Malware Analysis Report

2025-01-03 09:32

Sample ID 240604-rfx2zaad52
Target http://Google.com
Tags
bootkit persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

Threat Level: Likely malicious

The file http://Google.com was found to be: Likely malicious.

Malicious Activity Summary

bootkit persistence

Downloads MZ/PE file

Checks computer location settings

Executes dropped EXE

Legitimate hosting services abused for malware hosting/C2

Writes to the Master Boot Record (MBR)

Enumerates physical storage devices

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Checks SCSI registry key(s)

Enumerates system info in registry

Suspicious use of AdjustPrivilegeToken

Suspicious use of FindShellTrayWindow

Suspicious use of SendNotifyMessage

Suspicious use of SetWindowsHookEx

NTFS ADS

Suspicious behavior: EnumeratesProcesses

Suspicious use of WriteProcessMemory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-04 14:08

Signatures

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-04 14:08

Reported

2024-06-04 14:16

Platform

win10v2004-20240426-en

Max time kernel

453s

Max time network

455s

Command Line

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://Google.com

Signatures

Downloads MZ/PE file

Checks computer location settings

Description Indicator Process Target
Key value queried \REGISTRY\USER\S-1-5-21-3906287020-2915474608-1755617787-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\MEMZ.exe N/A
Key value queried \REGISTRY\USER\S-1-5-21-3906287020-2915474608-1755617787-1000\Control Panel\International\Geo\Nation C:\Users\Admin\Downloads\MEMZ.exe N/A

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A raw.githubusercontent.com N/A N/A
N/A raw.githubusercontent.com N/A N/A

Writes to the Master Boot Record (MBR)

bootkit persistence
Description Indicator Process Target
File opened for modification \??\PhysicalDrive0 C:\Users\Admin\Downloads\MEMZ.exe N/A

Enumerates physical storage devices

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000 C:\Windows\SysWOW64\Taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\SysWOW64\Taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_DADY&Prod_HARDDISK\4&215468a5&0&000000\FriendlyName C:\Windows\SysWOW64\Taskmgr.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 674950.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A
N/A N/A C:\Users\Admin\Downloads\MEMZ.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: SeDebugPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeSystemProfilePrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeCreateGlobalPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: 33 N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeDebugPrivilege N/A C:\Windows\SysWOW64\Taskmgr.exe N/A
Token: SeSystemProfilePrivilege N/A C:\Windows\SysWOW64\Taskmgr.exe N/A
Token: SeCreateGlobalPrivilege N/A C:\Windows\SysWOW64\Taskmgr.exe N/A
Token: 33 N/A C:\Windows\SysWOW64\Taskmgr.exe N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\SysWOW64\Taskmgr.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 1792 wrote to memory of 2624 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2624 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 5100 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 3872 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 3872 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 1792 wrote to memory of 2648 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://Google.com

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2060 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2128 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2888 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3248 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3264 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4724 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5180 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5180 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5300 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5440 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4840 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3452 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5836 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5912 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5728 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5856 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5484 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2636 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6204 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6532 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6580 /prefetch:8

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe"

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /watchdog

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /watchdog

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /watchdog

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /watchdog

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /watchdog

C:\Users\Admin\Downloads\MEMZ.exe

"C:\Users\Admin\Downloads\MEMZ.exe" /main

C:\Windows\SysWOW64\notepad.exe

"C:\Windows\System32\notepad.exe" \note.txt

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1972,7188249306918709370,833953220792873312,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5496 /prefetch:1

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /7

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://pcoptimizerpro.com/

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xfc,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2012 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2216 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=3020 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5068 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5068 /prefetch:8

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5248 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3504 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2004,15432968195767983285,7333292187973478437,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2208 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2812 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3360 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3692 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4080 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5280 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5280 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5324 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3616 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,6695395803135699332,6680178786428953895,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5428 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://motherboard.vice.com/read/watch-this-malware-turn-a-computer-into-a-digital-hellscape

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2216 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2284 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2856 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3468 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3536 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4432 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4212 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5240 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5424 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5044 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4200 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x2ec 0x30c

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6216 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6384 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6548 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6676 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5140 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7736 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2204,3783765748826640948,18308267545719386745,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7736 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=minecraft+hax+download+no+virus

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2136 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2544 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2924 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5008 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5348 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5348 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5532 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5544 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5688 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5732 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=internet+explorer+is+the+best+browser

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5464 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,15494033345621723072,13667579016833799437,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1528 /prefetch:1

C:\Windows\SysWOW64\Taskmgr.exe

"C:\Windows\System32\Taskmgr.exe"

C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe

"C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe"

C:\Windows\splwow64.exe

C:\Windows\splwow64.exe 12288

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe -k PrintWorkflow -s PrintWorkflowUserSvc

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=stanky+danky+maymays

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2208 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2964 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5060 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4000 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,3841060532522397712,12824471314522333029,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4000 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=is+illuminati+real

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x124,0x128,0x12c,0x100,0x130,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2220 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2284 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2980 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3180 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2208,8888335663839264885,17029647968285483612,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5044 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=john+cena+midi+legit+not+converted

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2204 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2256 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2900 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3384 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2192,3900727605249627297,6004741455833185904,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2184 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2132 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2900 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3364 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3376 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5044 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2120,32651627786057942,10433481149677945087,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5112 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=batch+virus+download

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2144 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2824 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3332 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2116,11406313248058958173,10159899258417186141,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5088 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=skrillex+scay+onster+an+nice+sprites+midi

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2080 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2184 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2452 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3288 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3296 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5004 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5164 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,16756380429531009109,11661132858089671879,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5164 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://softonic.com/

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2156 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2300 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2804 /prefetch:8

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3444 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3464 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5036 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3384 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5884 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2132,16686682235463489455,4917132423071966237,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5884 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=how+to+remove+memz+trojan+virus

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xec,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2124 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2484 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2980 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3248 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3264 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5100 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5100 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4036 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3448 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4416 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://softonic.com/

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5400 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5768 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=batch+virus+download

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x128,0x12c,0x130,0xf8,0x134,0x7ffaef7f46f8,0x7ffaef7f4708,0x7ffaef7f4718

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6004 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2100,13411563404726641475,10187454006502637809,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 google.com udp
GB 142.250.178.14:80 google.com tcp
GB 142.250.178.14:80 google.com tcp
US 8.8.8.8:53 8.8.8.8.in-addr.arpa udp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:80 www.google.com tcp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 14.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 85.177.190.20.in-addr.arpa udp
US 8.8.8.8:53 196.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 83.210.23.2.in-addr.arpa udp
US 8.8.8.8:53 183.142.211.20.in-addr.arpa udp
US 8.8.8.8:53 95.221.229.192.in-addr.arpa udp
US 8.8.8.8:53 ogs.google.com udp
US 8.8.8.8:53 apis.google.com udp
GB 142.250.187.238:443 ogs.google.com tcp
GB 172.217.16.238:443 apis.google.com tcp
US 8.8.8.8:53 ssl.gstatic.com udp
GB 172.217.169.3:443 ssl.gstatic.com tcp
US 8.8.8.8:53 195.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 238.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 238.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
GB 172.217.169.46:443 play.google.com udp
US 8.8.8.8:53 3.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 99.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 46.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 2.180.250.142.in-addr.arpa udp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 encrypted-tbn0.gstatic.com udp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com tcp
GB 142.250.178.14:443 encrypted-tbn0.gstatic.com udp
US 8.8.8.8:53 lh5.googleusercontent.com udp
GB 172.217.16.225:443 lh5.googleusercontent.com tcp
US 8.8.8.8:53 225.16.217.172.in-addr.arpa udp
US 8.8.8.8:53 id.google.com udp
GB 142.250.178.3:443 id.google.com tcp
US 8.8.8.8:53 i.ytimg.com udp
GB 172.217.169.54:443 i.ytimg.com tcp
GB 172.217.169.54:443 i.ytimg.com tcp
GB 172.217.169.54:443 i.ytimg.com tcp
US 8.8.8.8:53 3.178.250.142.in-addr.arpa udp
US 8.8.8.8:53 54.169.217.172.in-addr.arpa udp
US 8.8.8.8:53 www.youtube.com udp
GB 172.217.169.54:443 i.ytimg.com udp
US 8.8.8.8:53 en.wikipedia.org udp
NL 185.15.59.224:443 en.wikipedia.org tcp
NL 185.15.59.224:443 en.wikipedia.org tcp
US 8.8.8.8:53 upload.wikimedia.org udp
US 8.8.8.8:53 login.wikimedia.org udp
US 8.8.8.8:53 meta.wikimedia.org udp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
NL 185.15.59.240:443 upload.wikimedia.org tcp
US 8.8.8.8:53 224.59.15.185.in-addr.arpa udp
US 8.8.8.8:53 240.59.15.185.in-addr.arpa udp
GB 142.250.178.3:443 id.google.com udp
US 8.8.8.8:53 googleads.g.doubleclick.net udp
GB 216.58.204.66:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 static.doubleclick.net udp
US 8.8.8.8:53 jnn-pa.googleapis.com udp
GB 216.58.213.6:443 static.doubleclick.net tcp
GB 216.58.204.66:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 66.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 6.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 202.187.250.142.in-addr.arpa udp
US 8.8.8.8:53 50.23.12.20.in-addr.arpa udp
US 8.8.8.8:53 github.com udp
GB 20.26.156.215:443 github.com tcp
GB 20.26.156.215:443 github.com tcp
GB 172.217.169.46:443 www.youtube.com udp
US 8.8.8.8:53 18.31.95.13.in-addr.arpa udp
US 8.8.8.8:53 215.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 249.197.17.2.in-addr.arpa udp
US 8.8.8.8:53 avatars.githubusercontent.com udp
US 8.8.8.8:53 github.githubassets.com udp
US 185.199.108.133:443 avatars.githubusercontent.com tcp
US 8.8.8.8:53 github-cloud.s3.amazonaws.com udp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 185.199.110.154:443 github.githubassets.com tcp
US 8.8.8.8:53 user-images.githubusercontent.com udp
US 8.8.8.8:53 133.108.199.185.in-addr.arpa udp
US 8.8.8.8:53 154.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 collector.github.com udp
US 185.199.110.154:443 github.githubassets.com tcp
US 8.8.8.8:53 api.github.com udp
US 140.82.113.21:443 collector.github.com tcp
US 140.82.113.21:443 collector.github.com tcp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 210.156.26.20.in-addr.arpa udp
US 8.8.8.8:53 21.113.82.140.in-addr.arpa udp
US 8.8.8.8:53 raw.githubusercontent.com udp
US 185.199.110.133:443 raw.githubusercontent.com tcp
US 8.8.8.8:53 133.110.199.185.in-addr.arpa udp
US 8.8.8.8:53 88.210.23.2.in-addr.arpa udp
US 8.8.8.8:53 23.236.111.52.in-addr.arpa udp
GB 20.26.156.210:443 api.github.com tcp
US 8.8.8.8:53 pcoptimizerpro.com udp
US 50.63.8.124:80 pcoptimizerpro.com tcp
US 50.63.8.124:80 pcoptimizerpro.com tcp
US 50.63.8.124:80 pcoptimizerpro.com tcp
US 8.8.8.8:53 motherboard.vice.com udp
US 151.101.2.133:80 motherboard.vice.com tcp
US 151.101.2.133:80 motherboard.vice.com tcp
US 151.101.2.133:443 motherboard.vice.com tcp
US 8.8.8.8:53 apps.identrust.com udp
BE 2.17.107.235:80 apps.identrust.com tcp
US 8.8.8.8:53 www.vice.com udp
US 8.8.8.8:53 133.2.101.151.in-addr.arpa udp
US 8.8.8.8:53 235.107.17.2.in-addr.arpa udp
US 8.8.8.8:53 vice-web-statics-cdn.vice.com udp
US 8.8.8.8:53 htlbid.com udp
US 151.101.2.133:443 vice-web-statics-cdn.vice.com tcp
US 151.101.2.133:443 vice-web-statics-cdn.vice.com tcp
FR 52.84.174.43:443 htlbid.com tcp
US 8.8.8.8:53 oembed.vice.com udp
US 8.8.8.8:53 images.vice.com udp
US 8.8.8.8:53 sourcepoint.mgr.consensu.org udp
US 8.8.8.8:53 native.sharethrough.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 video-images.vice.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 gum.criteo.com udp
US 8.8.8.8:53 api.amplitude.com udp
FR 18.161.111.116:443 native.sharethrough.com tcp
US 8.8.8.8:53 43.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 17.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 vice-sundry-assets-cdn.vice.com udp
US 35.162.126.211:443 api.amplitude.com tcp
NL 178.250.1.11:443 gum.criteo.com tcp
US 8.8.8.8:53 vice-dev-web-statics-cdn.vice.com udp
US 8.8.8.8:53 www.npttech.com udp
US 104.21.66.34:443 www.npttech.com tcp
US 8.8.8.8:53 cdn.privacy-mgmt.com udp
US 104.21.66.34:443 www.npttech.com tcp
US 8.8.8.8:53 sdk.snapkit.com udp
US 8.8.8.8:53 trinitymedia.ai udp
US 18.245.199.31:443 cdn.privacy-mgmt.com tcp
US 18.245.199.31:443 cdn.privacy-mgmt.com tcp
US 8.8.8.8:53 pub.doubleverify.com udp
GB 142.250.200.34:443 securepubads.g.doubleclick.net tcp
US 8.8.8.8:53 cdn.confiant-integrations.net udp
US 8.8.8.8:53 silo50.p7cloud.net udp
US 8.8.8.8:53 launchpad-wrapper.privacymanager.io udp
US 8.8.8.8:53 segment-data.zqtk.net udp
US 104.18.166.224:443 pub.doubleverify.com tcp
US 8.8.8.8:53 34.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 116.111.161.18.in-addr.arpa udp
US 8.8.8.8:53 11.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 104.201.58.216.in-addr.arpa udp
US 8.8.8.8:53 34.66.21.104.in-addr.arpa udp
US 8.8.8.8:53 211.126.162.35.in-addr.arpa udp
US 8.8.8.8:53 31.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 scdn.cxense.com udp
FR 3.162.38.58:443 silo50.p7cloud.net tcp
FR 18.155.129.24:443 launchpad-wrapper.privacymanager.io tcp
US 18.245.199.31:443 cdn.privacy-mgmt.com tcp
US 172.64.144.166:443 cdn.confiant-integrations.net tcp
US 8.8.8.8:53 c.amazon-adsystem.com udp
FR 172.234.63.227:443 segment-data.zqtk.net tcp
BE 104.68.95.245:443 scdn.cxense.com tcp
US 18.245.194.122:443 c.amazon-adsystem.com tcp
FR 172.234.63.227:443 segment-data.zqtk.net tcp
US 8.8.8.8:53 static.anonymised.io udp
US 104.18.166.224:443 pub.doubleverify.com udp
US 172.64.144.166:443 cdn.confiant-integrations.net udp
US 34.107.217.107:443 static.anonymised.io tcp
US 8.8.8.8:53 secure.quantserve.com udp
US 8.8.8.8:53 tag.aticdn.net udp
FR 52.222.201.71:443 tag.aticdn.net tcp
DE 91.228.74.159:443 secure.quantserve.com tcp
US 8.8.8.8:53 launchpad.privacymanager.io udp
US 34.107.217.107:443 static.anonymised.io tcp
US 8.8.8.8:53 api.cxense.com udp
FR 18.155.129.113:443 launchpad.privacymanager.io tcp
DE 167.235.124.24:443 api.cxense.com tcp
GB 142.250.200.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 rules.quantcount.com udp
US 34.107.217.107:443 static.anonymised.io udp
US 8.8.8.8:53 logws1330.ati-host.net udp
US 3.165.136.119:443 sdk.snapkit.com tcp
US 52.54.202.168:443 trinitymedia.ai tcp
FR 18.244.28.120:443 rules.quantcount.com tcp
FR 52.222.192.180:443 logws1330.ati-host.net tcp
US 8.8.8.8:53 geo.privacymanager.io udp
US 18.245.199.98:443 geo.privacymanager.io tcp
US 8.8.8.8:53 ua.p7cloud.net udp
US 8.8.8.8:53 location.p7cloud.net udp
US 8.8.8.8:53 d2tbszkvx1p56e.cloudfront.net udp
US 8.8.8.8:53 material.anonymised.io udp
US 3.165.113.43:443 ua.p7cloud.net tcp
US 8.8.8.8:53 aegis.anonymised.io udp
FR 99.86.91.14:443 location.p7cloud.net tcp
US 3.165.112.172:443 d2tbszkvx1p56e.cloudfront.net tcp
US 34.107.217.107:443 aegis.anonymised.io tcp
US 34.117.250.57:443 material.anonymised.io tcp
US 8.8.8.8:53 config.aps.amazon-adsystem.com udp
US 8.8.8.8:53 224.166.18.104.in-addr.arpa udp
US 8.8.8.8:53 58.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 24.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 166.144.64.172.in-addr.arpa udp
US 8.8.8.8:53 227.63.234.172.in-addr.arpa udp
US 8.8.8.8:53 245.95.68.104.in-addr.arpa udp
US 8.8.8.8:53 122.194.245.18.in-addr.arpa udp
US 8.8.8.8:53 71.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 159.74.228.91.in-addr.arpa udp
US 8.8.8.8:53 107.217.107.34.in-addr.arpa udp
US 8.8.8.8:53 113.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 24.124.235.167.in-addr.arpa udp
US 8.8.8.8:53 119.136.165.3.in-addr.arpa udp
US 8.8.8.8:53 120.28.244.18.in-addr.arpa udp
US 8.8.8.8:53 180.192.222.52.in-addr.arpa udp
US 8.8.8.8:53 98.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 168.202.54.52.in-addr.arpa udp
US 8.8.8.8:53 43.113.165.3.in-addr.arpa udp
US 8.8.8.8:53 14.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 172.112.165.3.in-addr.arpa udp
US 8.8.8.8:53 57.250.117.34.in-addr.arpa udp
US 8.8.8.8:53 api.snapkit.com udp
US 34.107.217.107:443 aegis.anonymised.io udp
US 8.8.8.8:53 fundingchoicesmessages.google.com udp
US 8.8.8.8:53 yield-manager.browsiprod.com udp
US 8.8.8.8:53 aax.amazon-adsystem.com udp
US 34.117.250.57:443 material.anonymised.io udp
US 8.8.8.8:53 cdn.id5-sync.com udp
US 8.8.8.8:53 js.gumgum.com udp
US 8.8.8.8:53 tag.bounceexchange.com udp
FR 52.84.174.40:443 config.aps.amazon-adsystem.com tcp
US 8.8.8.8:53 ams-pageview-public.s3.amazonaws.com udp
US 8.8.8.8:53 live.primis.tech udp
FR 52.84.179.171:443 aax.amazon-adsystem.com tcp
GB 142.250.187.238:443 fundingchoicesmessages.google.com tcp
FR 3.162.38.114:443 yield-manager.browsiprod.com tcp
US 35.190.43.134:443 api.snapkit.com tcp
US 104.22.53.86:443 cdn.id5-sync.com tcp
US 3.5.10.199:443 ams-pageview-public.s3.amazonaws.com tcp
FR 18.244.28.120:443 js.gumgum.com tcp
US 34.120.253.250:443 tag.bounceexchange.com tcp
FR 52.222.201.10:443 live.primis.tech tcp
US 34.120.253.250:443 tag.bounceexchange.com tcp
US 8.8.8.8:53 ams-depr-public.s3.amazonaws.com udp
US 8.8.8.8:53 vd.trinitymedia.ai udp
US 52.217.67.20:443 ams-depr-public.s3.amazonaws.com tcp
US 8.8.8.8:53 api.bounceexchange.com udp
US 8.8.8.8:53 pd.cdnwidget.com udp
US 8.8.8.8:53 aba.gumgum.com udp
US 8.8.8.8:53 cdn.browsiprod.com udp
GB 143.244.38.136:443 vd.trinitymedia.ai tcp
US 35.190.43.134:443 api.snapkit.com udp
US 8.8.8.8:53 assets.bounceexchange.com udp
US 34.111.8.32:443 api.bounceexchange.com tcp
US 3.165.136.57:443 aba.gumgum.com tcp
US 8.8.8.8:53 data.cdnbasket.net udp
US 34.149.130.207:443 pd.cdnwidget.com tcp
US 8.8.8.8:53 events.bouncex.net udp
FR 18.155.129.8:443 cdn.browsiprod.com tcp
US 34.98.72.95:443 assets.bounceexchange.com tcp
US 8.8.8.8:53 ids.cdnwidget.com udp
FR 52.222.201.10:443 live.primis.tech udp
US 8.8.8.8:53 page.cdnbasket.net udp
US 8.8.8.8:53 view.cdnbasket.net udp
US 8.8.8.8:53 gumgum.com udp
FR 18.244.28.120:443 js.gumgum.com tcp
US 8.8.8.8:53 c.gumgum.com udp
FR 99.86.91.24:443 gumgum.com tcp
US 8.8.8.8:53 g2.gumgum.com udp
GB 142.250.187.238:443 fundingchoicesmessages.google.com udp
GB 142.250.200.46:443 www.youtube.com udp
FR 99.86.91.77:443 c.gumgum.com tcp
IE 54.217.112.90:443 g2.gumgum.com tcp
US 34.98.72.95:443 assets.bounceexchange.com udp
US 8.8.8.8:53 events.browsiprod.com udp
US 18.246.197.227:443 events.browsiprod.com tcp
GB 172.217.169.54:443 i.ytimg.com udp
US 18.246.197.227:443 events.browsiprod.com tcp
FR 18.155.129.8:443 cdn.browsiprod.com tcp
GB 143.244.38.136:443 vd.trinitymedia.ai tcp
US 8.8.8.8:53 40.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 171.179.84.52.in-addr.arpa udp
US 8.8.8.8:53 134.43.190.35.in-addr.arpa udp
US 8.8.8.8:53 114.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 86.53.22.104.in-addr.arpa udp
US 8.8.8.8:53 199.10.5.3.in-addr.arpa udp
US 8.8.8.8:53 250.253.120.34.in-addr.arpa udp
US 8.8.8.8:53 10.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 136.38.244.143.in-addr.arpa udp
US 8.8.8.8:53 32.8.111.34.in-addr.arpa udp
US 8.8.8.8:53 20.67.217.52.in-addr.arpa udp
US 8.8.8.8:53 207.130.149.34.in-addr.arpa udp
US 8.8.8.8:53 57.136.165.3.in-addr.arpa udp
US 8.8.8.8:53 95.72.98.34.in-addr.arpa udp
US 8.8.8.8:53 8.129.155.18.in-addr.arpa udp
US 8.8.8.8:53 46.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 24.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 77.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 90.112.217.54.in-addr.arpa udp
GB 216.58.204.66:443 googleads.g.doubleclick.net udp
GB 216.58.204.66:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 pubads.g.doubleclick.net udp
US 8.8.8.8:53 video.primis.tech udp
US 8.8.8.8:53 static.doubleclick.net udp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 yt3.ggpht.com udp
GB 216.58.204.66:443 googleads.g.doubleclick.net tcp
US 8.8.8.8:53 pixel.tapad.com udp
US 34.111.113.62:443 pixel.tapad.com tcp
GB 142.250.187.196:443 www.google.com tcp
FR 52.222.149.126:443 video.primis.tech tcp
FR 52.222.149.126:443 video.primis.tech tcp
FR 52.222.149.126:443 video.primis.tech tcp
FR 52.222.149.126:443 video.primis.tech tcp
GB 216.58.213.6:443 static.doubleclick.net udp
GB 142.250.180.1:443 yt3.ggpht.com tcp
FR 52.222.149.126:443 video.primis.tech udp
US 8.8.8.8:53 ai.browsiprod.com udp
FR 52.222.201.56:443 ai.browsiprod.com tcp
US 8.8.8.8:53 227.197.246.18.in-addr.arpa udp
US 8.8.8.8:53 226.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 62.113.111.34.in-addr.arpa udp
US 8.8.8.8:53 126.149.222.52.in-addr.arpa udp
US 8.8.8.8:53 2.200.250.142.in-addr.arpa udp
US 8.8.8.8:53 1.180.250.142.in-addr.arpa udp
US 8.8.8.8:53 demand-engine.browsiprod.com udp
US 8.8.8.8:53 prebid-server.rubiconproject.com udp
US 8.8.8.8:53 prg.smartadserver.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 htlb.casalemedia.com udp
US 8.8.8.8:53 rtb.primis.tech udp
US 18.245.199.55:443 demand-engine.browsiprod.com tcp
NL 185.89.210.244:443 ib.adnxs.com tcp
US 104.18.36.155:443 htlb.casalemedia.com tcp
US 8.8.8.8:53 tpc.googlesyndication.com udp
NL 69.173.156.150:443 prebid-server.rubiconproject.com tcp
GB 185.64.190.77:443 hbopenbid.pubmatic.com tcp
NL 89.149.192.65:443 prg.smartadserver.com tcp
US 8.8.8.8:53 play.google.com udp
GB 172.217.16.225:443 tpc.googlesyndication.com tcp
GB 172.217.169.46:443 play.google.com udp
GB 172.217.169.46:443 play.google.com tcp
US 8.8.8.8:53 imasdk.googleapis.com udp
GB 142.250.200.10:443 imasdk.googleapis.com tcp
GB 172.217.16.225:443 tpc.googlesyndication.com udp
US 8.8.8.8:53 56.201.222.52.in-addr.arpa udp
US 8.8.8.8:53 244.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 55.199.245.18.in-addr.arpa udp
US 8.8.8.8:53 155.36.18.104.in-addr.arpa udp
US 8.8.8.8:53 65.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 77.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 150.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 10.200.250.142.in-addr.arpa udp
US 34.111.113.62:443 pixel.tapad.com udp
US 104.18.166.224:443 pub.doubleverify.com udp
GB 142.250.200.10:443 imasdk.googleapis.com udp
US 8.8.8.8:53 s0.2mdn.net udp
GB 216.58.204.70:443 s0.2mdn.net tcp
US 8.8.8.8:53 ads.pubmatic.com udp
US 8.8.8.8:53 js-sec.indexww.com udp
US 8.8.8.8:53 eus.rubiconproject.com udp
US 172.64.149.180:443 js-sec.indexww.com tcp
US 8.8.8.8:53 api.rlcdn.com udp
US 8.8.8.8:53 id.crwdcntrl.net udp
US 8.8.8.8:53 rtb-csync.smartadserver.com udp
US 8.8.8.8:53 image6.pubmatic.com udp
US 8.8.8.8:53 id5-sync.com udp
GB 23.36.248.193:443 ads.pubmatic.com tcp
US 8.8.8.8:53 match.sharethrough.com udp
IE 54.217.112.90:443 g2.gumgum.com tcp
BE 2.21.18.175:443 eus.rubiconproject.com tcp
IE 52.48.212.10:443 id.crwdcntrl.net tcp
GB 185.64.190.78:443 image6.pubmatic.com tcp
DE 162.19.138.117:443 id5-sync.com tcp
US 34.120.133.55:443 api.rlcdn.com tcp
US 8.8.8.8:53 s.company-target.com udp
FR 51.178.195.217:443 rtb-csync.smartadserver.com tcp
DE 3.125.128.81:443 match.sharethrough.com tcp
US 34.96.71.22:443 s.company-target.com tcp
US 8.8.8.8:53 csi.gstatic.com udp
US 8.8.8.8:53 70.204.58.216.in-addr.arpa udp
US 8.8.8.8:53 cm.g.doubleclick.net udp
US 8.8.8.8:53 180.149.64.172.in-addr.arpa udp
US 8.8.8.8:53 175.18.21.2.in-addr.arpa udp
US 8.8.8.8:53 193.248.36.23.in-addr.arpa udp
US 8.8.8.8:53 78.190.64.185.in-addr.arpa udp
US 8.8.8.8:53 217.195.178.51.in-addr.arpa udp
US 8.8.8.8:53 10.212.48.52.in-addr.arpa udp
US 8.8.8.8:53 55.133.120.34.in-addr.arpa udp
US 8.8.8.8:53 117.138.19.162.in-addr.arpa udp
JP 172.217.175.227:443 csi.gstatic.com tcp
GB 216.58.212.194:443 cm.g.doubleclick.net tcp
GB 216.58.212.194:443 cm.g.doubleclick.net udp
JP 172.217.175.227:443 csi.gstatic.com tcp
US 8.8.8.8:53 depart.trinitymedia.ai udp
DE 3.125.100.4:443 depart.trinitymedia.ai tcp
US 8.8.8.8:53 ssbsync.smartadserver.com udp
NL 89.149.192.197:443 ssbsync.smartadserver.com tcp
US 8.8.8.8:53 token.rubiconproject.com udp
NL 69.173.156.149:443 token.rubiconproject.com tcp
US 8.8.8.8:53 js-agent.newrelic.com udp
US 162.247.243.39:443 js-agent.newrelic.com tcp
US 162.247.243.39:443 js-agent.newrelic.com tcp
US 8.8.8.8:53 81.128.125.3.in-addr.arpa udp
US 8.8.8.8:53 22.71.96.34.in-addr.arpa udp
US 8.8.8.8:53 194.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 227.175.217.172.in-addr.arpa udp
US 8.8.8.8:53 4.100.125.3.in-addr.arpa udp
US 8.8.8.8:53 197.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 149.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 39.243.247.162.in-addr.arpa udp
US 8.8.8.8:53 bam.nr-data.net udp
US 162.247.243.29:443 bam.nr-data.net tcp
US 8.8.8.8:53 firebaseremoteconfig.googleapis.com udp
JP 172.217.175.227:443 csi.gstatic.com udp
US 8.8.8.8:53 29.243.247.162.in-addr.arpa udp
US 8.8.8.8:53 synchrobox.adswizz.com udp
US 8.8.8.8:53 play.adtonos.com udp
US 8.8.8.8:53 playerservices.live.streamtheworld.com udp
IE 52.211.17.116:443 synchrobox.adswizz.com tcp
IE 52.211.17.116:443 synchrobox.adswizz.com tcp
FR 192.173.31.109:443 playerservices.live.streamtheworld.com tcp
GB 51.89.155.117:443 play.adtonos.com tcp
FR 192.173.31.109:443 playerservices.live.streamtheworld.com tcp
US 8.8.8.8:53 delivery-cdn-cf.adswizz.com udp
FR 52.84.174.116:443 delivery-cdn-cf.adswizz.com tcp
FR 52.84.174.116:443 delivery-cdn-cf.adswizz.com tcp
US 8.8.8.8:53 yield-op-idsync.live.streamtheworld.com udp
CA 192.173.28.19:443 yield-op-idsync.live.streamtheworld.com tcp
US 8.8.8.8:53 synchroscript.deliveryengine.adswizz.com udp
FR 3.162.38.48:443 synchroscript.deliveryengine.adswizz.com tcp
US 8.8.8.8:53 116.17.211.52.in-addr.arpa udp
US 8.8.8.8:53 109.31.173.192.in-addr.arpa udp
US 8.8.8.8:53 117.155.89.51.in-addr.arpa udp
US 8.8.8.8:53 116.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 eu.ads.audio.thisisdax.com udp
NL 35.214.162.87:443 eu.ads.audio.thisisdax.com tcp
US 8.8.8.8:53 c1.adform.net udp
DK 37.157.3.26:443 c1.adform.net tcp
US 8.8.8.8:53 ad.turn.com udp
NL 46.228.164.11:443 ad.turn.com tcp
US 8.8.8.8:53 hb.yellowblue.io udp
US 8.8.8.8:53 prebid.a-mo.net udp
US 8.8.8.8:53 krk2.kargo.com udp
US 8.8.8.8:53 rtb.openx.net udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 35.227.252.103:443 rtb.openx.net tcp
FR 18.244.28.105:443 hb.yellowblue.io tcp
NL 145.40.97.66:443 prebid.a-mo.net tcp
DE 3.70.118.39:443 krk2.kargo.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 8.8.8.8:53 19.28.173.192.in-addr.arpa udp
US 8.8.8.8:53 87.162.214.35.in-addr.arpa udp
US 8.8.8.8:53 48.38.162.3.in-addr.arpa udp
US 8.8.8.8:53 26.3.157.37.in-addr.arpa udp
US 8.8.8.8:53 11.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 103.252.227.35.in-addr.arpa udp
US 8.8.8.8:53 66.97.40.145.in-addr.arpa udp
US 8.8.8.8:53 139.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 39.118.70.3.in-addr.arpa udp
US 8.8.8.8:53 105.28.244.18.in-addr.arpa udp
US 34.111.8.32:443 events.bouncex.net tcp
US 104.18.36.155:443 htlb.casalemedia.com udp
DE 3.125.100.4:443 depart.trinitymedia.ai tcp
US 8.8.8.8:53 diagnostics.id5-sync.com udp
US 8.8.8.8:53 check.analytics.rlcdn.com udp
US 162.247.243.29:443 bam.nr-data.net tcp
US 162.247.243.29:443 bam.nr-data.net tcp
US 162.247.243.29:443 bam.nr-data.net tcp
US 18.246.197.227:443 events.browsiprod.com tcp
DE 141.95.33.120:443 diagnostics.id5-sync.com tcp
FR 99.86.91.124:443 check.analytics.rlcdn.com tcp
US 8.8.8.8:53 120.33.95.141.in-addr.arpa udp
US 8.8.8.8:53 124.91.86.99.in-addr.arpa udp
US 8.8.8.8:53 google.co.ck udp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.196:443 www.google.com udp
US 8.8.8.8:53 228.187.250.142.in-addr.arpa udp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
US 8.8.8.8:53 www.google.com udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 16.43.107.13.in-addr.arpa udp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
US 8.8.8.8:53 50.192.11.51.in-addr.arpa udp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 softonic.com udp
US 199.232.209.91:80 softonic.com tcp
US 199.232.209.91:80 softonic.com tcp
US 199.232.209.91:443 softonic.com tcp
US 8.8.8.8:53 www.softonic.com udp
US 151.101.1.91:443 www.softonic.com tcp
US 8.8.8.8:53 91.209.232.199.in-addr.arpa udp
US 8.8.8.8:53 91.1.101.151.in-addr.arpa udp
US 8.8.8.8:53 en.softonic.com udp
US 8.8.8.8:53 sdk.privacy-center.org udp
US 8.8.8.8:53 assets.sftcdn.net udp
US 8.8.8.8:53 images.sftcdn.net udp
US 18.245.175.74:443 sdk.privacy-center.org tcp
US 151.101.1.91:443 assets.sftcdn.net tcp
US 151.101.1.91:443 assets.sftcdn.net tcp
US 151.101.1.91:443 assets.sftcdn.net tcp
US 151.101.1.91:443 assets.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
US 151.101.1.91:443 assets.sftcdn.net udp
US 151.101.1.91:443 assets.sftcdn.net udp
US 8.8.8.8:53 74.175.245.18.in-addr.arpa udp
US 8.8.8.8:53 93.82.68.104.in-addr.arpa udp
US 8.8.8.8:53 articles-img.sftcdn.net udp
US 8.8.8.8:53 b-code.liadm.com udp
FR 13.32.145.100:443 b-code.liadm.com tcp
US 18.245.175.74:443 sdk.privacy-center.org udp
US 8.8.8.8:53 static.site24x7rum.eu udp
FR 52.222.201.73:443 static.site24x7rum.eu tcp
US 8.8.8.8:53 rp.liadm.com udp
US 34.235.31.45:443 rp.liadm.com tcp
US 8.8.8.8:53 stats.g.doubleclick.net udp
US 8.8.8.8:53 100.145.32.13.in-addr.arpa udp
US 8.8.8.8:53 45.31.235.34.in-addr.arpa udp
US 8.8.8.8:53 73.201.222.52.in-addr.arpa udp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
US 8.8.8.8:53 ampcid.google.com udp
US 8.8.8.8:53 notix.io udp
BE 88.221.83.248:443 articles-img.sftcdn.net tcp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 i.liadm.com udp
US 52.22.134.84:443 i.liadm.com tcp
US 52.22.134.84:443 i.liadm.com tcp
BE 74.125.71.155:443 stats.g.doubleclick.net tcp
US 8.8.8.8:53 253.197.45.139.in-addr.arpa udp
US 8.8.8.8:53 84.134.22.52.in-addr.arpa udp
US 8.8.8.8:53 155.71.125.74.in-addr.arpa udp
US 8.8.8.8:53 248.83.221.88.in-addr.arpa udp
BE 74.125.71.155:443 stats.g.doubleclick.net udp
US 8.8.8.8:53 match.adsrvr.org udp
US 8.8.8.8:53 live.rezync.com udp
US 8.8.8.8:53 x.dlx.addthis.com udp
US 8.8.8.8:53 dpm.demdex.net udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 api.privacy-center.org udp
US 8.8.8.8:53 analytics.google.com udp
US 8.8.8.8:53 push-sdk.com udp
US 8.8.8.8:53 d.turn.com udp
US 8.8.8.8:53 dis.criteo.com udp
US 52.223.40.198:443 match.adsrvr.org tcp
BE 23.55.96.210:443 x.dlx.addthis.com tcp
FR 52.84.174.78:443 live.rezync.com tcp
FR 13.32.145.94:443 api.privacy-center.org tcp
FR 52.84.174.78:443 live.rezync.com tcp
BE 23.55.96.210:443 x.dlx.addthis.com tcp
US 8.8.8.8:53 198.40.223.52.in-addr.arpa udp
US 8.8.8.8:53 94.145.32.13.in-addr.arpa udp
GB 216.58.212.206:443 ampcid.google.com tcp
NL 185.89.210.46:443 ib.adnxs.com tcp
IE 52.17.107.72:443 dpm.demdex.net tcp
DE 178.63.248.57:443 push-sdk.com tcp
US 216.239.36.181:443 analytics.google.com tcp
NL 46.228.164.13:443 d.turn.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
IE 52.17.107.72:443 dpm.demdex.net tcp
US 216.239.36.181:443 analytics.google.com tcp
DE 178.63.248.57:443 push-sdk.com tcp
NL 46.228.164.13:443 d.turn.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 8.8.8.8:53 46.210.89.185.in-addr.arpa udp
US 8.8.8.8:53 206.212.58.216.in-addr.arpa udp
US 8.8.8.8:53 72.107.17.52.in-addr.arpa udp
US 8.8.8.8:53 13.164.228.46.in-addr.arpa udp
US 8.8.8.8:53 181.36.239.216.in-addr.arpa udp
US 8.8.8.8:53 57.248.63.178.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
FR 13.32.145.94:443 api.privacy-center.org udp
US 8.8.8.8:53 78.174.84.52.in-addr.arpa udp
US 8.8.8.8:53 210.96.55.23.in-addr.arpa udp
US 216.239.36.181:443 analytics.google.com udp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.228:80 google.co.ck tcp
GB 142.250.187.196:443 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 199.232.209.91:443 softonic.com udp
US 199.232.209.91:443 softonic.com tcp
US 8.8.8.8:53 www.softonic.com udp
US 8.8.8.8:53 en.softonic.com udp
US 18.245.175.74:443 sdk.privacy-center.org udp
US 151.101.1.91:443 en.softonic.com udp
US 8.8.8.8:53 images.sftcdn.net udp
FR 52.222.201.73:443 static.site24x7rum.eu tcp
FR 52.222.201.73:443 static.site24x7rum.eu tcp
BE 104.68.82.93:443 images.sftcdn.net tcp
DE 157.90.33.122:443 push-sdk.com tcp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 uidsync.net udp
NL 139.45.197.253:443 notix.io tcp
US 8.8.8.8:53 122.33.90.157.in-addr.arpa udp
DE 178.63.248.56:443 uidsync.net tcp
US 8.8.8.8:53 56.248.63.178.in-addr.arpa udp
DE 178.63.248.56:443 uidsync.net tcp
US 216.239.36.181:443 analytics.google.com udp
DE 178.63.248.56:443 uidsync.net tcp
US 216.239.36.181:443 analytics.google.com tcp
GB 142.250.187.196:443 www.google.com udp
FR 52.222.201.64:443 static.site24x7rum.eu tcp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 f53207a5ca2ef5c7e976cbb3cb26d870
SHA1 49a8cc44f53da77bb3dfb36fc7676ed54675db43
SHA256 19ab4e3c9da6d9cedda7461efdba9a2085e743513ab89f1dd0fd5a8f9486ad23
SHA512 be734c7e8afda19f445912aef0d78f9941add29baebd4a812bff27f10a1d78b52aeb11c551468c8644443c86e1a2a6b2e4aead3d7f81d39925e3c20406ac1499

\??\pipe\LOCAL\crashpad_1792_MTXAVDRAWXIAODVY

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 ae54e9db2e89f2c54da8cc0bfcbd26bd
SHA1 a88af6c673609ecbc51a1a60dfbc8577830d2b5d
SHA256 5009d3c953de63cfd14a7d911156c514e179ff07d2b94382d9caac6040cb72af
SHA512 e3b70e5eb7321b9deca6f6a17424a15b9fd5c4008bd3789bd01099fd13cb2f4a2f37fe4b920fb51c50517745b576c1f94df83efd1a7e75949551163985599998

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 748766a38daabcde076ce5610bd0e701
SHA1 689defdca0caf87aa3e652abb587c8b30fe7c17a
SHA256 c7ccdcb8c21ffab8340d99f0e04118730f0536b9e65804c0066f6bb7941fcc27
SHA512 4639dce8afc4d5bb8d4907e5c9a93c2d0e18c1e5ff860745894c18a2989147a24f64535a30fac2dfda09fa19f5fbcb8d3ff0dc6578d9c2e253d51b4a746fea35

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 de1dfe2eebccdafa7e9e67d9c26c7f84
SHA1 4f15f498bb57f6b8cb70034f5a3e01814917a7e4
SHA256 b5a2bf50d1c78bb9aa10718a4417703291cd3a31809adba81a5af21013fd4649
SHA512 bae08b0262cec833e79cc536d3a76c625aaef9e49fab1eeef50c3e506a0fa2309f8389ced512387ae9e8905e54ea5d68dc659ac9e1f69c93e508bed5e2129ac1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 69042e2d0c6a3a2a7766d4a334b1fce3
SHA1 1e1992db1612306c8feb2c2df8150c2f5251a2f2
SHA256 d089626effcaf00f26ccc65dba483d9348df072b507a927017fc4af028975be4
SHA512 4fa0e08465ab18219f5ca4ba542da75138721cc707c2a10dca0f9980e3db623f33809df881aa4d38d9d4fb6fba1cc7f44862977b92a4f1127d7c29cbd52dadb5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 2892eee3e20e19a9ba77be6913508a54
SHA1 7c4ef82faa28393c739c517d706ac6919a8ffc49
SHA256 4f110831bb434c728a6895190323d159df6d531be8c4bb7109864eeb7c989ff2
SHA512 b13a336db33299ab3405e13811e3ed9e5a18542e5d835f2b7130a6ff4c22f74272002fc43e7d9f94ac3aa6a4d53518f87f25d90c29e0d286b6470667ea9336ae

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\379f1cbab5b08b6fc9e08681e42d8be311441c88\index.txt

MD5 8aafd1b607fc30b780789c9981df0b71
SHA1 c75cda5335785b22576a9fcd2b60ece23d67a9ad
SHA256 ce5e78e969a850de1e30a11ea8023b080cf4905a37abd257aea798d3098afe07
SHA512 48b0ed489747cc3022b3697949a1c292744d6ec11d0f69614e56c2b93a3f3ed33322a5f7483ed75161e6de1a25b298f6584d8f2c3f6c738242591af8a3e872aa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 fb94c537099e8f2dc6cf3aafd783c212
SHA1 3009ccac302f1fc22a4d2808880828cbe0a891d1
SHA256 8ff58aecfc0914ae00ef4a43cc3f92628a5d64d3af2d75be172eb3dc6894a18d
SHA512 326bd1ee27466820497e52cf6c830078edafc2dce5ad5dadd5b0608bc446db90a61bfc9c7d27db239abb1d99692c8408cd12ebd9a307851c31570c17cbe4eb2e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57cb4f.TMP

MD5 0be5c0a6c33e188c664241ee29c4e8a7
SHA1 99cc932e1714c7395fb1f72d284faf33eda4bcd7
SHA256 0de3f307acea7e3301eceefd1540e021577dba430f758db8de94919fd4cc0ff9
SHA512 2d612562b4461f1752446a7635a53728a5762d7c6e0bb9ffb1d07614ee14cd2248792cc35d48609e80bd6687e5fe7056642bd4ad8c34916e5d6d58497b49a057

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b4a6ded0967b27ba631a2c16dc1f860d
SHA1 90c05c277f05cf1f54fb41bf5aaa69faa241daa1
SHA256 ed2469b3432f2b7c7d294d12ee68fea00da518e5834dd329211d4826272a8784
SHA512 a2d7555c3f3372482700ffcbd7df30720968942cb6f8e8a83424a34b46b26954df73723d5a29cb37cf27338a962f47640cbb4d3979414236569f83aab0fcd5fb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 41924913497ff0459e50955817d034fe
SHA1 3685d8ad4317048ff4ab24e1927b43b1cd706662
SHA256 dd58f17ba9c0fa09fa2e5107a175804bee6fd6d642542e27d6f5b98a00d969e1
SHA512 b19eb35e3b62a963a22729a9a1898155a960132c83306338c75ba126ab8c07b15c13113722f26bb1c482dabe5bb8861baa8b64cd6e97877efbdd67071feddea1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 185f470dfa488de3977e5944fb66e827
SHA1 8e301c15e0a631a9ed589a7b9665e2138ec3da5f
SHA256 2b261ae564e63c51cd1d5c7e8a3d9203f03630b63e83498648d2f0262c169563
SHA512 854b27e58b47417391dd7075b79fba429c4fe3bbbaf46438cc5aab9a3fa9380b28e86a845db0fac5ac3c174ccd67ee19a6652710cf7b30600551b8cdb4cc917a

C:\Users\Admin\Downloads\MEMZ.exe

MD5 1d5ad9c8d3fee874d0feb8bfac220a11
SHA1 ca6d3f7e6c784155f664a9179ca64e4034df9595
SHA256 3872c12d31fc9825e8661ac01ecee2572460677afbc7093f920a8436a42e28ff
SHA512 c8246f4137416be33b6d1ac89f2428b7c44d9376ac8489a9fbf65ef128a6c53fb50479e1e400c8e201c8611992ab1d6c1bd3d6cece89013edb4d35cdd22305b1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 9de7d4edcdb6e47de0820837bb7da2c4
SHA1 4f2478b3387a466b3ad2ca509d3319fc955509e7
SHA256 0ec6bd821c30a354a937633926c4a9825b29c81c49196ef7e9262075f0f056e4
SHA512 53ca5946086381d989d964b935d8d34fa0876ef744cc8eb16a8b948e1719032b3fc775d1539e9c579b3a889722ab1b51e4c4d57730365d0de0294284d83033a9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 a4d4df8487393be49d50bf851866984e
SHA1 7bf2acf421f36b608838c567b21189dadee88fcd
SHA256 84252f93e93a24f394f3ad3551c705944c12807c49604bb9f757da557d3d3ac0
SHA512 95ddac68f717286bac8d8bb2a0df401807e9eab6fd4854d5ca8f86bd6a03d2f7512a26044dbce472e3ff07aca7fd1246a1f00bec10b0df5112583057d51f90fa

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 3a9641c25a0a58332eb9d1e015f17281
SHA1 9e5c65b8baa8890a45873a77480b50b9c1df63f4
SHA256 36d3c2e5331c589f847b2e61153e2f6ba861419425b239d84d2acc18c72a04ae
SHA512 759a9e7333b90561ea88eefe7a6a69fc102cd4e4226ac694a25377d8ad00bddd84b419b848e83162196659b7dc050f833e3b382428e88008fd08d6bdda7d193f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 61756d5c56768dcdaf6662c7d1aea83a
SHA1 408432f24f4c79b586469068c70a0ca2ad21c996
SHA256 46cbf127e5c5184e32adea221fa83da95ac1add15b479c317d39e4288fcebd48
SHA512 9e705b5572816b3b457f699a6e32e219f5d7edd78cf66b11b08ff0a9ac600569363085651b14a81f1532899cabd7fc97531a44967870f2df980bad27e2be76ef

C:\note.txt

MD5 afa6955439b8d516721231029fb9ca1b
SHA1 087a043cc123c0c0df2ffadcf8e71e3ac86bbae9
SHA256 8e9f20f6864c66576536c0b866c6ffdcf11397db67fe120e972e244c3c022270
SHA512 5da21a31fbc4e8250dffed30f66b896bdf007ac91948140334fe36a3f010e1bac3e70a07e9f3eb9da8633189091fd5cadcabbaacd3e01da0fe7ae28a11b3dddf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 7a82c5892cd5245fa4e7d792b81363f2
SHA1 cb132da2ea9f69eb70c438d221765e92fe208242
SHA256 e70c9207409780ff644c9b709bc9589f47b6706f7a8955f30afe2d607c8569c6
SHA512 6679a852d4206117d6c7b9714cdec6a95f4c6d6ceca2a97326db94e831ba1467a6ba40bb4e916ee03515f134973f278a477313e7f3d01e8f8232e53da8506d24

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 dca8aeff021ca690afd95d3b7f7815f6
SHA1 50025fe1f1a1ab760fce0836b144b1805f8223ff
SHA256 027f8c690f74b7ba2afaf3304f7fd8964693a9cf8ec877ed996ddc4182b55bff
SHA512 ef40232e4a3ea0a30a34d3bf41e3f2c46946f9fd0cc5573b016035512dfbe929947d57acbf34b3d740bbb0963e7672c8256fea6eb7ff76f2608168268f1338d6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\5f80746e-40b2-48ef-8026-f4a42bc68b1e.tmp

MD5 29e73b66d25731c8ce9723924e6f27fc
SHA1 8694e2a99d781656ab1379faf80af7ac21695b47
SHA256 62650e2c0a3e914b00a2f8de689924b7de04c3983da2a1c773bbbdde1fab078d
SHA512 4b69dedc64f0d88619e7b84db5ae5b2758ab83f7fc5836bab45b4452a2fb1464b632c6c769cd563e87277a7730934b736aedcc67705c3f26d2ab712ce024efb5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 d3aa2afa8a47633fb1906681c1c5b9ab
SHA1 0e4ed35cd3ffdb0acd910a933358deac3f6d90d2
SHA256 aee2ff00ddc0bb84724459947f0a08bd5d028ca34eb8010a0fbba6e5fa0a2b86
SHA512 df7c7b37b22e690c6e091ed6d4cc2655a044c8020424adc321c417836ad3a0ee7334d8f3bb3cad6a5c40d063d62fd64ede97143c437ce956826dcc7861f171b3

memory/1784-690-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-689-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-691-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-701-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-700-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-699-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-698-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-697-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-696-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

memory/1784-695-0x0000018D36DE0000-0x0000018D36DE1000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

MD5 838a7b32aefb618130392bc7d006aa2e
SHA1 5159e0f18c9e68f0e75e2239875aa994847b8290
SHA256 ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa
SHA512 9e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1

MD5 7b7e899eab30ed6184806302cb72a561
SHA1 5629d591672781d64818e55ac0c5ee86a488c004
SHA256 822dec1d8079518c0c44f7cd49f14bc937170382db784dc50f963791a5ea4d39
SHA512 4c9ef2e22afcc74915765648f09bc12c5449fc709f077b482b4a2ee9ae939aed89da557d67d2e62f8a794f801290fec9a2860f7b5ccb4467dd82803d77b29dd7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

MD5 6a8cd27070b1e2e190e8827e350b540c
SHA1 3c9572015ba2a75f7b4ca32c47743ba38624258b
SHA256 5369f5661807450274f32821d22605a042d7c220d3bab1edb91bdbc009417017
SHA512 a51e87f9297745939d1a4f35a04d021c4622e0b7283ec41f3f84e064cf1af93e5df0935ebd3ae9336f5a6b0c8b9f7bf3425f90a4c836c7ebb430d14d183d0a31

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13361983737082964

MD5 c25175ed628db0ffea04aa3ad4e72c3b
SHA1 8861996efcdc432f859c2fdbf379135766bed9dc
SHA256 7efa84deb8e65bd8af91eb87dada3f3be450838b011ff11758b69743deffd8af
SHA512 668afc3423b590195d18d0874a13f8329afcfe6d68602ac3339cd8edf807c7958ceaba5ec8eb774f3a3494c7b0840117be27741d308d5744f7b7014b1c3e565d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

MD5 874c9a01f62e77561bd4e72770a3bd69
SHA1 214696d48a38fd7d040ff6b38fa0a6bba3130a2c
SHA256 cb247aa5b6a81a1004feced775f7232d22037e2dacbf68d67abcc16fbecf3723
SHA512 cf079edfc48a486c0abacfe946f021eb77f88f505bbb131e581e34bf1ba8f80981616033586313c5bed6b3fed1d9bb1d50707171665b9def40d5d2ea152981e4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log

MD5 8442c35547a533a217e42223820f4730
SHA1 2f06ec2294cd1b68ad9c54e38618aca96936a020
SHA256 ff197651bc93253ce61f99e934e8a15f1f5f540bffa6638ee30231bdc67d146d
SHA512 ec37f70e68cb9d89c9e6811fa0463921c5bb29bb8db527165fa414b441310e1d0ff170820660bbe2d0e5b9cd6c198762cb03577a795544fb587c1d71e24a6ed5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

MD5 ece70d3c75963446f6acc171c731c6b3
SHA1 d08daabb225a1b3913af557d9737c94f4fe929e1
SHA256 dc9e77d396aea2c54a082037052b46f8da1f743000a6043ed2f125fe756fbf45
SHA512 31edb7153c780205a393d4502ca7ee691b023537c9c9cff8a492aaadb2cbadf3050bad8ddfb098557841be3c968e2458c5996c787e7e0db5762a7eb8facaad34

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

MD5 2e633341e80396462997f96aee9c3e8b
SHA1 60441e0bb3626731ecec3a49b2309764808d275d
SHA256 6424d3359a57af998081dfd446dd60d237808086e427ddb29a8e28b9b0fdb8c6
SHA512 4dde2e7c61404e9d77d0a28fe1c1ffd337df74bf02ce40441caf47b27ae85d41f4914fca6e9f2f6b202b238aad9b4ddb95b34cfbf9de9956a1098d2a0d7746dc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

MD5 b18fe8296d3293304b6d5fcf5e06dc83
SHA1 d9ec651293a52f830fb96b35ca3f5d13243462ec
SHA256 981c8b8261d1857b69ba16594d0350175262975a4c1cf1befb451726280564dd
SHA512 e3b839dd4f8f7dd70d983b54262de4ac26348ae4b4d7248fa0c5762287b463c005b182c37d1e0eb0b103ab275a289299f5e9d2607d623a8d4212e06b987a876d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data

MD5 2d9f388f757665b4dc4e5fa2f32d8857
SHA1 2aa7209539df62c887a7b2db999674c240d1dcd1
SHA256 04e04ede0aab967fb7a255dfca0321d81dc80dd05382b6b9b88ac6219a3624f6
SHA512 415ada115375798fc35def3649dd398b56bd51a37b17e60dddce1185e8fb3fabff5db303ba8935f8bfb2ec7c7cbbb7d5798a6c93fd8a298305e7cb35dd7b1739

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

MD5 4b83f13c4546c914094f06fdb44d96ea
SHA1 f0cf30ad5fb95f5b94c5ad2654bf6e8d0f100b52
SHA256 ac669c7c4975bf454c0a93c2766668c33ceb9496d419e98188208c50e5eb28d9
SHA512 564127ae8b85d984efe64ec2634af08dfaf0b74797c10a1680550ab68020ea46fbff2b21dd907a9969cf27d1e8c96566774056449615c7d3f50a63b15eb6f0ed

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1

MD5 28c7b4fa470ee03e83e560299ba23ee6
SHA1 91fa050b192921b2a59f137b1744a8c51d052553
SHA256 4559d102c35c6a64116fcb16665ea411434303a3c03422ca9088fb4049987987
SHA512 937129daa9c2c5b8eaeca8f64ce7142ed77f5b9e9b3522b15b678f91257718d74999b4a72b0c5a433b5daf33001df8901adeac8997ce4d1f3e02e85d5f99f075

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 f9fa6b9af638f3b75cd3818688825f89
SHA1 667d7cf91b28a278e24c67694a94d35b28198d53
SHA256 d5d94937cb05e9f416ba5e2b30d8e02b807f8e13d18e653c5c8fe7d462afb37b
SHA512 b0c1f5b6e8ae1c3e114302bf2f292bfdefd14da3b1fa30e39613f718e7b7ae658c3bba1f6203f31f23ba92b57bc35b8b5831379305cb7044ae666545bcb238ea

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

MD5 58d5e3cdba0edc2859e184de1fe26430
SHA1 4784534fa69d4ab951f9224cde25e210c7382de7
SHA256 c42987e70009e53e720f9359b482dcbb3359c7c0f968d83036e7bf150d114a82
SHA512 d234e4b6de931aae294f2b3d6d584280476e41ca52164138ce76a71b48a81f6276842fd13ffc792585b287ea74f9e433cf6fe23eaf93894cdee55ee51add8e82

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 e6e7f8f88153bc16dcb4a26fa7f7889c
SHA1 b94f8dd116783297ad6bf322c515018e81ee27b7
SHA256 e9e74cbea4757e374373c8f8051479613b87c208afa49d7512fb740928db0428
SHA512 5edbe66a762fef53ce0b536fdd3244294f45cf037aac0a2dd4bbbe217ac07a2a791d41a932f92de7338da34f9405b0c4bdc0d5bd31041e03e56c9f6e4099e5dc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG

MD5 9fe3e28e931c64a57e573c33a61634cf
SHA1 5f6fef2fde0d0b3d8a5878b3fe700794eaef6140
SHA256 9dba2440e8ebeb20de11998fb2ca6d071254f0dd6e6b3e2c68169248379e407c
SHA512 344d41cfa40bad701f871d6132cf5a5cf5b8eca47bd154f3ddf3197e3bd41895a56941fb27f11399758c557e54c7fb5a42b47f8c74168384fb341339c0b19ebb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3

MD5 bf01705bf40c9e55075aeb4c3aed3e7c
SHA1 535ca01dbc20fc22b3f5b9ab83046fc08d5f6c1c
SHA256 d1c9c8a97201cf24edc5ad0d6a630eb6dea70cab7a7a6467f6f770a43081cb18
SHA512 cbf8d3303281798155af2b5a18e036867a17593c88673f94191e8afaa765f564bf7afa2fab8101a85936b96ac1ce1443f80f11a0f70e839c79dcbc29b73265ff

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2

MD5 a2c2e6bebdc797ec1cc24562868b1c9b
SHA1 3e0c35320304f315b28336523f15609aebc0e0cd
SHA256 17d594e95632b57062b4de538e070dcce4ed3e4fae29796bffdc546ddf883418
SHA512 9012a18be6b0fbd98c3a76cd76b5ac56d38405ac69e03d32deedc47060d645cc27efbbdd4499747c4f753e2066d5693bc2c06f1756105182bb0cf159b6a015b8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG

MD5 d00dd2c61ecebb0e0fb9a1bba1f52316
SHA1 0d9c753e8aec13e27fe69ea8a804a2f2ef590e03
SHA256 37da188f3aa690ede3509d208f21f511b5dbf1d64f70f068e0c7e9d7b69badf9
SHA512 52dcf2167c23e7e1bf16b37c6fa5358319fb6b5fd419d5a28e1016b8d8ed4bdea184fb7cbad0dced950524e3da8b1fbe96a7e6ad2e9e4aedf850c6b137ef9b4c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG

MD5 401e8cb261210693fb000e076496b98b
SHA1 7c66500387c38987b33bde14b14a7e6dd58b40a8
SHA256 4aecebdb33928b13d92d002cbbf714b2974d2887dc7021308c091e97b01a6267
SHA512 f63c38c86c7be689c915bbca3f55aa1342e0fdca16f0e6815195d88c4562041d0d14e1821af8ac05b842b5825c9bdd955209d1438477f92d7be7ba338059133c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1

MD5 c70849b7287655c126301d8fb81d09ad
SHA1 101e636aae38e75937c179c117574a3895f34c74
SHA256 ab0d3e36762143469269fb6e73bd24c0dd1a54c00d5b038f5d8b85d97d33a16b
SHA512 8139ad654e704d077d02ac80ec95f9ea0a27ed10f3570a8e1f82def4c6ed0f10e9d3ff76faa27cf8fe868adfa28fbba93862e25da0ea1a2e5f6140f8dc1c46c1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

MD5 d055ab976410dc69ddc5c7b14f104ce3
SHA1 020a0213aaf51fb49626fb4d35f8589a819ac8b0
SHA256 e6b51fa4b124bf7613bcd205abfafaf2d9243dd97873baad6a07242be03e4f3c
SHA512 035825803913101addf0fe18405b6b96fee05c6214cf9796ad875d99229088128146ac882f89c7d4a450d8ed53773970f311e4765c146f78f244584fef681241

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

MD5 2db88b1fbd86450ade993db8b07fd0e9
SHA1 3fedeb0a725bdf1f17ad29c0a67ccd238303f1b2
SHA256 882bfed7f4c3f52ed57a68c0475ae8cb785d3ba2e75452d76bc5e005d11cb60f
SHA512 377a69a33ad428c2d87cfc18c4dbee35e308fdbc726810ed78217510413ff69bac32769b6117b367fbd1e22754a4b45d602bebae61f1757cda2a76738f7ba6dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

MD5 a19958b9cfbe745a83efbf59c562ed55
SHA1 330e0907e22e7ca657021b6eff2c4df6460d7dfc
SHA256 364a0d6e117ae83c028df9ee81027edb95e199df57ace6099a62de7f06c4a06f
SHA512 63e5f0cf8d01798fdf2ddbb7c07b00c893e6cf5a0fe7a8a52fd15b008e9eff309840cc79d01737e592eac5cbc9e7c457817956438047547f89dcb017a0dff773

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

MD5 20a2f58e0efcf29f343e3816ea009b43
SHA1 4a6686e3604568722388114a0b6c8c63d0d3c4f5
SHA256 9fa96f87f237e9d4827b0abfae0cdfca1d32b67b6339e6b96e6edc505c5d10dd
SHA512 19b52f6ee1c703f020d9c9b6b89d8ec8853cec94f12a79d4f437af4e2184588ddce847f3691f0cb136b9722a211944da8e759e62735c195072c0ebe5bd8d2571

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

MD5 2e2f24f21f92a1abc952ddc4f9a3a981
SHA1 0f629e8f4174d9ac2bd3c3b45f88a03760b15427
SHA256 39bd4d34e3ae96622fdf4035469f67be6c275e1756308f3d95f0eee5e78f477a
SHA512 d90ee78f226debe92095f7d45fbc671ff7e9aea52ee7bb1fae088e5aaee283519240907e45aff1aeb535cb8678d26f6c2fe89445f30c0b9be5e5703bdb404ca0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies

MD5 17a89584cf0ebeeda1a79aa2a612c21e
SHA1 b4baad9e3fffec7e04529bfce365fc8fb5bb5552
SHA256 1a34916511b2f0456f5e466a603ab10f9def76b8349d6a18c67b40b26f417fa6
SHA512 c2465061cb68535ad8dc2e8983a2cc1c4694255daa7838a2b41b5577e81a25fda92a6d1f11a737b66767f4c61f8e55718b795c927501bbeef046d7ca3e4e23a1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 aefd77f47fb84fae5ea194496b44c67a
SHA1 dcfbb6a5b8d05662c4858664f81693bb7f803b82
SHA256 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611
SHA512 b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 75bb4916497450ca8b3f7631e057ede6
SHA1 fb1f662b7ca8ed79d3e1aa81f176819ef155cae0
SHA256 f321b8be7927acf18db13c0b3d8c6c77e2ef9a6621c7c5bf25da5abfe12d0600
SHA512 a0451a06db29436b01390f29c8ead73e0ad7eeea0826599a94257423999aee2be96bd1698cf7e620104c38120bbbddea1518a06977cc50d2fdc599d08ff8c135

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 8556f9dc013d70f872b0e0e791aca858
SHA1 94d436da765ac0110b5884a6cac17abdfec8f751
SHA256 fb1c4229130222af4026dd77ccaaaa29fc1acd520963476c855a0e3b3ffcd36c
SHA512 2ccc70fac59ba4b5dcd6cee3a2b7cda20f40d5d62c1ce86776ea692824163684f89c28f6a9feffcb478c39ef203d90eed2419f3cc216fdbc940b1386319d21ba

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 487bba0574f799eab6a31dc8387d2c78
SHA1 be4680dbb7fad069e081a4bbe784aaf46e80f742
SHA256 0a4b05ce3f3e470afb9896af0a5475dc406251adff2e13755cef2c54e9f9c35e
SHA512 ce66a0bed6bd30af76f3924ffb7e987cf08797fce2596ade812a984f53af105f24eea94da68bdabf1a148946e2c3925272df090d57bc8100a85f844a9ddc04a3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\254cace7-a40b-49c7-93f7-6f9b67415a90.tmp

MD5 90d89b1b1d10c45177d29ea4a345e455
SHA1 0506cbdd85622488026770b4a65129c5c5386d23
SHA256 7caa3fff3635d88d48407b47ef9defa54cb9aa731a67e637afca70fc0557b3e0
SHA512 86dae362195218266421b153c70adab04080497078c9d926de05e075856e274216bf41c842fac27787461d571f464bfef4c8fd2f9c33c30ef5c8774e63b365d8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\dd1cb63d-f839-46aa-936a-b17a47d31374.tmp

MD5 5058f1af8388633f609cadb75a75dc9d
SHA1 3a52ce780950d4d969792a2559cd519d7ee8c727
SHA256 cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8
SHA512 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 ea447553aed941fb221f584a7c4d3ac6
SHA1 a21f9245d3867ef9164b7b629220336daa00f771
SHA256 2e71aeb07ec23d1aeea13e7839109ba30ac866ea99b084528d8a1598bbe235d3
SHA512 3db432e36ae3461058a410fd40173d11572712b4ca3a4ee15c4076a590ac4aa0ae4009b80c3f88cb9597fc5f4548e4ee3b5811b9ed4768281c973698bb325e7d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 bf06b4021103445d0efa912a88b3ad66
SHA1 d1a68cb86c57d9cbe914d60fd611628bf6ea7c84
SHA256 009fd607d97451fe3263cd482a122d4556eb7fdcc212ffe627c1e61ebd2f0b1b
SHA512 a5db08a26767ee66eae7a3f58896372868c2d00e192685203d7a5a42b03e8b1542b814697956e32823727af6708b97b48f0f08997423e1d258dd51c8e90a6516

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 589c49f8a8e18ec6998a7a30b4958ebc
SHA1 cd4e0e2a5cb1fd5099ff88daf4f48bdba566332e
SHA256 26d067dbb5e448b16f93a1bb22a2541beb7134b1b3e39903346d10b96022b6b8
SHA512 e73566a037838d1f7db7e9b728eba07db08e079de471baca7c8f863c7af7beb36221e9ff77e0a898ce86d4ef4c36f83fb3af9c35e342061b7a5442ca3b9024d2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 630d11d15be023c0ec4e9f2f72d98390
SHA1 a773e031dd5ad4ef9e078972a567e8305678fc90
SHA256 aa175f801292f295917aac215f6fba92077a8f467b602d94f7992ecf8351eec2
SHA512 88c904b2d42d1007fc766aabfbf80a7ab5f5488b5597746e35dbbbf2553c4714067032d993fc96e5c3d01f363ed8f94b3c9e5a893214d7527ff0a6bceed1611c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b145188552284220c9149a0e44b97223
SHA1 ce61ccffdc1cddb3496b54b3c47915be3b50afc0
SHA256 46eaff2375f5dafb57833291cb51264a150584411a0a31b7969acb3a1b2681b9
SHA512 42bc1bd5e1bb52d0150a0c26e8d246b7acc9660798d5fcefbf11f8424b7c27c59b7504259e143feca10240dceb0a6ef207bd00e481b62fc8557bd3c30e09adf6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 504b3af111494a0129fe9a9d10268e62
SHA1 f771de1386ac4d9ab884da305ce96145379ba0cf
SHA256 f89eb9e0b457a51ba2e934f6211b38ff2d935d98f746d47dbb77bc4302704436
SHA512 4eebb3a34ebf91ef1bef9a24880c1f36f05ee7d70053e5db0610ce8e0611897bd024ac323d1e87388fb8c76f752d3220ed898a851cc586661647e322ab3469ed

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0

MD5 b4946744cd1e4e42aceebcecc196e330
SHA1 38821d938702da5caea276af491575a2cd548ba2
SHA256 039c0aafea5581789ecdde1b9de39069fd0d053de1bedd244aedc51e13d845e1
SHA512 d23490d47a4a61c7de5e2494ed6fe7aac1a62ccb23c3c6b6e5577318b917ae324b1c2d45e45b8d0b8b1a4fc1aa9687779c44d653180b96cf8325f121259040c1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c10ecab5da75f75e107a87f5ca6402f2
SHA1 e376321c35aee0e37ee583478339760d2e8303b6
SHA256 3447575c7e0a5e459e8ca488429e09d28d4fffce77010682208c0980891f2091
SHA512 54cf2f9bc0d246c135397d8e1628ddc2e56af1533110ff948bc0064a37498bc52395ee045f4ea4984bf49f7dd7f067e4b01079ad07db226cdd25420bdcf3d214

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 d1020af0bdb9d25fe06f4b6c8b99ee9d
SHA1 c85eee5a353a31342a38729ee2937976859d2119
SHA256 2f69b80ca607fb11766bda91784fbd80687bd5ece02de3de784ae63c05f9ba84
SHA512 b58d7cba3ada906f6da6ffb29ee0a8f18d5b9a1609896c3921c19aa4fa175bc3edbdfb72f8fbc74f978491e418c0e212f437f88c9727393dcee33797f6d3b62d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0bbb60b5cc6eaf62637e42868eba75ad
SHA1 5b26e4bc2f5b05c9ec39334b11b2857e9f0ddd70
SHA256 3d2b9a60008fc0e2f57fdaa400081bb4536c0485cda2ea9ceb692cdbad0781d6
SHA512 4d2d4cfcf8aa5b9d53b4a3ef0fdbc71bb33da704271bd09ccc8aabe4fdf1cc2d7536671515493f10d9ef1ed5e6c9975ec7e8929badd9480859c1532283c9b5dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000057

MD5 8020829282f8d6133736f8079e5665a1
SHA1 64ee9e05894d5f726b5719c7c35c10dfa8f863d3
SHA256 4035124285f7d7e8588e4fe69bc1bfe663090e68ca6b1a6438c0cc9de22b6540
SHA512 68a01229ceb0d09a76b646db8a7641c41b98cb89e8632d6a0261437fba750b01f8b8ff29c1f70242bb3cdba1850d9e8c31c5b7ef69ce5ad2323801b4f3e0503c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005d

MD5 f6e79e8c666ef12e078f4993ae35fc22
SHA1 1000f2c61f9aa7565dde57e5aec1f8cb72df95fc
SHA256 e6462ce39a8c2270f539dd16489608626eec2f0d6e7bb3808e58894aae8827c3
SHA512 3afb0faa2b9e8d2b024424d7a13a153b391bd04cfc4e0e1a2501643e440b61ffebdaeaba431ce14551c0876e9ab8f7af26994a3efb1e2e8fe0a74fa0cb11b960

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00005a

MD5 0a7b330d35d1f90a931ba5a5841128d4
SHA1 09bdf4c09b15a13ab725e036cf5b77bbcdb413f0
SHA256 88b3bb0764ee6edc9a3142807bf0cf44ed88ad7de857bd213102319e106701a3
SHA512 e71bce3e697d9166369751ebdaf24fc7f215b94c2ffd3448b0364bbf34de00305318a45dc042e11e0cb0dbecfc4f59db532d4a9796e54f84a5e2e1e020c939a0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.vice.com_0.indexeddb.leveldb\MANIFEST-000001

MD5 3fd11ff447c1ee23538dc4d9724427a3
SHA1 1335e6f71cc4e3cf7025233523b4760f8893e9c9
SHA256 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed
SHA512 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_www.vice.com_0.indexeddb.leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 fa193cd20d09ba4a42ad1a934cad9605
SHA1 1bbaa4cb1d4e7edce0f91a580841968bf59006b7
SHA256 09b364139d17cd4cb8c30c4d5c1dfbe3e9226870276f8ac83997bc799fb3b410
SHA512 bca33a4ad8033b48cad0ee4f1e27349fc7f7fdd03b0ecaad61eb891d4e803b3aba91fa745c33e68dc32ee0aad50c4438bf4398db69c2d8c0cfc1b497c702087d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 caed40f8f415bb36807b0e946f9b6075
SHA1 3c7db1511464bfbadab2591a3fb86dbe34612e09
SHA256 595adfdd4e3f1b611204d2aded3774ad38ec313ec81271a6577c83d89e323d77
SHA512 324030e6e54a8fffd2bab5210fe4886101de1bdcf22202832f88ff2dcfedd975723b94e6fe189863f305b6aece55d2c4c824db22f03195c00a898893d31297d0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 60e3f691077715586b918375dd23c6b0
SHA1 476d3eab15649c40c6aebfb6ac2366db50283d1b
SHA256 e91d13722e31f9b06c5df3582cad1ea5b73547ce3dc08b12ed461f095aad48ee
SHA512 d1c146d27bbf19362d6571e2865bb472ce4fe43dc535305615d92d6a2366f98533747a8a70a578d1f00199f716a61ce39fac5cab9dd67e9c044bc49e7343130e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 7024c3df44e9a8f9eaabc9300b3c3c40
SHA1 d127c97bc9470e9afbf535ca696038857c5eb748
SHA256 5e99d2f8387e14e3e4cd32f77ee7e5e66373fb542b3308aac370032b33888eac
SHA512 5b64b759df37ffae4129e512e32f2e496211af714883369e597fc47e054af14bf95e62507d7882fb7aa63fd71f075adffa06620751f7920b2fe16600c0ee5f2c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index

MD5 5a455859d16a5931fd8dad1971036aad
SHA1 e5e9296029bf2da286df242d296135353972d2ac
SHA256 4f1968edf0a1e8d0d698ec2b8df23a7ee772a182e51d4b9378eee09bbd269e64
SHA512 eadf2bb1d5d03501b986336d81c8ce4f3a8d7b711e4ac6dc862a7254c857a12598849a832fffa9afe759190f5f1c9252fa6c002b8a1f9672fb7eb4480df573fb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8cd73fdb86a2ced1e909bd08ee756914
SHA1 40851368c450fc51f1a9af652a2b746b03a37228
SHA256 8b4e4fbd409b0920d81065f20309f18b466ca300ff9eaeb61dc559ec8533e236
SHA512 9621e8367207dcf6802e831c642b9703385d7aab9c521217bc34a1f3d884dc010214a14d77d05301235a02720ccacb5c1ecffa6e607421494a3bf357b6a56625

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\c5ce88bc72edbf8813410e12eaafa3c8e5ceb644\79927fef-be40-4ad5-aa48-11b7a3852447\index-dir\the-real-index

MD5 7416f48d335a3dadd3963f4721e7e9a3
SHA1 b3c90ec4de30738b7517ad677c6584adde7b2a60
SHA256 e8291352abbadbc0ddf16b247be587ec182226c04f425dbee5aa0b2a9997393f
SHA512 d872ed6e78ee55300bec19aa2bbb43e32426f79eaf73708a90dcfaa24d2e5e847f64666255ecade8bc098a499bc8d27ffdd10c97b0fe4a661f436ecfc4f8d727

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 85f55a783811f04ac79dcb45ab73668d
SHA1 8799eaf34cb6e11a83a9bbe187503ff9143c3bb5
SHA256 58b070c58925bd3cb7f2ebaae0fbe19b04690c45b61a720cfe2b3c138ab755af
SHA512 b5769184661b1c3f38c9b4715c589d9e8586d22a7c40590a5af68d09efd0145d8d779115ae9a82f5c699eb3f482f8d294e1776ae9b00329c9243831a572eb675

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\c5ce88bc72edbf8813410e12eaafa3c8e5ceb644\79927fef-be40-4ad5-aa48-11b7a3852447\index-dir\the-real-index~RFe5a129f.TMP

MD5 79c8c9c32669736c033dc88eda625ef8
SHA1 775b78e7ff32d91a51d14a090895c880f6b7c145
SHA256 761d99e6e17add7884d5e10a8b07aab4c6b29d718772468e67c4a26acb3ab4ba
SHA512 06ebfcd55c772d6e567146592cbe547dd807a5f27ecd768c96fa58c7aab9adefc829539f53141761fbc2356373c7f5a4938d6ddcb4a7f15b962f2d5411b06d5d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\c5ce88bc72edbf8813410e12eaafa3c8e5ceb644\index.txt

MD5 f34b01d9cdc862d2e8bf91f791932371
SHA1 a3a1389ac9364d38bc11457d7a2fc42068af86cb
SHA256 30d782d3bef6a61f2fba7507798567d41be4a501ba073af18350c22820875aef
SHA512 77b2e40a928ebad68fa7eecf153f7bb1a454b096f332c17b69f61f704945f8859792b1812c959cfaeb242797fe75749885605a2426c0d97d72aa9ee4132df59c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\CacheStorage\c5ce88bc72edbf8813410e12eaafa3c8e5ceb644\index.txt~RFe5a129f.TMP

MD5 851214dd6593a21e8f2562095ca1c858
SHA1 6d9ad9b4eda10db902e047309f55b3ca73f45286
SHA256 b3c3d16c1506874c79e40af495cd5d34de5f434a0f2fff4cb014bdb8cb303f5a
SHA512 25f091a942cb47610dcf0b0198e2853092d7e281215a1ac0c06e2fb6f8750e497fccdb947b4543283fda5e5fda3a3a8747b4cb77d2aebc40e95949a1ed2e85e0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5a129f.TMP

MD5 ce120c94a639ffad3a420e2f85dc5764
SHA1 dfa3b80fb0bbf76da46d0a390d29bed1f4cedd87
SHA256 cd408fbcb6c729f3bee27217cf18208f9fcb33c308cd07f8419a7e194d12d1d4
SHA512 90e83d09bae608329625e113937b4b8d9faf71c5e3e441cde40b00f9ee1e0357b03f9e9dd1f94a6a9c823c00823a65e5eecb1f5eae7a10cdc741c9b228fa6dea

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 f11365c3383b2dc72d5861b9f8bb1c5a
SHA1 7e8a801f11d26cf5832ebab2ec9094f6f1a8d30d
SHA256 ac7247b4a796cfad75f9d1f6a261e63067314a48742d23bc4184fa0953d9cd3d
SHA512 829372a7e0f763d86bea64fcada5c8b8288571d3c8cc126c8ebda269c60663980061884220f075980d725d3db330d8f87d77a7931d03e12051a0da4be6f7d554

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 ad77b85e9862fdc3fef3857c82cb3be1
SHA1 6510d997c8c84aa03ba7c433439609467369fb2a
SHA256 b8ec897056a7cef7c0ff8593927a15fb907cdbe3cc9c07a31bf11f6e1e8aa4e3
SHA512 5b762d1859b65963aaffb44f30ddf4b5bdaf455bb67aa62e08d9aa6dda9d1c878214b1499d940c446b2a9668654d827d06264234420c9b6a8cd5472bfa035199

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 14ccff02d99cb14a99d31126b508d4af
SHA1 e09a2f551d0c310c2e4dc8bca4b36215c9a7ecb4
SHA256 610569200243e9df95604203bd7ef34cf0282457830f4e510d21e80dca0b6706
SHA512 af4b65cf22ae7278607b2e0f36ad4bd34486acbcb586d2f9962f0fb5d0806ceaa475f0c5e23ccaf172b5188abdf41eebcd49884cada4f155bddfe197755fe215

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 edc3dbcd473094f4d8e34db6bb2a8952
SHA1 b4757c776889086e3dd8bca3d35465c26fa776c8
SHA256 c539f6b645281016c7b7ac8f06fdf98bdf9412adafb0486d760f7f2825c8cb2e
SHA512 6754cc789e9b84706db078d2dad7c2cfc5719badf316b6234725c0786a39f9b6e8d9c001c2290bf38f27b8426e27f23aa2af83e79f694688fdc8925131156765

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000078

MD5 e955953b801c04327c1e96c67dd3c618
SHA1 f9061d3780f153e863478106bf1afd85132bccb0
SHA256 e8965a2d52ef25918ebee58ab6971745d396177a7943acf1ed53a65bb4dddd45
SHA512 6318ff1eb838954dd73dab5ed891d47f4f39089fa5e899d30183c32269c5620bd09d169af4cf8303e3d5c2ebab23cfe9ae5d9fa5c3281023abb009f66a25782a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 ab6ab31fbc80601ffb8ed2de18f4e3d3
SHA1 983df2e897edf98f32988ea814e1b97adfc01a01
SHA256 eaab30ed3bde0318e208d83e6b0701b3ee9eb6b11da2d9fbab1552e8e4ce88f8
SHA512 41b42e6ab664319d68d86ce94a6db73789b2e34cba9b0c02d55dfb0816af654b02284aa3bfd9ae4f1a10e920087615b750fb2c54e9b3f646f721afb9a0d1aea3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Browser

MD5 a397e5983d4a1619e36143b4d804b870
SHA1 aa135a8cc2469cfd1ef2d7955f027d95be5dfbd4
SHA256 9c70f766d3b84fc2bb298efa37cc9191f28bec336329cc11468cfadbc3b137f4
SHA512 4159ea654152d2810c95648694dd71957c84ea825fcca87b36f7e3282a72b30ef741805c610c5fa847ca186e34bde9c289aaa7b6931c5b257f1d11255cd2a816

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b71ad26ad350b21e3b68871b9880082f
SHA1 834c848ee4807ad257201272cce08259bd750385
SHA256 efcc4aa0ddf796e77ff62feafa0e76b15ce7b8a35317e881da200c7ada30946c
SHA512 a2c644700e7d28bd21435ee0e414409060a2209ce99426bc139e66e0b838f550b733a4ff58d6e32b1d7ac1e98ca1e1a96f835b91f068b7bb092c1ad7fff3a17a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000079

MD5 1fc15b901524b92722f9ff863f892a2b
SHA1 cfd0a92d2c92614684524739630a35750c0103ec
SHA256 da9a1e371b04099955c3a322baee3aeee1962c8b8dabe559703a7c2699968ef4
SHA512 5cdc691e1be0d28c30819c0245b292d914f0a5beaed3f4fc42ac67ba22834808d66a0bfc663d625274631957c9b7760ada4088309b5941786c794edad1329c75

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 648a1fd31052522d24d801b3518927aa
SHA1 ff83c3b30c7d49a6d475488452b80a14ae198289
SHA256 ccdb35659b7d7e73a9fe7d4e2ea260f746b4f60674d1d5b1ab2d3f9105c1e364
SHA512 a1ce569f376bef8f8e9a2ea2c3b84ae7677a3204243143552098dc38ab80530d86ee2527c53b168f4c76cd9428328593be6354b95bdd9237a5f24a57125b6138

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 526d5b0bbe16d95dd7ab39d8dfde576c
SHA1 a5703947274feb3dc9d6dddd8f8ed7b4186e5775
SHA256 037ed95102fb521e59eb7aa4f1137f8b8020f3bc7b09cdece6b90a4f646e01d2
SHA512 444052db4cba65470935c44b8b85809978e37c9d725ff1f891901c7ee8ef60b856e5ba4783a7c00de2f98d65abc4558234bd1a4180f1f42d077d9ccb760b7044

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8ffc95fb39c93699baa62ed8a04d4355
SHA1 91ee9a54a32eec288304e9adf7c1e7b95b3020ce
SHA256 6c4e1d70bb488dcc133aa964d391b9c2f993c1609efc97bc93d1129c40c9f590
SHA512 b252d0c757319f97ca56c02defcbdf4077c747014e76c97344bbc33b0d0b97c3a45f780a294d1ec38433a896c255f1f7374bf3d876d636e719caf8d0cf345d45

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 0baafc90f327b65f3e0fa48c6d98894c
SHA1 3f0b4237e08f20996437288a64b514da338bd4e1
SHA256 d0a395e96669babc4785e3a0dde7587f41cccd274802028368a1a1a76f6a53f4
SHA512 07919a6ccbcaabb0b5f507d59ecc254c4f3be3b59965bb8e9d7b889ec1d0e92c7efda55484f532dace7ebac1454fee132d7cf35fb6be64d408666c53ddbc868c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000003.log

MD5 88282bae5ba8e5f29818508f064e4e52
SHA1 51584ee19010bae49531e311879fb872f41c1f1c
SHA256 733572311005258bf67ae3c70ee84b8e6c86c916c4815c08467077ac2d1c8797
SHA512 d72db4099fa0cc258905e2cb4dfdb813336e3abc78e5dfb20ef50b200c4831bdbc6b8f8f63cc0cc0fbb08fb56b012ddc0842e25f1a5d9756b62bf5060a14ca23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 f9c007cad4623719bfea5520653120ea
SHA1 3def07fc3e2a6e88db8e43f2a8b0bb6c1abc5838
SHA256 900434b84eef99a3973db30468a27eaa9b89578172e4482b9b3d7d7a60d27e1b
SHA512 9ad0221af4fa0d436afe8bb16a2fc58a0487e4e9521c44d237629c5ff776614133188c36652b73cf4ae6149523c800bcab41f09bbc7eda5cdc2c64f3750a8e6f

memory/2084-2013-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2012-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2011-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2022-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2021-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2020-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2019-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2018-0x0000000002470000-0x0000000002471000-memory.dmp

memory/2084-2017-0x0000000002470000-0x0000000002471000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 73918102e9d3cb22c142cc5296adb953
SHA1 2b9bc2001bf3835e00f7993c0a9591e665cb1417
SHA256 fd52a9f73fe3b6b90939a343568eb684a63fd0d1e23a7292e8fbc1a958315d99
SHA512 158d5f39e81e954582aec040e7514aa8a41efc8b6ae4421ea3c6216d494edad6c31082ae3ad37e64f0ae933c3fa52e934980ca9f305bb78084a5d31485dafd42

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b79a931c8a3c8139bde2882bc2080602
SHA1 c4dc0318cd5112d010a16b2e28b31002fa251edd
SHA256 ddb0e2917c8251911acff96d00602bfffc2a8f7bbbc49d00b71b72b74ff71043
SHA512 8e370749211f0378d4fd8c87e54317446b0ad44a9b645cfbaa8c364a524b1883dce98b67ea63fedf5ef88cc88f12fad1fd4217e211ee01c2a23c327e588fca59

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 ebc863bd1c035289fe8190da28b400bc
SHA1 1e63d5bda5f389ce1692da89776e8a51fa12be13
SHA256 61657118abc562d70c10cbea1e8c92fab3a92739f5445033e813c3511688c625
SHA512 f21506feeed984486121a09c1d43d4825ec1ec87f8977fa8c9cd4ff7fe15a49f74dc1b874293409bd309006c7bbc81e1c4bcba8d297c5875ca009b02e6d2b7be

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 ff0b432dddcb19146ff4b5fe077dbb33
SHA1 1c90e7de80d9a342aaafda2034e2ee61e27cac6e
SHA256 9c122a9222ad633b0d67ea272805e7420530b03159919419edc9f1b58612cbb4
SHA512 64bc99b975a63795cfeaebc6878e00969607fe996ac81e230eb338144901e074818322ba2d55915d6edcee315995519cbe480fc87fd7c2943b58f5d9b7a7c12a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 5a29ef0b577bb47b14387a1b1b8538c8
SHA1 9a8eb1430b807af6c4907d74121fa5ff22dc8381
SHA256 e1ea3c557eed537b72dcd4460c805b5fab1d6b6e3a30502df45c924ffaa94e6f
SHA512 265a3238afed8c035740385feb6eab34b1a966e366acbc7896cb98162fb4a72598850e288527b7cff0103c802fe4b611a61e889de7eb67084754f82cab7f98f1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13361984008767470

MD5 7e482aba445c009f90c74341430c3ab4
SHA1 402bab927d992b6c3200f76dea6ed6989fd7ee4f
SHA256 c819bb6c1299d8c0428874b3c35408802d2065043dc91cc73fda3a0dabf574ad
SHA512 f509e733cd9de1d3412e8e329168ce088f03b5f33c9a016538070d3e0937887d90978391f36492b9dd5f96dcd178210faa7086567f51fd2a4c5dbbfbcd9aa28f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 2777763e3bd62a670b1abfce8ed5b534
SHA1 44f958bf506247efd302778dcb260cb2bb5aca08
SHA256 644dff1e17bdc13c278efbf25939870d1b81c4031c86611f19c1c7f57575eecc
SHA512 de976f285c3b3932e486e94cd08d620e663ef95f2d64cb3f0ae67d5d1ec3184f9049eb2eca908b3583dcf58144a0afea443b9a22ef7d95d58e3f405074fd7403

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 cadb9da91a2c4b2c95db01b76d57f38b
SHA1 fb6e1622ac654a4b546772facad0caeaeb87781c
SHA256 87a00f20910733dfe39c245a0cdd56172bffb006fb2d528c7c294f285f2a0018
SHA512 153bcec29d424a1649c0748279428f28df5ec90fb8557b37d46c7230126e40f2d91f7464dc3003651b2017901d2ce2e6d32a258b9b6b757c1adcf07aa80e632c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c563612717de703a2c6f183a73f344e1
SHA1 cc251cb8675461a87c2e8f995caca06dc51778da
SHA256 e92c1e86289500471e898d47ecd6adb9fe99b8c1a466256b93f64ed626936172
SHA512 e163b72dd52d9e07133cb741f4ce8e5f25a341df4f9b7971570473daa10773234153a52d403c8a8596f46c88954e5003b6377f40bda549b3f88b79d8233c08e2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 033a34bd5691f920f416ec35f12b4239
SHA1 8741a258bd3da0336d215ca19761445471a9df87
SHA256 62aa627ef5f2401128b97544be662e83725b71f42f69a85ba962f42e10db4a86
SHA512 5b5afb9a5fc76581f5efc44b6a46bf9513638aa7f716d08c52f8205bc3bee6ab9fd2c0fa518971372b736f1da8b62fd700775b9ee848d8e8823d80df2a401aad

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 a4e6202ddd4626961f28cb8abf92158f
SHA1 ab9e77a714e33947803e1baf6ad12678f615cc7a
SHA256 25eb7245b86a127386fd720f29c0ed7c37c6a4b1b08adeff1f3d417b6983589e
SHA512 95bc2801ba1e001947a67248156b7c3aef902a8f43bd0b12a57aef5a1384091c35ccfed31ab7e9a66a212f1801bd64b6c3cb0056a7b08c12f7e0e2ad0dda8926

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 83c6c29618ccdd89b6eaee413f2ef84f
SHA1 f49e4b4d17af4b4d59308b3cebf15503c1e87097
SHA256 66a27a9cc3c3803c52ce417ed4892d1ea20e627289a44b7d563c0d90f568afe2
SHA512 f0e5874062a121263f0b3e6ed1beb9d69bc6c81a9c29ea6c6aceb95b956a92415882a27445e4747aecb217a19da81b5fdf6f6441743dcabad889bc6c855d59d0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 edd71dd3bade6cd69ff623e1ccf7012d
SHA1 ead82c5dd1d2025d4cd81ea0c859414fbd136c8d
SHA256 befea596b4676ccf7cc37ea8048044bfa0556c8931d76fdeeb693d20264e50d6
SHA512 7fa9b9ef95db0ce461de821f0dec1be8147095680b7879bad3c5752692294f94ebc202b85577b5abac9aeaf48371595dd61792786a43c0bd9b36c9fc3752669d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_0

MD5 4a492c70d12795462b26d053ff093ff3
SHA1 415df2319e8e6357204ae1adb23dc5346f44dcfb
SHA256 e616890395224f14b7afd1e142c960ef85cc7ec564a7e28d5b69083d3e27d115
SHA512 d82138aad2a7ece74c5cb35e280d3eb1f9332ee0b5ed84b5881e608542bd0b41748c8e5cf97a517231b5a5042ad4698ff157bb63a63abd94d7189dfacab74d6c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\data_1

MD5 b517d85173ef6e3c6d3f04b9452e1a1f
SHA1 11fd043de4b1a40a8288db319aa09a4fb1ef0c37
SHA256 5de10b3952b9126861dcd14aa83fb6fa93dc5b8b109dbc51b1a328ab421f69cd
SHA512 79a75ceed9e52a3f57cbbe6208c87c0679bc322c2d3152136d92c888b4901920eca1c1ad8844858aa521ee3413bf02948400a86ae60066f9b9f75e0bb5d37e3d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 10762dfb7f0437f373445fca67dade67
SHA1 8f84278cab17a4d0f130d5f1d7b1c4bc7c0e6cd8
SHA256 fadee1451a1b108cf3f7b3546e24b4ead3f7ffea315c21d2d95614070f792b68
SHA512 a238c5e0818c8055bcb5fec358b88e9835c41ae3ebe9f9f7cd92452ecf5af5f786914f730650b70527551c798300da908e00dc0f92054256a2bffb46bef4208e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b854c086f9b3e3ed6ea33cc803fc00a7
SHA1 c4bcda3e212dd9e9064cb27472ababe08e2c1a29
SHA256 b079c5bde4e20548eb9dfe5983ed3183cccf8cafc9afaced74ea2df4fa58432d
SHA512 231acfe7263a5188a1a33913f247191b9b303eed0032b189b652a9a1a541a2376b3b204f80cafc168627741f0048b305dcdf76aa59497b47093b95270f8b3c6e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache

MD5 6d577f04b77979cfa48f414c50e9abd6
SHA1 24ba7767ceaef67b482d9d0835db3dd643d28940
SHA256 f87ab5bed7b055eaa981177272eb209a99870d29e97633650d4192c173eba276
SHA512 b56aa657b671d2c3a702368e4d1ab848a27bda16b185a6b94388c38e79d8f4b8ae699b64632eeeba0ff986df0271fdf685ae3484815a67706ffa3d7596497c1d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 c2c97528a984b6faf176ea826a04f1cc
SHA1 218e2e555d4be8160c239470b4f2e4ee52b9a756
SHA256 732418dbf3aedf7813afe696dd9d6270d0542c8630071b29dd490c0c3d038dac
SHA512 647a6b6be3be9fddb60523439ee2b63e3d95676a2713fb571e6e83f4fe2a5dce6d79b61791d6ec4a68a2e4a77dc538c9824f85b5dffd1700f2a112e64f4e6705

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 fd83880709ffb63b9a50c509aa05ae7b
SHA1 ae69f7c3e537de60028273e31193b11b371ffa11
SHA256 fb4640ffb2f20fd05e24c86d214e02baa9a17616f3ac01322c4b7ee80bba7cf6
SHA512 e960777405721a4772b207202e0406b47337becc769b067a71247d55b49402425c44e10df62fe119f317b5479ac6339e6d9697ddcfafc70cc513f614c0226d62

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3716621329f914445ae8e5cc6c5a23a5
SHA1 fff0cb07cce1d976e61e8e98065df2c0fc81f17a
SHA256 c270d390ba6bb574a89360f7669a9bc64fd9dde74221c4f7a3a022c58913f2f6
SHA512 b6eaeea06639910cc5d6f9d6124d5a17808ee386afab58bfc516b0b3e07dc6c76ba08174b0fbf2a0ce8aab1f64c927842061d9eda844be594f9851f20e284e02

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 56c1a76469f0c16242047283d6e933ef
SHA1 e8406b7c5f602b27a1a93d006664b383e834b375
SHA256 3a74a7442b22b53a5b469aae9ae0e5adac79088e6ac6afd275eec6e9311ebfa8
SHA512 99e50f25be704159b82e2753c02dab2f7836387162036c333433ce689d5a60e6a81d2ba2bffa17cad91e8daf15ec0e8e86d9875771639442915cc009bc415f74

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c6962154d3c90e3f81e7f4cf5abf5784
SHA1 dd179d49cc67d40147b78a673dee822c86e49a0f
SHA256 847767f1b6a02e01c48ab186729319518c642a281d39c444c692d0684b948f46
SHA512 1076a8fd72f30fb2998b4898a3f27d6c40e5fb62d172df03672b194fa9b9079b5474c1847a513bc3caa7860b796d2766c9deb83d81192510581f6a89ef7c831e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db

MD5 575e26e73f6bd4ab119151a393070ca5
SHA1 0f68a60a0decee05d35f52e49f3e6d4f4ee70581
SHA256 d85e37d23d321d210bfd37ede37403c7f17842a767aa98038946de6b51c8e4f8
SHA512 61a767b6f3fd4aaa6bc0509ff64f3593d33601cfbd12cd162ccb8c76e1029385e9260d912770a556437147d78ea74fda8b1599905bac2c7592e1c494ef0bf1ba

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\5ce49d28-62f8-4d08-afe0-3f40c525fae8.tmp

MD5 05c9af247f51559e0b945426856febd8
SHA1 b213c8994263fc7711ec2f7c17cb56c9056e8801
SHA256 460ae3afb477a71cc1c61dd2dab999ee1d8474ed53a97097c4c52ae8a555d957
SHA512 8efd30db5d26b1eebd740b4fdf6013d98193b58b5c94f196d7e9eedec13ac7366d5f59538b70dea4230734bb3c8172b78c1125f66d8e6cd987cc2135c51eef81

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7c6cc32bdf192e051b21343a45fbb215
SHA1 d4222e9c083abcfa706019c97fe23584b73b26b3
SHA256 970ac49def43ff01f4b185507eb725813f3cebaa039c2cbe7496625d01e267da
SHA512 30f3c5c950c429af30435be80444fd444943f72d536c6ad03b2eacf7b027b9ddea487bf9960286e6b0fd051cb3f51e482550d7ae57f98f886a2f31e2ad13bc1c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 6fbbbf17487c04bc4fe036ab08c50d01
SHA1 ab176a8baa87feb7e39cf32de882ecf9091e039d
SHA256 284027891d2e91948cfa233dea44885237e276764c0f479780651bcb6be05870
SHA512 1603b2d30c3f7bc79bc2146e8983c38c0b31fb90d51d9d05233bafa8a598a1a0ed859b8bcb0afbb62bccdb2e7dd4043a5b52eccf3705da70097f0514e5681625

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 46758a50ebc72e8d489d3a43a19c796a
SHA1 7cbb4707b26276411a200e9e067d5f27c25d56e6
SHA256 587a3ef5caaa33dc61956c50acd26a1841ec7653d5140a8889354e6c5b755b4c
SHA512 9f3b370612d6348fa1686617562809ebd4d4ac4d8008103978794a29ab0038ef2c320d3d215fb5f80341d1943a0af1661d7a70021f90cc107e1a3b2d5be934bf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 9ad2a49a273b17f41038bd48e6b09967
SHA1 2fc341ecc434b985ad6bfc60544f71488c367e73
SHA256 e7f3f9a8ddf8ae1b118775f5424168630d5211c6ca511cf423eb01351ab02f84
SHA512 dc88e9cc35b30295b27b2b33df07c766acde68c1c3456936fccde44262760069576cdc22d1dc1cd312cec7f4ee59ef063214187c47994b0c32d0efdff87d2a46

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 bd6b22906c5c2956a0ff77bdfc33d3ba
SHA1 90ae7ae66daa865fef0b9ce81b067fdce507a29f
SHA256 9e04b71a6b9198e7b570db2cbd967bd75140b27238891cf1897b69722bd735a8
SHA512 e2df3abadb25871da9a0009a78e397cfd13c53565e5f918ffc70d13a65ba3287222f3105d3a62b5d96a016851618390a8b25aa5055b6dc0da0ef2de5461ffb0e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 40561505ca8ba9ae42cc1010b635882a
SHA1 1e885a46a39aa9e82024ffe7bc3a061a8d8f3476
SHA256 2c228383bd2461b120be16dcd98b89f5cb3bd5ab3973e6d6cd0f32e7569eda10
SHA512 99a15552625d467e4cb35cb1834ba1cf7dc51bde882e2343810225ecbedaef3caaa0c0a81d90f6a37bd8c42586f0c4104d147874c5ad9394e3af92ab4b838978

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 2b4fcfdfe63959442e4f0d8f1e3bc6ff
SHA1 c233cd7c9c20d48e653f495fb852ffb93de2984b
SHA256 959155176d5e0c30424bf2b90d3cc801cdb4bfdd6b2c0b27668aaf8a600b1264
SHA512 43807adf840c4558291b4de9bc11235d1987a2bd9a1e484eff741be38a6041df40c644e236f3a0eb88a28fed408b0cab0a9cfb456df45b69e327f6aee76b2da0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 53f19b765779930d829994bb709d5660
SHA1 9fa864d3e8162081dae120b163559387afa18cbe
SHA256 df74eb15f0824eff805e9d7086347a36b4b97dd35aac3d0f8185fe894cc9c76e
SHA512 e077027025c9af5596e4fb988ab0701e6e667ce42aed41afaafce3e6bda90d752c1c9cbc13225e94e48ae999ea136a2fcfd37e2633b51d4c3c4db206011ac42b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 62cc9d92743afd243ea4e72eeb0829e9
SHA1 3ae6e94df649a09312fcfdef03912865500f03bd
SHA256 7bd8d3478623ce6fe85999083b83fa6ae81c79dd3f1d5100b8ffc58fedad245c
SHA512 2a67e1ecd189805614039ddf4beb1450c3b91228c78dd33e5128d45f8723c2188e82f64891337b83cc4802204e241f58fb553eb5936dc1582d3fd1126a22f9af

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 904754a73eb4f8a75410a92b2b7a920c
SHA1 208f9e70a93742e8ca1f5e2537690172971209be
SHA256 c3225bb8babf9823a2daf2bccae0cafc5d3e0857c5f24187dc004f1b2560b4db
SHA512 cb251f3f6679b9f339c3697f64ed056ae53caf22aedbf37fb57dfe47e8c0e95f295cb180c342e415bc540a9332c0aa9253af7fd2ac17b3e80ad94bcf2cf29469

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 6e5eb3399e663911ba04f7f914c78050
SHA1 83affdccf843b7c28c151a2b38b51ae461dadd23
SHA256 807d431b78cbe02b2963728fbd3f2469931c7455c9c3a2d8b6e3322627969d28
SHA512 b2856fb1faf7f8b8b22167248773d4009dad20bb7ccf9b3f8b9eb83de2bde8a9e0f86097200fde3e7a6245086a180a6aa8f7d5a232025c50689d9c49683062b3

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 eb818dba940000641a31ad2673742cb1
SHA1 0366ed19cba195c1bb468e043652fbad286b8a95
SHA256 84a849478e04240793639a6b058e9c6cdae0b5a210f18273aebd3e0513a4c091
SHA512 310847c8963939b6047bcdbef286867a82f9fc4f1e3dda8042f90c116709d7435866c40fdc357f8172b013d0bd7731b1c2a88fd034846ee87572766a84378a15

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 32531a46414f629116713a659c0f173c
SHA1 9a87a3e943fc1e7043aac77cb86c63becb609274
SHA256 36c604df52c305e567bc4165d0d32c09375c28f6494e61f06b08f16035cf0e02
SHA512 9be0d278641a2ece4142486c2cdb541e9be85407d103d871c975336b27b634953e3989af0344e8905010a4aad9c0f46d867c7fcd2dc025c7d2a07e1f107c60ea

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 54d943403e0e0f3972867b103d4ffa7b
SHA1 786c5a91c0a8996eb9ba5401d95a50668723f9e1
SHA256 0272e4f24b478f6300acb7c5468613a7ed6b29538822b26e6dc560510344f03e
SHA512 61297ac6994775157837becf2fa38571ed797abf521b2af3da5a7bfb72214ab75c8ac472ec11bfd73507b0fe081349b978e9832de79944fdbfe79874a7097afc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 52f49dd42781cb72c7c0345b3ff1568a
SHA1 0f1d996f2dc3857e690a7721e816d7737ce65809
SHA256 29833b2dd801608a361bca263e25672d35ad66a0424da6800fd9d589f8a1cd95
SHA512 01e92964c2c0a2af1167d1e10ae7662cf521a739bd610b92baf30e7bc5cb0d9818c17953a0a32fa8a5ae3eea718cda2e1e1be61bb0bed354f5e274b02928632d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b8a6653872782b29e9acc204d4dd9903
SHA1 d82c643e221f26f1c004751cf0f8ad90be09bd5d
SHA256 896c30728110e77dacdadc4a8865c91860d8a0ecb40013396a3fb17f71843adc
SHA512 6af06a3da96775fc7e96b167a462c94cad3f9fcd91c4b42b9f361d0f424eee791a60c356481adb1abb5544a3fda5d741f9df8376a6e5c4e62e3595b5ee3120a1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 bf8bc1cedbe8ab58d69a0d842345b227
SHA1 ac88dadb20a534c8618811f86ede7c31ee8a4754
SHA256 60a919f359f7742523484d61a2ff166daa7d3ae6b0c143a2ae3ae792fab0e1b2
SHA512 6d8265e35063ce13cfbf9f94604e0306426b4f041332abefb1cbe6a1cc0973fd3eae8eebe29639b3e4635877feec9f429bdaffc5bb0a12bd1aaf629d4f19ab63

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 a874f3e3462932a0c15ed8f780124fc5
SHA1 966f837f42bca5cac2357cff705b83d68245a2c2
SHA256 01bd196d6a114691ec642082ebf6591765c0168d4098a0cd834869bd11c8b87d
SHA512 382716d6fc0791ca0ccfa1efba318cff92532e04038e9b9aa4c27447ac2cac26c79da8ee7dbafae63278df240f0a8cab5efea2ee34eef2e54e884784147e6d00

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 b512b098e257376aac27ad534c508cd8
SHA1 2f1dc061ed8099e58b2a0cfb9ba79b41f2cd9c35
SHA256 a2e513335ed164be1ac0c6d50abe947cbcb6b122e1b78647b2699f3178d97275
SHA512 d41a8310e5724c94f0188aef8254c9afba19f2c926049c02b22a1599f318472c665a3772dee5a33b8615072d09944d560491f6fd79830b020f84e3cb845d2625

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 5533a6ce0b443ae3061ef4fd81a115e1
SHA1 c4cefdc8ba5e8063bff2914b5dfe8985f32619fe
SHA256 23b87eb7b91bb3255dff4f9634229e53a2adf1855f2b67d9c240265e1df2f1a5
SHA512 e2b5261d224f6107b2e5973a09447dc83032b06b722e6171cd219a89df0782ae8752bd2b6d9650ba0dec7dd1c4130299f48c59365e7fec5d03092742e196112a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 2e5865c1ab46227d53f84b04dbb772a8
SHA1 962953659023e9970084e16b5725765899d7aa52
SHA256 c3647d345d72a4f5422cd1d82712cb5dd46532b73942e764ad3cd894bf839a5c
SHA512 ab62dda6968952dc484744a341fb60d84630361e7839636c8e1acd1a794592a0a269fa94e4db86bd4c7696f5d7e71f1ee90840d805cb207eb20c89d99f30fc92

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 31d18685fbfa766fe42bf478b96abc7b
SHA1 fb0477b2b63b704760728618639c28768a52b382
SHA256 19650f9acea93150d19769c4aecaa837ba0670d4256888b4099240b7cf854cf4
SHA512 cdf56cb94aeef4f51a5f573cbbb8ecdbdf10b12123fa598c5f88469719bd16f9bf966a8de951a705c0d70044772b5694a11f18d337ff19131d4a1c70ba94d988

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 742daef3b28f74ca1c8ffd14eb1ae9cb
SHA1 ba21cc3cdc5efe6e722c27685889053358940c09
SHA256 cf5f6a6e4355dc0b474d933c828cfaabbcea384168d07c0acc5bdaf7acfcf1b6
SHA512 8c114af2d8b5815d5043aac950e2bbb89fae65962fe49a63b3264239de2323e65d4cd8541031e136520e8eb7b1aaa1a87ad0a69f02fc389f39bc439676e01d6c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ccaa87f603943283cf13be4e6b609b36
SHA1 2cf4001dc986fbc8715219d408b0b1cee2cecc18
SHA256 f147df588dd4712ff59e73683c26ad15960a99bf0162bbe4fa6d530e3dbd2ea8
SHA512 1bdab8c99c7d1618ea5106c5e4b322b2f5b311b106320e50dc58ad450779a8b1920b1a3bba791718af2061f210ad5e32618e6f1a7e9ff422f788b9ef80cfd68e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6671db8c02f3c234bc5b756619a0ed77
SHA1 ff451a14cdd61df48cce4448f118377af77da143
SHA256 f7858098c26ef2a143b0e7cafbc03040c3c1c3185f446517108a7bdd2a6d9c4d
SHA512 1c6182196ec6086d5316c741f974e6ec4efcedc3eb835ade8df2762d2ff245f055c05ed95e06fea3e04fe3a08e9582846cf2588c31fd69fc4978440039604ba1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 7e30fdfd45c13674312aab8508f14e4f
SHA1 19c4c7f0883b37f04b24b95b206643f325d93164
SHA256 d460ab7198b0156ccd6db445d204607a9c35b4c9cb895c5d0a4ab141830477f9
SHA512 26c8af6ad111715c6e4afc054b81c0e82d4dd0a7765913fe7d2efdbbd0e59851d488b5505e3fa569ee4882176d96885193ac9721b471a5b07f4eef21d71d9a98

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 a4f1b5c4d22c183f8c5e55085135ecc0
SHA1 e94a1b2fd680521937441b51c725cb3bf2bd66e2
SHA256 e906a2c36199d4e04597cd8529cfdfa4c98346387de48ecf2ef610c0b07b4ba4
SHA512 cfe37956f8da15246275ae7f9679265bb03b00ed3c0c3ccebf4fbb23f4cb36e992b622200a93bdc8227c3fbff4c838680a5bb3fad6cbfd439131051f320916e5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 55920faff5a234e642ce6ef89cee1d81
SHA1 4a87aab0d15181b83eb722d2bc060702e91a3a10
SHA256 a79cdccc83729c34265d8271ba3915b76fea68795ecda0e513d87e49d602f174
SHA512 aa75759d5bb91e0e5b6d37fb7916edf33b3ab9f0bced61c897432f3cb377a1bc03c563ccad2ba566e4ca872f2b185adc1f9de836d1b169be5eaddd5f72d998a6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f7f0474353ddf76d9402683e2f2e3ecf
SHA1 f814acc2a8e273b4d2e1375df434e02562c073e7
SHA256 385f9804676623f794b1a6e77fdb8e5e858877082e94b9e1cd419e367b72efef
SHA512 e692b2c036a8081a1813e99a3736f9450458afccbac2d5030b8a5c73ef86b4cf1dc0c14abe0a4ca13f2f11838ffbaace10f161f461b085b46ec0eb0cc45cdde1