66bea263f9f8a29622b5176

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8ebda84fbe380f75b6c81d759e777632
SHA1 4aa898ed9e9f19d95074f2025fdb0f1c5628c73c
SHA256 1c3c1d9c5e4f9b1a8a670e0421a9336068b4019c26d2d366b9c827c9878f5b79
SHA512 8a3f0606cfda8e4e5bffbc76c06e97c6f7b43f806babc5d0ef34d68ca62ed40d6289dbe1f66095ef08c97e957909630c26dfc80b9d2ea9136640b307077a5db3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 6ccdf6f8a666372cb146ca3a808c169d
SHA1 622d41059a88fe405ffc4ee819fe1b6ab133a6aa
SHA256 34477890de7782ff83ca9125ff73228c18522d520a73d3960e1c68c83d6bd066
SHA512 9ed3c1f650df45a178c336f59ad854b20a6696cb4106f632dc41327cdc4bbb3575993690d3f0d4e9e92565dd512217bff2ded8b6a016297e6a14e7bdd3bbdd8c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 9aff229b481924c24fb95b429599c12e
SHA1 46c71bde7594d28e977d16132b9a4b3fe4a41b6f
SHA256 e4bfd0967da4ec38b3f16587516ce8d308815da1df3b32d73b0a7d5ca938ca77
SHA512 bb34e025771795902dbacb6fb4b4d9d8219f0404735a3021faa71414b3e839fc48f3058e261d49ee3219c538a546fc40d02a699563abaa0a3240086cc48ce986

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 a3246ccb4bf3fabbdb279546d51d23cf
SHA1 633bb347655320bec26023cc8451aff4865bcac8
SHA256 5d6d8e81dd13086b56e6cb0b902bde1aa65f50fd864b8f88e3473763ab8f5ca7
SHA512 0fbc4e0919f3b0b7e81fcc5b0b773615e8c9eddd1e85f5ba0f6cdd95bb3eff2f26e5a1cf14279886c99b44ebade0f258714e31795437b5d31c2da6851a84b639

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 3e86bd7f845c0b014e9c9db44170fde8
SHA1 7b90212bcbfa6161177e9a108ba57f57c62108b8
SHA256 68877cc1eedda115390c07a65fed3a6bf8ca79aa11251c97d17982c2484cb885
SHA512 27b257b2a15a540931040643230c35de3db1c29063c78722be7d3cd0e01b597aa5bbba6f5bfe41b2a8a36e4817dc731711e1c55e575771f6cb2f1eb610dc7078

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 dbc71a7b38af7a6aec3149e1f4258d0b
SHA1 168ebbc73a0104ae430e0003bcc7e83776475c05
SHA256 03adc75be97e0af3e7a90c46f28f1fd35b9237422f4e88c5f5c5f7daf71661a0
SHA512 6b5c804c67c2f9e78e9d37070711b7c4e911153fc7cfc959c5f245d056af11b6434a406221d9410b3c7b5fb008dd1ab80075f5b8060f24c544f0f1cbf5e823ad

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 f8e04494c2c8ae118d1ba655e3ffb16c
SHA1 8a5e0d36732c2a129555674dae79828b8b534c55
SHA256 e0279af4fc3f3101f380d0de941f219558525f66cfdd5c25525750cfbe6edff5
SHA512 7b95da8f716d79c36edc55ab601639bcd1d1578567b50ed443b8521981f83e35bf6597cea8f86b3fca26d0af486e9039af64a96b1b18a2ece5bd2b477b9ac297

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 7da63d06b792dc0e6c72a722c8a94a9e
SHA1 90f4bd9f84867da70217242b80c396da8edc9578
SHA256 89b9a5db884f1136313efc59ca8562d08a195129db78510ba1dcdfaa283b0f5c
SHA512 fa47fc2fe07d53d83427f2d362613786a1e77261ffb8d6f9603cd976bb42223d7799b9c306bd7f04db9d1cdbd56e47cfb1209823757a290a5504c2223e06e5f9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 65f3833a11472ca0ba019c72b3d832f3
SHA1 281271a07a22716f2013b176071d21e625b8e902
SHA256 02bb816af8ca6b1a0cd2e7768b9317f37b27d27bf242152b7a83341620a7946f
SHA512 ebf80fcbbde63af534e2786cc743b229561dbc62cd1120a8e0c3f606b98b7583f35aec4fdfe3ed3c76010e3aac3bd3f090d12f9387732826b66d47d15d22797d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 500cc36123ae5be8ca1a26e5f10826ed
SHA1 b332a61508087f6732a71c222a7e9d264e51d97c
SHA256 a21123d25ab9b165fa55f315434d2ad2d329b25581c0a4ae0b3538ed7bc46004
SHA512 c2b066fe48f5d086368ae44c942c14b757fbfaf35de08b7678ce1afb90e7b034648015b9784656b1716104bbc1cfe7388a1e455e7cf3562dd4a2beda663c3650

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 c39fb47d0a65ab7b8d18e5bd4b3f27cc
SHA1 7fcc5429539584857ae30e09e7050a8ae16f5514
SHA256 6ade8feb50ed152646b8a033d18332b16c9367a166901a9533719fce026eff5f
SHA512 9f4fb93688cef67a7a0cba4d89ead62de9bb5db532b461839fd36caddc0f728bf7626cf9f031b3d0e5ea1151eb83ce23044a403d6d77882a32d7a33532fd19bd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 37b69c5c4963952132da7850e78565b5
SHA1 5cc4871cf1dce1d40708e8672e181060b962b54a
SHA256 303e69382f7454f7b8ce739a6d6294bbb6f7f85b5f61f0deb0cdc95453892ab0
SHA512 bcb3fb8a9efa4162071473789767bf9b68d6f39e715d4f384da3e075019f590be15222240dba26ee697704433f29ec9cd240168f216565db4ecd95e295371287

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8547f6ec58fdda1c914c70c25d0680da
SHA1 be3fcd8dd3a4f9d93f4584863fdd73bbcabaf9d9
SHA256 2baa0d6aac41617a7fdf105b674be4be7323f7b33411c68e0c07e1a672df21d2
SHA512 e149358cfb106157e00ed2ccc1079685f898c5ecdaea7bc978698b43da62e9eca3a4e356c7c9facdfb949c759357cb0d7cafdf0bc31282f5103ebc0bb7db879b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 554bec8ec8d691ffe4e0013b7d695b39
SHA1 53d2dcfe9eaf8ee460ac28d769f1c64f9df85f59
SHA256 0e44e328e82fd6d049d1ec6f79638ead6b1eeca6b37c47694ca6922478a7d6ae
SHA512 d771df35bdc55cd81caef9db910991cd0020973a94696e8c3bb114e9d989c18142dc28abf6bb3d436f2db41449fd4129dc2392cbd380c44eb6c7dfaff32afd61

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007

MD5 d2d55f8057f8b03c94a81f3839b348b9
SHA1 37c399584539734ff679e3c66309498c8b2dd4d9
SHA256 6e273f3491917d37f4dbb6c3f4d3f862cada25c20a36b245ea7c6bd860fb400c
SHA512 7bcdbb9e8d005a532ec12485a9c4b777ddec4aee66333757cdae3f84811099a574e719d45eb4487072d0162fa4654349dd73705a8d1913834535b1a3e2247dc6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000009

MD5 2e86a72f4e82614cd4842950d2e0a716
SHA1 d7b4ee0c9af735d098bff474632fc2c0113e0b9c
SHA256 c1334e604dbbffdf38e9e2f359938569afe25f7150d1c39c293469c1ee4f7b6f
SHA512 7a5fd3e3e89c5f8afca33b2d02e5440934e5186b9fa6367436e8d20ad42b211579225e73e3a685e5e763fa3f907fc4632b9425e8bd6d6f07c5c986b6556d47b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008

MD5 c912655c8d691e1a190dbec03d14e653
SHA1 a90a6ea007e121441a0d9c48ea4073a635085f6b
SHA256 35e5f055ba3fc9eb6c89884d533f5484fcb335d0e226145d7ea7a6a1e2da6fae
SHA512 c606bf2711a2be266c69a702d60bbc0d66dc6655c88dd669932f9c3954941a44d6a09e25bf60272ba5e0ba09ee65f4a3d8bd33a215ed2eb76ed601f06fa984d2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006

MD5 d6b36c7d4b06f140f860ddc91a4c659c
SHA1 ccf16571637b8d3e4c9423688c5bd06167bfb9e9
SHA256 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92
SHA512 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a

MD5 56d57bc655526551f217536f19195495
SHA1 28b430886d1220855a805d78dc5d6414aeee6995
SHA256 f12de7e272171cda36389813df4ba68eb2b8b23c58e515391614284e7b03c4d4
SHA512 7814c60dc377e400bbbcc2000e48b617e577a21045a0f5c79af163faa0087c6203d9f667e531bbb049c9bd8fb296678e6a5cdcad149498d7f22ffa11236b51cb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b

MD5 74e33b4b54f4d1f3da06ab47c5936a13
SHA1 6e5976d593b6ee3dca3c4dbbb90071b76e1cd85c
SHA256 535fc48679c38decd459ad656bdd6914e539754265244d0cc7b1da6bddf3e287
SHA512 79218e8ee50484af968480ff9b211815c97c3f3035414e685aa5d15d9b4152682d87b66202339f212bf3b463a074bf7a4431107b50303f28e2eb4b17843991c2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c

MD5 5ab2d1f8cd709d40a8ea424bb51be98e
SHA1 5423cdf5c8eb1f57c0c330617cf2277b1283b6b4
SHA256 bfda89ab36691c4c6e8e8db2ee2b4bdccdb4d624410d97889f82c31d176facea
SHA512 912b41117f1603d903848822ad61bea5f9561c95049c1c689cb36be40f2cb58f7cc92fae4fd8b47297a127e816c657afa7bbbb3c087c21d80d9bc31639237dc3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 733581c6d9c48b219aece72569e6cded
SHA1 b0410be1de7c1fd7693abbea3b7afca0cf81c685
SHA256 93a7dd4d81b48e6806e03b2571fb88348783468f5d56d9d52beae3827d3744ce
SHA512 c0a9192fe8fec5b3e054475b7680383dee1486aa4a511933a0c1a3c437bbef44dffb90fa738bc0cb246beadecbbcf7386a6351638866bc50853e29aa41c3204e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 20f9ac0cf247a726f2b08f2e72a39a02
SHA1 5c853d8e1b6faf07618beee8b85720555c3f61f5
SHA256 82aa9f00cef5ab7b3c411c06f14171707782309a23ffff554d8d254c08959b47
SHA512 6422a868384ebd4684861943769cfc19882a13f5b7e76669ec24b0ac8cdbe32992f051ddd4455d3ff2053ff5efe3ebe30adaa6f8fbde3a4e2db5bfcfe3f4034b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 87b234936524285ca00b887f5210768f
SHA1 144817c5880cfe4804614e16b2ca2ab2b87312e6
SHA256 770e9af2dfc62b6adf5042599488af1312dd8268716957ac01e9492730a52e54
SHA512 ac4e351d58bd64060683f94132c96150ca2eeb87afca3dabefc54b189c51c73fd01e7506163144248ddc5de57f5a3f82cc7290331eeddeb369062033ca60cef1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 795100ceaffba7283627ca0293602c7f
SHA1 4347f41b1e9bcdb5cb186bd614ba09631008cfe6
SHA256 b0feced2a300f574e891557601e86b0beda8186b937b23109e0dbd25580f8a19
SHA512 834928716c10fb65f8eb382537eb7e4d531ef030595ebd450fe32b1df9546dc1dc40d9bac5a628b4ee755957a10bf2db61eac44a423c8dec41864e645cc0e314

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 ccfa1cf1fe6fd4240ef8d28024029699
SHA1 b736b3d7db62c9dbe915debafd992b67e80586fe
SHA256 87a41d0e26a5dde8946884608135efd848b936fbe6a0c878a33e0a8054b93176
SHA512 4d2255ed83067bbdd0a5909e4ba18a64bf3ae39fc7fa7c87aaf85de6a51ae9ed1481f3c0718b42367db35b877bf3dc7ed05396becd09f79f84ea70cee8cf54b4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00008a

MD5 46db0a044d9f85eedeaac0306359b062
SHA1 35f83d695343f6a469bd6db0fbeff70bc53e029d
SHA256 f7db2bfe9b71fc2668047fbd2a99e59a93d4d855bea6cb895db234d430446745
SHA512 468d85bbbbff4de565104f225328c6d5721f8b6e759a7f90b37bd1f9f0503f2aee8dd5ba051e32e063377c24451d902ac43a305a2396216d45f6f632d5181523

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 3f02fba7ea0987d8edfd6c71110d1a50
SHA1 0cd6223d61e5013131063265b824501399dae924
SHA256 c150beab0fd1f9c0244e897d24fa92669f1858d25ecb3b155476ba098729c296
SHA512 72edc008939ba88678e6acaaea994ad50df4008bd26a3a10e0d97e2a1c3e06cba0ebf3c7ab3812256a84d54c798a361e0262e7c622b4a9c1cffd51d9797f2f32

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 aec3aaaf360c91fe7e0f94b16634afd9
SHA1 e192936dcd6dae2612e8838eda6e67f11e7d0e38
SHA256 7117262098058ffe820c902ee1fd1c64775f58b0d7f2772ad2a05dac61918d16
SHA512 31fd21e813f7bdfba97da73fcbdecd897fb2aac362bf5a0d041c7dcd801397e97380ecbd18269cb35f2df489715768fd67a7450bc9962298afcf9039d9f9f80f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 2f29af4c89e1230d758e3c7bcc8dc836
SHA1 ae930414e1b04683594f6b347418c07cb0ddcc6e
SHA256 c66721f875cae269f756ae37078017050e40b5ff355a561f7f91ea1ad0222929
SHA512 fd684512861ece22e536bb0e5b456ebfb978d7000fe67cd571a72aecfce7df19862938a8290e67c2e8bece7fa7a9e141a3cd57726325912671c32384cea359b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000096

MD5 e2f5339567cadf1f367ae23c6ba2fe2e
SHA1 7b44030002c1b97bd95912ff696ec34d2335017c
SHA256 cb3c31fd9cb4a76d2a6b2d5c8177d121ad4c0bd1e3c0434d5eaacefa141c3ec2
SHA512 f6310fc1f14dc9067875cc67ddc57bb34a59b4772def6b355f0e23d951489361e4e732904ed7fbdded0a2dd0414e4fbdc74ad4c3287946113b956fd7246817b8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d

MD5 3cd0f2f60ab620c7be0c2c3dbf2cda97
SHA1 47fad82bfa9a32d578c0c84aed2840c55bd27bfb
SHA256 29a3b99e23b07099e1d2a3c0b4cff458a2eba2519f4654c26cf22d03f149e36b
SHA512 ef6e3bbd7e03be8e514936bcb0b5a59b4cf4e677ad24d6d2dfca8c1ec95f134ae37f2042d8bf9a0e343b68bff98a0fd748503f35d5e9d42cdaa1dc283dec89fb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000012

MD5 cf989be758e8dab43e0a5bc0798c71e0
SHA1 97537516ffd3621ffdd0219ede2a0771a9d1e01d
SHA256 beeca69af7bea038faf8f688bf2f10fda22dee6d9d9429306d379a7a4be0c615
SHA512 f8a88edb6bcd029ad02cba25cae57fdf9bbc7fa17c26e7d03f09040eb0559bc27bd4db11025706190ae548363a1d3b3f95519b9740e562bb9531c4d51e3ca2b7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 7b32a18b248f57f1c82432eaa6049928
SHA1 8576f6805dc4eacf52cadd7f3715af3e40943b4b
SHA256 3467ed6985489c5b218818793baf85f9d0bde5997378f8abe8a4008296a0f7f9
SHA512 8adf1f78edfeac409e0e448cf6fe85f2b42001a9a394a7e9eb0a4e9a6950a7e0786be39b9a2a95d7660de725408fa27837b6ed09b2262f6e4beec875d3389dfc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 18089a095485dd411db217a9951d8486
SHA1 896557021bc97382655095e24080995a75b32969
SHA256 782f3c9b5058509842ae558cfc596f0d46fabbcc27c879ed348992b5def752a3
SHA512 311de4dd8fc9ecb34dae25b83de0396df78257ad2eb338daac99df31c45f906421c6c235a118d6b946e5be23e71fa6a362dcecf6c2280a18523535feb45706fd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 9c6bf03d1a1f8873e2c65012da1cd758
SHA1 2cc17d19fd8d701d6bdd30151830ded03e907e3f
SHA256 ffc96b9a64088aab4661d8e1fdc54cdfe8beb8d6321514e08a44737ea40a8dc0
SHA512 d37f296493ad78f474981ba9368e0a5d743b20fca1a9a0f777686f497207ce5335206569146505b2d2fd052473d1f0aed57c6a42b071705bbeb78c36884d0326

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 594b174d80ce56a814ffb418881f73a9
SHA1 bd86f4e7ccd8436333ffa1ffbe73a77b05cbd261
SHA256 907e6efddf1272bc057c69597d411efc7861de8964f6a5ed92899a877688e469
SHA512 3c519244773f6d80c01483223976b2a231f432d044288b1a4797833ee1ce3c457d69af08db58fa85379a72d96efeb7aaaf349e738805a01c95a34c61747daa36

C:\Users\Admin\Downloads\Unconfirmed 387399.crdownload

MD5 48deabfacb5c8e88b81c7165ed4e3b0b
SHA1 de3dab0e9258f9ff3c93ab6738818c6ec399e6a4
SHA256 ff309d1430fc97fccaa9cb82ddf3d23ce9afdf62dcf8c69512de40820df15e24
SHA512 d1d30f6267349bb23334f72376fe3384ac14d202bc8e12c16773231f5f4a3f02b76563f05b11d89d5ef6c05d4acaacc79f72f1d617ee6d1b6eddab2b866426af

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 bbfb0575dd84ad0a52e91589a37fafe2
SHA1 f43a13de1a2077cabe8120907afa22bbe1f0ce39
SHA256 56a6b8e2fd9005edfb62f6cc2b391789b8a70a7a14f7eb40bf55f4f18a0c1049
SHA512 46f2946e0780ec6080b8171784e9646ccdd0b7ae09c3626dec3e7805a169524d6e49f9703fd643e5da8a8db1768ecbaababe8106a53d2aa44d3c046c5520e23d

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 3098b2455d983f5e9966b011bd390f61
SHA1 2644d7bdbf06e1f89aba1a55146ca04b81b87a70
SHA256 8ea513005c1c7b9bd79f8f5a41b4d57a53ec0be515f2c5871bfdc29479038f03
SHA512 714c0973648442eaa9c7e0590e22aa005e8c57dc43ff33a76a182f066e4cc42a1974b139688ebd9a939bb38032d01b1fb91a1e95b4bb627b868198dbb9f4ff51

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 4ca1db047cec0d78b550b371a6d31642
SHA1 05d8331c9c16e51b323a6d6ec71c4ff5121723bd
SHA256 372e6e214745382e3e71212b883f35fb213832f0def1543bc4424929e098c271
SHA512 b2ed54172798bca6528b20f921a4e2e292ef74ff4b45f676700e823de0a5ee4074b539f8556cdb9152837cfc3ad25be8e873685ee755ffdf839cc040dd5937b7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 090e22f302c447c6d08dfb13d6df239b
SHA1 3b720457ca02616d2cde00056360541266705ba8
SHA256 ca438a4b5158c88f6c2845970debec7ef5a611fcb6c7f281733d18af332b0f9d
SHA512 7914b32bfa0f13a9f2115c7efb6939d17b1571d883a42a51a1c7d14d80dd8f26426da7347e6a5849d65256e5d672c3da5d1a6ca2dadafd1bc2054348b0e991e1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 ab9874b72412861a8bd88820a2262acf
SHA1 af3f3a3db0fb36f3a6c5f276871ab39b95665708
SHA256 c05fbc194ad4ec12d15f5736319663e514b8a6ea59237330b8441ea603db7e0f
SHA512 1e17bdf83d35f6091eaa1da9753443c84352df70dc7f1a57c4c996f8e6e60e528870d0dc166b954813091dc30114b2b4f6ea59f09f7446896e7fe7701d51e825

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e7542ff0b7d239a4230ccb6793d94594
SHA1 f7d1221171a64840157a4bf738142bf5e5e1f1ba
SHA256 a63544be897af49cc1184ebaf96f1a32e991fd32bef466ff636b786e441b37bd
SHA512 885b6be3addf0e7c3c5f7de8452e3e9d362b5f2eee8b4f675412efac291ac4148c4967f9543358789687588fd5eb0c0eaaf7553ae3da94978ae08043d4bb9f54

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 815e13ff3110933e50859b45e9239eca
SHA1 2f851cfafeb582b6dd320ff12adf04cb414f24f5
SHA256 037b403a1b1807b7d6a81233c63e09de3dba4c77840ce0fe880a1d067323f418
SHA512 37d2cf06ed96f6df4fbf668566130104e1028f6a6331f68f66420a5bc856db664474aa70c4b3a51639cc597e919bab8d5ba412482b7737574d838913f2c66d4a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 a559d1f866c1eceda7af096bb0796796
SHA1 546a3272632c18686e52d3d32f9aba8952b9ea98
SHA256 7db70d2eb0f9113888a0f34f78b1a1cff39f0fa1b2aa4459b8eabc1702aa9a84
SHA512 d7216ee28f704e7d69ab67b7c02980815c41e66c3a1f812233894b648d08dd5864bed460728ad91b3012cea978823e6b7826b1e34e8e33a02ad51554204375a8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000b5

MD5 9f1f1bb66ac47e4ada90676090a305e3
SHA1 b697c379ebd78733844b22f9b968215a59eb76c9
SHA256 00ddce5d4e9c625f12e488fe6f06d8c90209b79179cfa80fe2146d23970605b2
SHA512 1112bf0d48900fd34bb35247043fef57998b65900ce593024dd1bfcd04a61842958755b3c3ba6fc7c0cfad67ef088f6c682536efee93815a0b1fb3afc3938160

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 e2925132f9a9a2691c77f89292df3267
SHA1 117a6c9255645aeb244d9055c713dd2ad630ba49
SHA256 5d48e99ddf4f3532a7e24f52406b068c9a841960fb6c4c2e904a21b601eae78e
SHA512 523d17ae77cac6c1f156bd5d55654b2e8b7d437c5c5b43d3bf2b38affacc63599acd166e8f10d8b59611909fb16c2cedda3f6c9648c1f021e09e4d60d2872c8e

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 d5002ba9ae22fe26939acd419293fbdb
SHA1 35dfc8f4220e29f2e7466183a345caddf7aeae79
SHA256 69b4709ca66a24b37e47c0cf29d2af4f2ee80e32375fe130840958ee8854b8be
SHA512 91d62c1766d29f439e80a962f65fe2d06a7b7e30f073773df0dd30298def24eca373dd8377aa330a4f2eab9b14393082f68b9f46dbd7c401b5aac1cb8e3102f5

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 0c95ea960f2cbb1a6fd0102c0591bdc0
SHA1 0109e7d4ce01073b5143640266219c77f390b499
SHA256 92ef24a85ad08ae0c1d82f64096ebc5e8ab755fbaf52b8c011884925d2b8a029
SHA512 b1c94aa64efc43bfb2e1d2bfb4f9756dc879aedde47a05665f118dfba0a99841dca4cfbfe8a0831aeca9264687699718f2af7dd44bef26eb79042c47537fa4df

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f9af797954c240558721fcaa211adcca
SHA1 f1cab9f5020c3b0cb5f246de9a87b38689952ffe
SHA256 f3be38278103b8ecd4541f268bf1388226a44c1eceaa6f4b098593a75eac76ee
SHA512 0b1cec6064ee37ba8ed2f210784df56daae715e4b6dc5c7d3bb2c0fd7a4ca8525fe916ac91ccb77b17033e494f046e2024bbe462a49684eccec8ab6e4a4e5511

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 039ff93e8b0e353349f21f627c25bdd1
SHA1 ecd6dfefde284d0cb9482266ea324c80d652d65e
SHA256 c3f09efaaffe0839677050d2adf560b7a9cfde803352fcc9ab96fc0b20863f8b
SHA512 36817f7183619c30c39bdf57e2e70f87cd7ac5eb1f33d6d2244627695483ef165395990b21ee913012d47c5b9494d7c3cf095af5185d6bcd2bf3b41c48512753

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 62f96f1a533fc9224601c272edc063d0
SHA1 7a6656873de157a6de843a4cc0e6d1ed003c39fd
SHA256 86e816797ddfe13b1ce4acb3471a314ff39d331562b5e7a81bfc2889f75ec2b9
SHA512 07516642b4057c64f68d7e69674f17a68e08befa38e4e6ea30402966806cea8b45b0ecea9b5a1d853cf1c581cf2bdb5f57a317ff34ccef522dee448f13dea229

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 2dd201e972a85a111550869edfa5a047
SHA1 b70d4a06b67cef94992a65db6e0f8ef717cee17e
SHA256 12bca98859ccb80ce4a5e90f7e73ab4fd1c68f9c2e1d731709b8ae5cd25f6d5c
SHA512 998b31b050e4ed9bfc3d932a7ff01b233e20aea756b316623dc5eda6d8677a03f7952afc3c146ed832fa1c9435870da0631e7c80b09c6f2af30097c267ddf0fd

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 b2b428af2896f76daf3638eeb2558264
SHA1 47b4c175e2ae3723d39a5eb10b04ad037e96deb0
SHA256 a61346bca0a3a3111e1bc273f9a93f52cab67e4169bc138d974061cb0b011a23
SHA512 371c4f1a1a5dd7a969ae12328fde042933413983e46614017aca9d5cb06697db4f7f3f53cea4d8816a8cadc16c2d602ab11672808b806505afdabf5a4539ed80

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0

MD5 dd9f8f2396dd8056d54b10a2f061f715
SHA1 38acd27f2d0e235b1a824809e4b87a7fb37c5bb5
SHA256 ec60efe286fcceb5e9ebd6b214a59b1f11269f61d86123133c74186303ca6fc6
SHA512 5a608e5f2b4553465d11e84ee27bbcaa8b8da88e2ee7dc615ccee5ef23beaf3ecc24533cc78d7ca745b0babfb55b01b3b4d463ffe0ff5dea02b66f91931be739

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0

MD5 00044f92d371f0b44237c95dc4ae7a65
SHA1 a0a4b4c9d7c7dd016cd5ccf61aff7639e34a02bb
SHA256 16442772f6930455f12d8e47006eebe46338d1ec97afef652c719a9c209a1529
SHA512 3c4aae34f42de55bb09a4af31650cb3ea738448b8afad124f9bfb85f072b101522c7d06485ca5e74c7605ca4db856bf17314d5649c4141c014e9e9d4b5e620b4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0

MD5 2eb1f22927e3faa153fad4246a14d201
SHA1 56ce6a92e432d1046b9c988e503695bf99f611fa
SHA256 cd035527ee076faf85c1d1b08c968f52d574d22a93f1a1304c7e290f455496e3
SHA512 22f2666f9421f9d99f9a6d3dd2f0357c4bf8d919cf5994dce5b88a41daebd2a7396f92020ecde37de9338510088de7f3a90fcd3fd5b1c6d885e7a4edb55d3907

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 076827f903d388c9aff20ee975343131
SHA1 5edc4b5bef169c34899646f080c95bbf059ba698
SHA256 6725698741ee8419c40e8e6e52f0e0dbe9e0cab8f325068d201757f637eb097a
SHA512 bf76c6d2c2147c4da65978745c959624ea899f177dbf16831413f9c25525f861629aba931c8b3d2edafaeb5a8fbd14b155b8cbffacbce686b50f4c8c4bd40d21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\632e260441be7404_0

MD5 30b575b35ef986f97f17a23a4d54b86f
SHA1 f92e10adc576947df0f32ca2fc67e0fd6617b96e
SHA256 2d926a66bd9e2c8c1a057711fa78e8e0b12946e42e7a1457dae2ab94f4242365
SHA512 6d07a3c28af50d6f173e18db38a35b0eaedc37ba45d335339c1ba9a07d68267c5372b4d319eeb5d3f48ab95b69a11d6c785f5c06bce2b9d3a9d50c83e61c51cd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\68d07aabfc3db202_0

MD5 079bec8da0712995a59553b546670a17
SHA1 b4ec887d1db2fdc03092100911c5701c40833c93
SHA256 9b3f691083ed6a6365fca6232e1ffee98df6f19316fd24355763f0615df59882
SHA512 84fba1120fe14fe4d1559ed25f2b54068ff7ddc1c7499267b1450e22d7adb7c1ed51913826bda1751de5df84aae5a652636e64f604783df1197bf8001717aa64

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1927a26afb9a8b4a_0

MD5 1a040dc4a7b1d3a7ce1801ff03458d83
SHA1 ebe5d6100b995056a8711ca39bd0df38be0de0b4
SHA256 9181fe954d08058816d2dac9f59b8b3fa46c53e34cf3e190faee387de5cf05db
SHA512 522b7cf2f2e97cdcff6aa4bc8b63a6954f99cceb07fb11fffbb217621f8973bc2d68606a93809024eada2d07de2a7b7aec559e28b94d4b22811d2cb70d886c72

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6d3b0ad57bdf7db9_0

MD5 086dae177f140539062d76873ac3fa89
SHA1 b2a0a7a55e3bd6770c2a286e9a552d20b9e6d1b5
SHA256 a6250448d79bf9c0b9d0b1ec3ffcc1672968721015558d7d17a0a33d9fc6f23b
SHA512 4f6bf408c9299ab23dbfcb72a7d348323244f9fbc5740f19edc764db32a6b1c7f73aae2c4e9f7c7267477c1307412e4dc864e99c578ae1551cf3609644fa479c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af2cfcaf6d9b18bc_0

MD5 74bf74d4debcf8f0889ef37391df080d
SHA1 61d30e4d011d170c662abd4d73489387cf45bf10
SHA256 b063be465eb8da71869f1ec7455d330a35c11a2f4598eb29ec017df0a38ad749
SHA512 cf05f6d90049ef024e94776965e13dbf040be3da9ec376424b9aefb58b69a7fc2ccb2bc1649da458832034f37fb25da03414dedf5802be00859524a4dcafaf9a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 44e65e1bf3519597d19eb7afe5053b2a
SHA1 384d219fbc94aaa7aaca9b389dce59bfc77ae03a
SHA256 c52672db54bcabad8d04b399e35da74b7972cf776bbaa7916a2f3aef9baadbd7
SHA512 cd592d9080231fc9ead32117c76054fb3b3733f720c21ed5080b35d789f2a0f366e15b41b18102bd6ff1a7c154b8a3df7305109c5570614b0d3c3dc4b3558248

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 be6dad15d65abf10b83d449ed6d99456
SHA1 2b81f6bd77b9e6e2566a2f762107cb00fcd0070e
SHA256 65a18fe6e9aaf78b40486390cf9877e21876691a56c57b950a10daedb94f00df
SHA512 b5df1640f4ef66c492d8b2d2ed8f4bdaac935f81f64ef0d86f9a25a5a658d7a25a03215d9db944f47b91c37be421b92732c7a68c6d24655b8766ed52f705ca72

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4bbe0fb20ef24ed7b7f665d0398a027e
SHA1 7ce5003a67256bd7e9d869a000cd1e034abf787f
SHA256 565f9ce20ef7960565c62180fa01e56890482bdac542d139a929169f014ec942
SHA512 82f95f4602e5a011c133931ac28a5d7b9f2d29dffd3a87cbe712f39ec9d531aa0e6a26211610746cf6b1d25c45866ef55697530dfbe628a9e663bce0b1da48ab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 137615c4a368bad5e1337b0c312f063d
SHA1 42e8406d53fd74ce273687351b1bc3508d0b2dbb
SHA256 5577e4a5a3a6dc4fb9b6c0f0203a016271f1c9a8d1f85cce29461209e81b7cea
SHA512 a362980e31eb4b5915720154af9dec7e5dd06508b3583cfe1005ac5912ccc61fcc2bb6b32750f7ad76bf6048b34a0c2136e23b9fb56d751d8a88978961ba9ce7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000c6

MD5 c44b750279fb20e097854da9e3364554
SHA1 0aeb6166cb8b0c37a03fbefa7b3c6505118df154
SHA256 74f8aa2de813d4dea9bf6f563c04a7324f5fdd970884959bf34e9110e21d76e5
SHA512 a18c9f917aec8e7a163bdcff96bdce052751f3c00f76b7113a3f49b6457d21323d433a17f8d2f2aee652e58cee9a69c946c4846821c5c23ab244c1371acad78d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000c1

MD5 c49153fbd613699caf2c52172413d6fe
SHA1 8f8da53edfe84cd7f041d30dced27967b4bc59d6
SHA256 62ccac6f2792c778235689beccbcb032f8b1d1bcf9d0653e76d67c347ff13b68
SHA512 cc447ef118778ecc81f678643466813813aa93cbd3230e2a0851828f7c2bc1bed6307bb3460be19ca376cf63b4ae85ace7a64938f3d4971dc01edd9f496b6dc8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000c5

MD5 0083e4349fa2659e9dda148cf84ab359
SHA1 4c07cdb864cf69647783d2d49e6889eefc4b7c59
SHA256 f6f813efd6ee86e96704b124001869a8aba7001c7343822c54aa0ffb30c51592
SHA512 69af8f082197831215492de898aa7a39d5aa6b743fbb3fe650f5b8940850f608513abd7d0fc33651970466be5b00f44e10fcd41d9f5f44c02c60b7c56b47745f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000cd

MD5 af2854ba8c3c90a6559ec9240f07014a
SHA1 35855956cce13396918a41f3ff85e27864cbb8bc
SHA256 0ad9bca7284f78b93368df4f82f9cf7bfba333f49f2ee4f1d1098c6f4d8eb043
SHA512 8d54a9eb379fb4b4f44f8d71c7498d0ab788578f6b49d8dd0f797efe171877bdc54f1ab2faed6ce931629b673b332667416586c6707ca019da57b3f6576ed3ca

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d0

MD5 3974fa105d64eb833d8b38c8dfd82332
SHA1 c021bd6b4063a558d39468e342e5d6df852bb75c
SHA256 b1c910c247f8ac50116fd28cdbf5fc3ca100b22f88994382bbd1c647eee185df
SHA512 899f3b9bb215ba26ecb99cd07241e8febbeabe4fbcfb5a25d57cca60d306ba99c0075e3ff741d0670f2d2baa4ff62eb0be31153ec69350277b862afe0459f53a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000c7

MD5 9441332e3873c9953e8c8eb6e49b8e9d
SHA1 11dfe8d14bdfdb33812059d863c5fcd8ed9139f3
SHA256 c64908c6d733fd775ef5449d76c90c5e9d67e29a63cae6cb5778a97e1c4bf3ac
SHA512 f0031d68d9a21ccc635c428561b399207807b8d500489cf482cb932b1b4db93d3e93c632db87dfabaed02adf425a93bc27d7ba90845820b46fdb9d9fb9d299dc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 a84de195601dc8588ad06c28d5ee530a
SHA1 1bce7ccb5b1bea64e174b2d4395f366fa5beefbc
SHA256 d9b5dc8fbba242b004ac5f2a36e4eb095d22c73a99c294a845b32ecd9d055140
SHA512 81998de6c5ab6e443986627c912e75b873c1887928f4f8e83d8b6f7976989eb7dcc516e78c269dcb56cd02a01016df819c7e5a08d4390a6a285ab8c17b1ed293

C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms

MD5 6c5455623668f751fb7a0f0ce4c521a7
SHA1 16da5ca285ba519677d231b9624e21d1f3520859
SHA256 c3b0d1d4570681b4e81d8f680bf3bd0a88104d4b736ff8abb257230edf756714
SHA512 db57ab8c59cb541151a651b83e195345c3fdabaa62080a03cef3fe8259e587677606a4af05f60eaeefc97454167c4097fb048ddf41ac2b650208926724337b9b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2a870b62ee9ed38271d84bfe691daee2
SHA1 2ad129e02c98fb180650e73c8f953e20bd294789
SHA256 7a63ac500a61d92246c4eda39efe3929a8cd0bff3a595723a57638c49c68528d
SHA512 8e065afcded067414663cca6f13d5ca66daa7f3904ad13b5a51a1f1fe0c994ea2a8ee417044ef20504f69c17c3f189cdacea954920ee0e499d472b4267a67cca

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 61b0141317e41025fed0d01c2fd8cb59
SHA1 03efd75fbf621aed5ef990135f670cd586c7399d
SHA256 4555256f241bfb5b051ebd397a59a227f67188cc06e6863c3dd6617897677764
SHA512 b64ce6c6e7dcd2bfb6c49db4dac63288ac28a396c695153d54cc11050b46388191077e669942aa20a3e11a989f2c3d02bb51e21ca9aebb994bd66c19bebe8b03

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 48a9ad2b4b225163dabba23b4ab9f62a
SHA1 ce85d9107e35442367cd6768e9e233467a7702e9
SHA256 28d839d6c05bc86ece233c65c6f629ca6502b25acd84081adcdf9325bf2797ec
SHA512 1ce0875a6c9e91059dcee95fd5c09fd862e37dfe828c14e99dd82b19449549d66d2eb921cf280a9a640d55a3bfe824efbe6bac5db7757cb0cfb3a6ef5c88ee8f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000d2

MD5 1aca735014a6bb648f468ee476680d5b
SHA1 6d28e3ae6e42784769199948211e3aa0806fa62c
SHA256 e563f60814c73c0f4261067bd14c15f2c7f72ed2906670ed4076ebe0d6e9244a
SHA512 808aa9af5a3164f31466af4bac25c8a8c3f19910579cf176033359500c8e26f0a96cdc68ccf8808b65937dc87c121238c1c1b0be296d4306d5d197a1e4c38e86

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0e26ce0757760f739a494deedb712840
SHA1 ad7ce26c2f277204b1842be3a351eed9dbe77984
SHA256 eaeab1a489069fdbb3ac75d91290f3ac6e6c11bbf629e11aaf2712501953b400
SHA512 84156000de3bf62223873df4823cedbaa2b53391f5ab4f0b87cd57c1eb3b3eaf8245f9d875e894ee0a57bc382320edbc32fd4052682dedf8199d6440f07d9bdc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 49ddb514e2dff9b9c0057b27bfb07135
SHA1 0e0b48fbac3c2dcdd68bf7fb474c4627c51ce6e6
SHA256 ef519ef1ba23f8d6ca82f08c0642b6b73eb010b3ef68cb398b52819dc33a1417
SHA512 f19ac6485d3de5cf7ca6e8858ac92ec2d0ce014fb91275085ad136d5cad543550fa026f5868bdb6c907e4292bb87a2d40c0dcc2782853456918c15da186dc4ef

C:\Users\Admin\Downloads\a693ba31-292c-42e2-b03b-8de6dc43c095.tmp

MD5 f275f72b431dc3d3f066a4892d62de09
SHA1 6b246a62699697d0a11bb6e3a11fc85e9f1731b6
SHA256 f7167f506ddd2d76329f7a8d77f235491bb75ca5825fa5176e8a5cf612b0e053
SHA512 078b06ea93e6eb307894b2df577442240d900426832a2333c80f4b0d45fd97d28a471d67ef8126f8cd07cdc4829a13646cb105954d5a283aeebdbe5458b5ba5b

C:\Users\Admin\Downloads\bonzi-buddy_softradar-com (1).EXE:Zone.Identifier

MD5 fbccf14d504b7b2dbcb5a5bda75bd93b
SHA1 d59fc84cdd5217c6cf74785703655f78da6b582b
SHA256 eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913
SHA512 aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 1684fc1bde72849f40946bd4f4bed5b7
SHA1 7bcc9057f794cb649e86151a6e9275f54d756403
SHA256 9dea193c0f4065d1991923d7b6f13499c0158a2614ad99f7980a1bd8d63f74a3
SHA512 1dc955d1a09504b741a7f3aa3ee18014f9b872d73f8a50bac8d3a6603ca6f3e3a0e320ee3168fdc504af1d21e04da775c7fe04c628737208197413f0d400a0b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 60c13760526d6363834c8ce035758219
SHA1 d6c2a528e354cc7033d4253caf350328226d2668
SHA256 da5ad34c042232c18f8bef72d243755efe4acbd29186cb5a1b33431610140fbc
SHA512 8e933bc26f02ef9b2812593d96d2ad13fdcfec603352f7cca5eb64a3c2b7bff63df659aade2e2944135cb3f7fbfae0ae7b69808667f77bc28bb74de07a589a2e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8a8004bf0f3dcc7c2e541ef327ceb74d
SHA1 b2679015daacc22626a708a4e3bac120653da508
SHA256 0cfc09545b11d3d87d32decda808372e1b5f3e12415d464142d0620a32e86ca7
SHA512 9dfb45667b079f24c43532beb43f677e4adc59048fabd759dd0d00b32b2e233308c526187781657e184b0e1223165ee02591fadf5efc3ea88b499ab967f62ed2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 042c398d52ca5ee2a9f3817515655952
SHA1 34fd67db11dec5d061bdf32e98167462b569c21f
SHA256 f37593f4ad033cf717bdbd8e9b66ea93e614c042abc4c1e7f33850e1710b6fb9
SHA512 2cee00f31be367d6d7aa40681330bc32437163cf1696776bd82b5a70406d571dedf44d3e4a11d437a05e3f20696ff7639503f7e5b420f824ac3df08c69819fcd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 384d48ce2a2678cd87471807cda0be0e
SHA1 1b5077ee42cf72121e7122305fe8cfeb7bbf7267
SHA256 739f40e9be97539186107432e60215175e093f729e9acac59424dd84063ca1c0
SHA512 b37175d698ee6b69858b363f14477ae1cfdee0bb8f4d27422a28fafc9712c093a7154663d3b9173cc4ce573c04d79dd91fe30ebccff4f8a14fb290adddf09831

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f5

MD5 015c126a3520c9a8f6a27979d0266e96
SHA1 2acf956561d44434a6d84204670cf849d3215d5f
SHA256 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
SHA512 02a20f2788bb1c3b2c7d3142c664cdec306b6ba5366e57e33c008edb3eb78638b98dc03cdf932a9dc440ded7827956f99117e7a3a4d55acadd29b006032d9c5c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 27174598a98e49924e588973508246f3
SHA1 6f42f3e20ef709018d3a231e7befe1a084d2004e
SHA256 f912e26a514717f039b02bba40d52f7ea3165294d755168343877cab7af59b27
SHA512 4753a933de23b6e5fc5c989bca810a7868a86e81627ab0403e87ac1e43792e33fa1c136f3c18c58b3b2675671baced497205c3739778466b645e39aa0fa8dd88

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a061db512ac38ed0_0

MD5 c7bb81b0fd75c516f043d2de03dcfca3
SHA1 00fa921ee07e24a130f0c87bf90c371590ad22e9
SHA256 82b6eecc175fd5bff780fa539a3999835d45f91af52c0a94ca478207d3243a6e
SHA512 0141e647521693424f6ecee118df190d09a04f71fea8c6d1467c4d176945f55085dc7fe75adec4df6f724a3732e107e598bf030e9e54e516d7165e0d66809e4c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f8

MD5 ba1bc252528a94df68abc4158c30a342
SHA1 fdafa2adda170ab9a2473aa741f5ed31a6f256f8
SHA256 fd8f7fd869509c751b5e841163cd4ff6dcd42d3fc5d884731f33d30ac647a1e4
SHA512 9c0c9b8322343f22f21a42426713c6a8f9a3f63f9bd9362eeca1d30fc4a4d911f828c480ab9b08f45d3c72565209356b1d916c2d8ca9ba6784651b37ccd32583

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d847261333951b2e_0

MD5 9719285eb9e7e95ce50ef4f035662299
SHA1 18e31ae32ffcab638f0f3c2959dc55a23bbbf621
SHA256 82e290cc647a13b0295f329977e070e61dcabf84101593c139e2b376164680e4
SHA512 470693f1929df7bcb43e0163a8f0cba7373a945f2138858b3ea57508b7848dc6c4b9fa62775e5d9ea33008c5280efe7f9ef549a7d9a1371daa70ccffc30ae4a9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 e7bb81f932b946854a6494ae20afc02e
SHA1 23c8bacdd2df351b5a13ee4236b2720d50ab4b15
SHA256 4144fb92a534e22b564b938f170b3e3b459b1d5d2110b38857e06b973e63354e
SHA512 59cb3471547c31735c5648e7f984f5bfa704e78facb6ff98ef5fb0ef5eabf8eb4bb2db878ef95c7a67fa2ddecf56d20d7dea13579bf332b95b9379155e3741f2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 bf92353000505aed162ba103c24478ba
SHA1 29332cc988d226f175db4d94dc90f22f2ba58b62
SHA256 1ea4a769965fbaa5a8f67e9942e3c87c7481cfb77ffbc937ef42e9661916660f
SHA512 4881af0c707173be5f46411aabff9a1a1e50e9d6b740624a909d003dfc4fb096c9e52b1c3e3d8a978e12628028c794f33ee336bc5324869894c69834a80083dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5bba829fd48d7eb6238e6382a0c72c8d
SHA1 ec2ea3bc479c71f57fd446823a2ff64bbbc546a6
SHA256 477db7013d26c5b778a2fb4b0ffdb14796917bdcd39253513227acddbcc2f00d
SHA512 d68d639a9b6ca4d5239078a4b7b20670328035d4ad45dde6269c6d6e086fd26bb84292ab8ee2fe57249dbf61e89859923e4be54f21aad6c99fea4d6e06b94951

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 8ce2e10f16a3279b58d1780192539b67
SHA1 eae25f221052a6552dc58f0f45727f4772f6f472
SHA256 998af684cbb284eec3a4eb1b590203036f4cf9849f342e03d92cf21670ceddb3
SHA512 c11c154b9136dda908b4751a477fcaac455077706c850bc3c1379f83af34633a293bd3913951e53870d3010d53700caab5296c55852b06d2e001571458541ac6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2e6a5e69611aa019ebd81b13a03476f0
SHA1 2e0a8ba7c4c455911c8d2aaeaaf24a2515e05064
SHA256 343066076bd30963b6e494184d68c8b0d8ca4053aff16f73e62cbffdd3532972
SHA512 e9f521cc34dddb9c30bbc38d558f3526238e2dbae0627c01dda1759dbf6288802a79c63f4760aec5d368bdda6d88c017dda057c8f30da3b375f4cea659c6ec8a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 33e04ee2169ae5f5a7710080f74b9000
SHA1 55eec395530db2010a2bae746e0d4da444497f00
SHA256 9229a0b46cc89476fbae630a0de14843b4cdfc9a2fd0a3c56cfd5a33bbb5c27d
SHA512 da1dd5c8e090f45b1759295ac7097879660809a6189c4fd81c529840ac393b13fba98efb8dcbc08a8bf47e7db99e7d53f5802303c3cd370a080c32e3831a0a50

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000e1

MD5 99bf2bfde4386b5771124c8bbc5f78fe
SHA1 0693af16dea4beaa64959f839e0dce184bdbac3e
SHA256 a554b0610862444e6bb8e0c950f7317ad4060c3429dd36be8831eb044c5a89cf
SHA512 b80797db80b602901a17be495985316a2c9da7d4381f9629295222b651650b9c761d3452650fbaf39d42f13c89d29e148a7b98049b65dd73bcba3c650f384ff3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 12db38c0bde4154043db6bc604784412
SHA1 8742d5e453143bbb5ba705ad46e7d11a22313898
SHA256 cf1ed291d9c1705af4be021c9d36cf178688a0e531c2c3bfd5782141f19d4173
SHA512 d8ac81e472caad943bf838695c52812af53757bd4eeeb6078b37e8c96aeb0cc0f142415d55b297e1e98f5f54e2deb0693743833b8169e325bb885729bf5d9a59

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 502e7720d51d4ca0f1fd67e5f9d6c0e7
SHA1 f8fc9d0312cd3c48e57fb62216ae1f3b23f235d3
SHA256 324a816d602f090a138d664d32f9526f072ace40403981db00d77b437a3f0b83
SHA512 b81263ec769d621ae21242c4f1425df3ffe06d70b4cf2202e124d5b98730e3f232ba6bb5e73c8b21f981ddba29efad8b0c99994cfda11760ecbf2ce66392fa72

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 3d0b4d806ee192760abfcc002be614b5
SHA1 53f7f6b585a34fae96e4d06532b2201116a9b9a8
SHA256 a7fc7f7ea174c9fe90deea17e1de92896e1ac6c6bda442f1a722cf715354f5bd
SHA512 3640a0e3dc6e9f4530390188eb464e7e332424919ab1fd2fdb54b5e6b35cb5016a59e991c5ea881bae3fc2d602cf47b082755919a5a309c9e35d4a521f41b05d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c7beff724d26bfa19b8e20b8da161546
SHA1 d28bde6d85b5c029ad1a1f7211cb263dc8feba38
SHA256 22507424b31dae977ef6fb352cd6ade9dfb9bf04319557669e6d9e37043d30ee
SHA512 930fb646d1de9167cfe91149f134d72db5a471379d47f6e798cc7c562470fe1c2480eef7dc6830d1caa43d8ae3058022944b12535a021c4e5cb0b71b094e9e6f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 e88291c3d2a065d784e3b20e5a3dc081
SHA1 196bb4732fabf558cf2b25c94120c67b2a0a3673
SHA256 6eba558afd6fde5d598608f26bfe3cb2d83b0219053b42108297470514b82493
SHA512 8b01884d9365a99f7a34704833fb45aee0ec571744500f87aaf307dbcbc9b4d98db0495b0dfa1e0ba4176521f72ccf91c52e6b2249e174e0ad07caabd8f3bab8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 df2abd9e41609decce19d56b8f8bbeaa
SHA1 47b252df131b006cbf592c9c5b1f461d4acc9c96
SHA256 8b6f4d5d58026b591438aafef53ea92c18bd951a0c238e53de6b39128386f663
SHA512 6670cf6d36a8214daa6a41b00ce5df4c4892a2d6806c2a8d59216ba5efbeff5b4ebb016036bd78b049706db0a9160c74a345aa47bb7f9b879f03fba6babc4367

C:\Users\Admin\AppData\Roaming\bonzibuddy\Local Storage\leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23