Analysis Overview
Threat Level: Shows suspicious behavior
The file https://github.com/topics/malware-database was found to be: Shows suspicious behavior.
Malicious Activity Summary
Executes dropped EXE
Checks computer location settings
Writes to the Master Boot Record (MBR)
Enumerates physical storage devices
Suspicious use of SendNotifyMessage
Modifies registry class
Enumerates system info in registry
Suspicious use of SetWindowsHookEx
Suspicious behavior: GetForegroundWindowSpam
Suspicious use of FindShellTrayWindow
Suspicious use of WriteProcessMemory
Suspicious use of AdjustPrivilegeToken
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious behavior: EnumeratesProcesses
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-04 17:54
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-04 17:54
Reported
2024-06-04 17:59
Platform
win10v2004-20240426-en
Max time kernel
300s
Max time network
301s
Command Line
Signatures
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-3906287020-2915474608-1755617787-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-3906287020-2915474608-1755617787-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
Executes dropped EXE
Writes to the Master Boot Record (MBR)
| Description | Indicator | Process | Target |
| File opened for modification | \??\PhysicalDrive0 | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
Enumerates physical storage devices
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3906287020-2915474608-1755617787-1000\{8664B9D6-DD67-4F64-A662-7284BB2E731F} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3906287020-2915474608-1755617787-1000\{1FEC0265-1B2A-4BAB-9396-099D75D62C12} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-3906287020-2915474608-1755617787-1000\{390CE4DC-3321-4281-804D-8C2AC75BAA73} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeRestorePrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: 35 | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeRestorePrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: 35 | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: 33 | N/A | C:\Windows\system32\mmc.exe | N/A |
| Token: SeIncBasePriorityPrivilege | N/A | C:\Windows\system32\mmc.exe | N/A |
| Token: 33 | N/A | C:\Windows\system32\mmc.exe | N/A |
| Token: SeIncBasePriorityPrivilege | N/A | C:\Windows\system32\mmc.exe | N/A |
| Token: 33 | N/A | C:\Windows\system32\mmc.exe | N/A |
| Token: SeIncBasePriorityPrivilege | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
| N/A | N/A | C:\Windows\system32\mmc.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://github.com/topics/malware-database
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2188 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2332 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2876 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3444 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3456 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5232 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5232 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5376 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5436 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3564 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1880 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5528 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5532 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5836 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3484 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1808 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=1304 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3476 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6012 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2176,17011669857892469698,12400067916157547470,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\MEMZ.4.0.Clean\" -ad -an -ai#7zMap29797:90:7zEvent10945
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2056 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2412 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2916 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3380 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3392 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3944 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5036 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3608 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3608 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4864 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5632 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5412 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5388 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4988 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5396 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6128 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6180 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5492 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5360 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6476 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1936,9816511527384032342,15449235325931351137,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5032 /prefetch:8
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\memz.by.iTzDrK_\" -ad -an -ai#7zMap13744:92:7zEvent7910
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe"
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /watchdog
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /watchdog
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /watchdog
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /watchdog
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /watchdog
C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe
"C:\Users\Admin\Downloads\memz.by.iTzDrK_\geometry dash auto speedhack.exe" /main
C:\Windows\SysWOW64\notepad.exe
"C:\Windows\System32\notepad.exe" \note.txt
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=my+computer+is+doing+weird+things+wtf+is+happenin+plz+halp
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x128,0x12c,0x130,0x104,0x134,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2176 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2964 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3272 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4892 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3476 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5248 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5248 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5128 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5236 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5140 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2060,13145798680849805612,14059936360932931583,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5860 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=what+happens+if+you+delete+system32
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2164 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2216 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2764 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3236 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3252 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4416 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5212 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5212 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3512 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2156,1961547442193155000,4082043986301308963,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5552 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.co.ck/search?q=best+way+to+kill+yourself
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2156 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2200 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2996 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3312 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5200 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3784 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3784 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5424 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4512 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5216 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5164 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5680 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5164 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5996 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=6008 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3856 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6212 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2140,9838647171374018119,10161565938808913122,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1
C:\Windows\SysWOW64\mmc.exe
"C:\Windows\System32\mmc.exe"
C:\Windows\system32\mmc.exe
"C:\Windows\system32\mmc.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff92b3a46f8,0x7ff92b3a4708,0x7ff92b3a4718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2208 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2260 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2796 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3304 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3320 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5068 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5112 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3980 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2196,14891601178601726144,11521564712979272722,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3980 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | 154.239.44.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.31.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.204.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 185.199.108.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | repository-images.githubusercontent.com | udp |
| US | 185.199.108.133:443 | repository-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 133.108.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.111.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.113.82.140.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 196.249.167.52.in-addr.arpa | udp |
| BE | 88.221.83.184:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 184.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| BE | 2.17.107.122:443 | th.bing.com | tcp |
| BE | 2.17.107.129:443 | r.bing.com | tcp |
| BE | 2.17.107.129:443 | r.bing.com | tcp |
| BE | 2.17.107.122:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 122.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| NL | 40.126.32.74:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 74.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.bingapis.com | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 204.79.197.200:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | objects.githubusercontent.com | udp |
| US | 8.8.8.8:53 | 145.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| BE | 88.221.83.210:443 | www.bing.com | tcp |
| BE | 88.221.83.210:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 210.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| BE | 2.17.107.113:443 | r.bing.com | tcp |
| BE | 2.17.107.113:443 | r.bing.com | tcp |
| BE | 88.221.83.217:443 | th.bing.com | tcp |
| BE | 88.221.83.217:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | 113.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.83.221.88.in-addr.arpa | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.108.133:443 | objects.githubusercontent.com | tcp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| US | 140.82.112.21:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 21.112.82.140.in-addr.arpa | udp |
| US | 185.199.111.154:443 | github.githubassets.com | tcp |
| US | 185.199.108.133:443 | user-images.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | google.co.ck | udp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | support.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.228:80 | google.co.ck | tcp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| NL | 23.62.61.155:443 | www.bing.com | udp |
| NL | 23.62.61.155:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 155.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| BE | 88.221.83.250:443 | r.bing.com | udp |
| BE | 88.221.83.250:443 | r.bing.com | udp |
| BE | 88.221.83.240:443 | r.bing.com | udp |
| BE | 88.221.83.240:443 | r.bing.com | udp |
| US | 8.8.8.8:53 | 250.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 240.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fortnite.en.softonic.com | udp |
| US | 151.101.1.91:443 | fortnite.en.softonic.com | tcp |
| US | 151.101.1.91:443 | fortnite.en.softonic.com | tcp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | softonic.com | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 199.232.213.91:443 | softonic.com | tcp |
| US | 199.232.213.91:443 | softonic.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | tcp |
| US | 18.245.175.44:443 | sdk.privacy-center.org | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| BE | 104.68.82.93:443 | images.sftcdn.net | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | udp |
| US | 18.245.174.120:443 | c.amazon-adsystem.com | tcp |
| US | 151.101.1.91:443 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | www.adsensecustomsearchads.com | udp |
| GB | 142.250.187.238:443 | www.adsensecustomsearchads.com | tcp |
| GB | 142.250.200.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 91.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.82.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.213.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.175.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.174.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.201.222.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 238.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| US | 3.165.111.23:443 | www.datadoghq-browser-agent.com | tcp |
| US | 18.245.174.120:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 18.245.175.44:443 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | partner.googleadservices.com | udp |
| US | 104.22.75.216:443 | btloader.com | tcp |
| GB | 142.250.178.2:443 | partner.googleadservices.com | tcp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| GB | 172.217.16.251:443 | storage.googleapis.com | tcp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| FR | 52.84.174.40:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | csi.gstatic.com | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 172.67.69.19:443 | ad-delivery.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 108.177.121.120:443 | csi.gstatic.com | tcp |
| US | 108.177.121.120:443 | csi.gstatic.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| BE | 2.17.107.226:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | 23.111.165.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.75.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 40.174.84.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.69.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 8.8.8.8:53 | 226.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.121.177.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| US | 108.177.121.120:443 | csi.gstatic.com | udp |
| NL | 23.62.61.72:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| SE | 23.201.43.66:443 | aefd.nelreports.net | tcp |
| SE | 23.201.43.66:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | 72.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 66.43.201.23.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f53207a5ca2ef5c7e976cbb3cb26d870 |
| SHA1 | 49a8cc44f53da77bb3dfb36fc7676ed54675db43 |
| SHA256 | 19ab4e3c9da6d9cedda7461efdba9a2085e743513ab89f1dd0fd5a8f9486ad23 |
| SHA512 | be734c7e8afda19f445912aef0d78f9941add29baebd4a812bff27f10a1d78b52aeb11c551468c8644443c86e1a2a6b2e4aead3d7f81d39925e3c20406ac1499 |
\??\pipe\LOCAL\crashpad_1716_LLILZLSUZVJTMJQE
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | ae54e9db2e89f2c54da8cc0bfcbd26bd |
| SHA1 | a88af6c673609ecbc51a1a60dfbc8577830d2b5d |
| SHA256 | 5009d3c953de63cfd14a7d911156c514e179ff07d2b94382d9caac6040cb72af |
| SHA512 | e3b70e5eb7321b9deca6f6a17424a15b9fd5c4008bd3789bd01099fd13cb2f4a2f37fe4b920fb51c50517745b576c1f94df83efd1a7e75949551163985599998 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 855ec5d43bcba7034610776177063721 |
| SHA1 | e89aca6c3f50a1be965b6acf31b423941adf90a5 |
| SHA256 | 86daf2ca6bb9a5a306cb1928abbd6959dc7c83277bbb0c458dfb20ae2f61f47f |
| SHA512 | b69e05e98e317256fa5476dbde54d969aa51d7ba224ad6f2ad34a5c8c23708f242b9e13fa46263787d2c2e75377557aa4de7cd95c37911618236b209bffb524a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 9c4be29bfed5a47b9945bf5066c6055e |
| SHA1 | eb39579d5e0614ca14101416afdd34ea7bb53c58 |
| SHA256 | 4b1557e1a6013f304be208ae7b25ee1883cd2e34a2fee1ec9ab191654cf421d7 |
| SHA512 | 4152fc050103e217524e9d035b63c63fe969d4296e5019b7b4a8736e487a538120bdf2cc8130ada30b0a6aac6c666384fcb283a2af6e824e93dd82e81e8dd030 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ea603d26a9d9403884c37aa6d5d0f0f6 |
| SHA1 | dfc339dcc30160eb35adca09dc46d8cec40250c2 |
| SHA256 | 647b627e873496e4237d86006dd2e2bf556da34d1ac2bd2602fda6609389fcb6 |
| SHA512 | 026c18a9dce02dfa51e55a51c4a48fcefaf61ab62c0b8fa732fb77cc78aafae9b179583e44e1b2e20a592f109b950e34edf9efe0ad37b457e57e80439f1de9e6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 8a26a10bb58c4fbbd15ce866ce29f5b1 |
| SHA1 | c5808fd682d0bc79011e02fb29be82a5f57b5659 |
| SHA256 | 6c9fb48fa7c388093c291eae11ccc11c98ce17e450da7cb384a76dcde676fd95 |
| SHA512 | 9ff26adea4aad505cef1752566aa3dfe8c6eab5b672826a476434e92f5d80051263a0df09c8111b9987232ef45f40413705c0955ded72b126500d62b196bfd6d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 77d4c7b3fb3dff55399c3df7b7e42f4c |
| SHA1 | 01f33e328f0a417040c6441617a7585a577630c9 |
| SHA256 | 66cc0c558c9ec62f235f3cd6da8cc933343e4d226de8b06426c391f0c928c1c9 |
| SHA512 | c2fe293e1d761e1426b70444d1bb13e1a54117286b3ed8415615ea24daf1c9098e76a4f7e7b736dd24112dbbfb1328d043d06365241f6a2909bad08305c4702f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | afb7a84e7fdeb04b59c2876b6816891f |
| SHA1 | b2397c4665a630627af8f3fa17d71b7e0885171f |
| SHA256 | b7d178d93b12dfd6f8431b308ace64bfdc7344bce43445d2635588480377a1d3 |
| SHA512 | e364d7231a3f2a1cda3249a128c758b77b5d953707eb7fa18180b9b1962de9b94ddde5a6392ae220b328b14e1d3d15905f894df17a8175efabe42f9f50d4f0c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57b46b.TMP
| MD5 | c924cb261154954d0f30dbbccf7c41ba |
| SHA1 | 45567370b321c752cb8f425cffd3383f263f021b |
| SHA256 | b25d55497b2948414e1afb114176eacba59625f9ecfbafbae03d94194c234214 |
| SHA512 | 17a58d0fbecf781f999f307d3f3e281304594f659f031549643d4276de4609fd61a88384ff88026044378a4f18441c5f920c2713226d627d6a10fd9a415cdbc7 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | e285e21fbbcca60cf823bab9abfdac67 |
| SHA1 | a360bbd34d2c11e868a8a47716fddede692d5c7c |
| SHA256 | dbb9d29a2401b3e543cbcfd01018e448e642aa18f005019066828b4f4d48ef45 |
| SHA512 | 0d951aeca3c0088c96ca23ffde3063bbbf61ef1dc4b622d0addd005fffbf4fcc7288d6dc813d7b0d974f5bc98a28b0e8ad6eddd83acf6f74ce4a564403a748dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | f361a03dfee39be0943ba752d49140bd |
| SHA1 | e94fa3e32e4e6a6dbcfe071f4bed651be4412f7e |
| SHA256 | 523cb4ba73139b82c64252734c912043900fe52496d5ed332517fc16454e7116 |
| SHA512 | 35c4443a46c23fdedcac114919aa7d451b72b44742b873a97214c025005eeb0b754a5313d78bcd3586fe3ea95a04a2c5b0da40e907f8be39992ab257dc883609 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7c0728c6dd9f4d6b1d863ba8417525b5 |
| SHA1 | 034093b1168afb7995959a90def28b88d8cd80aa |
| SHA256 | e3affdc55d156f0d40195426172d15be6cfcf62864444c1ca20be11a832bbe88 |
| SHA512 | 549e1364ab234fef44971ac29c3dd3014c481b43b89b8c001c75d8fd5cafba1586bffeb2a37fb0ec8adb561901078bf49f3f7ac18f078fca0b8ed9bd0e336a39 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | b9c2a1f665b702e10257f498371f8e83 |
| SHA1 | 131f992fde3be91ac5e041651e156efe6c05aadf |
| SHA256 | b8279344e8413381356ee32efff0a057a118bea2ed7cd6b311bf41d24e3f1cea |
| SHA512 | 212cbaa8ee1e80e6d90125d5580ae30815a1d3324504e70168bf709f214bdbe7a588fbc8e495549613bf97ccca10562c0005b613f97dec0d52a154929413ae9d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e0ec2110d1fabc8351a12cd79d4162a1 |
| SHA1 | 2cec9c7f3a9a0342240cb45b6b776c7a17f7954a |
| SHA256 | a8c2398d688f9a71dac89e38abe9547ac3b0faeb690c6b5ecbb1de94e395eb56 |
| SHA512 | e5851bd0f36a7695fed9ddda3cd9a02f771c2840447b418f2e53d6229eb7ccae569bf2cd4bcd160d4537583a82a6349486034e21ebb7233d63239a6b3577ac69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | a30a3187695c350d9e5af876a314338b |
| SHA1 | 3cab3ea3899c8991db191871fdb6ed6da1508bf5 |
| SHA256 | 8dd5fbf9e67592595fac1a3fd8c85a1fa508cde8cd246f6c993d08d1e1e7a3f1 |
| SHA512 | 530b7e17d3c655b2bb2334243a370c1f28b83e470199922130fe813eb0c15632835843f1d5a4e031fff1cffac5e9ae2b1de0ce06b8658bfd7ee8fa538f7f54ff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 982f66b60702de55887f09899d58943e |
| SHA1 | 2dbd28362139dbed7ef3c2841d237381f3b673b0 |
| SHA256 | 2d2eac2e67dcfdde59beb8cc1787903b4f00e9bfa1ea30565704318bd0d37929 |
| SHA512 | a26bacf54c508d04f32608c43e1bb4b964b9b50b37c2a4462b30552757ad1f2ef14f6a9099a7545e0c8ac6239c298c93c82a3c815b0efaba0d367c2de48e523c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1ad3628ae2926fb037300cca081227e5 |
| SHA1 | ed83b5a2f1d7755c7f49c136b543daa482aba69f |
| SHA256 | 4e21ac35c62de917f399f7e12d2bfef9afe629d519951e2a979baa4273c909e6 |
| SHA512 | 6f71d8b308c1d9c156b62d9861f68fe0e6edf96ddc1964512cd3111640050b18dc776016add02ec3ea0aa19cd67cbb6e2acf43b2d09962314f16586234a8a3d8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9b138ea1e2c2909cac58a793c18da1f3 |
| SHA1 | 26a911b9bfdcd5e4f9c8d97e6b6881ede4d32da6 |
| SHA256 | 8e251535c65108557029cdff198f8c689d2f23f6e9af78774cdb8884becd7e9b |
| SHA512 | 229e9eda78433aea22c193e9849a235d706a3667da06d740ff86dec888393f9eb0c53b3eca55d2e4dfc262b9094a48ab52ed6667ec01121cc9f3fc5ca752de10 |
C:\Users\Admin\Downloads\MEMZ.4.0.Clean.zip
| MD5 | 8ce8fc61248ec439225bdd3a71ad4be9 |
| SHA1 | 881d4c3f400b74fdde172df440a2eddb22eb90f6 |
| SHA256 | 15ef265d305f4a1eac11fc0e65515b94b115cf6cbb498597125fa3a8a1af44f5 |
| SHA512 | fe66db34bde67304091281872510354c8381f2d1cf053b91dcd2ff16839e6e58969b2c4cb8f70544f5ddef2e7898af18aaaacb074fb2d51883687034ec18cdd9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 4ae2b16fec57d3f97841d79ee469efd2 |
| SHA1 | 9a92169a23200ca5fe3bd09f38fa9fcc386c66b4 |
| SHA256 | 71b360814a137f3e7a779a299ab6c658e7124ea3d5d1eb279137d07c456df2a8 |
| SHA512 | 5bebc878fb9164fd6fe1b863a3ccb42279e0332b36c8d50ea2081e45571a89effc1b1a7a8de14d6feb56213acf941d277f831cae9f7590a1e7439cedbea520a3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version
| MD5 | 838a7b32aefb618130392bc7d006aa2e |
| SHA1 | 5159e0f18c9e68f0e75e2239875aa994847b8290 |
| SHA256 | ac3dd2221d90b09b795f1f72e72e4860342a4508fe336c4b822476eb25a55eaa |
| SHA512 | 9e350f0565cc726f66146838f9cebaaa38dd01892ffab9a45fe4f72e5be5459c0442e99107293a7c6f2412c71f668242c5e5a502124bc57cbf3b6ad8940cb3e9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History
| MD5 | a919f039b47d9c0b7dace9dfdfb23406 |
| SHA1 | d389d63733586dd128c85653f205d3d151ead9e3 |
| SHA256 | ef208ec9f83cf68ccef1a83fd585b40405c198303d8623547cb1e34927831f0a |
| SHA512 | 63b37b4fa92af0cd4898779bfc600ed263729b8880b42046d4fd882ffea6d1878f4a0775cde760a4810b32437647b53c86d1cf54e370e6c5d5720ee4b5b8dc9d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data
| MD5 | c2b917631384e0113f128b14f057c459 |
| SHA1 | 2fee3114633001de81b865ec4eb03d654fea9849 |
| SHA256 | 45d52780ee8f7bcca2e91121a8324c255045c899d3c90eaf8a666bf8ed6d2c3d |
| SHA512 | 617c09df866a199beaf747860244357ceb479cd7d901ac71cc4e7271714a966cad8edef0589bdf05d4464a1be87e173e12dea2a0a78e8901cf189560e2a76d3d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13361997275422125
| MD5 | f870038dcb702455fd0533b649ceeb26 |
| SHA1 | 676354296611ff1019fac728b59bfce6bbf12bb3 |
| SHA256 | bd6ae147f09be43bd6b018fcc97085b4b80f5becbb01397841eac61c621f33ed |
| SHA512 | 13b48a205ef661c91c07ca1d328465dcc7101f3f282707d22ed86816b7159609d2ffcfad0a85a57824a1e893cbf4d31e8790713ce12f7b7ac26a6d3ffacca976 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\000003.log
| MD5 | 1e5e12b2ed294a5dd14060be82b42c0a |
| SHA1 | 88f7fb49a8452da0ab9050a54dc24f09ab24d226 |
| SHA256 | 403289a798a308e437689b04f1724856cdef5d4633bcd63bff20c8389275c06f |
| SHA512 | f86af597e58f39453a43d92070380e085fae2bb88bda1fe5dc2cc0e45ca1f64c408eaa58a4bb3cac97e8d0714302edb0c8d599a6a80c6f5f2ed69b9d37be769a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG
| MD5 | 4c2ab84c3e4290135e1998fb037382fa |
| SHA1 | 5b03fe31a73495bd01459643e8cb11dbd7dac544 |
| SHA256 | 027b362040448c7b3bebcd736b7e4755a3ec8ba5028a758e72da049023d8d5a7 |
| SHA512 | 6b92b78ae5e1b5bd50814824249a22cb5949cf4c928e16bd5e08ca0c79029714c96289994ae256b2473eff5e6134c0cbe7de50b683a910247c39c78b3b1c6e10 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links
| MD5 | fc98c8a752f448c08ef65209bb728811 |
| SHA1 | 911346afebec98e3e3fe9ae7b59ed20d70758076 |
| SHA256 | 1306935d07b5f8cd6d165a7cc0501eb34a35560e6b156bded31e8ce4347c2bcc |
| SHA512 | 741ecf99829c9241adf688f5bfa29f8b0fba3e4453b714f567078200954b6e79fc9d407762ad518547c617e330cef07b6deaa239aa5ac7abaa416760198692f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\LOG
| MD5 | 2065530aaf3188f897a97709c36535ab |
| SHA1 | 82f16d3fe17db51a3c7c535b855dbacc73df5ecf |
| SHA256 | ebaaaec39dcabbac643ee7d7b1bf2d334b421f26c88eccc97f41d9aadbfa4fce |
| SHA512 | d2713aabf7c1e0cbc81d6bb56e8a27ebd0af8b66bac95f9da87c71295a1999a4257b65a056e46039e6900b61dd1c16f6cc1da0fa5eb82a6a139b73895345dcd7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db
| MD5 | 5fc490811e74a438423916c1c58506d2 |
| SHA1 | 2414f5aae86ba094c213061ed4704a3ed0c57337 |
| SHA256 | e15aaa7750547538cb154875a9d8da8eb4f31352145ef794ce65423df8923245 |
| SHA512 | 5301722e00a678978170930a54353ce243e67f6da7cc260bc2ddcc10e920898cf4868a54ee8924b7aeb5215645a143da7b0df882334d4f3ffabcd890bdcbb3b2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History Provider Cache
| MD5 | 5579e512b1c07ee3c2dede9c76fd0033 |
| SHA1 | 716a9f719144dff7e22ac73ec996aab86dfe0fa5 |
| SHA256 | 5a5959423bb91644132adf540e97dba9ee064f7f62234cf9a6726f8cfe8b1313 |
| SHA512 | 8581d0d806d7a3df0c57698b623d95a6063ef95044c25569f4f75b508504687c83c6f0f6c32c639e1877e3b292f655d8938a2abde727edc241263994d564c568 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | 12f87a313f976d0014ca49da7dd68290 |
| SHA1 | f93c5da6d05ddc45336774ff0c8bbaa214ac431f |
| SHA256 | 0f406b400bf1eb6169ca38e87b86424b907f8d95134178c750fb7d6bfd32fa21 |
| SHA512 | 9f90309138dd1e1ca15ad6f6213a4c4b44caa31876f0ac9937328f1640b61901bfe8c8c2df8fbb3ed6385c99004e65243416eade05bc4d42db573493fcd82fd2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons
| MD5 | 31399ee864bd590139f6badaf479a24a |
| SHA1 | ee325d058b88f1d36b0a4327d5616ee2f7963d0f |
| SHA256 | 3c32659d4ea3f28619c0f2511e5bc812eff6b9de334083cdfbc2922fb0d73ba5 |
| SHA512 | 5a123ad1dfbc30680b0d5a3cfd68ed6851404de19ab106cb6bda1dbf3f06006af71fa8a9e18a21251c874b459923c5e8e6b281bb49a1c786ce63bfe6f8cf0c69 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1
| MD5 | 46d723bee23b937fe8e907de9d78d1e9 |
| SHA1 | 58dc403bc15c6d2efbd9655ecd081b3962ec7fcb |
| SHA256 | 564e4e954ee3c5e76145803600b6a859ccfd5dc8a1b7c3a0b7e9532b7f4ce5ec |
| SHA512 | 822c0e9d9dec4535618098f9dfc0c1729aa35d3b7bd6869ec39a381b932256c901114112a5a88253bb6562e0a05fa1871cc84e203fdd52a7fa11436591993c11 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Local Storage\leveldb\000003.log
| MD5 | 6c540a9ecf96ae0cca67731179184d8b |
| SHA1 | ab9a7bd8efc274a51292d4a51f454a7bdf2f872d |
| SHA256 | d1979a5e33405338e2e95acd6f8faf18e6b54285cf7e9b5c0b0b8c36dedd56b8 |
| SHA512 | db3bb3e831dac2a3e1585e39bee6ac5d5a892a9de847bb8176110bca7163de6b61995dfa9bfb01640a85e6f3a76438f5ec361ce20779dff0831e06956e13bf88 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000005.ldb
| MD5 | bc3d94c42bbb7c1a7919c496b96a5137 |
| SHA1 | 0889c2fc5d1f283baac24e47f6445cee4d032210 |
| SHA256 | 13ec2b31acbc4e2cd95d3c8381b61eb1d11811aba5f535064e7e47982bacf56d |
| SHA512 | 4e98155570a6bfbaa89ab70cf8ed8b5610e9080d1f31006e5ffae7fe80439c7127574cc3cbcf512e947e8a6d9cbcf53b261713dec487dc67cbe8d5251490e579 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Extension State\LOG
| MD5 | 09695024b8c13d8a2d66aba4bdc0468d |
| SHA1 | 23f701d754dcea8a869d8d0d2eedb21e321112fa |
| SHA256 | c1aa2174fbb8071b38de2ca3babed4610da447c934e3c8b1dbdc7bfa5e6e0f76 |
| SHA512 | 2ef640c03e8ff478922390f2e07115536131ca7cb75d9f0c1558822d0b2e6d60e87299ac105a29d9c4e7f257c1ce10c007224aeb0416f252175788d18eefe943 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 667d17839fab09ed2cd5e55c8bc45741 |
| SHA1 | e16e0c9d75aee48c3b29c47f30f3f38439e0f08a |
| SHA256 | c65fb6091a8264804ba7c72e7770db2a42e34ff5f1c67e278efc84ae41e7a9e8 |
| SHA512 | 6b5f015785b1580bfe256cbf5807663d6c443dd445a41c16876f0f340139812655a7900e2265c1a181a346cbb8bde2ddf2a69968adb5e51985a0f5c5508ede16 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_3
| MD5 | 3441a3dcf76449c69349d9e12f177e41 |
| SHA1 | 998f8569316d606319c9ac267a89516c4f663321 |
| SHA256 | ee1745038882efec2bf446a25b071853149a6789ce38f5ce4413243c1eb37070 |
| SHA512 | c4dc5c98930a6108d4ae0269467db315e36f370accc837990e7690d9e0c73b60f0c4b844610b277ee2678544ba49fd7288b4c4017fd1ec89c885ef8190868744 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_2
| MD5 | 50e667fa1dbe951fe04eddcefa26c078 |
| SHA1 | 430860eaac8b34eca1ed9ac99c14c1ee43ada1b6 |
| SHA256 | 7d756e87015f72b833e7463e9538991d4e7a291d62b6324ea62167d343cc8ee6 |
| SHA512 | 5d3fc3d0d9ad231f1a1fdeb2996bf91e2920ff07c7ef4ee4d3bba814bdafaa5e062a7d153925ac23dd88b11586b03f87ea2332c330cb7dce465936cc0fa731a0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_1
| MD5 | 2b7e0b8977e8ee18a63d0bb63721fc7e |
| SHA1 | c05faa35b8dbb7f40019a4efbe93c689087e0b1b |
| SHA256 | 36d1c813701a0bc54bd1dd4827a5820737b74a45883b51161e477d9bc24e4740 |
| SHA512 | 01c9ef038a0ed993c8456885653de32ff69cd26e9100afc292b135fa77aa921d8c1567ad9bc9f97842513f86ff541074149393d860c8d3e85a4dcdc33ff22ba9 |
C:\Users\Admin\AppData\Local\Microsoft\TokenBroker\Cache\9cd93bc6dcf544bae69531052e64647ec02f2bb4.tbres
| MD5 | dec6bc8b740aa7c979529d8299a2c063 |
| SHA1 | f42ea6186d8b709ddc592fb6bf7ba5c248ed1b47 |
| SHA256 | 449ae944306c78397d23c4b02eb228808da467d5bd6495e7eb3c7a0586cbbcad |
| SHA512 | 312a48ee76335c7fc7c9e2bfaa12fe28c58ed2a5e8bc1275a65f508ad6deea8ff59a9a3ceb7830181495d4d2ca48bb9cf80ab3835ad648b29ebb5bf6c8136494 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\data_0
| MD5 | 7f1380e9de550f8c180bfb5766968b68 |
| SHA1 | c5689998f417e5e19377c10e6997f55325160df1 |
| SHA256 | ee42764351bd0d53849eb214d5513c44b90fe2c9a99de6d6ffd398373e296b00 |
| SHA512 | c3739b68cad08972ab30b801e9a4e65ea90006983431bc964ca0133bfc60240241fabd5fa8c0dbd980746538a9983299bc19e87521dc1da0c97d33e15b6bf964 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cookies
| MD5 | 1b424e96028f32ee76b5b8a7572a4c04 |
| SHA1 | 181d1c67ece9aa0db1a8d21eb189103435133fe7 |
| SHA256 | 9ed172fe36ab9e86c6eaf201724725d54e3bdf9e7d0e37311be83602dc46b96d |
| SHA512 | a0896428c48ef08c48fccdba0ea4c2bda0e85d2ca2390b546f60a8becaba48ff9191b34b136303a39565af90ecceb305bbbeb68a7a76beef78edd4bf62aa98c8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\000004.log
| MD5 | e0fe9ee0f4c2752dcf4cae572eb31f5e |
| SHA1 | 616280d308bcdf5720c717f49e0515a257bda921 |
| SHA256 | 604d59b41f688e3ca2f4ca9a05e271d8fd28adea8cfe966dbe55a821e3a683cb |
| SHA512 | 8f6c3ccc915d56bd9337984d1d933ad04c962ecbfa469d942bff0b9d5eca3cc9a9af2da00b40a97a95087ce63693b2b1253ffc63137aad839d4e7eeb34dc7162 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\LOG
| MD5 | 65a56d8212eb137406c0113705819b3e |
| SHA1 | 96829b4e4f127185aa36d829877164537e1bd220 |
| SHA256 | 92885475abb82c782b44b45e5e72cb4a630a1633856647a3aa3d98b273980345 |
| SHA512 | 0d451375372a8eb20f13ef62aecaace580b400d0f27411ffbaf840dd7f673ac445f58282d375401e0f2de5b05712ae6ec9e4d1b6414f6787c2e383fa3e158195 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log
| MD5 | 4a0cd3a91935eece840b92cf0644048c |
| SHA1 | 120733629fee4a6c0f8cb3442af432d0cb4e59ed |
| SHA256 | 558bfd986970f55a34370ed881a4298c4e92bce06efb939894d4d0408e16eda1 |
| SHA512 | 08a1f963de92903fa722761adaa8c302259766dda75c00bd9bf094dfce5320147bb77f7561224fec9a3fa61e3a42513af6f906e3c7e093dcfe1b9581dd17d41f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG
| MD5 | 8f40a4d48dbdf529c24f83d50c7efe8a |
| SHA1 | fb68c641171e7f2dbcecc0d7a84516ea58f654d0 |
| SHA256 | 6736469c44f8133e7be63cd20f257fa1dc9e1af74fc5fcf0bdebe1d306f83e9a |
| SHA512 | b3793aa5edfd6863e7ea3c1fe04c2206f7e0aa8d6ab2eb1ffab98a4f05113064f78035d04f24a107fd3e1d0da7cc6dc6f2ce805a8e0c2dcda74e798725ed69d5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log
| MD5 | 7f1e24b919aaf4aef2234b3a4891f902 |
| SHA1 | 63ef6f73a3e74d7a828dacde28240a645710da7b |
| SHA256 | 014ecd5a5d34958d357e71c809fc0f1fa95492f4a4174f4ba56609e216d724a2 |
| SHA512 | 1085d90a0371e3475fc143a6e832d43f12baf7f8104c3a992dbb41469999898caefe895cc51e6642d0b417982074f4d410d6cd5fecacf4d5c10b6d0adc60b7bc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG
| MD5 | 5e3c79a045eca98e049c49b251963687 |
| SHA1 | 388dcd58adcbc882c234c26121e172e470a4e25a |
| SHA256 | 0a77df9917d122b9257d9481ad541d8dd22d0dedced1377ee85df9291dfd4667 |
| SHA512 | 0cc9898f04a93fffa56d669fc4817c04510f41ae551e6f9ce197fba92e313e75b5aca51618070a3aa892e62c9afc3a59c92f0a248ecefdf2656f36cba3741f64 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Session Storage\MANIFEST-000001
| MD5 | 32ed8d854ea3574ec49eab05ba638e3c |
| SHA1 | cf6cb86b9dcac9180e96a4f4d2eeeec89aecdff6 |
| SHA256 | 51d3abf27c417d13f27c25bc73b0b815feb1216b5938b56adaee201c74886a14 |
| SHA512 | aaa83985b8882da0917ba833d0863ef3670fc3c0312e463daa7c2d0b0b98b415df4b10b3d5d453bf7e70ba0b60a8020edd421fb9b95bfd6937be48263b30b852 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\GPUCache\data_1
| MD5 | 5d67ef008fe65cd95c01676789f5a7ba |
| SHA1 | f3ece9ed54ad8d5117533e5a6d17b4438f74ac31 |
| SHA256 | cab635f2482465544b7695c7410ee28cf67860fc92596c22c4ad8a95566e009f |
| SHA512 | 14df90f031a6ee5b9e942aa268383c89fd4d62790f371bd53dcd3fbe2ad3b419a7cc817cd0628aa64f0c102413e07ffaaed733d240160f00fff34c8a05421f61 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | aefd77f47fb84fae5ea194496b44c67a |
| SHA1 | dcfbb6a5b8d05662c4858664f81693bb7f803b82 |
| SHA256 | 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611 |
| SHA512 | b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b73925b936291e3cd7996a419fa8f5da |
| SHA1 | 8bebebac07604397b29b2797541e7bdd30ce91a1 |
| SHA256 | e190c310a1c547e7fb0a98dc4bfd302c6bd83a2552197e56517fc015314827db |
| SHA512 | f3c0a6c54daf30f351f0cb746b955fc4923f423789015b8ab062795f6242cc5e93b812f8e569ac8fe59798472d1126d6071bac110d8ed802ce0cc01866b5d732 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6b7ca321b5749d1b540f29502dc02ccc |
| SHA1 | b90cfea01af74376aa5617fd2d78930eabba0377 |
| SHA256 | 531389f57728917bb09d6c6b92c17db5bbc3198f61be77c5fb18376c4c8fa46d |
| SHA512 | 4e41cf56b2f013f40fc9555598a2d17cbaa9f6e59f455aba901e9f28ea08c4f4eec53e8a2d501fa02716a7bde7788d756a09b1d6ca47b088ef005baa8b997925 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 466e694df6335845436447530e4ba5e4 |
| SHA1 | 96afc8d29e9fc6064fb85341cc47e70b700fe7fc |
| SHA256 | a6410f75d532cca7c7ae7ec9ec838940d4f0d6ef6aa52a1197edd0236fde2cb2 |
| SHA512 | 35b03745350fca52678175d9edc186004d646eb8d5a4ec413c74896c6c6cd629704c44adc78384f71fc2be7ba52ac2a54b91b9fc7c1373cc4bca28c9387f427c |
C:\Users\Admin\Downloads\memz.by.iTzDrK_.rar
| MD5 | 352c9d71fa5ab9e8771ce9e1937d88e9 |
| SHA1 | 7ef6ee09896dd5867cff056c58b889bb33706913 |
| SHA256 | 3d5d9bc94be3d1b7566a652155b0b37006583868311f20ef00283c30314b5c61 |
| SHA512 | 6c133aa0c0834bf3dbb3a4fb7ff163e3b17ae2500782d6bba72812b4e703fb3a4f939a799eeb17436ea24f225386479d3aa3b81fdf35975c4f104914f895ff23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f9fa6b9af638f3b75cd3818688825f89 |
| SHA1 | 667d7cf91b28a278e24c67694a94d35b28198d53 |
| SHA256 | d5d94937cb05e9f416ba5e2b30d8e02b807f8e13d18e653c5c8fe7d462afb37b |
| SHA512 | b0c1f5b6e8ae1c3e114302bf2f292bfdefd14da3b1fa30e39613f718e7b7ae658c3bba1f6203f31f23ba92b57bc35b8b5831379305cb7044ae666545bcb238ea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2c59825fa4e216b38daf3f0e6be84766 |
| SHA1 | 6245446385cb09dcdf43d7b918792cfb01c8d1bd |
| SHA256 | 3ce52362c37a79d99e4333899eee3084d96745fa6254f64ac148290f0d272983 |
| SHA512 | a2b881cc1fa40e3fdb7dc19bd0dfb3dc25702a85360820521a0e2dcfee36d058e7a197c88e951fd8c069c83c01c1f7da18b1e3e782b6c4d10263c1da674370e3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 120bb57c930f985b10b04e30e8adaf8b |
| SHA1 | 21378bb8605c8ebbc1bccbd12902ce4b1daaff86 |
| SHA256 | 08e52ee13df56f91b018486febcbe20f9d01acf6e277cf07099ddeea9a382a45 |
| SHA512 | 3de5a09a02807d36db7011041079400aade5dd08084cf65f257a60d038bae923a8379b6d12813080b57698ee73424f7da304785f213da9b96cf22c2f6344b782 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 6f4ffe616f7bd38f42e2f1c12c6e949c |
| SHA1 | 314a47364e6b0e9f4ab752490e59eacacb6123ab |
| SHA256 | 9cf9b114d83acc70c690340e32ba4739c9d6d7747504ae913b6d213ca30589a4 |
| SHA512 | 7f4ff52882db3bb3d8aa0d8337f5d4b50a45da3adbb7d608f089c52672147db9cc858c193e0cea2510dd46a42fc2de2091e788b9c097bbce2faf0b2259418991 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 821f597a7a63522e5d6e9d8457d9aeb9 |
| SHA1 | 91ef030acc655a6507fff0836e487dc776e08e15 |
| SHA256 | b1f20dacf6bbd6d7305c4161fe75344e8678677f2c9b599b76c522e5daacc371 |
| SHA512 | d9025408c01b112cd25830cdfe0453b9bc61ff869e533a5321b5887a87bd4e32803a936715255483ed7f95e2db1f1afe07fe428f7773df23b3e9de9e3a9770f4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | e6f52fa9cb9fe0813bf1fa120a20f4b8 |
| SHA1 | 3c01b5aef98d01159d267c4b0061923967681a53 |
| SHA256 | 3a5af46e2c5d8b8e65cccaac8c0314a571ef8b8eb7c4cffabf271bd56373f393 |
| SHA512 | 0b19e6ac2fb99b81dce6f5d0ec028f3e53a205edc77ce25dd486ff971f290c2f44c9bdf8c811b471aebb6f3770619c3f92caa32adeaf6638376ae406998c7379 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\ShaderCache\GPUCache\data_1
| MD5 | 7236357104f8c6310eb0b18d67e55af5 |
| SHA1 | 197809997135744c276f666130b908e79ae78f88 |
| SHA256 | 238773dbac4f3c389f12cd019478a4868891b0bea444ad8a69c0df51ee0f4972 |
| SHA512 | 0988831c7ab8bd17e9f47d2267db0c25001d29be611e87239d04647d32c55aac558cd580bfc2cd3ba08847f57cda01b9edc2912b88dbd549cb9917e928f51f8b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\54082670-f026-4c1b-82b0-e472f94a9eba.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | ea447553aed941fb221f584a7c4d3ac6 |
| SHA1 | a21f9245d3867ef9164b7b629220336daa00f771 |
| SHA256 | 2e71aeb07ec23d1aeea13e7839109ba30ac866ea99b084528d8a1598bbe235d3 |
| SHA512 | 3db432e36ae3461058a410fd40173d11572712b4ca3a4ee15c4076a590ac4aa0ae4009b80c3f88cb9597fc5f4548e4ee3b5811b9ed4768281c973698bb325e7d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f50d078f1f00d69da66cab525e313fae |
| SHA1 | 12c9e4905a75c4152f91c345b82a2da8af151a15 |
| SHA256 | 81118b776cc96e5119de8de020aa9435dc5640c16e120e2e4328c0b839a2eef6 |
| SHA512 | fced5501e6cb686bb26b2524c9bbc8b7842fec7690c5420b3454c5f5da03f7b3e540cd013ea33e589558968446a81753c8339b7873228c7a659539d9d9722709 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000024
| MD5 | e955953b801c04327c1e96c67dd3c618 |
| SHA1 | f9061d3780f153e863478106bf1afd85132bccb0 |
| SHA256 | e8965a2d52ef25918ebee58ab6971745d396177a7943acf1ed53a65bb4dddd45 |
| SHA512 | 6318ff1eb838954dd73dab5ed891d47f4f39089fa5e899d30183c32269c5620bd09d169af4cf8303e3d5c2ebab23cfe9ae5d9fa5c3281023abb009f66a25782a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 589c49f8a8e18ec6998a7a30b4958ebc |
| SHA1 | cd4e0e2a5cb1fd5099ff88daf4f48bdba566332e |
| SHA256 | 26d067dbb5e448b16f93a1bb22a2541beb7134b1b3e39903346d10b96022b6b8 |
| SHA512 | e73566a037838d1f7db7e9b728eba07db08e079de471baca7c8f863c7af7beb36221e9ff77e0a898ce86d4ef4c36f83fb3af9c35e342061b7a5442ca3b9024d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f3a6b1422b99f71fa4140e20d8be95eb |
| SHA1 | f4d90252eecf61ccde56ffb0ae3224ef26856bca |
| SHA256 | 8af3616ddccd6934b504b213acefb81b01c364a964b84ed8abb4e8ddac808396 |
| SHA512 | c926d33bfa4565d9a44129968d2ca4a33b4d6027515571f3a19cadb667e1b4b3117d189e4ea46cebfe54596818117a0d2815c83f636622a8378e6b99186f4e94 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a942c65305efed60e9375988f2041461 |
| SHA1 | 6a05a6c792939d5fc5cfdbc8729e2505081b356e |
| SHA256 | d0f431fef354a39db5ee17895a8c4db03382c8baa4db6a20b25660661a4d5924 |
| SHA512 | 4022615d1edd491d782cfd88f685c796e0719cc231210f56ef58cfa95a680f54d2b1938d305ebea1738cd1d3b9895d5cb1e5051480e1b281675ae4e4821d72b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 42733a704bbbde87adf4b693bc86bc4d |
| SHA1 | 77a044f7e43d5d10fc2024b49168efa4a5592629 |
| SHA256 | b76f7973bb6e84467a1a5033680fcce0e2122716c0670663460e1e1dfc176412 |
| SHA512 | 4cddd59331766160e60a0dea5c7f4082d0933ba48c43dba6eca0163ffacc9084c00993e82a78734f64c197149c956a5919486f854b6ee6e113f210934e14a453 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 5c7703e7f0a20029bd7ce285a68ba7de |
| SHA1 | 18967b980d35a8718f20e10dcdaa0e2cebc76632 |
| SHA256 | 9eb2699e7b91534633eb8630e3f13faab741f187a72ee9634763193d673b1513 |
| SHA512 | 31db840470df09b96eae846a024cc65f2b10cc83937f9e5291f4332a9516b96f39fbafaa6f65a4e9243fc94152bc67b65be05a295278a23ac3cef4a4974d513e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | d10a985577fff1ab6671454449e88c84 |
| SHA1 | e11fa6fd05aeb8755dbe0ca124b4b76d9bad9ff0 |
| SHA256 | 6efcbe170013f6f14ee49ac76fbac3e4b97c4dd5278b0b0effd97a2e7409324e |
| SHA512 | 782b3890fd41be7d6a77a3227f1b2ca534b25f049b76e12abe4f7e95ba26c9cdab325537490bc6271405cf2c191868b9ddc6ebd74bf20dc3d0524e67aa57b3a5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | d1020af0bdb9d25fe06f4b6c8b99ee9d |
| SHA1 | c85eee5a353a31342a38729ee2937976859d2119 |
| SHA256 | 2f69b80ca607fb11766bda91784fbd80687bd5ece02de3de784ae63c05f9ba84 |
| SHA512 | b58d7cba3ada906f6da6ffb29ee0a8f18d5b9a1609896c3921c19aa4fa175bc3edbdfb72f8fbc74f978491e418c0e212f437f88c9727393dcee33797f6d3b62d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1e2e43adc869206089cb5d7be411201e |
| SHA1 | fc227ff33be675b77292b6f82cc65cfd6a3575e4 |
| SHA256 | 56e2cefe6f1239ae2bf8dc161d47e9d8ba5877e0dcb5726ce73efaee778037ce |
| SHA512 | 66e8494ca0364e58ce6512d33fa5712b096f03e8e38a57647bd47a718979e12e1f102bfc3f5193a7f0499c72b00a80ccedf31aaff6c0f5936b80278849455bcc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 60e3f691077715586b918375dd23c6b0 |
| SHA1 | 476d3eab15649c40c6aebfb6ac2366db50283d1b |
| SHA256 | e91d13722e31f9b06c5df3582cad1ea5b73547ce3dc08b12ed461f095aad48ee |
| SHA512 | d1c146d27bbf19362d6571e2865bb472ce4fe43dc535305615d92d6a2366f98533747a8a70a578d1f00199f716a61ce39fac5cab9dd67e9c044bc49e7343130e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1b7c7e81f21297a66e3b2c2769c645be |
| SHA1 | 51de9f7cee7083ae88eba1d0959f928a92a52c82 |
| SHA256 | ecda70d36a55f1c4813b0791616a2b629442c012746288dbaeb5546d3c17123e |
| SHA512 | bbba9721de1b07162286db91d92968fd22a27a0f0081c4e566f378bfebe8fa11e9790d638f8ec26882f25b8e12c0a84500c92cc8f25924fee40942027ec9b9bb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | cd23c56e75a49ee6e9055132f2662ba6 |
| SHA1 | 9660fa45c10d40be4fa2c4fa0d9c873b9c08169e |
| SHA256 | 82b36b32406c93d482d5aaae1343d4d1e1f801e8d1a622f4b62507bdc19b890f |
| SHA512 | e90215236448291e0a485647de4244c89a3eec87174bdef9e55b192f36be7b5e39b40139b11201b743847c32e68af082495cdb9f9987820f01b84a77efee4e1a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 28c1d4c915004eca25bce591c13b787a |
| SHA1 | 967a06d99d8f38bf55c576736c23f3d592fdf811 |
| SHA256 | 988ef268d87c09b53bdef876ebbaa13566889d8349cfa664fa403db47f14b339 |
| SHA512 | 71627c0e2bfd6b217cfbd1166fd0ba977a62c1b22737ccd685343fb3cea675262fb1e3e8fcd242c7fbefe605786cdda4fba55e5396838686873c31285efec15c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6e74a42c0fc538ef86859e6798f004ed |
| SHA1 | 787806b62462b58ec69035ac131c682b846be5a3 |
| SHA256 | e1490abf20094e24e29a74702b417327f3aa82ce1f4ece73519b11d6261457ff |
| SHA512 | 077be2756326a7bf643511b24ac212fa7f1a4200c85426de78627b5f63c2b4c4d35da0da7ec6e4c6168a7b683d6fa5eb971d0096d75fea226c7b0a20f48ce2cc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 074f8e75f749f77a1fbdf22512a26d3c |
| SHA1 | d4c34fff47f8ec8f7a33a1e52e0e34285473ec27 |
| SHA256 | 5ff4a26cbcd7b82cbcd7fce99ab06207aa6d70feed4e68ea4c407d8d6af29250 |
| SHA512 | 1b8ffa780ad0facac2b03a858f51826006b45d1e987644ab5dfcca7a6bb609953a9cca064cedcb7a535e36f7ebb82974f88f8b3bb9721b5180c529e68f06622c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 14ccff02d99cb14a99d31126b508d4af |
| SHA1 | e09a2f551d0c310c2e4dc8bca4b36215c9a7ecb4 |
| SHA256 | 610569200243e9df95604203bd7ef34cf0282457830f4e510d21e80dca0b6706 |
| SHA512 | af4b65cf22ae7278607b2e0f36ad4bd34486acbcb586d2f9962f0fb5d0806ceaa475f0c5e23ccaf172b5188abdf41eebcd49884cada4f155bddfe197755fe215 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1b53b6e03ec4b5d34756f476b85a9f57 |
| SHA1 | 7dfc39e8b664b8104b7b62c28df9d6088c6829c3 |
| SHA256 | 685527e22acad5d27d85330bd4c870f68ee7b3c3ef7fb3dccde43fcd1fb6696e |
| SHA512 | 1893275e572fcad6d125ac273f3a8856ade68b309b828f367ae8f34232c7ef8b484d4bd78b41e4004677e20a1b7d0fd4ab9fc81bb889012b9dcd30707d8571ba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | ab6ab31fbc80601ffb8ed2de18f4e3d3 |
| SHA1 | 983df2e897edf98f32988ea814e1b97adfc01a01 |
| SHA256 | eaab30ed3bde0318e208d83e6b0701b3ee9eb6b11da2d9fbab1552e8e4ce88f8 |
| SHA512 | 41b42e6ab664319d68d86ce94a6db73789b2e34cba9b0c02d55dfb0816af654b02284aa3bfd9ae4f1a10e920087615b750fb2c54e9b3f646f721afb9a0d1aea3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Browser
| MD5 | a397e5983d4a1619e36143b4d804b870 |
| SHA1 | aa135a8cc2469cfd1ef2d7955f027d95be5dfbd4 |
| SHA256 | 9c70f766d3b84fc2bb298efa37cc9191f28bec336329cc11468cfadbc3b137f4 |
| SHA512 | 4159ea654152d2810c95648694dd71957c84ea825fcca87b36f7e3282a72b30ef741805c610c5fa847ca186e34bde9c289aaa7b6931c5b257f1d11255cd2a816 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3c5609a63aafe0036961fec44b9e910b |
| SHA1 | ba906fdc6123b3352d2df4710e2634524268c88b |
| SHA256 | ebf7ec7a8daa96ea5752545d6e340d7c9df1382d61ed4fc0c7fe2fc78689578b |
| SHA512 | e61c255d7268d2f735162983f1174f1322b5ad8d40b7e8efdb6da9270d69f45e664a1cceb0aa6ebb530e840a2ff50fae42a31b84cb9b4f62cb3cc1614f1c5d14 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 206463b594c5f69cdebb734be23664f7 |
| SHA1 | 7fb5e55858ace1a7a0e5625172bd7d9487dc2792 |
| SHA256 | 3a12a21db0283114cdcdfdcc2c3aa44340bdf66c8e8494900dc24375e75c2da0 |
| SHA512 | e38d73f09a1bdcc777a2c57d4da6a31e55f6161168244da8dcb3495e7513f7ea96562ec2d50d8373fd59133b4299b93d40dd5ba161ee73fcf680e9684e3be026 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e4785b6bc63914db32f2f7de2f19342a |
| SHA1 | 62ede116562f036e6b1a5b3bbf1c5b1ee7670df2 |
| SHA256 | 2a89c9ec3984468665c81ed88c846107ce92d0a4072797c0b7326c1ff8ada46b |
| SHA512 | 8b718560b455bf439759970b1f4a3803948c416403278474dda855a6439c4d2e3148065f1f3b2b2b335bc6c95d2edc007acaee2b824fabd466c059f029f9f600 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 505f8db486e53b76c7164af5eedfed14 |
| SHA1 | 1cf597b69d3e063e4e08b69a368d2cd48606c2b5 |
| SHA256 | 14044ac5f9f09739bdeaedb7701df669f5ca338733e15a52fdedcf3dc56967a7 |
| SHA512 | 624681489a662a6bf1a8756c006ef10376fd694621b4b10457a0835801eea392a1330b39b2dfe04a6aa4b127df65843a11c84e6a76bf9e3b09b193f290bb8f56 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log
| MD5 | 1899051e38a3dc6d71a53f508c5faec6 |
| SHA1 | 4857c4efc5b29c2fa73f97ee04d7dae8ff4a39a7 |
| SHA256 | 92cd060903b6d40f671d26080098af8b2f1531186369149781818bf65e488a92 |
| SHA512 | d767d11eabc028f43ad413189b012863583a87f6285c8dc0685765a9f4efdec7129958c3e28daff7e6a048fe0a6a8445d68c61aa60b235da2928f5adab607ee1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 46c2de06370f85ceab13d79e599de213 |
| SHA1 | 577458bbd79e46db569bb4804217d4e8ead0b936 |
| SHA256 | 2eef6dbe25271e67fb054091931c06648f4721ae2d8a0f6256bffaace29998c8 |
| SHA512 | 6e3b4c6a981c04df07e0420e60b9fcfdcd011ebe4cc3fa9fb18853892c924af14bae72752fcda474b201ff2cb01a448d4c4dbf2508424112917e9902c68d2e9e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6161ff2b13df029686acede191325cbd |
| SHA1 | 0a4d6d020d1cfa398571f6b20967b15a06b68ae1 |
| SHA256 | 8c64c4a87ab59333e10d0d9f962b4002ccf4b8bc0779ff43d1fdd2e76aea9654 |
| SHA512 | 2fbdbec43ce92b01fa80ffbc8b14c7681ddb7414ecd76c3c74e5ae17fd1d3c604876241f798945bb91a6583841a64c0a8dfd7ed3ee4a41e3da000c2a8d0812fa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 73918102e9d3cb22c142cc5296adb953 |
| SHA1 | 2b9bc2001bf3835e00f7993c0a9591e665cb1417 |
| SHA256 | fd52a9f73fe3b6b90939a343568eb684a63fd0d1e23a7292e8fbc1a958315d99 |
| SHA512 | 158d5f39e81e954582aec040e7514aa8a41efc8b6ae4421ea3c6216d494edad6c31082ae3ad37e64f0ae933c3fa52e934980ca9f305bb78084a5d31485dafd42 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 98f9592b24c0e6425cc9a4952742cdf3 |
| SHA1 | e27333c27d019265aa7bbaf83c878687f614e176 |
| SHA256 | 460c4d5e3499c7c1a5acd405978da7eea2211bc23217526f9ea5d23a12c5bbda |
| SHA512 | 239b63f4a58b59379b3e3a53bc94242acab62c137ac1da2515af5ad5df29b7efcf92536db01fc014915c2f61a90f597b213771aa291be375c0d4a01a8419f7a6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | ebc863bd1c035289fe8190da28b400bc |
| SHA1 | 1e63d5bda5f389ce1692da89776e8a51fa12be13 |
| SHA256 | 61657118abc562d70c10cbea1e8c92fab3a92739f5445033e813c3511688c625 |
| SHA512 | f21506feeed984486121a09c1d43d4825ec1ec87f8977fa8c9cd4ff7fe15a49f74dc1b874293409bd309006c7bbc81e1c4bcba8d297c5875ca009b02e6d2b7be |