Malware Analysis Report

2025-01-19 00:27

Sample ID 240529-b8l76sdf21
Target https://grrreeengirls.fun/?u=dl8p605&o=vp9k9z7&t=fuckinmycityu&cid=0
Tags
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

Threat Level: Known bad

The file https://grrreeengirls.fun/?u=dl8p605&o=vp9k9z7&t=fuckinmycityu&cid=0 was found to be: Known bad.

Malicious Activity Summary


Enumerates system info in registry

Modifies registry class

Suspicious behavior: EnumeratesProcesses

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-29 01:48

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-29 01:48

Reported

2024-05-29 01:51

Platform

win10v2004-20240426-en

Max time kernel

149s

Max time network

156s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://grrreeengirls.fun/?u=dl8p605&o=vp9k9z7&t=fuckinmycityu&cid=0

Signatures

Enumerates system info in registry

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-540404634-651139247-2967210625-1000\{59B364AB-9873-4F69-AD47-0FFE4C7A43B0} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1360 wrote to memory of 4420 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 4420 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3772 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 208 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 208 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1360 wrote to memory of 3964 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://grrreeengirls.fun/?u=dl8p605&o=vp9k9z7&t=fuckinmycityu&cid=0

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xe0,0x108,0x7ffa604a46f8,0x7ffa604a4708,0x7ffa604a4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2148 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2212 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2880 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5176 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5176 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5228 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5336 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5404 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5824 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5680 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5840 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5556 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5824 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3916 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6020 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6416 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3616 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7112 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6808 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6696 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7232 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7528 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7664 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7676 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8312 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8296 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8732 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8800 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8520 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7820 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8584 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5916 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4600 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8488 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7496 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9164 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9300 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9224 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9532 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9564 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2136,3749485346922300961,14077501608385054824,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6516 /prefetch:2

Network

Country Destination Domain Proto
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 grrreeengirls.fun udp
CH 185.155.184.8:443 grrreeengirls.fun tcp
CH 185.155.184.8:443 grrreeengirls.fun tcp
CH 185.155.184.8:443 grrreeengirls.fun tcp
CH 185.155.184.8:443 grrreeengirls.fun tcp
US 8.8.8.8:53 13.86.106.20.in-addr.arpa udp
US 8.8.8.8:53 0.205.248.87.in-addr.arpa udp
US 8.8.8.8:53 8.184.155.185.in-addr.arpa udp
US 8.8.8.8:53 67.31.126.40.in-addr.arpa udp
US 8.8.8.8:53 42.215.58.216.in-addr.arpa udp
CH 185.155.184.8:443 grrreeengirls.fun tcp
CH 185.155.184.8:443 grrreeengirls.fun tcp
US 8.8.8.8:53 67.214.58.216.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 228.249.119.40.in-addr.arpa udp
US 8.8.8.8:53 217.106.137.52.in-addr.arpa udp
US 8.8.8.8:53 localdatez.com udp
CH 185.155.186.43:443 localdatez.com tcp
US 8.8.8.8:53 fdatajsext.com udp
DE 136.243.216.252:443 fdatajsext.com tcp
US 8.8.8.8:53 43.186.155.185.in-addr.arpa udp
US 8.8.8.8:53 252.216.243.136.in-addr.arpa udp
US 8.8.8.8:53 56.126.166.20.in-addr.arpa udp
US 8.8.8.8:53 26.165.165.52.in-addr.arpa udp
US 8.8.8.8:53 240.221.184.93.in-addr.arpa udp
NL 23.62.61.97:443 www.bing.com tcp
US 8.8.8.8:53 97.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 r.bing.com udp
US 8.8.8.8:53 th.bing.com udp
NL 23.62.61.194:443 th.bing.com tcp
NL 23.62.61.194:443 th.bing.com tcp
NL 23.62.61.194:443 th.bing.com tcp
NL 23.62.61.194:443 th.bing.com tcp
US 8.8.8.8:53 194.61.62.23.in-addr.arpa udp
US 8.8.8.8:53 login.microsoftonline.com udp
IE 20.190.159.23:443 login.microsoftonline.com tcp
US 8.8.8.8:53 aefd.nelreports.net udp
US 2.17.251.10:443 aefd.nelreports.net tcp
US 2.17.251.10:443 aefd.nelreports.net tcp
US 8.8.8.8:53 temp-mail.org udp
US 172.67.73.98:443 temp-mail.org tcp
US 172.67.73.98:443 temp-mail.org tcp
US 2.17.251.10:443 aefd.nelreports.net udp
US 8.8.8.8:53 98.73.67.172.in-addr.arpa udp
US 8.8.8.8:53 10.251.17.2.in-addr.arpa udp
US 8.8.8.8:53 static.cloudflareinsights.com udp
US 8.8.8.8:53 cdn.paddle.com udp
US 8.8.8.8:53 cdn4.buysellads.net udp
US 8.8.8.8:53 web2.temp-mail.org udp
US 172.67.73.98:443 web2.temp-mail.org tcp
US 8.8.8.8:53 72.214.58.216.in-addr.arpa udp
US 104.16.79.73:443 static.cloudflareinsights.com tcp
US 172.66.43.196:443 cdn.paddle.com tcp
GB 159.65.211.77:443 cdn4.buysellads.net tcp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
FR 142.250.179.66:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 stats.g.doubleclick.net udp
BE 64.233.166.157:443 stats.g.doubleclick.net tcp
BE 64.233.166.157:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 194.18.217.172.in-addr.arpa udp
US 8.8.8.8:53 238.75.250.142.in-addr.arpa udp
US 8.8.8.8:53 73.79.16.104.in-addr.arpa udp
US 8.8.8.8:53 77.211.65.159.in-addr.arpa udp
US 8.8.8.8:53 196.43.66.172.in-addr.arpa udp
US 8.8.8.8:53 66.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 services.bingapis.com udp
US 13.107.5.80:443 services.bingapis.com tcp
US 8.8.8.8:53 btloader.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
US 8.8.8.8:53 static.vidazoo.com udp
US 172.67.41.60:443 btloader.com tcp
US 172.64.154.78:443 static.vidazoo.com tcp
GB 18.165.153.192:443 c.amazon-adsystem.com tcp
FR 142.250.201.162:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 api.btloader.com udp
US 8.8.8.8:53 ad-delivery.net udp
US 172.67.69.19:443 ad-delivery.net tcp
US 172.67.69.19:443 ad-delivery.net tcp
US 8.8.8.8:53 157.166.233.64.in-addr.arpa udp
US 8.8.8.8:53 80.5.107.13.in-addr.arpa udp
US 8.8.8.8:53 60.41.67.172.in-addr.arpa udp
US 8.8.8.8:53 78.154.64.172.in-addr.arpa udp
US 8.8.8.8:53 192.153.165.18.in-addr.arpa udp
US 8.8.8.8:53 19.69.67.172.in-addr.arpa udp
FR 142.250.201.162:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 srv.buysellads.com udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 prebid.media.net udp
US 8.8.8.8:53 pbjs.e-planning.net udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 script.4dex.io udp
US 8.8.8.8:53 hb.yellowblue.io udp
US 8.8.8.8:53 rt.marphezis.com udp
US 8.8.8.8:53 mp.4dex.io udp
US 8.8.8.8:53 tlx.3lift.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 exchange.cootlogix.com udp
US 8.8.8.8:53 prg.smartadserver.com udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 152.42.150.143:443 srv.buysellads.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
US 34.120.63.153:443 prebid.media.net tcp
NL 193.3.178.3:443 pbjs.e-planning.net tcp
US 178.128.135.204:443 rt.marphezis.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 137.184.76.2:443 exchange.cootlogix.com tcp
US 104.18.34.178:443 mp.4dex.io tcp
DE 37.252.171.85:443 ib.adnxs.com tcp
GB 18.172.89.11:443 hb.yellowblue.io tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
DE 3.124.64.248:443 tlx.3lift.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
FR 185.86.139.95:443 prg.smartadserver.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 172.67.75.241:443 script.4dex.io tcp
DE 51.89.9.253:443 onetag-sys.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
US 8.8.8.8:53 c.4dex.io udp
US 35.241.34.106:443 c.4dex.io tcp
US 35.241.34.106:443 c.4dex.io tcp
US 35.241.34.106:443 c.4dex.io tcp
US 35.241.34.106:443 c.4dex.io tcp
US 35.241.34.106:443 c.4dex.io tcp
US 35.241.34.106:443 c.4dex.io tcp
US 172.67.75.241:443 script.4dex.io tcp
US 8.8.8.8:53 cadmus.script.ac udp
US 104.18.22.145:443 cadmus.script.ac tcp
US 130.211.23.194:443 api.btloader.com tcp
US 8.8.8.8:53 apps.identrust.com udp
NL 23.63.101.153:80 apps.identrust.com tcp
US 8.8.8.8:53 153.63.120.34.in-addr.arpa udp
US 8.8.8.8:53 8.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 178.34.18.104.in-addr.arpa udp
US 8.8.8.8:53 143.150.42.152.in-addr.arpa udp
US 8.8.8.8:53 3.178.3.193.in-addr.arpa udp
US 8.8.8.8:53 241.75.67.172.in-addr.arpa udp
US 8.8.8.8:53 11.89.172.18.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 151.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 95.139.86.185.in-addr.arpa udp
US 8.8.8.8:53 85.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 248.64.124.3.in-addr.arpa udp
US 8.8.8.8:53 253.9.89.51.in-addr.arpa udp
US 8.8.8.8:53 2.76.184.137.in-addr.arpa udp
US 8.8.8.8:53 204.135.128.178.in-addr.arpa udp
US 8.8.8.8:53 145.22.18.104.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 14.20.162.3.in-addr.arpa udp
US 130.211.23.194:443 api.btloader.com udp
US 178.128.135.204:443 rt.marphezis.com tcp
US 8.8.8.8:53 static.criteo.net udp
US 178.128.135.204:443 rt.marphezis.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 8.8.8.8:53 c103354bc22d689e77754ae11afc4f9b.safeframe.googlesyndication.com udp
US 35.241.34.106:443 c.4dex.io udp
US 8.8.8.8:53 194.23.211.130.in-addr.arpa udp
US 8.8.8.8:53 134.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 71.159.190.20.in-addr.arpa udp
US 8.8.8.8:53 153.101.63.23.in-addr.arpa udp
US 8.8.8.8:53 106.34.241.35.in-addr.arpa udp
US 8.8.8.8:53 167.154.64.172.in-addr.arpa udp
US 8.8.8.8:53 3.1.250.178.in-addr.arpa udp
FR 216.58.214.161:443 c103354bc22d689e77754ae11afc4f9b.safeframe.googlesyndication.com tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
US 8.8.8.8:53 secure.adnxs.com udp
NL 185.89.211.84:443 secure.adnxs.com tcp
NL 185.89.211.84:443 secure.adnxs.com tcp
NL 185.89.211.84:443 secure.adnxs.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
FR 142.250.179.97:443 tpc.googlesyndication.com tcp
US 8.8.8.8:53 contextual.media.net udp
US 8.8.8.8:53 qsearch-a.akamaihd.net udp
US 8.8.8.8:53 hblg.media.net udp
US 8.8.8.8:53 warp.media.net udp
BE 23.55.96.24:443 contextual.media.net tcp
GB 2.21.188.27:443 warp.media.net tcp
GB 2.21.188.27:443 warp.media.net tcp
GB 2.21.188.27:443 warp.media.net tcp
BE 2.17.107.83:443 qsearch-a.akamaihd.net tcp
BE 2.17.107.83:443 qsearch-a.akamaihd.net tcp
US 8.8.8.8:53 161.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 84.211.89.185.in-addr.arpa udp
US 8.8.8.8:53 97.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 24.96.55.23.in-addr.arpa udp
US 8.8.8.8:53 27.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 83.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 gum.criteo.com udp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 ams3-ib.adnxs.com udp
US 8.8.8.8:53 lg3.media.net udp
US 8.8.8.8:53 mybestsearches.com udp
US 8.8.8.8:53 media.net udp
US 8.8.8.8:53 csm.nl3.eu.criteo.net udp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
NL 178.250.1.25:443 csm.nl3.eu.criteo.net tcp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 25.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 dnacdn.net udp
US 8.8.8.8:53 ag.gbc.criteo.com udp
US 8.8.8.8:53 gem.gbc.criteo.com udp
NL 178.250.1.11:443 dnacdn.net tcp
NL 185.235.87.141:443 gem.gbc.criteo.com tcp
FR 185.235.86.193:443 ag.gbc.criteo.com tcp
US 8.8.8.8:53 eus.rubiconproject.com udp
US 8.8.8.8:53 ads.pubmatic.com udp
US 8.8.8.8:53 acdn.adnxs.com udp
US 8.8.8.8:53 sync.cootlogix.com udp
US 8.8.8.8:53 eb2.3lift.com udp
GB 2.21.188.239:443 ads.pubmatic.com tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
DE 51.89.9.253:443 onetag-sys.com udp
US 8.8.8.8:53 visitor.omnitagjs.com udp
BE 23.55.98.169:443 eus.rubiconproject.com tcp
FR 185.255.84.152:443 visitor.omnitagjs.com tcp
US 76.223.111.18:443 eb2.3lift.com tcp
US 192.81.208.46:443 sync.cootlogix.com tcp
US 192.81.208.46:443 sync.cootlogix.com tcp
US 8.8.8.8:53 141.87.235.185.in-addr.arpa udp
US 8.8.8.8:53 193.86.235.185.in-addr.arpa udp
US 8.8.8.8:53 image6.pubmatic.com udp
US 8.8.8.8:53 token.rubiconproject.com udp
NL 198.47.127.19:443 image6.pubmatic.com tcp
NL 69.173.156.148:443 token.rubiconproject.com tcp
US 8.8.8.8:53 gum.aidemsrv.com udp
US 104.17.44.93:443 gum.aidemsrv.com tcp
US 8.8.8.8:53 player.aniview.com udp
US 2.17.251.37:443 player.aniview.com tcp
US 8.8.8.8:53 108.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 169.98.55.23.in-addr.arpa udp
US 8.8.8.8:53 239.188.21.2.in-addr.arpa udp
US 8.8.8.8:53 18.111.223.76.in-addr.arpa udp
US 8.8.8.8:53 152.84.255.185.in-addr.arpa udp
US 8.8.8.8:53 46.208.81.192.in-addr.arpa udp
US 8.8.8.8:53 19.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 93.44.17.104.in-addr.arpa udp
US 8.8.8.8:53 ssc-cms.33across.com udp
US 67.202.105.23:443 ssc-cms.33across.com tcp
US 8.8.8.8:53 secure-assets.rubiconproject.com udp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
BE 104.68.78.171:443 secure-assets.rubiconproject.com tcp
FR 91.134.110.133:443 ssbsync.smartadserver.com tcp
US 8.8.8.8:53 dis.criteo.com udp
US 8.8.8.8:53 api-2-0.spot.im udp
US 8.8.8.8:53 creativecdn.com udp
US 8.8.8.8:53 x.bidswitch.net udp
US 8.8.8.8:53 sync.1rx.io udp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 match.prod.bidr.io udp
US 8.8.8.8:53 image8.pubmatic.com udp
US 8.8.8.8:53 b1sync.zemanta.com udp
NL 185.184.8.90:443 creativecdn.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
IE 34.254.84.230:443 match.prod.bidr.io tcp
NL 178.250.1.9:443 dis.criteo.com tcp
NL 198.47.127.18:443 image8.pubmatic.com tcp
GB 18.172.89.97:443 api-2-0.spot.im tcp
US 8.8.8.8:53 sync.srv.stackadapt.com udp
US 52.71.153.127:443 sync.srv.stackadapt.com tcp
US 8.8.8.8:53 sync.aniview.com udp
US 8.8.8.8:53 rtb.mfadsrvr.com udp
US 8.8.8.8:53 cs-server-s2s.yellowblue.io udp
US 8.8.8.8:53 jadserve.postrelease.com udp
US 8.8.8.8:53 ap.lijit.com udp
US 96.46.186.182:443 sync.aniview.com tcp
IE 52.211.179.172:443 ap.lijit.com tcp
US 3.86.126.94:443 cs-server-s2s.yellowblue.io tcp
IE 54.74.38.144:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 cs.admanmedia.com udp
DE 18.185.212.175:443 rtb.mfadsrvr.com tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
US 80.77.87.163:443 cs.admanmedia.com tcp
US 8.8.8.8:53 37.251.17.2.in-addr.arpa udp
US 8.8.8.8:53 23.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 171.78.68.104.in-addr.arpa udp
US 8.8.8.8:53 133.110.134.91.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 230.84.254.34.in-addr.arpa udp
US 8.8.8.8:53 18.127.47.198.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 97.89.172.18.in-addr.arpa udp
US 8.8.8.8:53 127.153.71.52.in-addr.arpa udp
US 8.8.8.8:53 172.179.211.52.in-addr.arpa udp
US 8.8.8.8:53 144.38.74.54.in-addr.arpa udp
US 8.8.8.8:53 182.186.46.96.in-addr.arpa udp
US 8.8.8.8:53 94.126.86.3.in-addr.arpa udp
US 8.8.8.8:53 175.212.185.18.in-addr.arpa udp
US 8.8.8.8:53 id.rlcdn.com udp
US 8.8.8.8:53 bttrack.com udp
US 8.8.8.8:53 sync.search.spotxchange.com udp
US 35.244.174.68:443 id.rlcdn.com tcp
US 192.132.33.67:443 bttrack.com tcp
US 8.8.8.8:53 pixel-sync.sitescout.com udp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 8.8.8.8:53 67.33.132.192.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 52.223.40.198:443 match.adsrvr.org tcp
US 64.74.236.127:443 b1sync.zemanta.com tcp
US 64.74.236.127:443 b1sync.zemanta.com tcp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 127.236.74.64.in-addr.arpa udp
CH 185.155.186.43:443 localdatez.com tcp
US 8.8.8.8:53 yoursecrethookup.com udp
US 104.21.50.103:443 yoursecrethookup.com tcp
US 104.21.50.103:443 yoursecrethookup.com tcp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 8.8.8.8:53 static.yoursecrethookup.com udp
GB 18.165.160.110:443 config.aps.amazon-adsystem.com tcp
GB 3.162.20.97:443 static.yoursecrethookup.com tcp
GB 3.162.20.97:443 static.yoursecrethookup.com tcp
GB 3.162.16.219:443 aax.amazon-adsystem.com tcp
US 8.8.8.8:53 103.50.21.104.in-addr.arpa udp
US 8.8.8.8:53 secure.cdn.fastclick.net udp
US 8.8.8.8:53 cdn.hadronid.net udp
US 8.8.8.8:53 tags.crwdcntrl.net udp
GB 23.49.161.153:443 secure.cdn.fastclick.net tcp
US 104.22.52.173:443 cdn.hadronid.net tcp
GB 18.172.89.8:443 tags.crwdcntrl.net tcp
GB 3.162.20.97:443 static.yoursecrethookup.com tcp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 bcp.crwdcntrl.net udp
US 8.8.8.8:53 id.hadron.ad.gt udp
US 104.22.53.86:443 cdn.id5-sync.com tcp
IE 52.48.217.227:443 bcp.crwdcntrl.net tcp
US 104.22.4.69:443 id.hadron.ad.gt tcp
US 104.22.4.69:443 id.hadron.ad.gt tcp
NL 178.250.1.11:443 dnacdn.net tcp
US 8.8.8.8:53 prod.embut.manycomponents.com udp
US 8.8.8.8:53 script.anura.io udp
US 8.8.8.8:53 www.ipqscdn.com udp
US 8.8.8.8:53 upgrade-funnel.goat.manycomponents.com udp
US 104.21.50.103:443 yoursecrethookup.com tcp
US 52.203.213.85:443 prod.embut.manycomponents.com tcp
GB 35.176.81.85:443 script.anura.io tcp
US 172.67.132.1:443 www.ipqscdn.com tcp
US 172.67.132.1:443 www.ipqscdn.com tcp
US 34.228.182.179:443 upgrade-funnel.goat.manycomponents.com tcp
US 34.228.182.179:443 upgrade-funnel.goat.manycomponents.com tcp
US 8.8.8.8:53 97.20.162.3.in-addr.arpa udp
US 8.8.8.8:53 110.160.165.18.in-addr.arpa udp
US 8.8.8.8:53 219.16.162.3.in-addr.arpa udp
US 8.8.8.8:53 173.52.22.104.in-addr.arpa udp
US 8.8.8.8:53 153.161.49.23.in-addr.arpa udp
US 8.8.8.8:53 8.89.172.18.in-addr.arpa udp
US 8.8.8.8:53 86.53.22.104.in-addr.arpa udp
US 8.8.8.8:53 227.217.48.52.in-addr.arpa udp
US 8.8.8.8:53 1.132.67.172.in-addr.arpa udp
US 8.8.8.8:53 85.81.176.35.in-addr.arpa udp
FR 142.250.179.97:443 tpc.googlesyndication.com udp
BE 64.233.166.157:443 stats.g.doubleclick.net udp
NL 178.250.1.11:443 dnacdn.net tcp
FR 185.235.86.193:443 ag.gbc.criteo.com tcp
NL 185.235.87.141:443 gem.gbc.criteo.com tcp
US 8.8.8.8:53 www.google.com udp
FR 216.58.215.36:443 www.google.com tcp
US 8.8.8.8:53 id5-sync.com udp
US 8.8.8.8:53 lb.eu-1-id5-sync.com udp
DE 141.95.33.120:443 lb.eu-1-id5-sync.com tcp
DE 141.95.98.64:443 lb.eu-1-id5-sync.com tcp
US 8.8.8.8:53 85.213.203.52.in-addr.arpa udp
US 8.8.8.8:53 179.182.228.34.in-addr.arpa udp
US 8.8.8.8:53 69.4.22.104.in-addr.arpa udp
US 8.8.8.8:53 36.215.58.216.in-addr.arpa udp
US 8.8.8.8:53 mad-collective.apm.us-east-1.aws.found.io udp
US 18.204.141.221:443 mad-collective.apm.us-east-1.aws.found.io tcp
US 8.8.8.8:53 120.33.95.141.in-addr.arpa udp
US 8.8.8.8:53 64.98.95.141.in-addr.arpa udp
US 8.8.8.8:53 221.141.204.18.in-addr.arpa udp
US 8.8.8.8:53 a.ad.gt udp
US 104.22.4.69:443 a.ad.gt tcp
US 8.8.8.8:53 22.236.111.52.in-addr.arpa udp
US 8.8.8.8:53 message-storage.goat.manycomponents.com udp
US 34.228.182.179:443 message-storage.goat.manycomponents.com tcp
US 34.228.182.179:443 message-storage.goat.manycomponents.com tcp
US 8.8.8.8:53 cdn.yoursecrethookup.com udp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
GB 18.165.160.118:443 cdn.yoursecrethookup.com tcp
US 8.8.8.8:53 cdn.izooto.com udp
US 104.16.255.64:443 cdn.izooto.com tcp
US 8.8.8.8:53 api.prod.notifier.manycomponents.com udp
US 52.0.149.118:443 api.prod.notifier.manycomponents.com tcp
US 34.228.182.179:443 message-storage.goat.manycomponents.com tcp
US 8.8.8.8:53 moartraffic.engine.adglare.net udp
NL 95.211.140.208:443 moartraffic.engine.adglare.net tcp
US 8.8.8.8:53 moartraffic.cdn.adglare.net udp
NL 89.149.201.75:443 moartraffic.cdn.adglare.net tcp
US 8.8.8.8:53 touchhh.com udp
US 8.8.8.8:53 118.160.165.18.in-addr.arpa udp
US 8.8.8.8:53 64.255.16.104.in-addr.arpa udp
US 8.8.8.8:53 118.149.0.52.in-addr.arpa udp
US 8.8.8.8:53 208.140.211.95.in-addr.arpa udp
GB 18.172.89.14:443 touchhh.com tcp
US 8.8.8.8:53 75.201.149.89.in-addr.arpa udp
US 8.8.8.8:53 14.89.172.18.in-addr.arpa udp
US 8.8.8.8:53 go.moartraffic.com udp
US 52.86.83.175:443 go.moartraffic.com tcp
US 52.86.83.175:443 go.moartraffic.com tcp
NL 95.211.140.208:443 moartraffic.engine.adglare.net tcp
US 8.8.8.8:53 ads.moartraffic.com udp
GB 3.162.20.10:443 ads.moartraffic.com tcp
US 8.8.8.8:53 175.83.86.52.in-addr.arpa udp
US 8.8.8.8:53 10.20.162.3.in-addr.arpa udp
US 34.228.182.179:443 message-storage.goat.manycomponents.com tcp
US 8.8.8.8:53 qg4w6b3cfe6usgzd6d2zvocbje0ktjfl.lambda-url.us-east-1.on.aws udp
US 52.4.150.92:443 qg4w6b3cfe6usgzd6d2zvocbje0ktjfl.lambda-url.us-east-1.on.aws tcp
US 52.4.150.92:443 qg4w6b3cfe6usgzd6d2zvocbje0ktjfl.lambda-url.us-east-1.on.aws tcp
US 52.4.150.92:443 qg4w6b3cfe6usgzd6d2zvocbje0ktjfl.lambda-url.us-east-1.on.aws tcp
US 8.8.8.8:53 92.150.4.52.in-addr.arpa udp
US 8.8.8.8:53 s.pemsrv.com udp
US 8.8.8.8:53 a.magsrv.com udp
NL 95.211.229.246:443 s.pemsrv.com tcp
GB 89.187.167.6:443 a.magsrv.com tcp
US 8.8.8.8:53 s.magsrv.com udp
NL 95.211.229.245:443 s.magsrv.com tcp
US 8.8.8.8:53 6.167.187.89.in-addr.arpa udp
US 8.8.8.8:53 246.229.211.95.in-addr.arpa udp
US 8.8.8.8:53 245.229.211.95.in-addr.arpa udp
US 8.8.8.8:53 s3t3d2y8.afcdn.net udp
GB 195.181.164.19:443 s3t3d2y8.afcdn.net tcp
NL 95.211.229.246:443 s.pemsrv.com tcp
US 8.8.8.8:53 www.top5casualdating.co.uk udp
US 172.67.145.200:443 www.top5casualdating.co.uk tcp
US 8.8.8.8:53 19.164.181.195.in-addr.arpa udp
US 8.8.8.8:53 200.145.67.172.in-addr.arpa udp
US 8.8.8.8:53 api.compado.com udp
US 8.8.8.8:53 media.api-domain-compado.com udp
US 8.8.8.8:53 dynamic-template.b-cdn.net udp
GB 18.165.160.6:443 api.compado.com tcp
GB 18.165.160.56:443 media.api-domain-compado.com tcp
GB 18.165.160.56:443 media.api-domain-compado.com tcp
GB 18.165.160.56:443 media.api-domain-compado.com tcp
GB 143.244.38.136:443 dynamic-template.b-cdn.net tcp
GB 143.244.38.136:443 dynamic-template.b-cdn.net tcp
US 8.8.8.8:53 cdnjs.cloudflare.com udp
US 104.17.25.14:443 cdnjs.cloudflare.com tcp
US 8.8.8.8:53 56.160.165.18.in-addr.arpa udp
US 8.8.8.8:53 136.38.244.143.in-addr.arpa udp
US 8.8.8.8:53 14.25.17.104.in-addr.arpa udp
FR 142.250.179.66:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 js-agent.newrelic.com udp
US 8.8.8.8:53 igio17a3i8.execute-api.eu-central-1.amazonaws.com udp
US 162.247.243.39:443 js-agent.newrelic.com tcp
DE 3.126.203.158:443 igio17a3i8.execute-api.eu-central-1.amazonaws.com tcp
US 8.8.8.8:53 bam.nr-data.net udp
US 162.247.241.14:443 bam.nr-data.net tcp
GB 18.165.160.6:443 api.compado.com tcp
US 8.8.8.8:53 39.243.247.162.in-addr.arpa udp
US 8.8.8.8:53 158.203.126.3.in-addr.arpa udp
US 8.8.8.8:53 14.241.247.162.in-addr.arpa udp
US 8.8.8.8:53 6.160.165.18.in-addr.arpa udp
US 162.247.241.14:443 bam.nr-data.net tcp
US 162.247.241.14:443 bam.nr-data.net tcp
US 8.8.8.8:53 4.173.189.20.in-addr.arpa udp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 ecdc2754d7d2ae862272153aa9b9ca6e
SHA1 c19bed1c6e1c998b9fa93298639ad7961339147d
SHA256 a13d791473f836edcab0e93451ce7b7182efbbc54261b2b5644d319e047a00a7
SHA512 cd4fb81317d540f8b15f1495a381bb6f0f129b8923a7c06e4b5cf777d2625c30304aee6cc68aa20479e08d84e5030b43fbe93e479602400334dfdd7297f702f2

\??\pipe\LOCAL\crashpad_1360_QVFCVOVUDUNXWDIO

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 2daa93382bba07cbc40af372d30ec576
SHA1 c5e709dc3e2e4df2ff841fbde3e30170e7428a94
SHA256 1826d2a57b1938c148bf212a47d947ed1bfb26cfc55868931f843ee438117f30
SHA512 65635cb59c81548a9ef8fdb0942331e7f3cd0c30ce1d4dba48aed72dbb27b06511a55d2aeaadfadbbb4b7cb4b2e2772bbabba9603b3f7d9c8b9e4a7fbf3d6b6b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b02fa2af06293ba3c9cdf638e9069faf
SHA1 af68a11a8e5befc5fe82aa642af3a28e9843c09f
SHA256 c324d8ce420fa228067e5cd9bb2bea3cfad5ba375747867f2fcdce985eda4207
SHA512 7681c5e6c7e55efb63e89ddbde9786a8afd0d32ca4a38923ff9f64dbf2e1c43719cbf2a87064e387661ed375258199ee0c7e188b7edd1429b0d53400eb47cffb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 086a3f725893ee6591e3de1408e67d64
SHA1 a0dc2c4c8987dd17513ebe72256450571bb86740
SHA256 e2cea28eba0baaf5d59ed64da1d55ead205fd881d304de7a968577de78bb6ef0
SHA512 ff39ae993aaa3e9e29761e6213232d0cc6bfe0dde6e3a19ca005cb23c0e27c004d46cb7eb84e78dfb54c00034a3c524f8c51fb0df92e748a03d25b64ba8b9054

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f36c453f93be04f76bc9e5280688e8ff
SHA1 992e240c42a77fbf12708c9c85e04c6ae8e87e48
SHA256 6f440ab37e56e9c92e00ed48681fe40938d4bf329f065b6af2c69a28d69bd9bd
SHA512 7c3f77477d5a647b7116cb99053a9300aa3fe62ee2c8ecf8bd704288c0732b065261caedb462694e98ba733f7e9568a5d86ca4cca8a419a1129ffdd8fdd3a1bd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 fb57de4c5d1b53fe95144eebe36f2e5b
SHA1 d8b49013a4623009ffeb79fa942742998eacfced
SHA256 fc5b308083f98792b876133fc9e7f158e1f1258f923908fa696fddff6846e18b
SHA512 2c900d69059d3f93da488d5fa44790448f555c8ca06d8421629fdd69822afc945086163b95bbf1218f03d2fbec45b9cfbdf88d1778ac76971a0d879c6b9591e7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 9166dcc80ada0fd85aed994ace4c1a6e
SHA1 3063e167a9439849836a29509e3933babb0da260
SHA256 6069f0ebfdd64aaa42be8db2a775c33d1f3ab72be784c69d481c9cc243734c9f
SHA512 7a603597ddcbbabdde2ff877f1008ea2608dec5b9054e0652ec695f6c160e32c7f7af476c78cccfd67192230192b9c35ccb35ffa2c4081313197ea407d17f651

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 fdf5cc714370cc338998f65d9ce4c230
SHA1 d39fdc84bb705a56d69b7607ab9a9ec2c9e8e07c
SHA256 a50072aa07b0169ede7b1fa49a7fc1208e36906be840bee6a93fd62ce7c3237a
SHA512 a3e73ecae3103b52c04acf382c0363a26acd4a2bd18c1d41dab794d912a4b433acdcfaffaaa4681cae2a26f8e00e9a6abb12dc98c8a6ef8383f16cdba603cda1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57b46b.TMP

MD5 8b2693abf25469c52d89d22bc33674cb
SHA1 d628e1ebdb8f8adbf16debe3919b5ed3eeeed45d
SHA256 c80ab827172744e67b2bf7724320f26b873fbbefb9d4ee67f7abf06d5759b583
SHA512 52b03612989a83cfe5e84bc58bf2e36ffa2b08f8f630b02fbfb068773a030efb3c34e15238d4f0b9e1d759b82c2b60fd8941bc9ca44a0bee3bfd3606a0fd6b88

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 aef22fd93bad3648ec989ee2364cc865
SHA1 e48943044ffb6a1581cc353ee860bd726f3f9988
SHA256 fa1f9f3829fdad38bd2fcbe86f1e4f42293c6da50a0f771ac9f5ac6e5fd3b931
SHA512 c306b6e8edf23378331bf2a993b92ebdf0b258d307e0c4b92c68e02de307c2af9bd1bbf00037b2ca6815421f17f7a771ddbc35aef52cad7dafe5ac2278ce3728

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 dd9e037bede3a1345d8944762d99a683
SHA1 2adeb844b0b102c3f176a24fc152850376de2889
SHA256 aea720089e810005b0f9232812beca2d7528c0eb95321d8ba255a8aa1d4eaa03
SHA512 a3c7b054ff25c9b34aa8072105378176ecec0b09a425b637aadb1d958e8e2f3e58a192be871538e708f88c2a160c75d3b147d01b34caa070704c919d3855ed39

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 d81154529f499c3e205b36d10b70c726
SHA1 c74a548fdff567bfc8d25b7177b0c27fae1f96fd
SHA256 5f4eb797edeea0d0f46fb4858890d194133dc1da6203164af779c1b7c8a355f5
SHA512 88a78fc924ba66db363692e5921a9bf6cd6317c055bf09175d8831ef5bc72f6f3b8e470eabb58a19af5ec3e34e40e509f8c2da14947cd6cce8f355e8d53733dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 d41795e5b413107647d1a143ce50de84
SHA1 98541b88b295b7a6bac7090cbc547dc4d6f6a9ad
SHA256 52637cefd37e820f3369fbee27b246574304248dce320d2e61f8f34f39178e2d
SHA512 3874f22ba5630d65ce3d2898db62496e2fd958fc6af9d3418e39a31e9f12a6e4356ad09130b5459482f3a35276f6ad384b6d565ccd9b49c39f04d3d85a025b51

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 4ffa8523a3f71cc19336ebd8239fef6e
SHA1 9a789091c57cc2a4cf9779816d06089ae23271ba
SHA256 ec46cda52275aa7a3d4191842047f8e482c2deb5b39ca2fa0c2389a05af3c842
SHA512 08bf2ee3edd341d7eca28896fc113f3b5f37d3772248d6be891c09993dc9a8adb13ce82427dc8ab5a62f8790e148de24fa3f616224a9f96451e97aeffba13a2e

C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic

MD5 f3b25701fe362ec84616a93a45ce9998
SHA1 d62636d8caec13f04e28442a0a6fa1afeb024bbb
SHA256 b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209
SHA512 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 c00185b138a6fae3b3cbf8a6a7f55976
SHA1 fb0afcf0d068d6b305358fe14c8a1c733ef51f46
SHA256 e5712118b0c5aeff09ecc9b2d80c83e5b3419517fd0c6dbf888b42d9a69f0103
SHA512 0c71c663fb304279d9e85c949a8d44460f60ff2500cc7e684833a5882ed05b0fa32358700ef10ad4ecab23bffb88a34171c2529403fbc63e40d19c12a40166fe

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\070E0202839D9D67350CD2613E78E416

MD5 55540a230bdab55187a841cfe1aa1545
SHA1 363e4734f757bdeb89868efe94907774a327695e
SHA256 d73494e3446b02167573b3cde3ae1c8584ac26e15e45ac3ec0326708425d90fb
SHA512 c899cb1d31d3214fd9dc8626a55e40580d3b2224bf34310c2abd85d0f63e2dedaeae57832f048c2f500cb2cbf83683fcb14139af3f0b5251606076cdb4689c54

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7dde7bcd8c6a7edb1232091c47ce6fb6
SHA1 a9762b0f0c01e861bdfc2d98fb0212b99d02b930
SHA256 45895a00844e4e8ddeb222860ace3d417b6f5beab05547725ffa56a5bc54416c
SHA512 65d7989981317f57689159cf8c7e17674c64bcec31ab440cbee7a1e76f3cd172f7791d3040c459410c26fa32329aa78cdb1ac65db9f1caeb8e9237ad965dbcab

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 d899fd3b2b3f590541f34a099696c904
SHA1 4e13cbe68cbac0611f8fdef7f4e37524c18a3d6a
SHA256 7abd2756e189801ec6cb5e802ebf125fec2f436b356d39b9c60445ba108cf7eb
SHA512 46bf092bb7fe3fd1ee8227726893d976dc1a3b48443999fd20b26ea8df1747561782c56f2771e68a059f5604f0a47c35b158eb8e3a46def8291b5d9aeceb50ee

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000044

MD5 87e8230a9ca3f0c5ccfa56f70276e2f2
SHA1 eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7
SHA256 e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9
SHA512 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_yoursecrethookup.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003f

MD5 f8f13bff4b26b049320e8b55a2c14374
SHA1 16cd8ffe810e8ef727cf6eba5104fb5dd00c93d8
SHA256 8b637222f9e7c29951b46894dd8807edb5486bde899be1d663323f39789d63b0
SHA512 fcb6895bfabaf829543c79cdfffe344871143add84c79e8b496dc4f74fa82f1c0d89a1a711a65316bf32e00314708cc1880551d3b7c413dbec466b6d9d062ccf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003e

MD5 163af04706a017d204b20b9980d820ee
SHA1 e6f8ce461121c7e2b827489456a3d8d543a35fc7
SHA256 01c2c51025a2389bc160dde0a2b4766f0d2fd13b639e288d24565a1f0cf94c11
SHA512 aaf1cab542224d5e75c392b9733fb0a8a55035f8bd99130ce0b711c8c29618a6e062a7d46429a7f94b5b0d2428ee4ba779cc548ee7cecb9c1ca2f0e5fc279435

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000040

MD5 cfb45988a26817d393e4b6bbd6b009e3
SHA1 97abf4462ca7bd1d91f905a47cabfb18bfbd0af4
SHA256 7f24a3345c04cf2368a18c065feb7a307802cbfcc8a59e15aed25d8163f16b3c
SHA512 cd9827d7a48850cc52b1397334aba50d1aceebf572b9bd59822c4d03e0a3a865d52b296bc2d507a1448bd04a504b93a05d4fa656cf75990621a4e46250f105cd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000049

MD5 cd50d82e259a833652780e7558689f2e
SHA1 0c49bd3d5662f80eb797b0d8b20ca577b43c4efb
SHA256 b12bf333ba46c3733a253c2d3cc1d6bb07ee72d08ade8668aed159991451a777
SHA512 ca09f152d99e2de5609049043e5ef05961723430eb6f72f202300270177defb2050eefdd8db57bb712ce85c56db1e3d76366bff40ae02913c90958ed5a5677b9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 57b23715ec234e1b03ec4c78168146dc
SHA1 75e16c69a72ff17e68b4110a9933cc813509dd45
SHA256 b00831bf24921034a60d110d7b90184ecfad70cdc58023e301494f2a304b60c7
SHA512 783f741abf0582a82d89517b6fc4ba9706bf35a4e8a4c0cb62a1da771b900a82cafa4c6907125ed2de3a6bcd3a96aa24d7fd661f958895c04aa8133a90cd8893

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7206fa6d36c9415ae60d75e5ee7d0c02
SHA1 42838d7cfac8a0ea5dfa6d852225725b11469145
SHA256 de7e736fb6b1da59fef774d5a32338489198c294f1ffe9287ad95e6cbdd45d4a
SHA512 6702a214327b8e04bc8be349f19173d922f10e823fefa6e173f56d64b4a7daf409bd0b28d1111cec7b969ff12ace81bdad944a0337603b3540b9d181fdd56360

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 58b12b43227e7df1b8b9085d84cba3bb
SHA1 ee1d912e2c46d8d6ba6b134a78387f7338c2271d
SHA256 1373a4d52881c1bb53490d4d091f817acc91f6884683ebec81a52435fd3be889
SHA512 4f6763d610be680482651db1fffe19ef49ac35a607c617c8e007407145b39b6e7ec315d2c6d627320c4a7964f62beabdd18068362a321e6112fad55003a30999

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\9b2d590724f25d8ff81b754bd035b42ba08c688c\index.txt

MD5 a3e6d5a1cb931881c1770e211a1caea4
SHA1 a11aa75d7f8bccc8360f8cb362a652bd2ddd4ed2
SHA256 3371c28cb32f2e1248038290b48a047205536d40cdadab5e8dd8135b3833ce5b
SHA512 e378f61d076e613a0bc482c3d2a9683e8a3fe37c1bbc8b9ccdf7736f3f539001cbac9f58e01dee9ca3a33ce44b9135f6ed8aae5b4e1cc7fe22d90462ccc744be

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\9b2d590724f25d8ff81b754bd035b42ba08c688c\index.txt~RFe592a14.TMP

MD5 5b94fa6e0b2e91d20e62953608dae8ca
SHA1 bb036822774640f36fc01ad5f1a1bc629e717663
SHA256 50318b9e22d4fb754f7c54de40a5b77b4d85561a7b12ac66deda9a3b8a4453d1
SHA512 9c2db750454a4d040e6e306a0aee4a1a7f082033843af960157cd68526a8c930bd464a6f0179cada0fef6979488cedd7819678cd05367880d3c0648eec47cd9a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\9b2d590724f25d8ff81b754bd035b42ba08c688c\02bc72c5-84dc-4416-9734-39e98d802e8f\index-dir\the-real-index

MD5 a6eef781d1bc5b5fcd54fda0e17cb43b
SHA1 2245aaffe2a21be17bc319cb55be2731ca12fa90
SHA256 667a080ed6793ad7d58a4d7341fae999d8e14461b79052c47e1c5de3ed9cfc50
SHA512 eb702fc9838c7836c1dd1a22dae8563efed2e5213323c945229ed68549c9ed7f55ef48e964e01b96d3950ddb41bffaf6e9b86b9192d95dda891cfef6dd39492e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\9b2d590724f25d8ff81b754bd035b42ba08c688c\02bc72c5-84dc-4416-9734-39e98d802e8f\index-dir\the-real-index~RFe5929b6.TMP

MD5 1f6db5d1171e055cfd1d9a16ab285123
SHA1 84f1fea5439593c9cc427f47f1dd4007e92d25cc
SHA256 a7b1becc65784a07d69502dbef2e82ee0a92c69aeecf71caf83815b37f7e785d
SHA512 9cc4da4eba960917036918e1592b6ecf3a9c8c52dbb5da5a6874becf56fa2ee97d930612aec8faf57be517afa852667a6abbe0c7084c36cd42d17d62c9d74469

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\9626ce72-7608-481c-a781-659c83d322bf.tmp

MD5 41bacce38cfd3e82ec0cef6017e1e320
SHA1 2f79a2121c3c2886c34f3812d84945a0f04ba395
SHA256 2b93646e6ceedba83aebfd98be9bc70b8f7ff2903ff5915a3e5da7f8fa0512fd
SHA512 15c5bdbf3396e05c69950437d7ccc0a266ece4ab25316cf27103365d9883a136895d4ea238248c05179089e1b0bb8be9ff7399d0b17db7a5843ec6a437aad412

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 cd7fc52a507f97e8112b15725644fd8b
SHA1 2890543184418a9550d80914e0a05900c65a7111
SHA256 f8c17b38c6742a79193da3a4d01a9a0ff7cba33ab53d78dd6255286da09f1c4e
SHA512 1c0dd54479ee1eb16932ca20dc6d8fd68dc91601618e642bb04025d0627c387efb614ea6925db8f43c8cf4dd67e5edfcc453753f5c931431fd1bea0fa0685df0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe593f13.TMP

MD5 c9af6188cbd30d41cbb6d27a2a6dd6c5
SHA1 00448fbaaebe08c3f8d29bbc7b489b81cafed2c9
SHA256 5bc011654b3e71614bf5bf5d46e06c6886ef2ee740fa21e3f426b198f38143ee
SHA512 71b108e7851678737e3a40ada230f149c215035831f7ade1298cf9006ff654aed30a467fcbca895137da8ee27116bb61ee0c546e00b2c019fda7565f80617c95

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 724c0177db7898f02563eec960b4a363
SHA1 9aec8aea2c487ff2370ef325fe8def13ba1133d4
SHA256 77a82b20c57b53f1b2df3f7a2bb2cf73d4cc81e6ccb2c6193c06571965248087
SHA512 fc668373d7b37b6565b3abb5329558e0db6e46a7a9d517ffad3b50cc4f8888e41913e22f59fa58c6587c7bd41fc9a34b89608232417ff8ff78bdc6d54eb03531

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 054adbb570066c7f73ba4460b6af69cc
SHA1 fa65c642127e07cf506029f10916c48973512825
SHA256 06c7635de3283b2d1671b0fb12d74cbe7fb0bb5331c17b0248aa940a4c890077
SHA512 fcc93599ec2e47c9a50ed7bb6fa85a49a84d3f4e3aa8fe10e08620b09812c0a6e4749c5bc967098145b4b769019fd433e45a90f23fb917a54ecc944bd4e70291