Analysis Overview
Threat Level: Likely benign
The file http://google.com was found to be: Likely benign.
Malicious Activity Summary
Detected potential entity reuse from brand microsoft.
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-07-01 10:42
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-07-01 10:42
Reported
2024-07-01 11:12
Platform
win10v2004-20240611-en
Max time kernel
1766s
Max time network
1762s
Command Line
Signatures
Detected potential entity reuse from brand microsoft.
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument http://google.com
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ffa06e046f8,0x7ffa06e04708,0x7ffa06e04718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2096 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2956 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3276 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3292 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4704 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5168 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5168 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4812 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5284 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=3544 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6268 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5876 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3544 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=5068 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=6528 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6928 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3544 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6864 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4864 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6492 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6604 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6380 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6608 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6784 /prefetch:1
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x500 0x4f0
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4752 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2772 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6620 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6176 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6048 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5932 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1976,1333074271365462442,4187313712132843867,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7400 /prefetch:8
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | google.com | udp |
| GB | 142.250.178.14:80 | google.com | tcp |
| GB | 142.250.178.14:80 | google.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:80 | www.google.com | tcp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 183.142.211.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.56.20.217.in-addr.arpa | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 195.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apis.google.com | udp |
| GB | 142.250.200.14:443 | apis.google.com | tcp |
| US | 8.8.8.8:53 | 14.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 13.107.21.237:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | play.google.com | udp |
| GB | 172.217.169.46:443 | play.google.com | tcp |
| US | 8.8.8.8:53 | 104.219.191.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.21.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| BE | 2.17.107.123:443 | www.bing.com | tcp |
| N/A | 224.0.0.251:5353 | udp | |
| US | 8.8.8.8:53 | 123.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.58.199.20.in-addr.arpa | udp |
| BE | 88.221.83.217:443 | www.bing.com | tcp |
| BE | 88.221.83.217:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 217.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rule34.xxx | udp |
| US | 172.67.4.152:80 | rule34.xxx | tcp |
| US | 172.67.4.152:80 | rule34.xxx | tcp |
| US | 172.67.4.152:443 | rule34.xxx | tcp |
| US | 8.8.8.8:53 | 152.4.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| BE | 23.14.90.73:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| US | 8.8.8.8:53 | 73.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.90.14.23.in-addr.arpa | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ac.rule34.xxx | udp |
| US | 172.67.4.152:443 | ac.rule34.xxx | tcp |
| US | 172.67.4.152:443 | ac.rule34.xxx | tcp |
| US | 8.8.8.8:53 | wimg.rule34.xxx | udp |
| US | 8.8.8.8:53 | a.magsrv.com | udp |
| GB | 195.181.164.18:443 | a.magsrv.com | tcp |
| US | 8.8.8.8:53 | s.magsrv.com | udp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | s3t3d2y8.afcdn.net | udp |
| US | 8.8.8.8:53 | neverstoprotation.com | udp |
| US | 8.8.8.8:53 | 18.164.181.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 248.229.211.95.in-addr.arpa | udp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| GB | 195.181.164.20:443 | s3t3d2y8.afcdn.net | tcp |
| US | 104.21.39.77:443 | neverstoprotation.com | tcp |
| US | 8.8.8.8:53 | 20.164.181.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.39.21.104.in-addr.arpa | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.23.85.13.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | 107.12.20.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.shfsdvc.com | udp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| CA | 192.99.16.137:443 | www.shfsdvc.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | www.imgbchw.com | udp |
| US | 8.8.8.8:53 | v.vfghe.com | udp |
| PT | 13.225.10.50:443 | v.vfghe.com | tcp |
| PT | 13.225.10.122:443 | www.imgbchw.com | tcp |
| US | 8.8.8.8:53 | 137.16.99.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.10.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.10.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 74.10.225.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.90.14.23.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | 11.227.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.28.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 10.28.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.73.50.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.magsrv.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | www.shfsdvc.com | udp |
| CA | 192.99.16.137:443 | www.shfsdvc.com | tcp |
| CA | 192.99.16.137:443 | www.shfsdvc.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | a.magsrv.com | udp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | www.shfsdvc.com | udp |
| CA | 192.99.16.137:443 | www.shfsdvc.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| NL | 95.211.229.248:443 | s.magsrv.com | tcp |
| US | 8.8.8.8:53 | engine.flixtrial.com | udp |
| NL | 213.227.142.29:443 | engine.flixtrial.com | tcp |
| US | 8.8.8.8:53 | cdn.flixtrial.com | udp |
| US | 8.8.8.8:53 | cdn.banhq.com | udp |
| FR | 52.84.45.12:443 | cdn.banhq.com | tcp |
| US | 8.8.8.8:53 | 29.142.227.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.45.84.52.in-addr.arpa | udp |
| BE | 88.221.83.226:443 | www.bing.com | tcp |
| BE | 88.221.83.226:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 226.83.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | onedrive.live.com | udp |
| US | 13.107.139.11:80 | onedrive.live.com | tcp |
| US | 13.107.139.11:80 | onedrive.live.com | tcp |
| US | 13.107.139.11:443 | onedrive.live.com | tcp |
| US | 8.8.8.8:53 | www.microsoft.com | udp |
| SE | 23.34.233.128:443 | www.microsoft.com | tcp |
| US | 8.8.8.8:53 | 11.139.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | wcpstatic.microsoft.com | udp |
| US | 8.8.8.8:53 | cdn-dynmedia-1.microsoft.com | udp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| NL | 23.62.61.56:443 | cdn-dynmedia-1.microsoft.com | tcp |
| US | 13.107.253.64:443 | wcpstatic.microsoft.com | tcp |
| US | 8.8.8.8:53 | play.vidyard.com | udp |
| US | 8.8.8.8:53 | mem.gfx.ms | udp |
| US | 151.101.1.181:443 | play.vidyard.com | tcp |
| AT | 104.212.67.232:443 | mem.gfx.ms | tcp |
| US | 8.8.8.8:53 | 128.233.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.253.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 181.1.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 159.252.19.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.67.212.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fpt.microsoft.com | udp |
| US | 52.167.30.171:443 | fpt.microsoft.com | tcp |
| US | 8.8.8.8:53 | js.monitor.azure.com | udp |
| AT | 104.212.67.232:443 | mem.gfx.ms | tcp |
| US | 8.8.8.8:53 | assets.adobedtm.com | udp |
| US | 8.8.8.8:53 | s7d2.scene7.com | udp |
| US | 13.107.246.64:443 | js.monitor.azure.com | tcp |
| SE | 23.34.232.228:443 | assets.adobedtm.com | tcp |
| SE | 23.34.232.62:443 | s7d2.scene7.com | tcp |
| SE | 23.34.232.62:443 | s7d2.scene7.com | tcp |
| SE | 23.34.232.62:443 | s7d2.scene7.com | tcp |
| SE | 23.34.232.62:443 | s7d2.scene7.com | tcp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.30.167.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.232.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.232.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 8.8.8.8:53 | fpt2.microsoft.com | udp |
| US | 13.89.179.13:443 | browser.events.data.microsoft.com | tcp |
| US | 13.89.179.13:443 | browser.events.data.microsoft.com | tcp |
| US | 13.89.179.13:443 | browser.events.data.microsoft.com | tcp |
| US | 13.89.179.13:443 | browser.events.data.microsoft.com | tcp |
| IE | 20.190.159.68:443 | login.microsoftonline.com | tcp |
| IE | 20.190.159.68:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 13.179.89.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.234.34.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 75.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | res-1.cdn.office.net | udp |
| SE | 2.21.96.97:443 | res-1.cdn.office.net | tcp |
| SE | 2.21.96.97:443 | res-1.cdn.office.net | tcp |
| SE | 2.21.96.97:443 | res-1.cdn.office.net | tcp |
| US | 8.8.8.8:53 | 97.96.21.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | odc.officeapps.live.com | udp |
| IE | 52.109.76.144:443 | odc.officeapps.live.com | tcp |
| US | 8.8.8.8:53 | 144.76.109.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | logincdn.msftauth.net | udp |
| US | 8.8.8.8:53 | acctcdn.msftauth.net | udp |
| US | 8.8.8.8:53 | acctcdn.msauth.net | udp |
| US | 152.199.21.175:443 | acctcdn.msftauth.net | tcp |
| US | 13.107.246.64:443 | acctcdn.msauth.net | tcp |
| US | 8.8.8.8:53 | acctcdnmsftuswe2.azureedge.net | udp |
| US | 8.8.8.8:53 | acctcdnvzeuno.azureedge.net | udp |
| US | 8.8.8.8:53 | lgincdnmsftuswe2.azureedge.net | udp |
| US | 8.8.8.8:53 | lgincdnvzeuno.azureedge.net | udp |
| US | 8.8.8.8:53 | 175.21.199.152.in-addr.arpa | udp |
| US | 152.199.21.175:443 | lgincdnvzeuno.azureedge.net | tcp |
| US | 152.199.21.175:443 | lgincdnvzeuno.azureedge.net | tcp |
| SE | 2.21.96.97:443 | res-1.cdn.office.net | tcp |
| US | 8.8.8.8:53 | p.sfx.ms | udp |
| NL | 51.105.104.217:443 | p.sfx.ms | tcp |
| US | 8.8.8.8:53 | 217.104.105.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.onedrive.com | udp |
| US | 8.8.8.8:53 | ecs.office.com | udp |
| US | 52.113.194.132:443 | ecs.office.com | tcp |
| US | 8.8.8.8:53 | storage.live.com | udp |
| US | 8.8.8.8:53 | res.cdn.office.net | udp |
| NL | 13.104.158.177:443 | storage.live.com | tcp |
| US | 8.8.8.8:53 | amcdn.msftauth.net | udp |
| SE | 184.31.15.227:443 | res.cdn.office.net | tcp |
| US | 13.107.246.64:443 | amcdn.msftauth.net | tcp |
| US | 8.8.8.8:53 | 132.194.113.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 177.158.104.13.in-addr.arpa | udp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 13.107.42.12:443 | api.onedrive.com | tcp |
| US | 8.8.8.8:53 | spo.nel.measure.office.net | udp |
| US | 8.8.8.8:53 | skyapi.onedrive.live.com | udp |
| BE | 23.14.90.107:443 | spo.nel.measure.office.net | tcp |
| NL | 13.105.28.32:443 | skyapi.onedrive.live.com | tcp |
| US | 8.8.8.8:53 | my.microsoftpersonalcontent.com | udp |
| NL | 13.105.28.32:443 | skyapi.onedrive.live.com | tcp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 8.8.8.8:53 | westeurope0-1.pushnp.svc.ms | udp |
| US | 8.8.8.8:53 | content.lifecycle.office.net | udp |
| US | 8.8.8.8:53 | 227.15.31.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 12.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 107.90.14.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.28.105.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.137.107.13.in-addr.arpa | udp |
| NL | 52.111.243.109:443 | westeurope0-1.pushnp.svc.ms | tcp |
| US | 8.8.8.8:53 | browser.pipe.aria.microsoft.com | udp |
| US | 20.189.173.3:443 | browser.pipe.aria.microsoft.com | tcp |
| US | 8.8.8.8:53 | 109.243.111.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.173.189.20.in-addr.arpa | udp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.253.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | 119.190.114.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | munchkin.marketo.net | udp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | dc.ads.linkedin.com | udp |
| US | 13.107.42.14:443 | dc.ads.linkedin.com | tcp |
| BE | 104.68.89.134:443 | munchkin.marketo.net | tcp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 163.70.147.35:443 | www.facebook.com | tcp |
| GB | 216.58.212.194:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | udp |
| GB | 142.250.187.196:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 142.250.200.3:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | 14.42.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.89.68.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.147.70.163.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | x.clarity.ms | udp |
| US | 20.114.190.119:443 | x.clarity.ms | tcp |
| US | 8.8.8.8:53 | my.microsoftpersonalcontent.com | udp |
| US | 13.107.137.11:443 | my.microsoftpersonalcontent.com | tcp |
| US | 8.8.8.8:53 | browser.events.data.microsoft.com | udp |
| US | 20.189.173.16:443 | browser.events.data.microsoft.com | tcp |
| US | 8.8.8.8:53 | 16.173.189.20.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | b4a74bc775caf3de7fc9cde3c30ce482 |
| SHA1 | c6ed3161390e5493f71182a6cb98d51c9063775d |
| SHA256 | dfad4e020a946f85523604816a0a9781091ee4669c870db2cabab027f8b6f280 |
| SHA512 | 55578e254444a645f455ea38480c9e02599ebf9522c32aca50ff37aad33976db30e663d35ebe31ff0ecafb4007362261716f756b3a0d67ac3937ca62ff10e25f |
\??\pipe\LOCAL\crashpad_3244_KHVUPQEGCTJRQZJD
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | c5abc082d9d9307e797b7e89a2f755f4 |
| SHA1 | 54c442690a8727f1d3453b6452198d3ec4ec13df |
| SHA256 | a055d69c6aba59e97e632d118b7960a5fdfbe35cfdfaa0de14f194fc6f874716 |
| SHA512 | ad765cddbf89472988de5356db5e0ee254ca3475491c6034fba1897c373702ab7cfa4bd21662ab862eebb48a757c3eb86b1f8ed58629751f71863822a59cd26c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 053aae830d347dc2c6a85528da174313 |
| SHA1 | 403ad413a657f61da10ea81ce6c7eaa5e4faac1f |
| SHA256 | 8c822c151ef145cedfed9f67c12c03ac1bbf1370555376aadf07b409c65ffd81 |
| SHA512 | 30a4d37bd1297fcbfad28ba18c9736e5cbeb6f2e28e70ddfe32adf83a8559f313396177a57ea7f67ecb5989dd939c1265204239856a4cce646c75e96ed5fc7e7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | f53666b30376020d8de935d177219270 |
| SHA1 | c13f8bc16d495bdcb39294a6a2ab9989111c88bc |
| SHA256 | e4d5822d098d00cf6ea47e3e4f7a769395d68280830719f22933d607dbd01913 |
| SHA512 | 5f2614ecb6453084da577db85c6c4edeb992f3971a623336a45bb48e030cea43de5aefdc1706f27ede83297001d3f275b1257ed4090941bf827327744f9c1b04 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9f966dc2c9cceba71dec42e360a84eb3 |
| SHA1 | fcecb35b601cff0d59efb11294bbb4d038f36da7 |
| SHA256 | bbf16c05df539e2901a7fac9a0c7d8a773d32026c717f9da35d04ecf3efbad57 |
| SHA512 | b3ae9c8d3f6e183af95d2b0aaeb82577a46b138d2025560c159f674f53528db88ac6272f92b134290aa0a2b540d94b8a1f960fb977911fb3e7df58d5cd00042b |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f586720a6e4e55a654a9189c3763290d |
| SHA1 | 21c7bcde6f3ca4a5b3cfad12e74a0ab0ca3d4cc2 |
| SHA256 | 074257859b64aa1e01108f8caa6bec02343265032ef92f8f1a17a3e869e51af3 |
| SHA512 | 9b11108baefdce1f6e54d491361e7ce83f9593d0a8e399c6da2ef9102e154cbb93b6ed97732bc18cde19e9ccc61389a28761c191d7f8609f35e9a7f4f0d17ca0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57a9fb.TMP
| MD5 | b3074a051dfeb5b28083fb7dcdf14b63 |
| SHA1 | a621ae6a745e5759a58c8e5cd6928cf20bab31d2 |
| SHA256 | 1fc1aec7fc443ff55097234d3da89ca8a5cd3757979803c62c13c409633e2d73 |
| SHA512 | 333b9a085a7b4e645a6fb8dfb07b31b4e3f67335f064e36607da0a57a7f20a09c9662459ffd84267116c546d71d0a0597f833433576a2c6f149c903e2a9c9665 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 1f384de710757656bae7ef639a4cacc5 |
| SHA1 | b55138a37a8aaf3731de65522b3de8a6c5f86b03 |
| SHA256 | fe0db9d2e08a19d6a1569c979f7528fd2285c4736ab6c8e6d76f6c0313d958b2 |
| SHA512 | 6c853e8a4c4c79fbf58dd61ea73f7c5c96f7d7a3ff95daf5fc5b5dbd9e3a204287f4839774fb18181180f6db2f26fc296ccb8fbb3f541905f036fad0db61e5b2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2598576a8ae9d9ef3b788110240eb55d |
| SHA1 | 45249f5e380e45fc7dc8149af394ba887dcf67f9 |
| SHA256 | af6d05a6781a3eada2ee025b2374aaf67629ca18fe8cc90f6544b3732f6e6005 |
| SHA512 | aceedf268121b9edaedea30bd1b8c567dd18ca05c4a8d695388480e851115c12db864bc7de532fd4f2a8ab5704a47b3bb6d41854d9ed10e5e432e21843dc95c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\5f103a8f-7793-4cfd-90ad-349de6c6639a.tmp
| MD5 | e3a7afb1e6ec794d7ee97f00ce54e587 |
| SHA1 | 5d5ed88dd12a62dabc91db68ef27e36138408d9c |
| SHA256 | 1eafa6844a6986a368d084b3f6cfb7c9ec402cc7355b3ddcaf2a7935f5dba307 |
| SHA512 | 1e431aeb95d1a75f73f3b384b4a563accb99a2194f1f425219e41f6ed6a036f3f79484c31d8c40644f263305bca00d609615bedcf59259d105d933f8d6123c6b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 5c4d3bee2379c5f3b50aa0a0672eec77 |
| SHA1 | 8e665b15a36001b800abf5411e55013b5211fb3e |
| SHA256 | de88663792a8eedd5a050c0dc3ac624dbd0ace1626dd7cef921ca7f04288cfad |
| SHA512 | 67c8af0d6fb43cb1bee5ba5f33f10747f66e4cf90b8bf87603fdd4cb829f333c4a5e77cbe81281a44d0cbadc9d38a5778479386c7870fc962cf23dc0717bd3e8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b
| MD5 | cb4b54a7cfbd806412eb2ac9f921951a |
| SHA1 | 1b721f5f507f96ccc266c313ebf42e8ab9c0ee94 |
| SHA256 | b00a3b356daea74e82b7b5f4e9978f7682752ab85b4dc28c41e8110aaa62c233 |
| SHA512 | d40c92ee5e8496a7396b39becc2442d6dc03a079aaaf9ad59474fde945c6ffd176788abcc012a296065d9c87bbd902b56d68f01981982446d5adec6091edb181 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2fbffac378c9cb4d0db6f535e7d2675a |
| SHA1 | 31244d24d3e9a61f4893f23d93aedf45b0dbe234 |
| SHA256 | 3f48d4b65a475daf904ab51f09f233ba575f2a7a8ab0dac617aeac1d0cb4de87 |
| SHA512 | 6cde664b8ec9cac99f1ae62b26c55be5e9572730b659ead6e004041bb89a58c2c9413e2dacbc03501cb54f01109c18a090ecd9bee52b1943fef1071509087e12 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 363db1fb6971d7c7ae6ed99103ebee93 |
| SHA1 | e5c4dd0f1e0c524ae4a61c18c52e908425e9d358 |
| SHA256 | dda34e29e62bf6da2474d3e1fc492f889bbdbbf42e70429e44b95caeab2f30c8 |
| SHA512 | 497c75e2dcdc647af7ca03dfa930301d925557acc34828a4d59ea6e9068b7bdd1b1612f57c0d32157363bc80c52e0401fcbd1b1c735aa5d73ad457058561c95d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000c
| MD5 | 7c401c213e0dc38259d1e244682aaa08 |
| SHA1 | 17ce4f7f893be8003a6e4c1593c58610330f8681 |
| SHA256 | 7664c11403116279ed2230f37ad58894dcfc2dcf47343f6bf55eace7c22bb031 |
| SHA512 | e688108b8349705367b04e7e7b7751c42c22224da32fbe4006806f57241b6721cd72587e3644c1c485e83f6efa587e65599bd303da5fcfd84e80eec3f2827d9b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0ed4bc99c20d443c3bd2cbd9bd199c9f |
| SHA1 | 378537241686ce5b6da42275cafe37496c6780d5 |
| SHA256 | 147ac130b935e6c2349f6e860e25c6243d8fb90955f1629611cdf08e5406888b |
| SHA512 | ad677c4408a9e87a0afd21293b4fd25f3b6f26b034841e0519a7ac2b4766383aeabc9d6b55519a9eb24c1bef08b6047281ed6a03cb2e79a90215b724ee3849ac |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1e53f12571bcd7ee1eb4811be47d969f |
| SHA1 | fd73983ba7cba19f6c86f0a1226a7f6992742941 |
| SHA256 | 8d99b9272530075d7f5da9ecf5e8a559ea9ee957e2d8ccfd1057d1e4b2273919 |
| SHA512 | 560594d27ee16495280752733ebf85894cf4ab7b705a2bde168e447157e96995d61d6c09217fbf2390a3af616f7e87404a655041965eb0d4d953e3080a5a1b4a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8894ca068436fc49_0
| MD5 | 5fdbf8d3184d8d886255ef772b760762 |
| SHA1 | 903f683f65c6e2a9403ac326bb96e6536049f727 |
| SHA256 | 2318a34940690cc92684f328e8cd82d9dc3d86274ff81eff097ab80c6d339530 |
| SHA512 | 7cfafd858e204394bed7b6c04f3956f191b44a6bf3bbcdb73a3f068707bf7628e9326a8377a2558cf58224150dd7eebc0c6354bb83e6c925c33fa6766f66bec6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d834bb9da81a4c6950a92e60af1904f8 |
| SHA1 | 72e042d0131c9a127c4d9fd3169848e44faef72d |
| SHA256 | 469d4086fc93b862e2ea4f9743fd0eb49824a83970153ffb7a06201cb1c4bd29 |
| SHA512 | c6678dcc9f78f4d2f8f286cfc5da77582cf9d5299adeb4550c3da0d269fcea277de45bdfd528cef0d4131dbbb3d32e93afd763ed7529f271b7e34ad42238ba44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a1cd4eb8078efed10539b147bf1a5772 |
| SHA1 | 60fd5a11b715f42e263e3da0b22a7de64d726b09 |
| SHA256 | 6d6e56621c933f724772f0a8151a6027d76b3cfc02a7e07a0a46ed7533de3911 |
| SHA512 | ce1f78516c5f3bb836a9171450abc71c18dd22c8a81de1372eaaf95b3720588381618a1b4527ace25ed892cd1e8763b03c7d0987ce820520d39446a51c7c86b3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f03d80dd35c07849a833d41401db8246 |
| SHA1 | 34f1ac53df7c7c7fb4c4a51312ae113953bffac1 |
| SHA256 | e3ea136fe075ebdb896db5985cb7a1200b77bdd147224e97ba03aaab72561c60 |
| SHA512 | 278863d0a928120f8ac9809ca076c6a703828ec0358349bcdfa0d7211c87b85c37b928feaf93986cc355df9af1089df893bdefdc586081c4b07331f075275646 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\99709a451e3d16f8_0
| MD5 | a7637d29daf851766185cd16d01ee736 |
| SHA1 | eb594c8d6dd7634d6a047299b4e712f276c41c15 |
| SHA256 | cbc2d38073db6d34fa952405a0bbf8a2ed17834d29d71625598c39eb020c705d |
| SHA512 | 9852a9935caa42331ff498e8d2cfac12061947162970c24cd610c1cc281aad7c6d97ac87653762f6db68e65e64560237156e158fb6cc064d549b78d765423562 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d9010d52ed1d18fc_0
| MD5 | 7ff9b7d4ba2e47f75e27cdcc343526fc |
| SHA1 | 5880ba9c5fe63a814765a61ee05515ff28bd17b6 |
| SHA256 | a7a1350c3d5697652679457040dcde7273d52edb80f82dc624f26b90d0022e73 |
| SHA512 | ab7e303124da6e43aa16b3330e67ec5cd83e11039b3ae7635febb6a2a1963fa65e192320d4f9aab6789109aa04bfe69147776b3c43a1ab914c035da4043c463d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d
| MD5 | 71ce265776185e13ddd85a5f5429c85d |
| SHA1 | fd9d4c11103ee85b74ccd89250b858effd5a8e03 |
| SHA256 | 2e6d5f8f777b3dbaef17159cda99d0d1d9a9228a533b69c1f746a170e5f2f2ee |
| SHA512 | 21115008bf83571f1b9c31799f17ad9a8ebbcc4c92aaee0c0f6f629b5e90cc8d98b8fee4aaba0bac1af39f7296369c4068b0add3fbd8c15c99e70767099ee8a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000f
| MD5 | 6c1f47de9f1e25c5b4ca4437b6caa43a |
| SHA1 | f535dc1a78bb89c33c5745e893bfe031ac9b15e5 |
| SHA256 | 9a76679281aa96b8cf1a8d8ab79b9bb41c1a09566149fbf6b28ad0373ef5d896 |
| SHA512 | 1b119aa5d00352ab4e5c924911b1aeba284b2a117c9f7556bed70ae1f8c43beffd0f46e58591df4f35008a812d87eff654494733f65e9f9b2782fa4d33b977ff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4ffed0118e6c2ffe3095619b365aa7f0 |
| SHA1 | a3547b85374e9c9913f65178ce7f877822567785 |
| SHA256 | a9a86957cbdb80037da56d6d9da0231a709b08a792458c0c3d275f66aeab2b20 |
| SHA512 | a438763ca2ec963510bb3be901616211cf5265edca0bc589223eee1d95b817c5163a0e6f455677127de0e48d913bfeb58c328799e0a43218cb28b56ba59d0b15 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 92b3bc2c9695b51ef741a1a65ca36b9c |
| SHA1 | 29e3e2ea3ede710eed400496b306c0dc6a36fabf |
| SHA256 | e135fc6db28045014a174e25f3ee39e4489952981e7050268d5a2933f9c0233a |
| SHA512 | 00831fac1f68cf57d1f72e786e39341017d9db6194b7b49bc2fc7f0cfe2039b7167610dcdb18fd615f15aecbfe7f90b5a18a8d7b3d31bdfbbe29bf7b6b4d85bd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 45e592bccb5b65f44706a6d92217c4c9 |
| SHA1 | 1e3cc9cb986275805c49333758d882f5da28882e |
| SHA256 | f4be33efc20273517531bb473f840e8027cfe6bceea25f87308fd2877a487542 |
| SHA512 | 563c8fb597373d3d2d031ad15e279ae664cef892c89fb84648513bc1fe2c2877f7f8b533b5a967d0b013509492f31349a476f8e2ec2319132991212805631824 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2ae07864686af729e8591f0589598bdd |
| SHA1 | 10a810467c77869da7f4ddeb9a7f91379100a303 |
| SHA256 | 3defa19c39766af6e1d264adcda8da7e1e0564c3ba24b03204d3747e4fcb05c0 |
| SHA512 | cf01d24df4045f542dbef24bbbfaa7d7b18f191ab7957ec5cd53d0ba8fd7be71c79f219c682b7665e905670917a90fa9f4ad0776093c930c1f4ee419c1aedf5a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000018
| MD5 | 1dc48c73453aa0b91773215efa472641 |
| SHA1 | f405a44fbaf749b5cc7e294c2500fd33032513c9 |
| SHA256 | 1324abbaabc220818beca5afd18e15d5546a89e14f965922414a8433133b2379 |
| SHA512 | cfb3add24b20f8f317cc58214034892e3c96328030902d9ddc09c6e0906dda7042e1f54fa0728bda6bee40f7a3bced8e2fa30d0222f2a2d32ebbee677c0b34cd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 30d9c94a80ee735845ffa75ca53df1b8 |
| SHA1 | 0a536ef70ea7b916f59c01e105f3210b7451cf51 |
| SHA256 | 0dbc0d638e80b2cf69b1f27d2e5decdeb6b9f8503217a9ba001fe803afe36e99 |
| SHA512 | 2ece9b90dcc5138c702742ec2954f9a6c12d9f564c60bf899e3047fae27d5277d27a8c1194b68ba76cb5ee58f769e7821e66a6ac33675b56c677404adc3ab191 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4ff2b8a5321df6d4a24904b536901e71 |
| SHA1 | e7f4cf4d77e3d07b89762ab4d452cf9cc3b86a2d |
| SHA256 | 283008a8caf5ca44f1f3aaee8abfce8efea88097b155fd138e989d5781c10965 |
| SHA512 | dd98c9aa3d406ed8c31d28d83b84706510f7e32aac60497bac7f8d5fcadca660e68ed417193fb094c43293084fb189ed6bb764248551c9bd5ac37083228a52e4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000013
| MD5 | 6420f51266e6227808a77a3168efea84 |
| SHA1 | 52edda3713b63f5ac82e30e6a585f8a109a68f65 |
| SHA256 | f19288583e182847dd95d9c8481dc9a5cc38f0ef7538a6cee7a0bb450a052fc6 |
| SHA512 | 249f32b2b4233badb0dc222bccd80cbe183286cc437c11999e6f4af08e0e653887117f8e88610702394294c579c0d2141e161286870051f6c453a61aec4d33e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 82e0da34fbd1c2987e913fe6ceff376b |
| SHA1 | 6765a248162a947ad670d5e27a81453c75b0764e |
| SHA256 | d47145efff6467c57b9dede93f175e2785ddf2671ea4ca6029b4127ffa5136e9 |
| SHA512 | 7d467f215fe52e6ded8df179c00ac201d795e6c5d72b40357f335b1a2dad2359d0c00f035a4eb78af1fd9fb0874001ba1d389c28f89dfa7d8e8938999f496ba0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7176c145318555e190a719c24c17ccae |
| SHA1 | 6f1d80b1b13585f517ca256234341b3a4cc56558 |
| SHA256 | 0cbb3278d8fa3595c074f296f26228f702e85ffa6d8ff071754e67eb4f7318ee |
| SHA512 | dffbb9412b790b669b5b65b2dc2a62c3afbf2304bb557c9ef71dda1fb37b6f8926a465c1841a94a27517dfe1196b88afdf08db0260a5e97aded7dd1cd5dc29d8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 08fbcc8aa99988d37bfa4c0d9bf4ad7a |
| SHA1 | 898c100ead18f7bfd017736ef2f3089655bb273c |
| SHA256 | 54889517ef6962e8e11bf091241218b0ccdd99122a67ddbf562d8843ac59af1e |
| SHA512 | 00ef73c47721dbfb20fc91dd58b5106bf526ff1db4165e2056517f0419c00dcdd9d1c5a0451ba580a494bd6685c94f107c03a1ec8b1c53201e5be5085a05e01c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000022
| MD5 | 13e65ef866326c0eb6b38d15d14818e3 |
| SHA1 | 461cfc61b1bf07c5dc8d03ff3bdbc0650b3fc55c |
| SHA256 | 85b0edb642650488ebb933e6f5798633980db7835a850363ccbaab2487423beb |
| SHA512 | 340b3ee9adf77282e81f6167e4762f1a4fd2bf088af8baf357427e88f71ac42a5b7f14b04a354b2a26e00cf4f2a3b459cd492ac991b09c7d2b1477c54c0605e1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4bd16c704bf264d5df895eea9fb0b80e |
| SHA1 | be0a847685f90f28f5eedaa3613dfb782ee8c224 |
| SHA256 | ae0e831a5b3fd4ec1ce43a3b9c05159a7ae0701bde7b42fd60a139bdd766dff2 |
| SHA512 | 9f9b5d95aa1b04cd220574067990910ed4cc17f66cada852b350d4bbf8be3070b5d6cfcf34cd0f2cd439f7416a2c6faf6758fdd8517d7e6a9d6647546cdbe65c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014
| MD5 | cc41cd362b39a00a57e5aefbceefe61d |
| SHA1 | 7cbdb74da290f6a04010bc120efbb360103e9048 |
| SHA256 | b3f1db7dedb90abee6b6876e250e8546e0c09762b9c9eb1795aa49c900490922 |
| SHA512 | 1e24a8665fcdae8fa264f718dca3db1e55dc5d59dd12939b273fba5c0ba9259909110c5e40ecda73a7d8acd484b2cdca2fb269dba3fcc3db494750c098fd4ed3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001d
| MD5 | 43a51779634c5ca4df69c430553733be |
| SHA1 | 617e1a6c2f18c9838c668c5cd3a0ed9330e2cbca |
| SHA256 | b73ff2eab586f6644440463234304ae7bf11f88448630364166e99bcf56bf7f7 |
| SHA512 | 0aae727f08a545ae597a29b3c629ee8f0bc8d4b1257e6a2ce9f11a5de9b23428bc3cea4544bbb1c22013ed3255855285b9ce748943d5730425b2091397e7beed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 03b2476556a13583963a616808144291 |
| SHA1 | baa2c78433ece22349ebde66911ef118328ffb1f |
| SHA256 | 511dce34df84edbc8e4004241a57b297071b7bfd5f9fa4f9c59b808a4fdbeb8e |
| SHA512 | 34c22be1e447ae8b5a92a437c5bcc4603e63217e40b77628d9a5845f59dee53763b5f81c9890071d18f36c6a4e629519ccf08ad2f7b25e39ee345689215e2881 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 36dbc2b881cf9f8198781cccda290ce6 |
| SHA1 | 71a3313f3ed7bdde5e8ab6a0edbb7e464bacbfcc |
| SHA256 | e5f5cde4d7705bd1b7066a10f12437fb32cd07eb645f6b73d382748e4290bc8a |
| SHA512 | 6afe7b871001f0b4a693a55ca33cce05f2230cdd3a07e392e4622872223f98204a92d7f41b1a3276a6ccc86c58a47b095c09116bca568d12019abcf970ad08fc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_00000a
| MD5 | aab2532f8363e63359dbf0c31981f57f |
| SHA1 | a21523eb85636a0455977ffe525260a1a8568043 |
| SHA256 | a6abef5f074c67b1f9fbee679151a4c705b71f054c98f720dfabdc65786d5d13 |
| SHA512 | 7b3c4ce6574b36bf0d4e05bba1063798b525744fdb37b28ad6fc78456ef7d704677795ae4dd0d0eda0954d15b3776395fa931abf82dd4b64583c360dd9916f64 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c08fc38adeb7538fac5b2fa763d7fa19 |
| SHA1 | cebdff287944c32434c4b0f4d22ad8288a6b0c14 |
| SHA256 | 76ad02c364d774208ecfb160ccb20f71941e5392c263bd8f0144192f22f8777f |
| SHA512 | 443cfc0d452aea6572d954f917f17a074796dd2b3a089204f1f9eb2057ce0f69d19afb4b302a99e9697e379fd2d92316dd1cfe001fb834d6af381d687c7d6c1c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3d76863d5f807a654933144e325699ef |
| SHA1 | 18a14bfad68105e12fc0df93835bd528a1f7803d |
| SHA256 | dfe7af48997b8f84d92543a02da59679d7bf5bb5601cbcb1c9568cd4d8c96e41 |
| SHA512 | 0bd17814481f62a4b2fc766a0655bf5dafa4f568ac62ad3e3d6d171db79e9d444ff5e5ec84cf89e5c15c9a415d355298d24ba62f51ac15486799420869932f41 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 27706ac9405746617e411eab26c577eb |
| SHA1 | d3f961ea98aa117705ba15caa82fe3542b069a2d |
| SHA256 | 18633c627dc80a686a3ce313259b80c98fafcc51211584bdc29232e91bc215cc |
| SHA512 | 72c2a0d0e542619f937f474b7d623af90f1c2cc1b08b5d2034510f0a6611216a072d01238970889f8891f97d11a9b822c237f57e5b515c01dc12c7ca3988f0ad |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3e6a2638e46b31c34c674815d80cfa6f |
| SHA1 | 97387260349b199fa4dd03b52cd516781c5d26f3 |
| SHA256 | cdaef3558fe263b2300c865b7163afc5e19eea9de17d8d8306272e3901b4e3f4 |
| SHA512 | 48f678c7c1cb6091521f68b10361434d81deca417b5e445e0031725a245490c7a9b1103380fbc18768cb9137eb5a2622d660763783d2ffaeb056753380fe7eb4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 2086c6f371909bda4513473c7ba35ad1 |
| SHA1 | fb68d4b36d3fe898fdf66f89f0e441cecf54a87d |
| SHA256 | cb5fa44122789d5f3ba13be14c0470180059dba4782789faa5f57091acaba28f |
| SHA512 | 9573e53b0db482f18604149e49888a768a768e885d03d8a9332511b647de4a9804317f98e3cada2d7eb36388b49e890b335acf7db9debcd4b36fdd8ff420563c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 28aacdc273c087095c125b2582e8046c |
| SHA1 | 86ab4e05326e58fbdb5cce9eb2e664c53d790901 |
| SHA256 | e8b0da541cccad9f9a4ab64203e09cd9d56304dfe34ce76e858050492c420b14 |
| SHA512 | 779df751cc80c50bf9a8e0b421a2c292df7756658da5d486147095acf6d85b7b12b9fa47b3a6a8d9cb1b56c95219d9d166253bacc8085d07da8fc4e66ab599b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fce90102135775f45d6e70b8f372ff88 |
| SHA1 | fb01faafaacf57a2710a3e937d6b861fd7366d90 |
| SHA256 | 7ebeb5b25dc09a8c7e7f8f018ab442e94290d2e37437cdb6645de1ebb8c7fbcd |
| SHA512 | 10c879b760017cacf0d616d7291b66d68c86080a538194f15793b69be387c4cf273631fb4839729e1f335b2ff59a71d55612f4e1a946c90962a3d17e3d8a8b5f |
C:\Users\Admin\Downloads\duos_gamemode.jpg
| MD5 | f3d83d0915b07970d2a94c2a5100be9c |
| SHA1 | a81242c552caacfec275af44cfef58e529919d04 |
| SHA256 | c3a5c547734d811f9cabd5c691073e9983f760ae953d26de15b0aa09184483f9 |
| SHA512 | ab3fd3b808a16c8bf673501931c1c088ab982c3f851524a91727719f2bf573bf7d1f3dbbe6ad7fbdb92fd0880ad314df2a0a23b6bce3c19a14e9f63f661dd2af |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 09d86e94a6e916748c6db94ca5b9b8b4 |
| SHA1 | 6e86b2ecfbe4ea25036e6080be9855531a119771 |
| SHA256 | 30dbed07ad84a1b2c838fe8abc62f6b8646ebdcd7510ff99ce057b06ffb84038 |
| SHA512 | f445b0b68c2b093ad1c503589f0abb60bc6b6ba2126d58955b50574976b77c04a894c7719b59a3eb2aa6c45f07f856666e9cc2e1c3c7c04deab519ae602ae5dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | fa5d07d3efa31a1bf763a93abdd40298 |
| SHA1 | fc97c6b49570324dcc5729a7c512fe2b3844f234 |
| SHA256 | cb64cdc8827bb47cfb2b18f5c294602de1678b447829514eb8a6f83a7238f166 |
| SHA512 | ef72ad800156e0af3a0f8d5ba89fc7a46e3375247a58ae627dd41c1795d9720d646745fa61bed67f03fbb9727d6c3eff812496bc14f010ef8e25a522f765fd12 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4b5924167c2065e6c56e1746d7faa012 |
| SHA1 | b8d00f95bdd27ebcd784a4435a0154e0a7d087f8 |
| SHA256 | ceb18672c2a7088da91ed8fba1c6a181a97dee0e6dacabd5fd54da1fd49e3990 |
| SHA512 | 0ef2fa32131d9c4411aaacc74be5908117230ed458bfebd8db5f8c454adef51d859fcda1ebdca630cbd9957cd6edf9e96862108710f2f72f2c5d6e9369eca729 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe5c8f09.TMP
| MD5 | 93ed547e06fa624a3a15a43869184bba |
| SHA1 | 785bec86b79ccea090528c37df818b9ec5042a3a |
| SHA256 | 00f6b4641373f6b46b3981501c5ab69f430a999736b69e1b8f865175f9c4e7f9 |
| SHA512 | 74ee86213dbb3a7d55de9c53c658d68d3c28e98524414f7a1b7589409903b0e840476b4990a9651d52664c2472d0769a93cae85c3a39abf1e2d03bac7cbdb543 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 49763f77c70007096d55baa60dda0f46 |
| SHA1 | 1b37f28889b3f80cffda7b99a029e8f041aeabbd |
| SHA256 | babe3275762fee8e45a72eeeb888e0af215098c651d9989ae2451c4f1e164f87 |
| SHA512 | 50d3c4b88128137a83b27e9a4d1eb763da0a31b5b98f913334bb30271b1b56d2f4b3f7e6bb953ceef0a54f11202aa42ef5bc4e6c7e3406d9ed8e1c3ee0a63518 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3f65679921b6cf809f99652ccfc05a4a |
| SHA1 | 5becbdaf75cbaefe49d3d7001e95a0e4add9f26a |
| SHA256 | e0d1c45044a416128552328755305a303bd4942b36b0d47ad2ae4e56e9642ef2 |
| SHA512 | 1c923d4dab14267ce86d9a888137b658a828b6c4df510ec7e98cc9ba121fd7d03253dfa9b2bdc3d174b8e4ad6a7e13b59c0675fc9931d829e47a6f1be41f3a9e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 694646f79cf31be4358652e89a52fa71 |
| SHA1 | af65e804128e9b2af87dc77ab5adda01e31b90dc |
| SHA256 | 8ec9b0704cef0fa1d595d78cd2b0df0bba02ec128c83ece6fd9f124785e97d6f |
| SHA512 | 08c6213a1a6d0fb2ce0818154db47df84449aa1d2a2e63dd273467c248ec09411156f20af32d868b9069c7a1bffa22a2fef2b20236edcc34cc7d2e21009ce48a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f3c20eb90066d5e76fff615e706d5fa2 |
| SHA1 | 5aefcfd140c0a9e9f2068690a6ff8186754d3c8b |
| SHA256 | ad905ca71d2961b76b0cbaa6fa6064700b8aa5cde48b8b9a49264dfbc2f24d40 |
| SHA512 | 5e028222490178127c123a5fa560d0795a21e358fa4240d81163e09743b3f510215e8b6a507e2cbfc9372c02461f6671b1d0df470ca09ca91424da175a4c4ca6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 991a52aee6a32f743eb880b3d229d12e |
| SHA1 | ce2a195bb1ffee58155547c1560de081da8aea8c |
| SHA256 | bb8fa7d934d44d34ee0197781aefbba739b0818578b35b7d2c713767ed1ec3ff |
| SHA512 | 6a1cb0f7296fa57d1f5e4ab2e78d002a8fa378b717b8e187a905762ed147e07aab6e6c7e38058e07689f7d68a61c1187e41d04b3ebe8b2d58caef82c2b3e9548 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 935a90cb4e0a0710016f8ce6bab59800 |
| SHA1 | 7bd1dc60d98caae65f00ede342fdac9e3af8a48a |
| SHA256 | a77a054cf9e9fbe1266afe8ff51692015724e8350821affbd30411ab770482fa |
| SHA512 | c3605d226cbbb38345e7f77c28924811fd324ea673a6ce6323bdc3717c5f241b9567d4c71f622c4df6447edb5d6e413a2df7e3f434c3d559996c93811f2574a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\c7a9fa5f-f7cc-4ec0-ba77-675a36d8b94f.tmp
| MD5 | 3829109442ad63637bb34e674f12d211 |
| SHA1 | 5f19ac53da6e86b53401a65a550da4e352b87bfd |
| SHA256 | fed57cb4318643ed02beb57c5ad1b07dbab924e0087010f2c617496f7df2e144 |
| SHA512 | ae7044d64160b2c0ce2f67a7e1ebd7fa67c1df2f784b24fc292388ae2f1871279ffa874a323394636f4e7461ca09e04f73814224909ba99f1a7ef0b575cb048b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9471d2b5ec2697c476946b3a62bd863d |
| SHA1 | f1f8bec2d47aa09272b4fe31ee8790334bdd5bba |
| SHA256 | de45a8976919be665dd4efaa79e4b05e4c9418b33a52a51c577a1582af3b946a |
| SHA512 | caf8a054a624b96d9aa005850b0a5e989e1dc77a754c72ac6828794eaf92a6ead2a824afad10f94c793e63f97a36dbeb8e00af487121f910094b3ad4fe398bfa |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3f1966c6f3cb42514d3bf4e33808b89c |
| SHA1 | 77ce07671e8d591d0b21a6cf52847716c1ac966b |
| SHA256 | c19e053e0213b3c4e06c1f3ab51d2a44c6654c15184ecf076ca37bfa02047cc1 |
| SHA512 | f4fbaef060d53442b7143ea6677c13233468f827c4cc1f3f036acbfde0a6c5d0051788fcf9244aa9d2ea478368469925ea6e51bbc4d582b4a7916c53087e927b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\4cb013792b196a35_0
| MD5 | 4d14ede3ed6834e9224f4d1239545d5c |
| SHA1 | 1c076a110c8b4c6be43c5700ef2e5b66d8683183 |
| SHA256 | b7e3f9ec0f4cee82f154c57e9397fb78340cb0096484a32362d916aec769dee2 |
| SHA512 | 359d572079d9e26ae78ed99f1c5fe78dbd76bdf12233f5e9e020598e802df64099ec1e224f44c273bdf80c552f27a2d8550efbb3405889a0313a1d90791b940a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2c1f0653c476dee7980ac4beda07ff56 |
| SHA1 | a0d98126cf304cb969651bf44f09275758badbc8 |
| SHA256 | 9810763d8cd161614ce23a2a6f3051a37956e0553a933927fd94bcdb6054fcb6 |
| SHA512 | b8110a191130c423a59c45ebea5bfaacd3bafc39fe13c2c33ae24db84104304634e5a2ac6f886df7bcbdccb0b4bd57084bbee7924653318f240fe82bb3c11dd5 |