Analysis Overview
Threat Level: Known bad
The file https://gogunlocked.com/1-yakuza-0-free-download/ was found to be: Known bad.
Malicious Activity Summary
Wannacry
Deletes shadow copies
Downloads MZ/PE file
Modifies Windows Firewall
Executes dropped EXE
Checks computer location settings
Loads dropped DLL
Modifies file permissions
Drops startup file
Checks installed software on the system
Enumerates connected drives
Legitimate hosting services abused for malware hosting/C2
Adds Run key to start application
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
Sets desktop wallpaper using registry
Drops file in Program Files directory
Drops file in Windows directory
Enumerates physical storage devices
Event Triggered Execution: Netsh Helper DLL
Embeds OpenSSL
Suspicious use of SendNotifyMessage
Modifies registry key
Suspicious behavior: GetForegroundWindowSpam
Suspicious behavior: AddClipboardFormatListener
Modifies data under HKEY_USERS
Modifies registry class
Uses Volume Shadow Copy service COM API
Views/modifies file attributes
NTFS ADS
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Modifies system certificate store
Uses Task Scheduler COM API
Suspicious behavior: EnumeratesProcesses
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Suspicious use of SetWindowsHookEx
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Scheduled Task/Job: Scheduled Task
Runs ping.exe
Modifies Internet Explorer settings
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-07-06 18:00
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-07-06 18:00
Reported
2024-07-06 18:25
Platform
win10v2004-20240704-en
Max time kernel
1447s
Max time network
1433s
Command Line
Signatures
Wannacry
Deletes shadow copies
Downloads MZ/PE file
Modifies Windows Firewall
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\netsh.exe | N/A |
| N/A | N/A | C:\Windows\system32\netsh.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\netsh.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\netsh.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\netsh.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\netsh.exe | N/A |
Checks computer location settings
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\International\Geo\Nation | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\International\Geo\Nation | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe | N/A |
| Key value queried | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\International\Geo\Nation | C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe | N/A |
Drops startup file
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\~SDE7ED.tmp | C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\WannaCry.EXE | N/A |
| File opened for modification | C:\Users\Admin\AppData\Roaming\Microsoft\Word\STARTUP\~SDE7F4.tmp | C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\WannaCry.EXE | N/A |
Executes dropped EXE
Loads dropped DLL
Modifies file permissions
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\icacls.exe | N/A |
Adds Run key to start application
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Free Download Manager = "\"C:\\Program Files\\Softdeluxe\\Free Download Manager\\fdm.exe\" --hidden" | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\fvotdbkrubk117 = "\"C:\\Users\\Admin\\AppData\\Local\\Temp\\Temp1_WannaCry-main.zip\\WannaCry-main\\tasksche.exe\"" | C:\Windows\SysWOW64\reg.exe | N/A |
Checks installed software on the system
Enumerates connected drives
| Description | Indicator | Process | Target |
| File opened (read-only) | \??\D: | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| File opened (read-only) | \??\F: | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| File opened (read-only) | \??\D: | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
File and Directory Permissions Modification: Windows File and Directory Permissions Modification
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | camo.githubusercontent.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
| N/A | discord.com | N/A | N/A |
Sets desktop wallpaper using registry
| Description | Indicator | Process | Target |
| Set value (str) | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@[email protected]" | C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\WannaCry.EXE | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\Control Panel\Desktop\Wallpaper = "C:\\Users\\Admin\\Desktop\\@[email protected]" | C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected] | N/A |
Drops file in Program Files directory
| Description | Indicator | Process | Target |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\shifter - tumbling cubes (ripples) Eo.S. remix1.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-2R9TP.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\Qt5Compat\GraphicalEffects\is-TN0EA.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Material\is-3J8KF.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Winamp Modern\shade\display_overlay.png | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Bento\window\menu_help.png | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Winamp Modern\xml\player.xml | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Basic\is-QLOPN.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Dialogs\quickimpl\qml\+Imagine\is-7O78A.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\freeform\xml\winamp\cover\notfound.png | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\freeform\xml\winamp\thinger\pledit-hover.png | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Winamp Modern\xml\ml-normal.xml | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\martin - neon space ps3.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\orb - fireworks - fusion.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Universal\is-RVA0Q.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\DSP_SPS\justin - low res delay.sps | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Rovastar - Fractopia (Upspoken Mix)_Phat_Speak_When_Spoken_2.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Rovastar - eclectic interface (despair mix).milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Rozzor & Unchained - Crescat Scientia, Vita Excolatur.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-NKVS8.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Big Bento\xml\color-presets.xml | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\install.ini | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\translations\main\is-JUBNH.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\avs\Community Picks\s_kupers - gace.avs | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Eo.S. + Geiss - glowsticks v2 03 music shifter edit b (water mix).milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\cope - the drain to heaven.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\phat + Eo.S. - TesellatingFractal_Mix3.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-I4NU5.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQml\is-39U2K.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\avs\Winamp 5 Picks\S_KuPeRS - Inverse Kinetics.avs | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Krash & Rovastar - Cerebral Demons - Phat + Eo.S. Moire Remix.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Geiss - Tokamak Plus 4.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Phat_Eo.S. Eyes_spiral_mix.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\martin - no religion.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-OLU5D.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-VUF83.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Fusion\is-NU8P7.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\in_flac.dll | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Winamp Modern\scripts\standardframe.maki | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-NMT3F.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Winamp Modern\shade\corners.png | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Flexi - infused with the spiral.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\fiShbRaiN - the dark side of the moon.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Windows\is-1NG7S.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Geiss - Myriad Mosaics.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Unchained - Making a Science of It 7.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\martin - sunset over the river.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\avs\texer.ape | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\avs\Winamp 5 Picks\Nic01 - Rototronik.avs | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\avs\Winamp 5 Picks\Tuggummi - Solero Shots.avs | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-G408V.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Imagine\is-C9FL5.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\translations\torrents\is-U0BUI.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\freeform\xml\wasabi\xml\xui\editbox\editbox.xml | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Skins\Big Bento\scripts\tabcontrol.maki | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\ORB - Planetary Alignment Acid Burn.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Stahlregen & fishbrain + flexi + geiss - The Machine that conquered the Aether.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\is-TRAPT.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\Qt5Compat\GraphicalEffects\private\is-3PDV4.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Eo.S. - pointfield 09 the gases beyond 85c.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\ORB - Nova Sunrise.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\ORB - Pastel Primer.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File opened for modification | C:\Program Files (x86)\Winamp\Plugins\Milkdrop2\presets\Rovastar - Jester's Calling 2.milk | C:\Users\Admin\Downloads\Setup.exe | N/A |
| File created | C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Basic\is-KR87G.tmp | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\Debug\WIA\wiatrace.log | C:\Windows\system32\mspaint.exe | N/A |
Embeds OpenSSL
| Description | Indicator | Process | Target |
| N/A | N/A | N/A | N/A |
Enumerates physical storage devices
Event Triggered Execution: Netsh Helper DLL
| Description | Indicator | Process | Target |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key queried | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\Microsoft\NetSh | C:\Windows\system32\netsh.exe | N/A |
| Key value enumerated | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
| Key opened | \REGISTRY\MACHINE\SOFTWARE\WOW6432Node\Microsoft\NetSh | C:\Windows\SysWOW64\netsh.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies Internet Explorer settings
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\fdm.exe = "11000" | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION\fdm.exe = "11000" | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_GPU_RENDERING | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Set value (int) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING\fdm.exe = "1" | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_GPU_RENDERING | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING\fdm.exe = "1" | C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\SOFTWARE\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133647627318549988" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.SF\shell\Play\command | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\UVOX\shell\open\command | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{43B1B346-2394-46E7-B1AC-EA8D93124F68}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F8D8EE69-E17D-442F-BB11-D8A1A214FEBA}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000_Classes\fdm\shell\open\command | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.STZ\shell\ListBookmark\ = "Add to Winamp's &Bookmark list" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{59CE219F-46AA-4FC1-85B8-31290E454503}\ = "ICddbPLMoreLikeThisCfg25" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.M4A\shell\open\command\ = "\"C:\\Program Files (x86)\\Winamp\\winamp.exe\" \"%1\"" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.WMA\shell\ListBookmark\ = "Add to Winamp's &Bookmark list" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.S3Z\shell\Play\command\ = "\"C:\\Program Files (x86)\\Winamp\\winamp.exe\" \"%1\"" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{DB780E88-D446-4157-AF74-04E8E48E46A3}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{7AF4E5E5-2DEB-462F-BBAF-684146856C6B}\TypeLib\Version = "1.0" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CddbPlaylist2NSWinamp.CddbPLGenerator.1\ = "CddbPLGenerator Class" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{bf1caa94-1d1c-4ae7-b94c-10fdc05f493d} | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{3FFD3787-FE3A-4F44-BE99-4289875EB925}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.PVF\shell\Enqueue\DropTarget\Clsid = "{77A366BA-2BE4-4a1e-9263-7734AA3E99A2}" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.RMI\shell\ListBookmark\command | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.ult\ = "Winamp.File.ULT" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{e7568058-32ea-4b10-af1b-8b666978891e}\ProgID\ = "CDDBControlNSWinamp.CddbInfoWindow.1" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{9151953E-0621-4167-BCB6-36F8E65EC6C9} | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CddbPlaylist2NSWinamp.CddbPL2Criteria\CLSID\ = "{d593724f-d0dc-431b-a395-8280d5aceccb}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{6AC694D3-4E30-47F3-93DD-236DBB308715}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.ASF\shell\ = "Play" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F19A9D2D-2287-4C64-96C7-4BB63EDEC9C5}\TypeLib\Version = "1.0" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{DB104E47-62BB-4933-8F37-8984228E6938}\TypeLib\Version = "1.0" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CddbPlaylist2NSWinamp.CddbPL2FindData\CLSID\ = "{870a8c49-8935-430b-9ffe-175c47fb6b0b}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\CDDBUIControlNSWinamp.CddbUIOptions2\ = "CddbUIOptions2 Class" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{5E484009-3E2B-426A-B496-AEBCACD6DEB7}\TypeLib\ = "{7919D0CA-3043-4C02-B778-AB2BF4931F58}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{DF17E91F-434A-4E75-8645-13DD56A4CC86}\TypeLib | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.VLB\shell\ = "Play" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-587429654-1855694383-2268796072-1000_Classes\.m2v | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{3B29AB5C-52CB-4a36-9314-E3FEE0BA7468}\LaunchPermission = 010014804c0000005c000000140000003000000002001c0001000000110014000400000001010000000000100010000002001c0001000000000014000b0000000101000000000001000000000102000000000005200000002002000001020000000000052000000020020000 | C:\Program Files (x86)\Winamp\Elevator.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{993bb5e2-4a0d-4ed0-bd37-8718c422997e} | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{AA3218D8-A65C-4A29-8690-1E5B75DBF3B8}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.XMZ\shell\Play\DropTarget\Clsid = "{46986115-84D6-459c-8F95-52DD653E532E}" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.SD2\DefaultIcon\ = "C:\\Program Files (x86)\\Winamp\\winamp.exe,1" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.SF\DefaultIcon | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.W64\shell\ListBookmark\command\ = "\"C:\\Program Files (x86)\\Winamp\\winamp.exe\" /BOOKMARK \"%1\"" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{654e1149-060b-4fd1-af4b-07e1d2a83ae0}\TypeLib\ = "{7919d0ca-3043-4c02-b778-ab2bf4931f58}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{1754C0C9-24B5-4ED6-8EEA-52620ED16E58}\TypeLib\Version = "1.0" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{5A4471DA-0283-449E-8EE2-B0716E3C168B} | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.AAC\shell\ = "Play" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.WMV | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\AppID\{3B29AB5C-52CB-4a36-9314-E3FEE0BA7468} | C:\Program Files (x86)\Winamp\Elevator.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{D0F041D4-1570-4143-BB6A-4CE041B109D4}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{CCA2A70A-BCBC-49E9-8EF4-04DABCD68B81}\ProxyStubClsid32 | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.ITZ\shell\Play\DropTarget | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.MPG\shell\Enqueue\DropTarget | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\.sds\ = "Winamp.File.SDS" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.MDZ\shell\Play\DropTarget | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.OKT\ = "Amiga Oktalyzer Module" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.PTM\shell\Enqueue\command\ = "\"C:\\Program Files (x86)\\Winamp\\winamp.exe\" /ADD \"%1\"" | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{E6051029-5694-4E7D-A524-7E38F3C9443D}\ProxyStubClsid32\ = "{00020424-0000-0000-C000-000000000046}" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{870a8c49-8935-430b-9ffe-175c47fb6b0b}\VersionIndependentProgID\ = "CddbPlaylist2NSWinamp.CddbPL2FindData" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{654e1149-060b-4fd1-af4b-07e1d2a83ae0}\Programmable | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\MIME\Database\Content Type\audio/scpls | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.MPG\shell\Play\command | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.PTM\shell\Enqueue\DropTarget | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{37668F25-B3FF-42EA-A3F9-25EA0740902E}\ = "ICddbGenreTree" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Set value (str) | \REGISTRY\MACHINE\SOFTWARE\Classes\WOW6432Node\Interface\{614D9D0A-C012-4863-AFBF-9C9DD01E04D1}\ = "ICddbRoleList" | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Interface\{F7BCB924-06DA-41E2-AF0C-C249C136303A}\TypeLib | C:\Users\Admin\Downloads\Setup.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.MKV\shell\ListBookmark\command | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.WVE\shell\Play | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\Winamp.File.OKT\DefaultIcon | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
Modifies registry key
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\reg.exe | N/A |
Modifies system certificate store
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3921C115C15D0ECA5CCB5BC4F07D21D8050B566A | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3921C115C15D0ECA5CCB5BC4F07D21D8050B566A\Blob = 0f0000000100000014000000b31da18fba765c5ed3df3080593871db9e0dcc290b000000010000005c00000041006d006500720069006300610020004f006e006c0069006e006500200052006f006f0074002000430065007200740069006600690063006100740069006f006e00200041007500740068006f00720069007400790020003100000062000000010000002000000077407312c63a153d5bc00b4e51759cdfdac237dc2a33b67946e98e9bfa680ae314000000010000001400000000add9a3f679f66e74a97f333d8117d74ccf33de1d000000010000001000000084cca4bd69d41035b3455e859fa2a69209000000010000000c000000300a06082b06010505070303680000000100000008000000008024eed112d2010300000001000000140000003921c115c15d0eca5ccb5bc4f07d21d8050b566a2000000001000000a8030000308203a43082028ca003020102020101300d06092a864886f70d01010505003063310b3009060355040613025553311c301a060355040a1313416d6572696361204f6e6c696e6520496e632e313630340603550403132d416d6572696361204f6e6c696e6520526f6f742043657274696669636174696f6e20417574686f726974792031301e170d3032303532383036303030305a170d3337313131393230343330305a3063310b3009060355040613025553311c301a060355040a1313416d6572696361204f6e6c696e6520496e632e313630340603550403132d416d6572696361204f6e6c696e6520526f6f742043657274696669636174696f6e20417574686f72697479203130820122300d06092a864886f70d01010105000382010f003082010a0282010100a82fe8a469060347c3e92a98ff19a2709ac650b27ea5df684d1b7c0fb697687d2da68b97e96486c9a3efa086bf60659c4b5488c248c54a39bf14e35955e519b474c8b405395c16a5e29505e012ae598ba23368581ca6d415b7d89fd7dc71ab7e9abf9b8e330f22fd1f2ee70736ef6239c5ddcbba251423de0cc63d3cce8208e6663eda513b163aa3057fa0dc87d59cfc72a9a07d78e4b731551e65bbd461b02160ed103272c592251ef8904a187847df7e30373e501bdb1cd36b9a865307b0efac0678f88499fe218d4c80b60c82f66670791ad34fa3cff1cf46b04b0f3edd8862b88ca909283b7ac797e11ee5f49fc0c0ae24a0c8a1d90fd67b268269323da70203010001a3633061300f0603551d130101ff040530030101ff301d0603551d0e0416041400add9a3f679f66e74a97f333d8117d74ccf33de301f0603551d2304183016801400add9a3f679f66e74a97f333d8117d74ccf33de300e0603551d0f0101ff040403020186300d06092a864886f70d010105050003820101007c8ad11f183782e0b8b0a3ed5695c862619c05a2cdc2622661cd1016d7ccb46534d0118aada8a90566ef74f36d5f9d99aff68bfbeb52b20598a26f2ac554bd25bd5faec886ea462cc1b3bdc1e9497018169708138c20e01b2e3a47cb1ee40030955bf445a3c01ab0014eabbdc0236e633f804ac507eddce26fc7c162f1e372d604c874670bfa88aba101c86ff014afd299cd51937eed2e38c7bdce46503d72e379259d9b882b1020dda5b8329f8de029df21748682db2f8230c6c73586b3f9965f46db0c45fdf350c36fc6c348ad46a6e127470a1d0e9bb6c2777f63f2e07d1abefce0dfd7c7a76cb0f9aeba3cfd74b411e8580d80bcd3a8803a99ed75cc467b | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3921C115C15D0ECA5CCB5BC4F07D21D8050B566A\Blob = 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 | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3921C115C15D0ECA5CCB5BC4F07D21D8050B566A\Blob = 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 | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
| Set value (data) | \REGISTRY\MACHINE\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\3921C115C15D0ECA5CCB5BC4F07D21D8050B566A\Blob = 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 | C:\Program Files (x86)\Winamp\winamp.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 14142.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 531810.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 588091.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\Unconfirmed 800308.crdownload:SmartScreen | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Runs ping.exe
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\ping.exe | N/A |
Scheduled Task/Job: Scheduled Task
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\system32\schtasks.exe | N/A |
Suspicious behavior: AddClipboardFormatListener
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| N/A | N/A | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
| N/A | N/A | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe | N/A |
| N/A | N/A | C:\Program Files\VideoLAN\VLC\vlc.exe | N/A |
| N/A | N/A | C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected] | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of WriteProcessMemory
Uses Task Scheduler COM API
Uses Volume Shadow Copy service COM API
Views/modifies file attributes
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Windows\SysWOW64\attrib.exe | N/A |
| N/A | N/A | C:\Windows\SysWOW64\attrib.exe | N/A |
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://gogunlocked.com/1-yakuza-0-free-download/
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2128 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2296 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2724 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5112 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4616 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4616 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5236 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5336 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6292 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5216 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6676 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6212 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6268 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5420 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3756 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=6040 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5128 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5960 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6136 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7272 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6784 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7664 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7708 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=180 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7628 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5460 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=4580 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8164 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6404 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6736 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5868 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6396 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7328 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2712 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8064 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5788 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --default-search-provider=? --out-pipe-name=MSEdgeDefaultc4a6acf1hb4c1h45bdhbc03hcbc80642cc8c
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x120,0x124,0x128,0xfc,0x12c,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2128,3063234978388963792,15808630302339603287,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2168 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2128,3063234978388963792,15808630302339603287,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2288 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=5828 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7980 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7524 /prefetch:8
C:\Users\Admin\Downloads\fdm_x64_setup.exe
"C:\Users\Admin\Downloads\fdm_x64_setup.exe"
C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp
"C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp" /SL5="$18029E,39419474,832512,C:\Users\Admin\Downloads\fdm_x64_setup.exe"
C:\Windows\SYSTEM32\schtasks.exe
"schtasks.exe" /end /tn FreeDownloadManagerHelperService
C:\Windows\system32\schtasks.exe
"schtasks.exe" /create /RU SYSTEM /tn FreeDownloadManagerHelperService /f /xml "C:\Program Files\Softdeluxe\Free Download Manager\service.xml"
C:\Windows\system32\schtasks.exe
"schtasks.exe" /change /tn FreeDownloadManagerHelperService /tr "\"C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe"\"
C:\Windows\system32\schtasks.exe
"schtasks.exe" /run /tn FreeDownloadManagerHelperService
C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe
"C:\Program Files\Softdeluxe\Free Download Manager\helperservice.exe"
C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
"C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe" --install
C:\Program Files\Softdeluxe\Free Download Manager\importwizard.exe
"C:\Program Files\Softdeluxe\Free Download Manager\importwizard" 3FE02402165644D986B63DE6638495E4
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.freedownloadmanager.org/afterinstall.html?os=windows&osversion=10.0&osarchitecture=x86_64&architecture=x86_64&version=6.23.0.5754&uuid=35bf6ad9-bfb8-417d-b182-152d60c9864b&locale=en_US&ac=1&au=1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files\Softdeluxe\Free Download Manager\fdm5rhwin.exe
"C:\Program Files\Softdeluxe\Free Download Manager\fdm5rhwin.exe" 21907CB0205CFF989F82C03684A01B86 phase1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2708 /prefetch:1
C:\Program Files\Softdeluxe\Free Download Manager\fdm5rhwin.exe
"C:\Program Files\Softdeluxe\Free Download Manager\fdm5rhwin.exe" 21907CB0205CFF989F82C03684A01B86 phase2
C:\Windows\system32\netsh.exe
"netsh.exe" firewall add allowedprogram program="C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe" name="Free Download Manager" ENABLE scope=ALL profile=ALL
C:\Windows\system32\netsh.exe
"netsh.exe" firewall add allowedprogram program="C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe" name="Free Download Manager" ENABLE scope=ALL profile=CURRENT
C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
"C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe" --byinstaller
C:\Program Files\Softdeluxe\Free Download Manager\importwizard.exe
"C:\Program Files\Softdeluxe\Free Download Manager\importwizard" 3FE02402165644D986B63DE6638495E4 --printFdm5Setting=ExpectingUpdateToVersion
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7832 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://uploadhaven.com/download/d0bde8b263194b91246e7607cc0b94f4
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6324 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7108 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4024 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6708 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5160 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5752 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7252 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://uploadhaven.com/download/d0bde8b263194b91246e7607cc0b94f4
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2112,13282636875915592572,15559811883643330572,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5564 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff92470ab58,0x7ff92470ab68,0x7ff92470ab78
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --gpu-preferences=UAAAAAAAAADgAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=1688 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2172 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=2272 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --first-renderer-process --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --mojo-platform-channel-handle=3084 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --mojo-platform-channel-handle=3092 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --mojo-platform-channel-handle=4436 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4712 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4496 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=4708 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --mojo-platform-channel-handle=5060 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --mojo-platform-channel-handle=3276 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --mojo-platform-channel-handle=1856 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --mojo-platform-channel-handle=3336 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAYAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAACQAAAAAAAAAAAAAAAAAAAAAAAAAEgAAAAAAAAASAAAAAAAAAAYAAAAAgAAABAAAAAAAAAAGAAAAAAAAAAQAAAAAAAAAAAAAAAOAAAAEAAAAAAAAAABAAAADgAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=3272 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --mojo-platform-channel-handle=5012 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --mojo-platform-channel-handle=3316 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3528 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --mojo-platform-channel-handle=4920 --field-trial-handle=1888,i,146637547677342347,16919855742501788501,131072 /prefetch:1
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x254,0x258,0x25c,0x230,0x260,0x7ff7ceb5ae48,0x7ff7ceb5ae58,0x7ff7ceb5ae68
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --reenable-autoupdates --system-level
C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe
"C:\Program Files\Google\Chrome\Application\110.0.5481.104\Installer\setup.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler --database=C:\Windows\TEMP\Crashpad --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=110.0.5481.104 --initial-client-data=0x254,0x258,0x25c,0x230,0x260,0x7ff7ceb5ae48,0x7ff7ceb5ae58,0x7ff7ceb5ae68
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2100 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2204 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2756 /prefetch:8
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3356 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4384 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3552 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3552 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5104 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4364 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5352 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4980 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5852 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6132 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6396 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5708 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1796 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5704 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=service --mojo-platform-channel-handle=6140 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6220 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6100 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7012 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7384 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6236 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7048 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6196 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7120 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7148 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2092 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=7052 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8040 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3980 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7948 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3112 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6360 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7440 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7256 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6808 /prefetch:8
C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\Downloads\_Solvettube.com_Grand_Theft_Auto_San_Andreas.mp4"
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\AUDIODG.EXE 0x524 0x494
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --default-search-provider=? --out-pipe-name=MSEdgeDefaultf8bd2391h0ce0h4137h81e7h72074d4a5033
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2140,8303578102672944385,10598144656751607449,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2156 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2140,8303578102672944385,10598144656751607449,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2312 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6296 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6804 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1328 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6836 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9048 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6768 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8184 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6684 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4180 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8832 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8820 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9212 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7684 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6196 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7872 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5712 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=75 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7392 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=76 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4288 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=77 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5724 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=79 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3988 /prefetch:1
C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
"C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=81 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8764 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6148 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://uploadhaven.com/download/f5d95e27139ba3e1b9754f7b884edaca
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0x11c,0x120,0x124,0xf8,0x128,0x7ff9336646f8,0x7ff933664708,0x7ff933664718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=83 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5956 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=85 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5904 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=86 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4392 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=87 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3044 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8876 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=89 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7896 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=90 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8756 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=91 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5804 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=92 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6148 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=93 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=94 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5832 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=95 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6840 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=96 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=98 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8952 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=100 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8932 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=8704 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=103 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3504 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=104 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5884 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=106 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6984 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=8896 /prefetch:8
C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe
"C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe"
C:\Users\Admin\Downloads\Setup.exe
"C:\Users\Admin\Downloads\Setup.exe"
C:\Program Files (x86)\Winamp\Elevator.exe
"C:\Program Files (x86)\Winamp\Elevator.exe" /RegServer
C:\Windows\SysWOW64\netsh.exe
netsh advfirewall firewall set rule name="Winamp" dir=in program="C:\Program Files (x86)\Winamp\winamp.exe" profile=private,public protocol=TCP new action=allow enable=yes
C:\Windows\SysWOW64\netsh.exe
netsh advfirewall firewall add rule name="Winamp" dir=in action=allow program="C:\Program Files (x86)\Winamp\winamp.exe" enable=yes profile=private,public protocol=TCP
C:\Windows\SysWOW64\netsh.exe
netsh advfirewall firewall set rule name="Winamp" dir=in program="C:\Program Files (x86)\Winamp\winamp.exe" profile=private,public protocol=UDP new action=allow enable=yes
C:\Windows\SysWOW64\netsh.exe
netsh advfirewall firewall add rule name="Winamp" dir=in action=allow program="C:\Program Files (x86)\Winamp\winamp.exe" enable=yes profile=private,public protocol=UDP
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\PrimoRedist\pxsetup.exe
"C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\PrimoRedist\pxsetup.exe"
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\PrimoRedist\pxcpyA64.exe
"C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\PrimoRedist\pxcpyA64.exe"
C:\Windows\SysWOW64\ping.exe
ping -n 1 -w 400 www.google.com
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\SHELLD~1.DLL,RunDll_ShellExecute "open" "C:\Program Files (x86)\Winamp\winamp.exe" "/NEW /REG=S" "C:\Program Files (x86)\Winamp" 1
C:\Program Files (x86)\Winamp\winamp.exe
"C:\Program Files (x86)\Winamp\winamp.exe" /NEW /REG=S
C:\Program Files (x86)\Winamp\winamp.exe
"C:\Program Files (x86)\Winamp\winamp.exe" /NEW C:\Users\Admin\AppData\Roaming\Winamp\winamp.m3u8
C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe
"C:\Users\Admin\Downloads\vlc-3.0.20-win64_831109.exe"
C:\Users\Admin\Downloads\Setup.exe
"C:\Users\Admin\Downloads\Setup.exe"
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=108 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=109 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=111 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8724 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=113 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8556 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=7200 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=115 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8440 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=116 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5776 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=117 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8780 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=118 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=119 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6696 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=120 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=121 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7296 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=122 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5776 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=123 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8680 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=124 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4180 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=125 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5656 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=126 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7316 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=127 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3644 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=128 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5976 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=129 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2516 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=130 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6500 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=131 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2620 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=132 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7408 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=133 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4164 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=134 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7912 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=135 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6588 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=136 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6404 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=137 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8376 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=138 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8880 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=139 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5056 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=140 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8124 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=141 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1072 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=142 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8168 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=143 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7452 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=145 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4412 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2088,13656041469619261070,6472451781347492737,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6972 /prefetch:8
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\WannaCry.EXE
"C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\WannaCry.EXE"
C:\Windows\SysWOW64\attrib.exe
attrib +h .
C:\Windows\SysWOW64\icacls.exe
icacls . /grant Everyone:F /T /C /Q
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\taskdl.exe
taskdl.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c 200571720290227.bat
C:\Windows\SysWOW64\cscript.exe
cscript.exe //nologo m.vbs
C:\Windows\SysWOW64\attrib.exe
attrib +h +s F:\$RECYCLE
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
C:\Windows\SysWOW64\cmd.exe
cmd.exe /c start /b @[email protected] vs
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\TaskData\Tor\taskhsvc.exe
TaskData\Tor\taskhsvc.exe
C:\Windows\system32\mspaint.exe
"C:\Windows\system32\mspaint.exe" "C:\Users\Admin\Desktop\@[email protected]"
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\Windows\SysWOW64\cmd.exe
cmd.exe /c vssadmin delete shadows /all /quiet & wmic shadowcopy delete & bcdedit /set {default} bootstatuspolicy ignoreallfailures & bcdedit /set {default} recoveryenabled no & wbadmin delete catalog -quiet
C:\Windows\SysWOW64\Wbem\WMIC.exe
wmic shadowcopy delete
C:\Windows\system32\vssvc.exe
C:\Windows\system32\vssvc.exe
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\taskdl.exe
taskdl.exe
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\taskse.exe
taskse.exe C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
C:\Windows\SysWOW64\cmd.exe
cmd.exe /c reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "fvotdbkrubk117" /t REG_SZ /d "\"C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\tasksche.exe\"" /f
C:\Windows\SysWOW64\reg.exe
reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run /v "fvotdbkrubk117" /t REG_SZ /d "\"C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\tasksche.exe\"" /f
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\taskse.exe
taskse.exe C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\taskdl.exe
taskdl.exe
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | gogunlocked.com | udp |
| US | 104.21.0.173:443 | gogunlocked.com | tcp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.0.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | d1j2jv7bvcsxqg.cloudfront.net | udp |
| IE | 3.162.143.179:443 | d1j2jv7bvcsxqg.cloudfront.net | tcp |
| US | 8.8.8.8:53 | 74.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 179.143.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | rdreamsansw.info | udp |
| US | 8.8.8.8:53 | ghabovethec.info | udp |
| US | 8.8.8.8:53 | deedeisasbeaut.info | udp |
| US | 8.8.8.8:53 | supervisofosevera.com | udp |
| GB | 18.244.140.100:443 | ghabovethec.info | tcp |
| GB | 18.165.227.126:443 | rdreamsansw.info | tcp |
| US | 172.67.162.45:443 | deedeisasbeaut.info | tcp |
| IE | 18.66.171.127:443 | supervisofosevera.com | tcp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | pogothere.xyz | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| US | 104.21.24.208:443 | pogothere.xyz | tcp |
| US | 104.21.24.208:443 | pogothere.xyz | tcp |
| NL | 157.240.247.35:443 | www.facebook.com | tcp |
| GB | 2.18.190.81:80 | apps.identrust.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 100.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 126.227.165.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.162.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 208.24.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 84.102.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.247.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 18.165.227.126:443 | rdreamsansw.info | tcp |
| US | 8.8.8.8:53 | max.maxtrackmax.org | udp |
| US | 104.21.96.99:443 | max.maxtrackmax.org | tcp |
| US | 8.8.8.8:53 | tepadas.azurewebsites.net | udp |
| US | 20.119.16.44:443 | tepadas.azurewebsites.net | tcp |
| US | 8.8.8.8:53 | 99.96.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.16.119.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | feed.rtbadshubmy.com | udp |
| US | 104.21.76.3:443 | feed.rtbadshubmy.com | tcp |
| US | 8.8.8.8:53 | sdk.ocmhood.com | udp |
| US | 104.26.6.228:443 | sdk.ocmhood.com | tcp |
| US | 8.8.8.8:53 | cdn.ocmtag.com | udp |
| US | 104.21.5.19:443 | cdn.ocmtag.com | tcp |
| US | 8.8.8.8:53 | t.ocmhood.com | udp |
| US | 104.26.7.228:443 | t.ocmhood.com | tcp |
| US | 8.8.8.8:53 | 3.76.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.6.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 19.5.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.7.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.ocmhood.com | udp |
| US | 8.8.8.8:53 | client.wns.windows.com | udp |
| GB | 20.90.152.133:443 | client.wns.windows.com | tcp |
| US | 8.8.8.8:53 | www.yahoo.com | udp |
| GB | 87.248.114.12:443 | www.yahoo.com | tcp |
| GB | 87.248.114.12:443 | www.yahoo.com | tcp |
| US | 8.8.8.8:53 | guce.yahoo.com | udp |
| IE | 34.251.112.118:443 | guce.yahoo.com | tcp |
| US | 8.8.8.8:53 | consent.yahoo.com | udp |
| IE | 34.242.212.22:443 | consent.yahoo.com | tcp |
| US | 8.8.8.8:53 | 12.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.152.90.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.112.251.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s.yimg.com | udp |
| IE | 34.242.212.22:443 | consent.yahoo.com | tcp |
| US | 8.8.8.8:53 | 22.212.242.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | uk.yahoo.com | udp |
| US | 8.8.8.8:53 | search.yahoo.com | udp |
| US | 8.8.8.8:53 | geo.query.yahoo.com | udp |
| US | 8.8.8.8:53 | geo.yahoo.com | udp |
| GB | 87.248.114.12:443 | uk.yahoo.com | tcp |
| IE | 212.82.100.137:443 | search.yahoo.com | tcp |
| IE | 188.125.72.139:443 | geo.yahoo.com | tcp |
| IE | 188.125.72.139:443 | geo.yahoo.com | tcp |
| US | 8.8.8.8:53 | consent.cmp.oath.com | udp |
| PL | 152.195.53.200:443 | consent.cmp.oath.com | tcp |
| US | 8.8.8.8:53 | edge-mcdn.secure.yahoo.com | udp |
| US | 8.8.8.8:53 | noa.yahoo.com | udp |
| US | 8.8.8.8:53 | opus.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| IE | 188.125.72.139:443 | noa.yahoo.com | tcp |
| IE | 188.125.72.139:443 | noa.yahoo.com | tcp |
| US | 152.199.23.180:443 | opus.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | uk.finance.yahoo.com | udp |
| US | 8.8.8.8:53 | mail.yahoo.com | udp |
| US | 8.8.8.8:53 | login.yahoo.com | udp |
| US | 8.8.8.8:53 | uk.news.yahoo.com | udp |
| US | 8.8.8.8:53 | cdn.taboola.com | udp |
| US | 8.8.8.8:53 | uk.sports.yahoo.com | udp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | uk.style.yahoo.com | udp |
| US | 151.101.193.44:443 | cdn.taboola.com | tcp |
| US | 8.8.8.8:53 | i.clean.gg | udp |
| US | 8.8.8.8:53 | popup.taboola.com | udp |
| US | 34.95.69.49:443 | i.clean.gg | tcp |
| US | 34.95.69.49:443 | i.clean.gg | udp |
| US | 8.8.8.8:53 | pbs.yahoo.com | udp |
| US | 8.8.8.8:53 | 137.100.82.212.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.72.125.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.53.195.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 180.23.199.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 44.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.69.95.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | c2shb-oao.ssp.yahoo.com | udp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| IE | 54.75.39.211:443 | ads.yieldmo.com | tcp |
| IE | 52.51.47.32:443 | c2shb-oao.ssp.yahoo.com | tcp |
| US | 8.8.8.8:53 | uk.search.yahoo.com | udp |
| US | 8.8.8.8:53 | ganon.yahoo.com | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | rtb.gumgum.com | udp |
| IE | 52.211.162.90:443 | rtb.gumgum.com | tcp |
| US | 8.8.8.8:53 | v-abqp87w1f9.wc.yahoodns.net | udp |
| US | 8.8.8.8:53 | pr-bh.ybp.yahoo.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | dns-8bd3ua2tb.sombrero.yahoo.net | udp |
| US | 8.8.8.8:53 | cerebro.edna.yahoo.net | udp |
| IE | 54.77.108.145:443 | pr-bh.ybp.yahoo.com | tcp |
| US | 200.152.173.200:443 | v-abqp87w1f9.wc.yahoodns.net | tcp |
| US | 8.8.8.8:53 | sb.scorecardresearch.com | udp |
| US | 8.8.8.8:53 | v-b96dorsj5o.wc.yahoodns.net | udp |
| US | 8.8.8.8:53 | v-c3ks4t80ob.wc.yahoodns.net | udp |
| US | 8.8.8.8:53 | ad533195e4d76de9482d8fe214d07217.safeframe.googlesyndication.com | udp |
| GB | 87.248.114.11:443 | cerebro.edna.yahoo.net | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 8.8.8.8:53 | trc.taboola.com | udp |
| IE | 3.162.140.91:443 | sb.scorecardresearch.com | tcp |
| US | 8.8.8.8:53 | udc.yahoo.com | udp |
| US | 69.147.89.143:443 | v-b96dorsj5o.wc.yahoodns.net | tcp |
| US | 69.147.70.103:443 | v-c3ks4t80ob.wc.yahoodns.net | tcp |
| GB | 142.250.180.1:443 | ad533195e4d76de9482d8fe214d07217.safeframe.googlesyndication.com | tcp |
| US | 200.152.173.200:443 | v-abqp87w1f9.wc.yahoodns.net | tcp |
| US | 8.8.8.8:53 | uk-embeds.ddhq.io | udp |
| US | 8.8.8.8:53 | 32.47.51.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.39.75.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.108.77.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.114.248.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.70.147.69.in-addr.arpa | udp |
| US | 104.18.0.168:443 | uk-embeds.ddhq.io | tcp |
| US | 8.8.8.8:53 | am-trc-events.taboola.com | udp |
| NL | 141.226.228.48:443 | am-trc-events.taboola.com | tcp |
| NL | 141.226.228.48:443 | am-trc-events.taboola.com | tcp |
| US | 8.8.8.8:53 | med.etoro.com | udp |
| US | 8.8.8.8:53 | www.volvocars.com | udp |
| US | 8.8.8.8:53 | uk-results-api.ddhq.io | udp |
| US | 104.18.0.168:443 | uk-results-api.ddhq.io | tcp |
| US | 8.8.8.8:53 | images.taboola.com | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| US | 8.8.8.8:53 | 143.89.147.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.173.152.200.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 48.228.226.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.0.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | uploadhaven.com | udp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 8.8.8.8:53 | 23.149.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.82.197.169.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 4.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | getrunkhomuto.info | udp |
| GB | 143.204.176.70:443 | getrunkhomuto.info | tcp |
| US | 8.8.8.8:53 | jecromaha.info | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | d2m785nxw66jui.cloudfront.net | udp |
| IE | 3.162.143.60:443 | d2m785nxw66jui.cloudfront.net | tcp |
| US | 8.8.8.8:53 | loaksandtheir.info | udp |
| GB | 54.192.137.82:443 | loaksandtheir.info | tcp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | 70.176.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 99.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 215.212.224.103.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.143.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.137.192.54.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| GB | 54.192.137.82:443 | loaksandtheir.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | dukirliaon.com | udp |
| NL | 139.45.197.239:443 | dukirliaon.com | tcp |
| US | 8.8.8.8:53 | yonmewon.com | udp |
| US | 8.8.8.8:53 | my.rtmark.net | udp |
| NL | 139.45.195.8:443 | my.rtmark.net | tcp |
| NL | 139.45.197.236:443 | yonmewon.com | tcp |
| US | 8.8.8.8:53 | s.click.aliexpress.com | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| GB | 23.214.144.96:443 | s.click.aliexpress.com | tcp |
| US | 8.8.8.8:53 | 8.195.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 236.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | best.aliexpress.com | udp |
| US | 8.8.8.8:53 | ae01.alicdn.com | udp |
| US | 8.8.8.8:53 | assets.alicdn.com | udp |
| US | 8.8.8.8:53 | g.alicdn.com | udp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| US | 8.8.8.8:53 | acs.aliexpress.com | udp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| GB | 79.133.176.243:443 | g.alicdn.com | tcp |
| US | 8.8.8.8:53 | ae.mmstat.com | udp |
| US | 8.8.8.8:53 | 96.144.214.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.176.133.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | is.alicdn.com | udp |
| US | 8.8.8.8:53 | aeis.alicdn.com | udp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| US | 8.8.8.8:53 | ae04.alicdn.com | udp |
| US | 8.8.8.8:53 | time-ae.akamaized.net | udp |
| GB | 173.222.211.96:443 | time-ae.akamaized.net | tcp |
| SG | 47.246.110.42:443 | ae.mmstat.com | tcp |
| GB | 79.133.176.243:443 | g.alicdn.com | tcp |
| US | 8.8.8.8:53 | fourier.taobao.com | udp |
| US | 8.8.8.8:53 | bdc.alibabachengdun.com | udp |
| GB | 92.123.26.49:443 | ae04.alicdn.com | tcp |
| US | 8.8.8.8:53 | login.aliexpress.ru | udp |
| US | 8.8.8.8:53 | login.aliexpress.us | udp |
| DE | 47.246.146.199:443 | acs.aliexpress.com | tcp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| US | 8.8.8.8:53 | 36.244.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 96.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.110.246.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.26.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 183.59.114.20.in-addr.arpa | udp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| US | 8.8.8.8:53 | log.mmstat.com | udp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | fourier.aliexpress.com | udp |
| RU | 47.246.133.208:443 | login.aliexpress.ru | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| US | 8.8.8.8:53 | 208.133.246.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| DE | 47.246.146.69:443 | fourier.aliexpress.com | tcp |
| US | 8.8.8.8:53 | 69.146.246.47.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | sr7pv7n5x.com | udp |
| NL | 212.117.190.201:443 | sr7pv7n5x.com | tcp |
| GB | 92.123.26.49:443 | ae04.alicdn.com | tcp |
| GB | 173.222.211.96:443 | time-ae.akamaized.net | tcp |
| US | 8.8.8.8:53 | 201.190.117.212.in-addr.arpa | udp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| US | 8.8.8.8:53 | wp.aliexpress.com | udp |
| US | 8.8.8.8:53 | login.aliexpress.com | udp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| US | 8.8.8.8:53 | us.ynuf.aliapp.org | udp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | de-wum.aliexpress.com | udp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| DE | 47.246.146.94:443 | wp.aliexpress.com | tcp |
| DE | 47.246.146.53:443 | us.ynuf.aliapp.org | tcp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| US | 8.8.8.8:53 | 94.146.246.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 53.146.246.47.in-addr.arpa | udp |
| US | 74.117.181.203:443 | www.freedownloadmanager.org | tcp |
| US | 74.117.181.203:443 | www.freedownloadmanager.org | tcp |
| US | 8.8.8.8:53 | 203.181.117.74.in-addr.arpa | udp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| US | 8.8.8.8:53 | files2.freedownloadmanager.org | udp |
| US | 208.88.224.211:443 | files2.freedownloadmanager.org | tcp |
| US | 208.88.224.211:443 | files2.freedownloadmanager.org | tcp |
| US | 8.8.8.8:53 | 211.224.88.208.in-addr.arpa | udp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| GB | 88.221.135.25:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 25.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 88.221.135.27:443 | r.bing.com | tcp |
| GB | 88.221.135.27:443 | r.bing.com | tcp |
| GB | 88.221.135.35:443 | r.bing.com | tcp |
| GB | 88.221.135.35:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | tse2.mm.bing.net | udp |
| US | 150.171.28.10:443 | tse2.mm.bing.net | tcp |
| US | 8.8.8.8:53 | 27.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.135.221.88.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.28.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.microsoftonline.com | udp |
| IE | 20.190.159.68:443 | login.microsoftonline.com | tcp |
| US | 8.8.8.8:53 | 68.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | services.bingapis.com | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 8.8.8.8:53 | 138.32.126.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.5.107.13.in-addr.arpa | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | 167.154.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cxcs.microsoft.net | udp |
| GB | 23.62.195.195:443 | cxcs.microsoft.net | tcp |
| GB | 95.101.143.201:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 195.195.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.143.101.95.in-addr.arpa | udp |
| US | 74.117.181.203:443 | www.freedownloadmanager.org | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | static.freedownloadmanager.org | udp |
| US | 8.8.8.8:53 | en.freedownloadmanager.org | udp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 45.33.26.104:443 | en.freedownloadmanager.org | tcp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 74.117.183.142:443 | static.freedownloadmanager.org | tcp |
| US | 45.33.26.104:443 | en.freedownloadmanager.org | tcp |
| US | 45.33.26.104:443 | en.freedownloadmanager.org | tcp |
| US | 8.8.8.8:53 | 142.183.117.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 104.26.33.45.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | uploadhaven.com | udp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 8.8.8.8:53 | uploadhaven.com | udp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | ghabovethec.info | udp |
| US | 8.8.8.8:53 | getrunkhomuto.info | udp |
| US | 8.8.8.8:53 | supervisofosevera.com | udp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| GB | 18.244.140.110:443 | ghabovethec.info | tcp |
| GB | 143.204.176.76:443 | getrunkhomuto.info | tcp |
| NL | 157.240.247.35:443 | www.facebook.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 110.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 76.176.204.143.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | loaksandtheir.info | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | dukirliaon.com | udp |
| NL | 139.45.197.239:443 | dukirliaon.com | tcp |
| US | 8.8.8.8:53 | s.click.aliexpress.com | udp |
| US | 8.8.8.8:53 | my.rtmark.net | udp |
| US | 8.8.8.8:53 | yonmewon.com | udp |
| NL | 139.45.197.236:443 | yonmewon.com | tcp |
| NL | 139.45.195.8:443 | my.rtmark.net | tcp |
| GB | 23.214.144.96:443 | s.click.aliexpress.com | tcp |
| NL | 212.117.190.201:443 | sr7pv7n5x.com | tcp |
| US | 8.8.8.8:53 | best.aliexpress.com | udp |
| US | 8.8.8.8:53 | ae01.alicdn.com | udp |
| US | 8.8.8.8:53 | assets.alicdn.com | udp |
| US | 8.8.8.8:53 | g.alicdn.com | udp |
| GB | 23.214.144.96:443 | assets.alicdn.com | tcp |
| US | 8.8.8.8:53 | acs.aliexpress.com | udp |
| US | 8.8.8.8:53 | is.alicdn.com | udp |
| GB | 79.133.176.243:443 | g.alicdn.com | tcp |
| US | 8.8.8.8:53 | ae04.alicdn.com | udp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| US | 8.8.8.8:53 | time-ae.akamaized.net | udp |
| GB | 173.222.211.113:443 | time-ae.akamaized.net | tcp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| GB | 173.222.211.70:443 | ae04.alicdn.com | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| GB | 79.133.176.243:443 | g.alicdn.com | tcp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| US | 8.8.8.8:53 | login.aliexpress.ru | udp |
| US | 8.8.8.8:53 | login.aliexpress.us | udp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | 70.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 113.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | login.aliexpress.com | udp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| RU | 47.246.133.86:443 | login.aliexpress.ru | tcp |
| US | 8.8.8.8:53 | img.alicdn.com | udp |
| US | 8.8.8.8:53 | 86.133.246.47.in-addr.arpa | udp |
| CN | 59.82.33.225:443 | log.mmstat.com | tcp |
| GB | 79.133.176.234:443 | img.alicdn.com | tcp |
| GB | 79.133.176.234:443 | img.alicdn.com | tcp |
| US | 8.8.8.8:53 | 234.176.133.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | up.freedownloadmanager.org | udp |
| US | 156.146.58.185:443 | up.freedownloadmanager.org | tcp |
| US | 8.8.8.8:53 | 185.58.146.156.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | download131.uploadhaven.com | udp |
| US | 169.197.82.27:443 | download131.uploadhaven.com | tcp |
| US | 169.197.82.27:443 | download131.uploadhaven.com | tcp |
| US | 8.8.8.8:53 | 27.82.197.169.in-addr.arpa | udp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 10.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 8.8.8.8:53 | content-autofill.googleapis.com | udp |
| GB | 216.58.213.10:443 | content-autofill.googleapis.com | tcp |
| US | 8.8.8.8:53 | 10.213.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 211.143.182.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | tcp |
| US | 8.8.8.8:53 | 35.169.217.172.in-addr.arpa | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 172.217.169.35:443 | beacons.gcp.gvt2.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| GB | 184.28.176.72:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 72.176.28.184.in-addr.arpa | udp |
| GB | 184.28.176.72:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | client.wns.windows.com | udp |
| GB | 20.90.153.243:443 | client.wns.windows.com | tcp |
| US | 8.8.8.8:53 | 243.153.90.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 184.28.176.24:443 | r.bing.com | tcp |
| GB | 184.28.176.24:443 | r.bing.com | tcp |
| GB | 184.28.176.64:443 | r.bing.com | tcp |
| GB | 184.28.176.64:443 | r.bing.com | tcp |
| US | 8.8.8.8:53 | bing.com | udp |
| US | 204.79.197.200:443 | bing.com | tcp |
| US | 8.8.8.8:53 | 24.176.28.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.176.28.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.197.79.204.in-addr.arpa | udp |
| GB | 184.28.176.24:443 | r.bing.com | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| GB | 184.28.176.24:443 | r.bing.com | udp |
| GB | 184.28.176.64:443 | r.bing.com | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 104.21.93.174:443 | oceanofgames.com | tcp |
| US | 104.21.93.174:443 | oceanofgames.com | tcp |
| US | 8.8.8.8:53 | media.oceanofgames.com | udp |
| US | 104.21.93.174:443 | media.oceanofgames.com | udp |
| US | 8.8.8.8:53 | oceanofgames.disqus.com | udp |
| US | 199.232.196.134:443 | oceanofgames.disqus.com | tcp |
| US | 199.232.196.134:443 | oceanofgames.disqus.com | tcp |
| US | 8.8.8.8:53 | c.disquscdn.com | udp |
| US | 8.8.8.8:53 | disqus.com | udp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| IE | 3.162.140.88:443 | c.disquscdn.com | tcp |
| IE | 3.162.140.88:443 | c.disquscdn.com | tcp |
| US | 8.8.8.8:53 | 174.93.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.196.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.128.101.151.in-addr.arpa | udp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | referrer.disqus.com | udp |
| US | 199.232.192.134:443 | referrer.disqus.com | tcp |
| US | 199.232.192.134:443 | referrer.disqus.com | tcp |
| US | 8.8.8.8:53 | a.disquscdn.com | udp |
| US | 199.232.198.49:443 | a.disquscdn.com | tcp |
| US | 8.8.8.8:53 | 134.192.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.198.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.virustotal.com | udp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 46.34.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.recaptcha.net | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | recaptcha.net | udp |
| GB | 172.217.169.67:443 | recaptcha.net | tcp |
| GB | 172.217.169.67:443 | recaptcha.net | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 74.125.34.46:443 | www.virustotal.com | tcp |
| US | 8.8.8.8:53 | 78.204.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | smart-tutorials.info | udp |
| UA | 45.89.245.61:443 | smart-tutorials.info | tcp |
| UA | 45.89.245.61:443 | smart-tutorials.info | tcp |
| US | 8.8.8.8:53 | easy-learn-tech.info | udp |
| UA | 45.89.245.61:443 | easy-learn-tech.info | tcp |
| US | 8.8.8.8:53 | 61.245.89.45.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| GB | 172.217.169.46:443 | fundingchoicesmessages.google.com | tcp |
| US | 8.8.8.8:53 | 66.204.58.216.in-addr.arpa | udp |
| GB | 172.217.169.46:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | lh3.googleusercontent.com | udp |
| GB | 142.250.187.225:443 | lh3.googleusercontent.com | tcp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | tcp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | 46.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 225.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 41.211.222.173.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | tcp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| US | 8.8.8.8:53 | 1.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | firebasestorage.googleapis.com | udp |
| GB | 216.58.212.202:443 | firebasestorage.googleapis.com | tcp |
| GB | 216.58.212.202:443 | firebasestorage.googleapis.com | tcp |
| US | 8.8.8.8:53 | 202.212.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | pcapp.store | udp |
| US | 8.8.8.8:53 | adclick.g.doubleclick.net | udp |
| US | 167.99.235.203:443 | pcapp.store | tcp |
| US | 167.99.235.203:443 | pcapp.store | tcp |
| GB | 216.58.204.66:443 | googleads.g.doubleclick.net | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| US | 8.8.8.8:53 | 203.235.99.167.in-addr.arpa | udp |
| US | 8.8.8.8:53 | repository.pcapp.store | udp |
| GB | 195.181.164.19:443 | repository.pcapp.store | tcp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| GB | 142.250.200.46:443 | google.com | tcp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 74.125.71.154:443 | stats.g.doubleclick.net | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | tcp |
| US | 8.8.8.8:53 | 19.164.181.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | repcdn.pcapp.store | udp |
| GB | 89.187.167.8:443 | repcdn.pcapp.store | tcp |
| US | 8.8.8.8:53 | 8.167.187.89.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | easy-learn-tech.info | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 194.187.250.142.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| GB | 172.217.169.46:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | getintopc.com | udp |
| US | 104.26.0.196:443 | getintopc.com | tcp |
| US | 8.8.8.8:53 | media.getintopc.com | udp |
| US | 104.26.1.196:443 | media.getintopc.com | udp |
| US | 8.8.8.8:53 | 196.1.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.0.26.104.in-addr.arpa | udp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 2.200.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | smart-tutorials.info | udp |
| US | 8.8.8.8:53 | 176-9-98-139.top | udp |
| DE | 176.9.98.139:443 | 176-9-98-139.top | tcp |
| DE | 176.9.98.139:443 | 176-9-98-139.top | tcp |
| US | 8.8.8.8:53 | 139.98.9.176.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cxcs.microsoft.net | udp |
| GB | 23.62.195.195:443 | cxcs.microsoft.net | tcp |
| GB | 95.101.129.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 194.129.101.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | 36.34.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| GB | 95.101.129.233:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 233.129.101.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | steamunlocked.com | udp |
| US | 172.67.192.22:80 | steamunlocked.com | tcp |
| US | 172.67.192.22:80 | steamunlocked.com | tcp |
| US | 172.67.192.22:443 | steamunlocked.com | tcp |
| US | 8.8.8.8:53 | steamunlocked.net | udp |
| US | 104.27.201.89:443 | steamunlocked.net | tcp |
| US | 8.8.8.8:53 | 22.192.67.172.in-addr.arpa | udp |
| US | 104.27.201.89:443 | steamunlocked.net | udp |
| US | 8.8.8.8:53 | 89.201.27.104.in-addr.arpa | udp |
| US | 172.67.192.22:443 | steamunlocked.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 95.101.129.194:443 | r.bing.com | udp |
| GB | 95.101.129.194:443 | r.bing.com | udp |
| US | 8.8.8.8:53 | www.youtube.com | udp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | 89.33.18.104.in-addr.arpa | udp |
| GB | 95.101.129.194:443 | www.bing.com | udp |
| GB | 95.101.129.233:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | uploadhaven.com | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | ghabovethec.info | udp |
| US | 8.8.8.8:53 | deedeisasbeaut.info | udp |
| US | 8.8.8.8:53 | getrunkhomuto.info | udp |
| US | 8.8.8.8:53 | supervisofosevera.com | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | accounts.google.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 104.21.15.106:443 | deedeisasbeaut.info | tcp |
| GB | 18.244.140.102:443 | ghabovethec.info | tcp |
| GB | 143.204.176.11:443 | getrunkhomuto.info | tcp |
| GB | 18.172.153.27:443 | supervisofosevera.com | tcp |
| NL | 157.240.247.35:443 | www.facebook.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| US | 8.8.8.8:53 | d2m785nxw66jui.cloudfront.net | udp |
| IE | 3.162.143.4:443 | d2m785nxw66jui.cloudfront.net | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 104.21.15.106:443 | deedeisasbeaut.info | udp |
| US | 8.8.8.8:53 | loaksandtheir.info | udp |
| GB | 54.192.137.2:443 | loaksandtheir.info | tcp |
| US | 8.8.8.8:53 | 27.153.172.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.140.244.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.176.204.143.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 4.143.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.15.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 2.137.192.54.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dukirliaon.com | udp |
| NL | 139.45.197.239:443 | dukirliaon.com | tcp |
| US | 8.8.8.8:53 | s.click.aliexpress.com | udp |
| US | 8.8.8.8:53 | my.rtmark.net | udp |
| US | 8.8.8.8:53 | yonmewon.com | udp |
| NL | 139.45.195.8:443 | my.rtmark.net | tcp |
| NL | 139.45.197.236:443 | yonmewon.com | tcp |
| GB | 23.214.144.96:443 | s.click.aliexpress.com | tcp |
| NL | 212.117.190.201:443 | sr7pv7n5x.com | tcp |
| US | 8.8.8.8:53 | best.aliexpress.com | udp |
| US | 8.8.8.8:53 | ae01.alicdn.com | udp |
| US | 8.8.8.8:53 | assets.alicdn.com | udp |
| US | 8.8.8.8:53 | g.alicdn.com | udp |
| GB | 79.133.176.234:443 | g.alicdn.com | tcp |
| US | 8.8.8.8:53 | is.alicdn.com | udp |
| US | 8.8.8.8:53 | acs.aliexpress.com | udp |
| GB | 23.214.144.96:443 | is.alicdn.com | tcp |
| US | 8.8.8.8:53 | ae.mmstat.com | udp |
| US | 8.8.8.8:53 | log.mmstat.com | udp |
| GB | 95.100.244.36:443 | ae01.alicdn.com | tcp |
| US | 8.8.8.8:53 | ae04.alicdn.com | udp |
| US | 8.8.8.8:53 | fourier.taobao.com | udp |
| US | 8.8.8.8:53 | bdc.alibabachengdun.com | udp |
| US | 8.8.8.8:53 | login.aliexpress.ru | udp |
| US | 8.8.8.8:53 | login.aliexpress.us | udp |
| US | 8.8.8.8:53 | time-ae.akamaized.net | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| GB | 173.222.211.113:443 | time-ae.akamaized.net | tcp |
| SG | 47.246.110.43:443 | ae.mmstat.com | tcp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| GB | 92.123.142.34:443 | ae04.alicdn.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| CN | 59.82.33.227:443 | log.mmstat.com | tcp |
| DE | 47.246.146.202:443 | acs.aliexpress.com | tcp |
| DE | 47.246.146.202:443 | acs.aliexpress.com | tcp |
| CN | 59.82.33.227:443 | log.mmstat.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | wp.aliexpress.com | udp |
| US | 8.8.8.8:53 | login.aliexpress.com | udp |
| US | 8.8.8.8:53 | 34.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 43.110.246.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 202.146.246.47.in-addr.arpa | udp |
| RU | 47.246.133.87:443 | login.aliexpress.ru | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | us.ynuf.aliapp.org | udp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| US | 8.8.8.8:53 | fourier.aliexpress.com | udp |
| CN | 59.82.33.227:443 | log.mmstat.com | tcp |
| US | 8.8.8.8:53 | de-wum.aliexpress.com | udp |
| CN | 123.183.232.65:443 | bdc.alibabachengdun.com | tcp |
| CN | 123.183.232.34:443 | fourier.taobao.com | tcp |
| DE | 47.246.146.94:443 | de-wum.aliexpress.com | tcp |
| DE | 47.246.146.69:443 | fourier.aliexpress.com | tcp |
| DE | 47.246.146.69:443 | fourier.aliexpress.com | tcp |
| US | 8.8.8.8:53 | 87.133.246.47.in-addr.arpa | udp |
| CN | 59.82.33.227:443 | log.mmstat.com | tcp |
| DE | 47.246.146.52:443 | us.ynuf.aliapp.org | tcp |
| US | 8.8.8.8:53 | aeis.alicdn.com | udp |
| US | 8.8.8.8:53 | 52.146.246.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1qn5zu.tdum.alibaba.com | udp |
| US | 8.8.8.8:53 | ynuf.aliapp.org | udp |
| DE | 47.254.177.101:443 | 1qn5zu.tdum.alibaba.com | tcp |
| CN | 124.239.14.252:443 | ynuf.aliapp.org | tcp |
| CN | 124.239.14.252:443 | ynuf.aliapp.org | tcp |
| US | 8.8.8.8:53 | 101.177.254.47.in-addr.arpa | udp |
| US | 8.8.8.8:53 | download131.uploadhaven.com | udp |
| US | 169.197.82.27:443 | download131.uploadhaven.com | tcp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| CN | 123.183.232.1:443 | bdc.alibabachengdun.com | tcp |
| CN | 124.239.14.253:443 | ynuf.aliapp.org | tcp |
| CN | 124.239.14.253:443 | ynuf.aliapp.org | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | uploadhaven.com | udp |
| US | 169.197.82.18:443 | uploadhaven.com | tcp |
| GB | 95.101.129.194:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| US | 8.8.8.8:53 | th.bing.com | udp |
| GB | 95.101.129.194:443 | th.bing.com | udp |
| GB | 95.101.129.233:443 | th.bing.com | udp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | nexus-games.net | udp |
| US | 104.21.6.156:443 | nexus-games.net | tcp |
| US | 104.21.6.156:443 | nexus-games.net | tcp |
| US | 104.21.6.156:443 | nexus-games.net | udp |
| US | 8.8.8.8:53 | 156.6.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dre81lzpy0s7q.cloudfront.net | udp |
| IE | 18.66.168.36:443 | dre81lzpy0s7q.cloudfront.net | tcp |
| IE | 18.66.168.36:443 | dre81lzpy0s7q.cloudfront.net | tcp |
| US | 8.8.8.8:53 | ajax.googleapis.com | udp |
| US | 8.8.8.8:53 | s10.histats.com | udp |
| GB | 142.250.178.10:443 | ajax.googleapis.com | tcp |
| US | 104.20.19.71:443 | s10.histats.com | tcp |
| US | 8.8.8.8:53 | ghabovethec.info | udp |
| US | 8.8.8.8:53 | approveofchi.info | udp |
| US | 104.21.15.106:443 | deedeisasbeaut.info | udp |
| US | 8.8.8.8:53 | supervisofosevera.com | udp |
| GB | 18.244.140.102:443 | ghabovethec.info | tcp |
| GB | 18.239.236.68:443 | approveofchi.info | tcp |
| US | 8.8.8.8:53 | pogothere.xyz | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 172.67.220.203:443 | pogothere.xyz | tcp |
| GB | 157.240.214.35:443 | www.facebook.com | udp |
| US | 8.8.8.8:53 | s4.histats.com | udp |
| US | 8.8.8.8:53 | nexusgames-to.disqus.com | udp |
| CA | 54.39.128.117:443 | s4.histats.com | tcp |
| US | 199.232.196.134:443 | nexusgames-to.disqus.com | tcp |
| US | 199.232.196.134:443 | nexusgames-to.disqus.com | tcp |
| US | 172.67.220.203:443 | pogothere.xyz | udp |
| US | 8.8.8.8:53 | 36.168.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 10.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 71.19.20.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.236.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 35.214.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.220.67.172.in-addr.arpa | udp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | c.disquscdn.com | udp |
| IE | 3.162.140.88:443 | c.disquscdn.com | tcp |
| IE | 3.162.140.88:443 | c.disquscdn.com | tcp |
| US | 8.8.8.8:53 | 117.128.39.54.in-addr.arpa | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | udp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| US | 8.8.8.8:53 | cdn.viglink.com | udp |
| IE | 18.66.171.102:443 | cdn.viglink.com | tcp |
| IE | 18.66.171.102:443 | cdn.viglink.com | tcp |
| US | 8.8.8.8:53 | referrer.disqus.com | udp |
| US | 199.232.196.134:443 | referrer.disqus.com | tcp |
| US | 8.8.8.8:53 | discord.com | udp |
| US | 162.159.136.232:443 | discord.com | tcp |
| US | 162.159.136.232:443 | discord.com | udp |
| US | 8.8.8.8:53 | 157.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.136.159.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | links.services.disqus.com | udp |
| US | 199.232.192.64:443 | links.services.disqus.com | tcp |
| US | 199.232.192.64:443 | links.services.disqus.com | tcp |
| US | 8.8.8.8:53 | cdn.discordapp.com | udp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 162.159.134.233:443 | cdn.discordapp.com | tcp |
| US | 8.8.8.8:53 | 64.192.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 233.134.159.162.in-addr.arpa | udp |
| GB | 18.239.236.68:443 | approveofchi.info | tcp |
| US | 8.8.8.8:53 | amavim.com | udp |
| DE | 3.125.239.17:443 | amavim.com | tcp |
| US | 8.8.8.8:53 | simple-browsing.com | udp |
| US | 104.21.79.38:443 | simple-browsing.com | tcp |
| US | 8.8.8.8:53 | 17.239.125.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.simple-browsing.com | udp |
| US | 172.67.141.139:443 | www.simple-browsing.com | udp |
| US | 8.8.8.8:53 | 4fcdmh05k5.execute-api.us-west-2.amazonaws.com | udp |
| US | 52.40.40.147:443 | 4fcdmh05k5.execute-api.us-west-2.amazonaws.com | tcp |
| US | 8.8.8.8:53 | 38.79.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.141.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | globaljavascriptcdn.com | udp |
| US | 104.26.12.21:443 | globaljavascriptcdn.com | tcp |
| US | 8.8.8.8:53 | 147.40.40.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.12.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | s3.us-east-2.amazonaws.com | udp |
| US | 3.5.132.206:80 | s3.us-east-2.amazonaws.com | tcp |
| US | 3.5.132.206:80 | s3.us-east-2.amazonaws.com | tcp |
| US | 3.5.132.206:443 | s3.us-east-2.amazonaws.com | tcp |
| US | 3.5.132.206:443 | s3.us-east-2.amazonaws.com | tcp |
| US | 8.8.8.8:53 | javascriptapiusa.com | udp |
| US | 104.21.87.134:443 | javascriptapiusa.com | tcp |
| US | 104.21.87.134:443 | javascriptapiusa.com | udp |
| US | 8.8.8.8:53 | 134.87.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.132.5.3.in-addr.arpa | udp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 103.224.212.215:443 | jecromaha.info | tcp |
| US | 8.8.8.8:53 | 233.38.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | businesssetupapp.com | udp |
| US | 104.26.12.40:443 | businesssetupapp.com | tcp |
| US | 8.8.8.8:53 | 40.12.26.104.in-addr.arpa | udp |
| N/A | 127.0.0.1:58948 | tcp | |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| US | 8.8.8.8:53 | download.nullsoft.com | udp |
| FR | 5.39.58.65:80 | download.nullsoft.com | tcp |
| US | 8.8.8.8:53 | 65.58.39.5.in-addr.arpa | udp |
| US | 8.8.8.8:53 | client.winamp.com | udp |
| FR | 51.210.155.142:80 | client.winamp.com | tcp |
| US | 8.8.8.8:53 | 142.155.210.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | client.winamp.com | udp |
| FR | 51.210.155.142:80 | client.winamp.com | tcp |
| FR | 51.210.155.142:80 | client.winamp.com | tcp |
| US | 104.26.12.40:443 | businesssetupapp.com | tcp |
| US | 8.8.8.8:53 | s3.us-east-2.amazonaws.com | udp |
| US | 52.219.106.89:80 | s3.us-east-2.amazonaws.com | tcp |
| US | 52.219.106.89:80 | s3.us-east-2.amazonaws.com | tcp |
| US | 52.219.106.89:443 | s3.us-east-2.amazonaws.com | tcp |
| US | 52.219.106.89:443 | s3.us-east-2.amazonaws.com | tcp |
| US | 104.21.87.134:443 | javascriptapiusa.com | udp |
| US | 8.8.8.8:53 | 89.106.219.52.in-addr.arpa | udp |
| GB | 95.101.129.233:443 | www.bing.com | udp |
| N/A | 127.0.0.1:64843 | tcp | |
| US | 8.8.8.8:53 | th.bing.com | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 95.101.129.233:443 | r.bing.com | udp |
| GB | 95.101.129.233:443 | r.bing.com | udp |
| US | 8.8.8.8:53 | gta-the-trilogy.en.softonic.com | udp |
| US | 151.101.193.91:443 | gta-the-trilogy.en.softonic.com | tcp |
| US | 151.101.193.91:443 | gta-the-trilogy.en.softonic.com | tcp |
| US | 8.8.8.8:53 | images.sftcdn.net | udp |
| US | 8.8.8.8:53 | sc.sftcdn.net | udp |
| US | 8.8.8.8:53 | softonic.com | udp |
| US | 8.8.8.8:53 | sdk.privacy-center.org | udp |
| US | 151.101.65.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.65.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.65.91:443 | sc.sftcdn.net | tcp |
| US | 151.101.65.91:443 | sc.sftcdn.net | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| US | 199.232.209.91:443 | softonic.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| GB | 104.103.241.197:443 | images.sftcdn.net | tcp |
| GB | 104.103.241.197:443 | images.sftcdn.net | tcp |
| US | 8.8.8.8:53 | bat.bing.com | udp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| US | 151.101.65.91:443 | sc.sftcdn.net | udp |
| US | 204.79.197.237:443 | bat.bing.com | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| IE | 3.162.142.187:443 | c.amazon-adsystem.com | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| US | 151.101.65.91:443 | sc.sftcdn.net | udp |
| IE | 3.162.140.15:443 | sdk.privacy-center.org | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | www.adsensecustomsearchads.com | udp |
| GB | 172.217.169.46:443 | www.adsensecustomsearchads.com | tcp |
| US | 8.8.8.8:53 | 91.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.209.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.241.103.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.197.79.204.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 187.142.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.140.162.3.in-addr.arpa | udp |
| IE | 3.162.140.15:443 | sdk.privacy-center.org | udp |
| US | 8.8.8.8:53 | www.datadoghq-browser-agent.com | udp |
| IE | 3.162.144.24:443 | www.datadoghq-browser-agent.com | tcp |
| IE | 3.162.142.187:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 104.22.74.216:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | www.clarity.ms | udp |
| US | 13.107.246.64:443 | www.clarity.ms | tcp |
| US | 8.8.8.8:53 | storage.googleapis.com | udp |
| GB | 142.250.187.251:443 | storage.googleapis.com | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | config.aps.amazon-adsystem.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| US | 104.26.2.70:443 | ad-delivery.net | tcp |
| IE | 18.66.171.5:443 | config.aps.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 34.233.109.239:443 | prod.us-east-1.cxm-bcn.publisher-services.amazon.dev | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | c.clarity.ms | udp |
| US | 8.8.8.8:53 | 24.144.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 216.74.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.246.107.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 251.187.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 102.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 5.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.109.233.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | notix.io | udp |
| US | 8.8.8.8:53 | h.clarity.ms | udp |
| IE | 13.74.129.1:443 | c.clarity.ms | tcp |
| NL | 139.45.197.227:443 | notix.io | tcp |
| US | 51.8.64.151:443 | h.clarity.ms | tcp |
| US | 8.8.8.8:53 | c.bing.com | udp |
| US | 8.8.8.8:53 | 1.129.74.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 227.197.45.139.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 151.64.8.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 8.8.8.8:53 | tse2.mm.bing.net | udp |
| US | 8.8.8.8:53 | aefd.nelreports.net | udp |
| GB | 173.222.211.41:443 | aefd.nelreports.net | udp |
| US | 8.8.8.8:53 | downloads.digitaltrends.com | udp |
| US | 34.120.95.133:443 | downloads.digitaltrends.com | tcp |
| US | 34.120.95.133:443 | downloads.digitaltrends.com | tcp |
| US | 8.8.8.8:53 | sc.dgtcdn.net | udp |
| US | 8.8.8.8:53 | htlbid.com | udp |
| US | 151.101.129.91:443 | sc.dgtcdn.net | tcp |
| US | 151.101.129.91:443 | sc.dgtcdn.net | tcp |
| IE | 18.66.171.78:443 | htlbid.com | tcp |
| US | 151.101.129.91:443 | sc.dgtcdn.net | udp |
| US | 34.120.95.133:443 | downloads.digitaltrends.com | udp |
| US | 8.8.8.8:53 | screenshots.dgtcdn.net | udp |
| US | 8.8.8.8:53 | cdn-magiclinks.trackonomics.net | udp |
| US | 8.8.8.8:53 | consent.cookiebot.com | udp |
| GB | 104.117.183.33:443 | consent.cookiebot.com | tcp |
| IE | 3.162.140.80:443 | cdn-magiclinks.trackonomics.net | tcp |
| US | 151.101.129.91:443 | sc.dgtcdn.net | udp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 8.8.8.8:53 | push-sdk.com | udp |
| DE | 157.90.33.121:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | 133.95.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.129.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 33.183.117.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 80.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 92.66.101.151.in-addr.arpa | udp |
| IE | 18.66.165.232:443 | static.chartbeat.com | tcp |
| US | 8.8.8.8:53 | p.gcprivacy.com | udp |
| IE | 3.162.140.38:443 | p.gcprivacy.com | tcp |
| US | 151.101.66.92:443 | screenshots.dgtcdn.net | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | consentcdn.cookiebot.com | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| GB | 23.53.172.14:443 | consentcdn.cookiebot.com | tcp |
| GB | 142.250.187.251:443 | storage.googleapis.com | udp |
| US | 8.8.8.8:53 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | cdn.confiant-integrations.net | udp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 8.8.8.8:53 | ping.chartbeat.net | udp |
| US | 50.16.179.197:443 | ping.chartbeat.net | tcp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | p2.gcprivacy.com | udp |
| US | 50.17.52.114:443 | p2.gcprivacy.com | tcp |
| US | 8.8.8.8:53 | 121.33.90.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.165.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 38.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.172.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.144.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 197.179.16.50.in-addr.arpa | udp |
| DE | 178.63.248.56:443 | push-sdk.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| GB | 172.217.16.227:443 | www.google.co.uk | udp |
| DE | 178.63.248.56:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | aax.amazon-adsystem.com | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | cdn.hadronid.net | udp |
| US | 8.8.8.8:53 | secure.cdn.fastclick.net | udp |
| IE | 3.162.148.221:443 | aax.amazon-adsystem.com | tcp |
| GB | 23.53.174.156:443 | secure.cdn.fastclick.net | tcp |
| GB | 23.53.174.156:443 | secure.cdn.fastclick.net | tcp |
| US | 104.22.52.173:443 | cdn.hadronid.net | tcp |
| IE | 3.162.140.16:443 | tags.crwdcntrl.net | tcp |
| US | 172.64.144.166:443 | cdn.confiant-integrations.net | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ams-pageview-public.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | proc.ad.cpe.dotomi.com | udp |
| IE | 34.252.32.189:443 | bcp.crwdcntrl.net | tcp |
| US | 52.217.173.97:443 | ams-pageview-public.s3.amazonaws.com | tcp |
| NL | 89.207.16.210:443 | proc.ad.cpe.dotomi.com | tcp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| US | 8.8.8.8:53 | 56.248.63.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 114.52.17.50.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.148.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 156.174.53.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.52.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 16.140.162.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.16.207.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 189.32.252.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.173.217.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.23.67.172.in-addr.arpa | udp |
| DE | 157.90.33.121:443 | push-sdk.com | tcp |
| DE | 157.90.33.121:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | pixel.adsafeprotected.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | krk2.kargo.com | udp |
| US | 8.8.8.8:53 | prebid.media.net | udp |
| US | 8.8.8.8:53 | s.seedtag.com | udp |
| US | 8.8.8.8:53 | ib.adnxs-simple.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | grid.bidswitch.net | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| IE | 34.243.104.76:443 | pixel.adsafeprotected.com | tcp |
| US | 34.120.63.153:443 | prebid.media.net | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| NL | 185.89.210.153:443 | ib.adnxs-simple.com | tcp |
| DE | 3.124.34.249:443 | krk2.kargo.com | tcp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 787c52d9f9327c1167d64ec9735b91b4.safeframe.googlesyndication.com | udp |
| US | 8.8.8.8:53 | api.privacy-center.org | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| GB | 142.250.180.1:443 | 787c52d9f9327c1167d64ec9735b91b4.safeframe.googlesyndication.com | tcp |
| IE | 18.66.171.73:443 | api.privacy-center.org | tcp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| IE | 18.66.171.73:443 | api.privacy-center.org | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| US | 8.8.8.8:53 | 76.104.243.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.36.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.50.149.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 249.34.124.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 153.63.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.171.66.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.138.19.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | protected-by.clarium.io | udp |
| IE | 54.171.164.66:443 | protected-by.clarium.io | tcp |
| IE | 54.171.164.66:443 | protected-by.clarium.io | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 66.164.171.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | fid.agkn.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| US | 8.8.8.8:53 | x.bidswitch.net | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| US | 34.160.46.1:443 | fid.agkn.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.46.160.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 91.149.214.35.in-addr.arpa | udp |
| NL | 178.250.1.8:443 | grid.bidswitch.net | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 34.149.50.64:443 | s.seedtag.com | udp |
| US | 34.120.63.153:443 | prebid.media.net | udp |
| US | 104.18.36.155:443 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | ib.adnxs.com | udp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| US | 8.8.8.8:53 | aax-eu.amazon-adsystem.com | udp |
| IE | 67.220.226.232:443 | aax-eu.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | 82.210.89.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 232.226.220.67.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 151.101.129.91:443 | sc.dgtcdn.net | udp |
| IE | 3.162.148.221:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | c.amazon-adsystem.com | udp |
| IE | 3.162.142.187:443 | c.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | cdn.jwplayer.com | udp |
| IE | 3.162.140.45:443 | cdn.jwplayer.com | tcp |
| DE | 157.90.33.121:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | 45.140.162.3.in-addr.arpa | udp |
| IE | 3.162.140.45:443 | cdn.jwplayer.com | tcp |
| US | 8.8.8.8:53 | ssl.p.jwpcdn.com | udp |
| US | 151.101.130.114:443 | ssl.p.jwpcdn.com | tcp |
| US | 151.101.130.114:443 | ssl.p.jwpcdn.com | tcp |
| US | 8.8.8.8:53 | assets-jpcust.jwpsrv.com | udp |
| US | 8.8.8.8:53 | videos-cloudfront-usp.jwpsrv.com | udp |
| US | 8.8.8.8:53 | 114.130.101.151.in-addr.arpa | udp |
| DE | 178.63.248.56:443 | push-sdk.com | tcp |
| US | 151.101.66.114:443 | assets-jpcust.jwpsrv.com | tcp |
| IE | 18.66.171.42:443 | videos-cloudfront-usp.jwpsrv.com | tcp |
| DE | 178.63.248.56:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | 58afee4220edb40374cc30411f66b702.safeframe.googlesyndication.com | udp |
| US | 52.217.173.97:443 | ams-pageview-public.s3.amazonaws.com | tcp |
| US | 8.8.8.8:53 | prd.jwpltx.com | udp |
| IE | 3.162.140.45:443 | prd.jwpltx.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| DE | 141.95.33.120:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 162.19.138.82:443 | lb.eu-1-id5-sync.com | tcp |
| US | 8.8.8.8:53 | 114.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 42.171.66.18.in-addr.arpa | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| US | 34.160.46.1:443 | fid.agkn.com | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| US | 8.8.8.8:53 | store.steampowered.com | udp |
| GB | 95.100.245.51:443 | store.steampowered.com | tcp |
| US | 8.8.8.8:53 | 51.245.100.95.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | udp |
| US | 8.8.8.8:53 | store.akamai.steamstatic.com | udp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | shared.akamai.steamstatic.com | udp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| GB | 2.18.190.133:443 | shared.akamai.steamstatic.com | tcp |
| GB | 2.18.190.140:443 | store.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | 97.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 140.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.steampowered.com | udp |
| GB | 23.214.143.155:443 | api.steampowered.com | tcp |
| US | 8.8.8.8:53 | 155.143.214.23.in-addr.arpa | udp |
| GB | 95.100.245.51:443 | store.steampowered.com | tcp |
| N/A | 127.0.0.1:27060 | tcp | |
| DE | 157.90.33.121:443 | push-sdk.com | tcp |
| US | 8.8.8.8:53 | avatars.akamai.steamstatic.com | udp |
| US | 8.8.8.8:53 | community.akamai.steamstatic.com | udp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.138:443 | avatars.akamai.steamstatic.com | tcp |
| GB | 2.18.190.147:443 | community.akamai.steamstatic.com | tcp |
| GB | 2.18.190.147:443 | community.akamai.steamstatic.com | tcp |
| US | 8.8.8.8:53 | sub.got-to-be.net | udp |
| DE | 157.90.33.122:443 | sub.got-to-be.net | tcp |
| DE | 157.90.33.122:443 | sub.got-to-be.net | tcp |
| US | 8.8.8.8:53 | 138.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.190.18.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 122.33.90.157.in-addr.arpa | udp |
| GB | 92.123.142.168:443 | www.bing.com | udp |
| US | 8.8.8.8:53 | 168.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 92.123.142.136:443 | r.bing.com | udp |
| GB | 92.123.142.160:443 | r.bing.com | udp |
| GB | 92.123.142.160:443 | r.bing.com | udp |
| US | 8.8.8.8:53 | 136.142.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 160.142.123.92.in-addr.arpa | udp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 8.8.8.8:53 | avatars.githubusercontent.com | udp |
| US | 8.8.8.8:53 | github.githubassets.com | udp |
| US | 185.199.111.133:443 | avatars.githubusercontent.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | github-cloud.s3.amazonaws.com | udp |
| US | 8.8.8.8:53 | user-images.githubusercontent.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 8.8.8.8:53 | camo.githubusercontent.com | udp |
| US | 185.199.110.133:443 | camo.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 215.156.26.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 154.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 133.111.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | collector.github.com | udp |
| US | 185.199.110.154:443 | github.githubassets.com | tcp |
| US | 140.82.113.22:443 | collector.github.com | tcp |
| US | 8.8.8.8:53 | 133.110.199.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | api.github.com | udp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| US | 8.8.8.8:53 | 22.113.82.140.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 210.156.26.20.in-addr.arpa | udp |
| GB | 20.26.156.216:443 | codeload.github.com | tcp |
| US | 8.8.8.8:53 | 216.156.26.20.in-addr.arpa | udp |
| N/A | 127.0.0.1:9050 | tcp | |
| N/A | 127.0.0.1:57304 | tcp | |
| DE | 136.243.214.137:443 | tcp | |
| US | 199.254.238.52:443 | tcp | |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| GB | 92.123.142.136:443 | www.bing.com | udp |
| GB | 92.123.142.136:443 | www.bing.com | tcp |
| DE | 78.47.18.110:80 | tcp | |
| US | 192.34.63.137:443 | tcp | |
| NL | 194.109.206.212:443 | tcp | |
| US | 8.8.8.8:53 | 137.63.34.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.110.18.2.in-addr.arpa | udp |
| AT | 86.59.119.83:443 | tcp | |
| US | 154.35.175.225:443 | tcp | |
| N/A | 127.0.0.1:9050 | tcp | |
| N/A | 127.0.0.1:9050 | tcp | |
| ES | 82.223.21.74:9001 | tcp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 2915233ace3b11bc8898c958f245aa9a |
| SHA1 | 68c6aa983da303b825d656ac3284081db682f702 |
| SHA256 | b2cb442f2ca27619c8df087f56fcbbb53186c53f8fd131af886ee3712220477e |
| SHA512 | e3f1b70d39b615e212f84d587ee816598236ee6ce144d919593894fcce4a0900343a9e8b837a0d1bd10921fff1c976c84c4a570eda776fe84d374a69e7a54890 |
\??\pipe\LOCAL\crashpad_1256_OENWMNEZFWEIWZMB
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | e1fe3a26bd35b84102bb4203f31e74c7 |
| SHA1 | 45fdfa8433789b575eb64e116718e62e0e0cf4a0 |
| SHA256 | 26e0d51529de906dd285ba48288e25eaf5213c0f0bab9bc5f119ecbc5e1b93ee |
| SHA512 | d528db2e9b917d4fbe24b1b5c6f4cb274f4f91c84f63e5119e041fa89ae0cd01a370e314f8b6aca9d6fa958e79feabc720f4b54b3d8aed69aab11fa84cad36bd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6e27bfb97239511449bc7b353e53759c |
| SHA1 | 55769aa81de70c584e3b434d24c617a935aea671 |
| SHA256 | f4cbafe24b14198737eb832d8833cedb200a7f01e4e1ec2005409f877486c414 |
| SHA512 | a27d1c3204a685016219f367b2d5563cad5b37b99facb3def59bb79176cbe81f8a5efe3a50896d98f3dbed283cab105f893e1c31c2d84550857232242bd72a3f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 1328016e416b0ffbb16d6dcde9c0c2d7 |
| SHA1 | be06fd42ffc194374db2f93869aa3a0b691e01ee |
| SHA256 | 4121a733f60f0413d99420dba871308d81e3e6473b62a85670bfd2f3b45b9834 |
| SHA512 | 583a14efa1654cbcaea9de844a86c4fddf99cd24085fd59ac6e028770f94642ae2e362864826fba4999a93aaf45df04605bb58588e32a1c4594c7c256716d857 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\702bd283-6545-42e2-98dc-95fc7084ca73.tmp
| MD5 | bc5cd0a72b6e32dbe06b80d906151a8f |
| SHA1 | 6b244ea8288286796fb66f48519752f0dfb38a34 |
| SHA256 | af44ab19305e3167cd015f52443b2b36ec00dfa68476ce0e1b06e923d78c0af8 |
| SHA512 | 17a462ed32ed9fb94aeb01dfb2bf7597b8c19c0faf31091a4aac146b3deca32d4343f18117d48fe92780f6dab537221ffb1cdccede1ee826fefef1e9c105ceae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\Database\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\EdgePushStorageWithConnectTokenAndKey\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a8368db7c4ece6a9942ee2d2527d59a2 |
| SHA1 | 19cf8467ec3c2f290ca7fad3da02fb8820d77edf |
| SHA256 | 867bdf27d25f08d12c6a7f920b4213a30da6e9fb6a1a49aea35920b7d2d4e18d |
| SHA512 | fa81972743f5bf6bcc031f284773387b97b01a9c8a24ba6563eb1664d1287968809026f94d1b7f920015a779799e535b545ad79d0a63922c9aafa80744d21b6e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b37cdd4572ba7a64824b2cf1670772e4 |
| SHA1 | d1272caa6be19be0b5fe32025bdba0a421704c9d |
| SHA256 | 8a870ec912156804d3bb17f86c5039772c456a6dde0ab8402789dcae4699f438 |
| SHA512 | fd22cc1de837b3b54aa72d7d72cf608ac3929479b954e8c12728336b67145670b0da8320215a890d370b58414b889f9e037ed6b49048865e6bb01571dcaffe25 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58396a.TMP
| MD5 | f97a68897b5ffe6ec18e4770ff4324e1 |
| SHA1 | a8a71b8f5554a44db20abb60546382a4d00e40c2 |
| SHA256 | 1f52d5ca78f09059bd2e6f91fadae5835f545609373f5b1c66957aa0846ddda0 |
| SHA512 | c91bf83c4cfdaf46faa43a899030e6bb2cc86d533fd73de6924dc768e3ec5146adae8d92ed101aac67ff955b632a817de18bafddaad2b24180f19fbd61ab918c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_uploadhaven.com_0.indexeddb.leveldb\MANIFEST-000001
| MD5 | 3fd11ff447c1ee23538dc4d9724427a3 |
| SHA1 | 1335e6f71cc4e3cf7025233523b4760f8893e9c9 |
| SHA256 | 720a78803b84cbcc8eb204d5cf8ea6ee2f693be0ab2124ddf2b81455de02a3ed |
| SHA512 | 10a3bd3813014eb6f8c2993182e1fa382d745372f8921519e1d25f70d76f08640e84cb8d0b554ccd329a6b4e6de6872328650fefa91f98c3c0cfc204899ee824 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000030
| MD5 | 95ad70b0720495f26f4b7dc7aa152c13 |
| SHA1 | d325d177460b579980d6b36a4da2defbc709d6ce |
| SHA256 | 7d40765179bc45d7b2a36b9f0d49d12c2048abb154ed0ecfaa2433417fd0cdbc |
| SHA512 | ca9f7e4fd11ce28a5eacee9cda062c8418b4d6cb440ed82328c03d7c1d1835d7aa175a2ac5e35ce2ec3ab6a37ed2fae0bf2eb61c7b08199299b6dae9e5194fc6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 76e31e8b53e122660c672616b454984d |
| SHA1 | ae43d676e0815c4fa9db1ada1393145b95d84082 |
| SHA256 | 67bfa613814a00826110ce832c631ccbfa8fdef03a28729583f7633778ee977e |
| SHA512 | dfcfbd3492f83403b4846782ac1f95637e6abe2018dfda62b35fc9d9bec01bf5ce92cf509da4c310e8c9dc341c45b98e80c8f150d8cdec41052770665bc5d5d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 7bfb214bd67418a791fe3efc51b435bd |
| SHA1 | 1947d220590c3bf62159996e588b9c2e1d032b4c |
| SHA256 | 4829f827b8e9f3335184f54ed1c914771598aaf2c575cfe77503a9ed3543e40e |
| SHA512 | 0542df2d4246dc0e224385e2e7cf01ccf46201b7ef96316ef5bafab94ad72022c5e83a73973dcde6805b9ea8c919b750886a50c08a89b055ee42272eea6fdb4b |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | b11b68b76a9333d34ce2888a77807496 |
| SHA1 | 7718344d50621e3e861d687254b1ddecbd9f0bf0 |
| SHA256 | f450b52c308287b11d063915098998dc4f63fb808af444cfef0510c17043e315 |
| SHA512 | 68d79c38932126c70d5626379581fb8a6ce06da65ee4a0adb9139d7ea8c1ad3f8c4e3520e29d28d2ecc56ac7eb313a0a1cd04c0192d27ea0507c4e962e54538e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002b
| MD5 | fef45b2c1a8d5b74ef90e5f5fcf9675b |
| SHA1 | 9a09ec333228303c53920d2144cc0c826e6ba680 |
| SHA256 | a77d35dbfd33664ba4c9d288a7b995b6fcfb3287f6795cf57e183c86b5f322d5 |
| SHA512 | bde2ab7e9b658e7929d5deedbd35aa74927150d5a6298360c60dbfde13950a635946f7b8f3382e96bfe0b91c40ab401ea9d56607cccb6f8d1c243732786b1075 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002c
| MD5 | 53b1fcf41bc3b9b11921198bbe4382fc |
| SHA1 | 78c266e52889f3e13b69361ed8794bff86d1923f |
| SHA256 | 8d177dcd71f25c4f9d74125de9cb905d667ce1b333ea11e3cebb5e748f86a5f1 |
| SHA512 | 88194b80cb3a4be5cab7adbe599b5c398a62bd2b4cd553db840d9f9a509914e3736841070c5e753a90a8327c63dec43c07c29a2b9c0fe93a2794a395e83ae5c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002f
| MD5 | 889c71b347a0466bb16cb0517ca4b31c |
| SHA1 | 31b5c6064c76c2b64707055118dabbb6d81afa41 |
| SHA256 | ea8b30024902343fe31d835f07708ca459738ed6ff33d708c05f6c37cf0c23d7 |
| SHA512 | 729fbe416d565e3ee1917354fdbc03ec265acabc976858d9f807abd21e1a4cf9d545e3687200c2d59ad1fe3b0bd2983fd5687d40bf3e61a4f2ca5a4b56ed283d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000031
| MD5 | af7ae505a9eed503f8b8e6982036873e |
| SHA1 | d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c |
| SHA256 | 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe |
| SHA512 | 838fefdbc14901f41edf995a78fdac55764cd4912ccb734b8bea4909194582904d8f2afdf2b6c428667912ce4d65681a1044d045d1bc6de2b14113f0315fc892 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002d
| MD5 | d2d29c46ea6ca4a884d68e9410956719 |
| SHA1 | 5942f7777cd3a134d9759481abf52887d62e950b |
| SHA256 | 254f7c71ce9cb1b4e55ed1f0fed1e2ee64cdb5210a23cd62e9bc48252cadb6dd |
| SHA512 | 7258610e914e30fc66f15f46047304f9ac8861c22adfeecf31e4db24a0095b62b1c9acc458bdb29cc37012415aa4cecf9934542ad6befbb9d944402efebf5e83 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000032
| MD5 | 151fb811968eaf8efb840908b89dc9d4 |
| SHA1 | 7ec811009fd9b0e6d92d12d78b002275f2f1bee1 |
| SHA256 | 043fd8558e4a5a60aaccd2f0377f77a544e3e375242e9d7200dc6e51f94103ed |
| SHA512 | 83aface0ab01da52fd077f747c9d5916e3c06b0ea5c551d7d316707ec3e8f3f986ce1c82e6f2136e48c6511a83cb0ac67ff6dc8f0e440ac72fc6854086a87674 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00002e
| MD5 | 3cc80ca2f552953d01fe67c333fa00e6 |
| SHA1 | 1a727f0e2b83530e1ffa0c466dc78a7d8c54b472 |
| SHA256 | e1076b58088260d66c819f72e270a63301e9e2b8f2b57a4fcf0f9e909f84e343 |
| SHA512 | b784b393d9a4746c5dcf17125700961d8c5b06815427e5baa9f623b1cf0b29e24f5ff309e66f2acac57d8c8ae8427f0636e0127ca2ac6a9b16bf7cbd5195ff74 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000053
| MD5 | 77f74ce619d89b091c851f0ba3d649eb |
| SHA1 | 53eb658892f9a380258140904da31e00c3f94b00 |
| SHA256 | 7444856761605a68936b833839f97da0e3dca2e52e457d47bf8e90ce93c09f9d |
| SHA512 | 2e37619db3d82b389629cc0026cca7a83cca63729316e95a8c46a0a8e25f2234ae227a1bdcca19c923782e017c718755a2c207d480a067ff47f1bd3f2601cbc8 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 27e7f116f5f082da7e92f5b7050e5ee5 |
| SHA1 | f2e280bda1ef905a93358f4c1773693aa8a05323 |
| SHA256 | 623f95c18f7fdda9d7ef482b1035df976a0da4b868008d91e17adfee5fb557ad |
| SHA512 | 300a783449488bd87e97b2370acbdd8f0de06b3b06ce12d65891eed492d454ec74e03b8acc7bea1e60065b4543e4b6f86cf0fa0e41d90bc2d40aa39dba0d9554 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003c
| MD5 | 008d0ae10f41631bb124d78799baf5bb |
| SHA1 | cd5956db2574b3e718d8e87f3e4af79e2a3b5e0b |
| SHA256 | a0aee1664677fce87357ff299c236f12803be313c1838a312d779ccf1ce0e590 |
| SHA512 | e4c1c5a8d88b6e0caa60b3c6ce02c05b0b2653c478a788d9d6c330d34439a5f91acecd67dc6baa4f40cf8f4cf21a684a13162562df8e2406cd06ac3145c6216e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 399a149bc6067078458100ed2bcf3fee |
| SHA1 | 1cfae2f62c50b106d375854ffb753898d01aee27 |
| SHA256 | 561374c43bb7eec27962d77156308fa518dfe8037af7ec88cd6d90e19ff7fc3b |
| SHA512 | 79a3eede94e46c0722a0b332c70d2b2a831f150e3db68181c7292dec8679033bc21ecd0da7ce18e8d43ba2e7ed144f80d316052a7777fbb732a0e83df5704eb8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4b0d72ded56c0e781295c6dbbfcb67da |
| SHA1 | 102bd7a284e559d55c17b5fcd718ea0042e191e8 |
| SHA256 | 56d2e35b9b94610b0d289f66cb939c1e20929c7c3ab45dde0cf1090f9efb844f |
| SHA512 | 9b914984291a4efe92afebc074fa68fc1f73f47857b180c8126c7e6bfb1fd3c407b1afb9e310c0131a9fee3158cf93b2e203190fe281a287217592320662462c |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 55e9939f6cedd615673c629f9bd9f0bf |
| SHA1 | ac57c1d8510805f20409c4968f88456d74720ddf |
| SHA256 | ababa2b4075465b3b07cafd00a3405c9becc2ad53475c6a5f275f569edb5a6b7 |
| SHA512 | 80143cadb5cc6849113efcb2640f6bf7a38350fb3240707e28d8a1e63773bad8a26f1f1f86fa395045f963d23f1d35f05f6c7566e83149eee97945f36f57791b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 1cf050f330708c975ecaf6c5ddcde84d |
| SHA1 | 07ae5c7073366c90240954853b63b8680194033c |
| SHA256 | 9bd8e4fe05bb37e26a6532cb6fd71ddf2d43045ffa37067dfd2ffd5819126873 |
| SHA512 | 69aabc0d1ac58878b9e6fc6191504625a839dcd16ab415129ff051655dbc8e8dc7b8348bec2163b42c0b875cf32309a6cd446523cdb6fdea24da56f32271f5d6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | dbca956063e009242d9179b29066bbd5 |
| SHA1 | 9878dfbdefe9437138e0edf4128fd9f92dd138ec |
| SHA256 | a8d3c3ea452f23e957827e138c26447028480202b6d2f002b214b7f174ea0ac2 |
| SHA512 | 0a1b539ab98543c0eed8a7b2ebb4add6e9db05cfbb38e341efadc56309f02d9c675bfefab4bb6559b9bda3c287d9c7163f4ce35f1baa9532e41d2f90af343e18 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index~RFe58c464.TMP
| MD5 | cd37b1e5438906d0b1d329bc4aa2dc98 |
| SHA1 | 2bd8a6fdaa793c20558460a51312ad622f7f419e |
| SHA256 | a3a19f6f23eb7d26bbe35d76195c6d7f81188b78980ea91617c306a314a67b02 |
| SHA512 | daa2de016ae162ac5478b8596bcfb6358dcd305be070621451987d7858a3eb50eee33c49d9e4632c5ff18497f966bbebdf870e287905148d8cacdbad9d575994 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 89adce3e4fb34eb2ccb443cd090e4de6 |
| SHA1 | 935c6d2a125a817a4b6666fb7cdc23deb72369fa |
| SHA256 | 86c9c5b8d4caa75baaa9cfd4b2b90ceff1a573d6656c37ff85f4819f2c6514ae |
| SHA512 | b93981e0109ee996105f847bb9ab2d446c2311c8cd1d408ff82dfd5dffa87187b63b63cdb64ec677d56036b8665ae532922dd867242dedd9a4a3d875bd7fe09e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e1190cb5334df0bd20b5816d229233f8 |
| SHA1 | 53bc1e9b874582c7dba53d1467936dfd87617d90 |
| SHA256 | 3159de8a0e66da18ce423ce062196bd9fbecee6f79548d7654c9a780702cbb6d |
| SHA512 | f8e545bdf0ca82c2b443b50eb8a9ef7b928d08661489d9019612b1168c1e59ace6da6e1d0d79e0558ba1d9df8bafd2058ef087a943f8e30eb09a4eb2ba61013e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | a5376a77e7ab6de5e0f8f372db051768 |
| SHA1 | 0ca98cd72bd87060db9104893d5565e5b393dd64 |
| SHA256 | b85fafd244d34fc7802e2c468a7f75aa085203d9193f055c75bbd1617cf2f3c7 |
| SHA512 | ec76557157018293e67a3fdd898cf0c77bcd6464d640b3f8b16420e884db73fa937182b3ca4ae09245746ec92a2db05c4bf526f3e192da9408cd8ddb12d7ab94 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f20ad6d408f79adc3e9f5c91c6f5917d |
| SHA1 | 061e6a3fee3a96ba0855ef1088d4195d2301681b |
| SHA256 | c9e9212928c3c50ad98c5514f577f856015b22f1897d4eb12ad8715e8ad9d6fd |
| SHA512 | 3b045534eb5de79950399dc32526d42426ebccf0721cb12fc19a9c39efcd8b20536141f1654454e965cef30f5d579765e58f524b1c8d0e2c13d9753879e40c17 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 6a4d5e6cd77e0b05bf1a4ed7744b13d4 |
| SHA1 | 0b2e9b5a4559405cad8be7fff89c07e81cb1a32b |
| SHA256 | 2d8445b139a40a4ae7f5091350d0caa0126efb52b5f8556e8bba056b5da331ab |
| SHA512 | 26a56ea40ab06891919d5e7ae4798b8d7005108603c80d3feca6cb334588253f69eb96f68020477c85057359553e04d04a1ad604d3d6ef183793185eff3f9440 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 0a53e3eff65ce534b427c2f0b237b0ae |
| SHA1 | 7dbb0fcdf97fb30c2990786b99be48c3fcb7c792 |
| SHA256 | f17e75340dad084ebf9e74fe6a92ed7bbc4c177a84f56a472bdcaa1c2f77de8d |
| SHA512 | c327807094c4c741cbc5b38c77598def64af795e0ee29649510c767e47bafb30a55f434f596f7d44f2cca2a3682ba3293378841eabab897b392c947091e4f75c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | f3bf0768c5f69ff8c6e7635f52a35782 |
| SHA1 | c999796cbd61c95296799ab6c9f470d30d4159f7 |
| SHA256 | a6a625be57d54a4089826d24f03befd23ccb037bfab2b039103ced11c45c8adc |
| SHA512 | e1e9bd62a9796f85042d4ae94fded5b50a75643d486195caad3255219f2dad8b30489ef1ca41f82fe1a65d6046bb8860d8a3d73680494a46114507728a399e81 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 002f28b9bef4871ad5ccff7b41216a33 |
| SHA1 | eb0f1cf669b552066109e3204e1836040b2e3c81 |
| SHA256 | 1e138083c465544ff78fb4aa5243744e25a582a87e2e247eb05d22e11c8f6d89 |
| SHA512 | f4b03a3ae6554412c22de6a1dcf0582ba23928916d7bed0c04244e72a51fbaee3564ea8804ceaebb8acf86bdc77a9bdc66d0a22166ded3c9cc1f593b95aa2ee2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | eb6122eea10a374da05ecbf13d3ba104 |
| SHA1 | b99295f125bcda9bf59981d53873e98d738c2857 |
| SHA256 | 2cb94eb5c0bd01a1629897dca08f91cadc0b9754076a9b62f974bd1fa72d49bb |
| SHA512 | 04b7734ade0889f39648b0a7847453c2c05ce960880f2829e49429e60640baf59cf6fc268dbb1db875e3412383f24aa9f4528ce5cad5e4063dd6ccc416264bd2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 34f8041f621888a862d09c434190fc57 |
| SHA1 | 13a695240d8962cd7011907e4b2c781b03f34741 |
| SHA256 | 9fe8a7d5b8dcd719e5d6347bfa12afa74d63d2b8138825201a106300cce81ce6 |
| SHA512 | c4f827f367ef5c7cc47f39fa933e03f0bfd49a8e3705cf6305255d6bcf3da1c470a6a66c8653cb1d2ea0e3e8a3adfd4bb68de08bb48caae7572343f265f4803c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | b958a53c8368ffb1be313909ec1a43ca |
| SHA1 | 3a421c19d9319cad137fc6269f74b6e3838d5ec0 |
| SHA256 | bbb5a551e3b3603e4adfcd17924d35f7e0e1d3cc77ee3a45f80f776684e2e28f |
| SHA512 | 7e706506fa686ceffd27601c9f3f28e9334ce02a57c272c4b1452b3b54cc09d8f52646c95f9c8e92796b1f8466921c53b1cc1d7ce7ae13675b495fa97d571ad7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | dab17431c3a8ef14753fd66310db349a |
| SHA1 | b97ee32eb7191beac4e0c930cfaf8f5155a86b6f |
| SHA256 | e9600711d4065d2e02058bda8457442c6aec92ed048683e0563e33dac24b28a7 |
| SHA512 | a4bb164ebf765e8716c6d0864e987dd7be93bef55f19fa2f77b25432c7e608bf2943b9017036d8734d84d9c3583cfbfd85483af6591a77f6393cefa6731e2ce8 |
C:\Users\Admin\Downloads\fdm_x64_setup.exe
| MD5 | 4a41fd79fd63f9ff10ba524f55ab1504 |
| SHA1 | f4ac20a7a9e80ded1af0cb33a507ec7f36e28f3e |
| SHA256 | 5427b39b22d32315db36e21f5afbd3bc7e626eee44d1b56bd4a122feeee66d0c |
| SHA512 | 0bd89c6867bed1df7c532fc01dc19443d56780da92c09ff08fdf79733caae5be3ff784bafe1020a8951e9da0a8410c61966cb0efb4af88c3622e0abae3d10a1d |
memory/5488-1221-0x0000000000400000-0x00000000004D8000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 77030c394925db33d5a717046987291c |
| SHA1 | 1223f031cd6c1fe1f5b7f5f07d84d1106590ea82 |
| SHA256 | 2115f89480bd42b4b22c8a8f1fce32f4d1fadb834a852c8d0ef9ee37856495bf |
| SHA512 | de20793675118f29092f1accb512a7b4f61c70c85d7870516e477099945a99c4b57bef1e79a7931fb5f418c2e47dc3a6aeb0dfbe85bb6f02d683a40807d3679c |
C:\Users\Admin\AppData\Local\Temp\is-B1I1U.tmp\fdm_x64_setup.tmp
| MD5 | 7975db9340c3804077279e66a7cc9d90 |
| SHA1 | 5f540d0c31ca1c20f26d5196f6949ca1392f08d5 |
| SHA256 | c371d10a9a9e8837810a34545bec364ff8b3711d8217cd07813e5e9ece986b6f |
| SHA512 | 88ed1cfd900e1bacc09fa69de13d2b51ac9326dc0e30f2baef67e281a1ad492b9cdbecc8b2da97274cdc34f4a670b2d7c348b9ddb7b9f98257bf2896e86dd617 |
memory/5488-1245-0x0000000000400000-0x00000000004D8000-memory.dmp
memory/4576-1246-0x0000000000400000-0x000000000071C000-memory.dmp
memory/4576-2001-0x0000000000400000-0x000000000071C000-memory.dmp
C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Universal\is-SLT25.tmp
| MD5 | 63340c8fcb71734ce4bbac29a86821b5 |
| SHA1 | 0cfd02b3e95fa482cbd4bd83b0f2d9214acc9709 |
| SHA256 | 78b5fc58e6d881d16351e92d32b8cadea6b14fbf8c20c1bc7e56d02946467ae8 |
| SHA512 | fe035bb77a32d0fe9d4983d90c65d4c2600a019ac20743dbec409f29ffbfbecd8bca2d15abfffb2e71b77e3c105e248627a176942cdf9d7b98ed9113e6f73ba0 |
C:\Program Files\Softdeluxe\Free Download Manager\qml\QtQuick\Controls\Windows\is-2D5G9.tmp
| MD5 | 2006d4b7d0da455aa4c7414653c0018a |
| SHA1 | 6685b8360b97799aa4d6b18789bf84a343e9e891 |
| SHA256 | a96c7bf5832767bdc9d91e2290a3920aec3abfbf2e3814bce38b49483f16f84a |
| SHA512 | 703804e6fab0cf44317b7292c547a1348e2e7395e4b71367c32c3b097bcfb3344d3296179bf4ba33a4c752ae58a3873af57d8cdef35a34564205356bb4e6fd84 |
C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe
| MD5 | d92c2d9bf7956dd4f4ffc3c463cdf37a |
| SHA1 | 0bc30a0761a80c4c7b13c9bab63a56230771a900 |
| SHA256 | 0c1f32060b2c43fb46912e033e9d65db7d328549cbc8780a661cae57c0388352 |
| SHA512 | c5cd7f44cd9b402a273d9924387dc8f6ac01c887b4fb9ca093d3d4ab3423c7bbc0e8f134b5cb9124b0dbdee9fd4b2466cc8635bd215608677c62815d8cc63507 |
C:\Program Files\Softdeluxe\Free Download Manager\service.xml
| MD5 | 85c61b85b0ffe2609b00379a5512790d |
| SHA1 | 2dfaf069df408819b06916381ac80b3ec097214c |
| SHA256 | 24f6062b8679b4140b5c15900deefa8ba187ed5e3c5cb8efc91b26b31769664d |
| SHA512 | 3a18c17ddcd10cd89d1c666134f13be6ed441fbe2c36a9567e894c0e1674232d5882e696ad2d385bd5eb4d50b6a1b4225bb992389aad93a77b203318293ca6fa |
C:\Program Files\Softdeluxe\Free Download Manager\vmsclshared.dll
| MD5 | d7736292d4ef46be0d99576a5cdf6df9 |
| SHA1 | 4c523c0d49a971bf2073ee187a368875c1b6a455 |
| SHA256 | 53862ccf8c04241589e1616d6e57d347836ffa37f79e846dfd1ced928be0e9c9 |
| SHA512 | 91a73146473973844dfc3eeb849e9797e857c8194685fd7b720a2a607ef0b24e1d4a52ba78da081a1040d2a9b3eedc386bde6a508f5237a9bff6d477af5ac1e5 |
C:\Program Files\Softdeluxe\Free Download Manager\libcrypto-3-x64.dll
| MD5 | abbed3f87da630930d274871cb794a4b |
| SHA1 | 40398d1aa2c9b9be7aa7744e311b67b5296b0450 |
| SHA256 | 7e8caae0c0e6bf6bc5ece9aad0cae238246a5a98c3409745f571316a50aea54b |
| SHA512 | 35c04b8ce4702bd6f8629011b382941d24a3122f8d6394e1d6dff3c11549993b16f2d1d4635f16b1d33aa0d5fd0d335d103e2199383934d52527366d6eb624ec |
C:\Program Files\Softdeluxe\Free Download Manager\downloadsjsp.dll
| MD5 | 3e49103b02cfaac32cf9e87464a9608a |
| SHA1 | 5c6298fd5218064d2bb999e0f8f0ce6be33184b4 |
| SHA256 | 438d772d48e5b544040175ddde94ec5c419bde2447577da24bec365597c46978 |
| SHA512 | b78b998d8151949a397008152ac7f8262b1a4fb4e7c34346456b7e9764b8ca5892ab6e779b32f1d8714050e8c567dd7ad2a8411134ba5ea5f00f4147bafb233f |
C:\Program Files\Softdeluxe\Free Download Manager\logger.dll
| MD5 | 5c1c6a57bc144eba71ef987dd2a07067 |
| SHA1 | 1e72238db066aa0f9f52eaa627ec8bc6377a38f8 |
| SHA256 | dc63a492b0c0148c8b2efae3539bb632dc11a07b08ecea214c5b85ac8675fd75 |
| SHA512 | 040f6e6c332f4335b91f2a4cc0d026e699552336fa94e433d1542348c4b0dc13d97d0aa1d55f321d91156fc044fadda3bcffa0733fad71c969f07cf5ecb80da3 |
memory/4372-2715-0x00007FF69ABF0000-0x00007FF69B313000-memory.dmp
memory/4372-2716-0x00007FF920090000-0x00007FF9205D5000-memory.dmp
memory/4372-2714-0x00007FF91FA60000-0x00007FF92008D000-memory.dmp
memory/4372-2718-0x00007FF69ABF0000-0x00007FF69B313000-memory.dmp
memory/4372-2717-0x00007FF920090000-0x00007FF9205D5000-memory.dmp
memory/1984-2720-0x00007FF91FA60000-0x00007FF92008D000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | fd309df861180e19b8f6d644f50909d4 |
| SHA1 | 158db12a622f7f4a895de9f48d267c72d1dffc4b |
| SHA256 | 5b0995d86a4323880177144862c38b08d3a1ba882df378721155ec9fe4603edf |
| SHA512 | fc6419d95c2f4bb9082c306a158686813448535549fec31982988f1f05d55e929f9babda7687a7a3906fdbd5d2ac9c8dac52b11bf4ccd0a71296af2fd4f1696b |
memory/572-2816-0x00007FF920090000-0x00007FF9205D5000-memory.dmp
memory/572-2815-0x00007FF69ABF0000-0x00007FF69B313000-memory.dmp
memory/572-2819-0x00007FF69ABF0000-0x00007FF69B313000-memory.dmp
memory/572-2818-0x00007FF920090000-0x00007FF9205D5000-memory.dmp
memory/572-2817-0x00007FF91FA60000-0x00007FF92008D000-memory.dmp
memory/4576-2820-0x0000000000400000-0x000000000071C000-memory.dmp
memory/5488-2821-0x0000000000400000-0x00000000004D8000-memory.dmp
memory/2300-2861-0x00007FF91FA60000-0x00007FF92008D000-memory.dmp
memory/572-2870-0x000001FDF0790000-0x000001FDF0992000-memory.dmp
memory/572-2868-0x000001FDF0340000-0x000001FDF0782000-memory.dmp
memory/572-3314-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3313-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3312-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3332-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3349-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3348-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3347-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3346-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3345-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3344-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3343-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3342-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3341-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3340-0x000001FDF34D0000-0x000001FDF34D1000-memory.dmp
memory/572-3338-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3337-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3336-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3335-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3334-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3333-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3331-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3330-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3329-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3328-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3327-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3326-0x000001FDF34B0000-0x000001FDF34B1000-memory.dmp
memory/572-3324-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3323-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3322-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3321-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3320-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3319-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3318-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3317-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3316-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
memory/572-3315-0x000001FDF3490000-0x000001FDF3491000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1b4f6d28d78fbd1702203417aee6c4d1 |
| SHA1 | 45849fe057320cc7a0386a583ceee788e96070a7 |
| SHA256 | a56f9e716b91e23e328592ac2eaa0796297c370e3a2b00950431644f62b446f1 |
| SHA512 | 5507631e0fc2b6589dbeb11025c4cf69236b8b8510ef101a303e4c82b9c9e3a48029c44e3cc78b67e49ee0874ee1a3f93f9c1040bbe2c31d062045e868573275 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | c8fca70c56c1c49338990ca921f05ea1 |
| SHA1 | 09b800d9be2b46776017997cbb24656ae1490c57 |
| SHA256 | ba65352b59823f1191ffd270a42b3f5f50d1ad44d8ce73b1c8b602c14bf784e5 |
| SHA512 | 7c396c11488268d66cf3c0b4fd9e8a21f19ce1745e29ee3fb5e9a8aea5d20d3606ed9f994e8f3b5455f206553b9f086a7227cf0f2921eb6fbc85cc149888b2e2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e2e0505d533fb3b4601c5329e37dd8ef |
| SHA1 | 308c4d8ef4793b43aacc92bd8e9fbde8fc025a46 |
| SHA256 | f2a709cf6b7ed2653feb132c47d3121dac326f37bca715bacb49202b0ff17ef3 |
| SHA512 | ef64715c0a4a33e46f51873fdcdcd4473d6d498c0abf1d049d77f2acd84498641b4c5bf85d95e6ed5c7194fcb1f91e7856b96c0339deeaaadb1311edd3a67596 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a52341c4b04a5d6e67b6b66bca978c91 |
| SHA1 | 070febbf81d93b796564521d4eaa79d030c462d8 |
| SHA256 | 1cc4be4894ed7a5ee646b589165e5a604be4fd4b2743d425092a730e5e947afc |
| SHA512 | d4b39b25e6b3b199dcc1777a46175ed849e96b2222de14e17bc4d7433e9ef8fcfdca2a67dbe6fe485f1beab454f8ff908b3568eb8d77b70fdcfb3ec676391ee2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 76ce3b2886ea3b0586c46a679f9b94a3 |
| SHA1 | 766ec420b798c33d59c0c5dda484372914815248 |
| SHA256 | 69bb5db1290c50f94b0092c3b862624da3ae46efd03e4b1989fd9797632703b7 |
| SHA512 | 63e741c5b0c882e432b85f8f6ca9cd989445df4b88e02cd5da402d32bc1599cbb96d2ddce0df17249b8870b5082abf115c18bf9820b77032612ff7afd6c5d8dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 8234e2c7ab656da9daad88fc4c74f016 |
| SHA1 | 833fc160f062f5f6951429c9064bd333d806819b |
| SHA256 | 887adf282437ca16de8b7ba764004568823a34d5c5d1c11027cba088702c7bbb |
| SHA512 | a844960b63ed02b2e970457f8afadcf1fd0ff57f7221fe8b8341eeaf49ea5b226275e1fac7729f721850a6e78cedb808d12c5995c46af2b2aef9e82f6aa12f8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\6c038e3570d6abf1_0
| MD5 | 5e783c769a2c6679250d3f3af645a2cd |
| SHA1 | ed25ab266a2cf8f8df7573a41424b8cf90902eb1 |
| SHA256 | 443503d2ef0ad39eb7ad13e468a31035ca315b97580821d227345feecd354fe7 |
| SHA512 | cb7d0533c74963978737ad08d4b1e4dfe5547a10a63f0a8e66bc1c370d1115981652cb3f729a85327f8e337d6e789c8193ece3ce00430d450943af157246a403 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 896615ecde3739f7e3066f10bbfbf6d3 |
| SHA1 | 18bd37da8207175b8e00e3c0479bd762cf5920d1 |
| SHA256 | 9bf5811ceb2992f9bca859ca9bba337b40dbc9d5ad023c9e0278e4cba4a52f01 |
| SHA512 | 3d59690754199821abc8212713f0390bcf716df70d0dfe3c9aff5a9f79cb4f2ebb7db98e82b0ecf3af71b45d00347d4bc8cc0d6ec7592dc25141bb8639531000 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000039
| MD5 | d5b47753bcfd1ba884d2d2b2c6ce0192 |
| SHA1 | 0ea1ae9d07504fc9944a71c120394c2a3e408f2d |
| SHA256 | e3f2aa4894fd2edcd86ee54d97060c273fa67a902fcc2ff77048cb264c2e2fcc |
| SHA512 | 5f68b17a59550ec48959d912b86713036b2a635ec83aaa4121252cf040bdbfa4b34300d4881572b945b21c71df419839d5942ad03fa60b0fd36b73e12763de57 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000038
| MD5 | be87ba7e57b063801210196bd07e078b |
| SHA1 | 0384f8cff41132e206882fde73a6d530e4345b6b |
| SHA256 | 1c57b06c205d185ac807bb12d1962caf6c29bf331b852543bf2a6a80b2c341c8 |
| SHA512 | 42dcebe61edc9fe52ee8c863ce36e00132ab2f3e85a48f98440055996e0446d16d4034b68c2f60f3f7ec242bd455354f406c8e26f0e1ee380a0df79163f0f7dd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000036
| MD5 | 164be23d7264175ad016a13a0bcaf957 |
| SHA1 | c35ce3510b46a12a5ad3f73edc9ac18eb1e8018c |
| SHA256 | 4bb1ef87d7b93cb72976e936bca7f607d5dee5517dfa739fcf403a2cd130f6d7 |
| SHA512 | 7dcfeb8007467dec38af535e1240cbd15e951735720e66e5887d7c69404edc2b2737fce054a369726b46b5a2038bc296b136615dc981d56cad7a8d674cb88aba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000037
| MD5 | 6d165f62d0da54f37f0a9f3e16bc9d87 |
| SHA1 | 29bafa806d7398debc87f6297a95f58827ee6b92 |
| SHA256 | 91fdc709823930d46a970d7a8301e61ebc0a67202449594be5fb6c492aff45ad |
| SHA512 | 2d0b6e014fe0f1ca055a740b84deac2c24f27841aabf08caa8893d86f168ff3b872b753b1791a8be8e0546ff8cbf19a52f835d9e11980828f236eaacc0862f2f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000035
| MD5 | a4e1fa2a01ba084e60efddec6e4839d5 |
| SHA1 | 23b4f262b12c80192b450a6c7bf427d30ab08b4e |
| SHA256 | e2d40be84a74632da135d3598ea27f0f66c0f1423cda835a2ee4e5309a2776ef |
| SHA512 | 2dde67841512e336cf7f47636f031ab2a3bb40e435743362ab92c908c41c6986432a03a5a66ef183f6ef1c6e7e211db9ad0402d9c573ba342d85c036fea67de7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003a
| MD5 | 9ae632da1f75cf46a054cc0578f9c1a8 |
| SHA1 | a3ab6a09377b54ebb2b6109b779ca0e1a295cb76 |
| SHA256 | bd91a84b726603c2add7b5055d669c068f63f6df9346bfcbfeb4779de833371f |
| SHA512 | 04d1ee0b9c01768bc5b6cdb15955a59c320e8389d4242246e31460f9c3dff445487a038cefc97559c58a03424de4e992d5c9f68b7f32d73a37aaad49661a7082 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003b
| MD5 | d7f2644ac3fe5fc4edeb7dadce2be595 |
| SHA1 | 487fa5ccaec10fba7844b301243500705fa62754 |
| SHA256 | 2c8ffdfc34d0c8366d4b0caaec1137f3ec6c3d42de637fb4368bdea8591f88f8 |
| SHA512 | 475c21fc936461bfd12af10ebd8b466180bcfd59a0edab41eb0f0b09a440b729003c18ddcd72d86765c5de8234e68a3ff5a8073d8cdccc27f7290a05f0cc96d5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003e
| MD5 | e4945413184d65f94f64c59e9e43f686 |
| SHA1 | 51bd126ccbd5e693c1441ffef1b3b51f6e46fe93 |
| SHA256 | 4eb24dc9c5191b3973b26d0677b18e0181a7b64507dc3ea80f4b960d4e3bdbaf |
| SHA512 | 3bfadc9543769c21312a8e4542faf97cb41b7d1b2c6b5c8380d19adadb8a2c52d22a206479549ca4c929c02dfa08d6be6479860c5afb855dfed87ce3bc83b1b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003d
| MD5 | 3bfb01f3bad7477df0d588e237a3a9fe |
| SHA1 | 39cec61f3a4e0a27ef29125a3765c08c1e60e3b6 |
| SHA256 | 13d9bfdd9b6da660dab1720627fc7144b3a93239e765a7c54a4fe07aa49638d4 |
| SHA512 | 5bf096a3a03a2a1b02bf2541c24ceb189375b730cc67162353fae460242dd4cc8089603f4909616dbc2091d55cd13b2e5d469c1b8af6a0119e7b2c98b0b609c1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000040
| MD5 | c08824edc8cdf29c2732bfe7fab7dda6 |
| SHA1 | 0dd55d36951cca0adbdee837f430bbf7063e1312 |
| SHA256 | 7382923b0f5944037d4a16d0feb8dd54b98c000b71546ae6159e03ffb3b6987c |
| SHA512 | 5683a91e805fa3fc6e6f30aef109a5543dd5a624af7e8f408abf82c187836def8aa076ef38c76cbff63381f565a2bddb7e164ef458a124f56e13ca1cfbeed25b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000045
| MD5 | 5915d4ed06793b16687151ca0b4ed6a8 |
| SHA1 | 589331be07eeae0345d343db8f99c3db36dd093a |
| SHA256 | 58cc387138af7a5cf732db2a5d8980bcfe9af2086882d2cf16938dc44adc1f8b |
| SHA512 | f63f4e50badc216d6f57366463b2700c816a08907a3c8dc912e14e8c9ded5b4c3d829cea4f5b8ba8bf7365fa12b11d1790740c063e0bdc5e838af18c45a4e7b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000044
| MD5 | ba7ff4095fbae287c0823e3f32576634 |
| SHA1 | 3b23e73d0c4c26c44c6dc3eed7eefb15471004e4 |
| SHA256 | a00cd49b0566e0fadafdc89350d18e27fac46cf8abef621d938c5dd449c775f2 |
| SHA512 | 5f6fd811a671fd7ced39e69e246e0eea33c4b3ccac0fb883238559f9cdcf02f2a2036e340f74d76b7189d7585fc62eae173332389feef563c09f42dd113139e1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000043
| MD5 | 3a0bdc4625a8fa31e631a415b18602c3 |
| SHA1 | e42577050934cec232f6224e887b952b78a3a895 |
| SHA256 | 96cd483df7e7b4202b9da8baee162dd06683e9fe5921a6338dd7c27dbcc9cd81 |
| SHA512 | 6582f2c09db3b248492ebe5041357cabbc0ac1ec47fb6a8e2c9fd62012e1614e4afb1f633a9ccf1aa4904ced4b48d8893d565c72f109182e9584e6f7c87c0c4d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000042
| MD5 | 5c3a49a75f360f51bce9e5feced94ea0 |
| SHA1 | 427258dd01b02b850d0d0c831070e133872d3cf2 |
| SHA256 | 3a360360bf0f9a2f22d5e47259369095011472f0e4d4875c3a47add4a8ddfe3c |
| SHA512 | e3ceea360bdd55e2b25ec396c9d524f45468039fd8ef1e46585045f3e01d129d31b6594ad52e5955b914ec0fb68a3102b1f5c29979177e4ace02bd133b0cb600 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000041
| MD5 | c8efa20226e12e9b16247ab8ed0a720f |
| SHA1 | b326f19018bbabb756643f572665ae626dc65f60 |
| SHA256 | 07e0f42af35fb9389b429ffd3c478c3d839c2a61168dd194161e6997c897ebf1 |
| SHA512 | 3fb86c05bdf1718989c3b01b805fd7788421c5045320e74a57c69eb03a8537c622ef7c9dd8a66befd9e5fbcc7f82eb1059071fe48f7f775f48d2b2cddbffa7db |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00003f
| MD5 | b4470ee179a4eddbb46805af908179b7 |
| SHA1 | b261ee502f6ea6d00f16f5f504b6c80196791315 |
| SHA256 | 3b07d11331f77d30696cbfb8f32deea6d640836475b0cb552538803acdc20c5f |
| SHA512 | 0ab09da443ebd063bad886e97c4acac9606ee8e6b3f96fceb19bad0f7f6eb1ab5a7f0985452a159f1f5baf162f24299ee28082092db587f4dfdc9b9f32bb2572 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000048
| MD5 | 2c224a5c0be84ad658b11912c18b9b86 |
| SHA1 | 02d70a1becb18cfa9acae9e345cf39679c738c25 |
| SHA256 | 172c7f494325dbb5dd5bd9a90c1a2e687673e1934f4d676d2cfbc0eb7739df1d |
| SHA512 | 6057350901ad8f60331cca555212608ce69a5089137b57bfdcfc273b5950306ac051ca5e85d4629091b79c2fae2cf934cebb973926c319d9ed92cb9b67ebd83d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000046
| MD5 | ab7fe5c0ee6d5ad6ebf68d94e70356ea |
| SHA1 | 8b828c65c9d2c2e1b1ee375db70f40315daab316 |
| SHA256 | ee150cfa6a69aea374cd0c21b7109afbf8e75a46cc7cc24d0cad61358a5945f1 |
| SHA512 | 76e9405f645b1b1c6c73efad9f2b7d9fa67da4278029e0a5c7d3903b0cde8ffe899050b2dcfcb264606f7a1c72c3410947c0845e9db47ef62109d0d10c59de08 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000047
| MD5 | f321cede73c5d9e3e07077c09b9a4fad |
| SHA1 | ceee4a89fe068c208c38ff873cf832c9c03a2dfd |
| SHA256 | 78e42cf0df4d9cb93406cd813740146595913f414092460528256c6fdb0f9b8e |
| SHA512 | 91df3d0a35c1b3412a211ae0794294e74d7ffe62c2ce4214a575ba3a422645750f4437159d73e77572ee06fab8597a4802c94e18ec039e8ea9d53b580809a7a5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000049
| MD5 | dfeb7aa212f6c91c0284f645402a398b |
| SHA1 | 9aff46a196c498dd31a9220ffbe3eac25868c999 |
| SHA256 | 144cefcf2f5eeaea08e0d8d7b303e8588862ed85d4210acbde8181cfc3e05b99 |
| SHA512 | b490211837168461a91cb049b3d4d6b087fce96ca20131d7b3ad29d3a82c290f8d9da08be220bbffd9e3624db0b36190c83079a827598c95aba691ea8915fba9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004c
| MD5 | bad5bd15158ba1ced6487a8255012d6b |
| SHA1 | 8c92a9599d1f6fbc3306cdfe80ba88b3083b6fa1 |
| SHA256 | ea9e81d280849de15c40cfb76efd2938f00a3d5a96bfdb00b759bc14dca790d6 |
| SHA512 | e4ed767faf7fcc3570331c08657d18011d6c1144967d4a448b91e6437d6a1005f4bc9150b48f5452b7e62d5b54eccd91be7c57791f5dea6bf162e4dc5bc29b5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004d
| MD5 | b7a18c617366417453c4db6f26424ed4 |
| SHA1 | ce8bca9b604286ddf2103cafdf4f0b6c974a381d |
| SHA256 | e2408db430f6d3b5165463ab0f9fd70bfd78fc7c79c752dc747ba87dd298a66c |
| SHA512 | a792850fbcd0a73d79342ac4f980fc94573a91284fcf65dc4b485621c364fdcf1bcc730dab8242d9bceae50ee4d6aafe0f6a84975c58334acada25405e905ee8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004e
| MD5 | 24e3a8ad32f5aae8b4b0f7e7d91efe66 |
| SHA1 | daf9e4d8cf8710e8e6990bb287ea9e2d38531589 |
| SHA256 | 129395755463b9a43fb78088dc1be0221cd54c1c930e1b4bfa7a967ddff55d08 |
| SHA512 | e497f4cf93e2399cb1eaae6ac8fe8f2f97ecdb34fc720224ff8326729b527e921553ef743fad24d46183ef579b8d70e3600c605e6a3b28c915df477f0daefaa9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00004f
| MD5 | e680c0ba93ed536db1704742be372695 |
| SHA1 | ab5f8aac6c38cb90a23bc0657f56a0bad60f7416 |
| SHA256 | fc1b5fb35896300f4bc6af15081c43cd2211f77b65e872e659d10bc8c8f26aa2 |
| SHA512 | e3179d8c1833c7643e0d42fa74d9e1ad7168c0de81f14e240fd2aa501ae4f0c485bc57ffd32756b57d434cbdd68164027b66289b08b951b9b2758b7c56011bda |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000050
| MD5 | 6ed920e0f3a6447c3e5d86c552438db3 |
| SHA1 | 4bd9cd1b552e1879e596c57e47b3813bd95dcafc |
| SHA256 | e513c909d83dcbbbb9ba1b54f1cc8e6d6044ed212d04583d1629afef46eacad6 |
| SHA512 | ccd98e921f910e736fa59855a4aae6b170fed4fe359fc3790f92608b5f0ec03f2e92243fad55f51c8cb301003a4115d37c1ec4b7652e4109258b156744f3b1cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\b6c28cea6ed9dfc1_0
| MD5 | af8318c10925f9b85c6d694cd6c9125b |
| SHA1 | 6c087d32f69f78939d3d7b5e6bb2eb02ddf55d0d |
| SHA256 | f25fb2024bfb8cec673b362141e1e08db20250cff49cce33121182f307034a6a |
| SHA512 | 117c2febeb762162a94e1aa4a44da327244eff8467d908eb9d5907f9b1f77054fef2d589fc71844181ba83c3050bc84e82f6affd8cb4d0306aa6b952a39a324e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\2a0afd649b00527b_0
| MD5 | e225e875d941917e5c107c5327a7611b |
| SHA1 | 9d85d1df2d1a7ad190f599e30ef9fce15214af10 |
| SHA256 | a437c3c4dfce59cde34550b09521a40e2b00bee5cddd2674df0f6e3324ce0501 |
| SHA512 | 3bc09ad6f18e9f053294003cd5a5c609ec9dc4b7178906050a8b72729d021ca8dfcf77b3e725c917cf3579a6fa7935baae015c0884dcac65b8019a0e0841453f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\d0757ff92c7cde0a_0
| MD5 | 5e6f3ba28ff22b0b737b98f177a90741 |
| SHA1 | 160fd70dd33cb5bf409e50e01b8c8964648d92f7 |
| SHA256 | e935758e008b702d8c1922ae36a0f97e1571f3373239d5ef1d65516d1fefc685 |
| SHA512 | 522c65c002ff39be623d57128e447cabef8523851e59d53caae66928c6823f655236131f5666190238421c7cee87df06cb7d1aa647818dcd1fddc02c5bad2218 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\7b4fd8111178d5b1_0
| MD5 | fa94ffd01d9ee11ede47aa73ba19ebf9 |
| SHA1 | d0ce2aa2825999290520057af45b4a2612980329 |
| SHA256 | 1d10ba375706b5722e9cc471490ffc92b6cd26d69fd5c205140dbfb82d317c11 |
| SHA512 | 039f91a61e257e1e75e83b8c9fe9eb61e259ff099fa6069041580d438a4314bbb51f48a3edb3121bfa40d2aa804b5b27277a75ef5f4c7efa9a403e54849c6420 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\013888a1cda32b90_0
| MD5 | 346c714025f1d59eb5a3fd374a95eba0 |
| SHA1 | cf753cf9cd63cda025fdd44414d636201019ded1 |
| SHA256 | 0fa8250f8a092fea8ea1dfd3280b881884face4041effe9824904342b4e275c9 |
| SHA512 | b9278480e12123007696917f47e1a352314134ae19498a13756d09e4fa67d56cb41fc20a66be179a5e03887ed2e4d025a492e10b5c1b9cea4c1bd94e12b61f27 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\297ecea5cebb5dfe_0
| MD5 | 483c5c68bea0be5dcb9c9eb0a1ec590c |
| SHA1 | 5a846a6bf5384698ad989e6c35eea12362950355 |
| SHA256 | dde48507107b346e2173661407ec6ceeae4ffb0eafdad5b30df4f13e5779791f |
| SHA512 | 058d8fe6680179a0de1411db2d9d1768d9f0b025d635f691e01972d673c1dd07b75d7731ae5c62b8b11de1435c449f4f1cf0fbf9bacc578c5e9b5ff724ae280a |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 304a65ecc29241543d2fdc8683494635 |
| SHA1 | d1e02715310a82b40c816551eb33f82f1e32c478 |
| SHA256 | a820ca9c9ea6c8483c44784e60a4eb502c29e4a72ff90f52300fb8ff8a8d4b55 |
| SHA512 | 995f247c817bf5635f48ca84f258239b4878bd592201dbab9f2b1710503628bab0fa5ee74650e379e6814b8999eb1f4dd42d20426f166e3414bdb7e548ac15bc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2dfdb2905ab2ff15b6462f9a534c7267 |
| SHA1 | 7cf2cb8e27504ad1e6c660384236d6bb26d68325 |
| SHA256 | 65e33bc5793623975e94f20dc0099ab666516b384764bef808d09b3300f8e6a6 |
| SHA512 | d661e88643eb410bb40d602cde725dd2ac4838c3b4eb23408d8130081f3bd7c35c44308f1eebcfdb12387c3280ad95e52cf9fbabb21b9140a86aa7c9feaa2c29 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 81d0bc2c7f30edec020cd32f2501dbd6 |
| SHA1 | 7476e19e9583d4fc9d17377688873e5c4682341d |
| SHA256 | 9ebda3259448c707d2b8fc71644278bd8c997e2edc4eebbaea93782a3be39c08 |
| SHA512 | 1f4c9671f4651822649cfc4f8eefab4771aea5e453f33f88bc9d801245917d509693d29efac1c2f623fe27bfb414b3727467406ea13d6e95990bb62cf7088e0e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | b6310b89b80caca6fe23177f3a93da17 |
| SHA1 | 114f3e3042dfbebfb62517337543460e912f3d23 |
| SHA256 | 88e973dc163d3883ccfe2441203caa96902fb916d427710fb690d1ba74ff0be3 |
| SHA512 | 2302d850a7bd97c10ab1cf9da7d043f009537c0f7714d8f049aabd4677cd58d43b61ffe28de0888aaaa30ca5aae2c0152efe6b463015aed3deea088a2693c53f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 79f235ca86699e2ab433f484c8f4085a |
| SHA1 | 7fa03672aaf0f33a01d04daa7a4d6040fdbfdea9 |
| SHA256 | f08df2afdb01bd788bb7f4e5b11448e77c8ce018c3fded724db40e8bd0afce1c |
| SHA512 | facaa69af99ba99ca48a9bb942b0adcfc291cb63d69a88bf5a699c97b3887d53d5bb1bd5428a29f4af76e77b6688805a59735926d641d009d0ab193570df8c47 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | ff5f7a005a9496ad2498ef52873eec25 |
| SHA1 | eb5120c82dd16909679e4fbc7162e15c4527cfd6 |
| SHA256 | 9005bb227dffd95d7d8cc6e85d2a1d229838ec7b7c591800f2b899e502e850c6 |
| SHA512 | 3417a4090feba6fca22381e021ce030b5fe231197bd469f68848d9da70f5aa1727e487e8b0cad506301e9b1e6b4e474795b98bacf6e96592912fd4637f8acec0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_uploadhaven.com_0.indexeddb.leveldb\LOG.old
| MD5 | 17bcebb8dc12dc60acdd936ebc16cc6b |
| SHA1 | 5442f75f9ee8bb51fcb0a962fcdc8524cf1794d1 |
| SHA256 | f3a19107cce4d43826c5713252638020ec030ff42dc4cc0b53de9b9f9fdb7d03 |
| SHA512 | 68170e54e064bd79a9b12257100533b211a8dd072e4f1d83baf35f50ef3a63d10e61bb02f643b703a71deab1640ac47930ac7f1e28af6b71538e74bba7a89674 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_uploadhaven.com_0.indexeddb.leveldb\LOG.old~RFe5bd9a3.TMP
| MD5 | b7257c68a866cfe985ff0a3cdd4d8ca3 |
| SHA1 | bbae3c7db940bee9636b48ae2b6d70a6a108be5a |
| SHA256 | 550879af0dcc0970f25fc0e377bb7fc7b4696ebfe521ea229202b330869c978b |
| SHA512 | a4aae1a99d39ecfb102b73942b6694e908d7b27c2f065f98c9317a06947793f72861a1e4e486efaa424df9b91669312a7d95c2c732c97cc4608c323a7861ed16 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 1a0b284e3f810cd1cdd3aacb4970b6fc |
| SHA1 | b1b96f81a2c4a2f58e086d8c652d4b7da8e0df55 |
| SHA256 | 91a1f709b905b69ca744f731e8d39b4b8cf11432a0ce2efe9b1f56a8109b725e |
| SHA512 | 97eb5eb1da7687d80ffa942777fecfc4d8397f914ad1c7f321b275949021afa9a2e154daf238033588fb8ca2d7cdb3dcda722a88312d5a22ce2b93c7f82c1e2a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 541cd10e293e84e5ad5803dd5e0c7e27 |
| SHA1 | d3b167dda54716155687975634c328f5fb5b3523 |
| SHA256 | ba3349d2e69e236e83af6f4b6fc79d0694b012b1a833eb0f9105993575d60d12 |
| SHA512 | beb36374fa421831a5287fe356d52cc9f074bcdec59f73080f700bade19a2fc317652bf5065582ef576b6794fb87790691bf0886746e174168af2577ad14cf5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c978a17f768f28dc_0
| MD5 | 827adb2361e9fc39164be278c955f5f2 |
| SHA1 | f59f47eec3179726d35ee57f56fa174d114a6226 |
| SHA256 | 93968bffc58a8df4e7373b362242033ead3fc04374471c1a793196a26e62468d |
| SHA512 | 2d843befcd9675115ca347e17eef1612bccb1e421cda161bb01a243341e64075622573b74d18071239e107ffe853c30a0e30b5d92caf93990389ff29ab2b18cb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\841bea6afeb82526_0
| MD5 | a61a64a10ab42f9619e29a7c46381c17 |
| SHA1 | 152cd8f7699c8121d7c890633c7df79f9ce449cb |
| SHA256 | 7c0843301fdd841f3378c11048d21169ba9f6c6b31df22dfc60f4ae9b1e2e2c9 |
| SHA512 | 4902588ec79827cb899ac4a2fdc3854a5f54926acef4578594d268399afd89daf28e45001f333a7b49feda37f6d10fd8a2f8725dd88c132b53165c5d55921d91 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\78ede017c017ce14_0
| MD5 | 72360f055fd6227a57bdbe26cfaf5c2e |
| SHA1 | fe4230a1d1ea187c31ef7a78f3bb82d3c789ec32 |
| SHA256 | 127cfd48e37610e66d319ae9380d6e328352ca1a2ca18c0b7f6aaa47b3fdc3c0 |
| SHA512 | d0b83d3df56182799beeff411a6b06425b836fad6be644d2412f7a1b1fbc87290a6c549180acec75d08c771384e5af6dfc029b4c992f4ba5ede3f31219c6ec5b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2d824d4f40591029_0
| MD5 | 68abb7dcc2f8f58ea9f0a2c98054c6a9 |
| SHA1 | 505bd51c481d0bd5415427170f713c6f1f8d708a |
| SHA256 | 1750deb25dde87e5714d6fe8a3bbdcad3e0c1db1d836bf356ee8e6dd10f2fbda |
| SHA512 | 6b4d9f2498f1390a257768b2b76c2d5333c545bcd42bb7586793312345339fcd30bc1f02227187a070b1d8349a8dbf424a1ae771c3eb04e76810e42cf9a370a6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8105617888e5b9ac_0
| MD5 | 8d05de9f8dfba6e7634211f001d62171 |
| SHA1 | 0b5d414a18986f76f2ec517e57a5c3c8065528f3 |
| SHA256 | 20b73b4c4a0ddc12f27ed0d247ea52e21fcd2192e7bfd0d87c4818515b9ba23f |
| SHA512 | 4d47a75b88f82ab275255c80b50c3abfce9eb9e87e9a249f21eaa3db3b778a7e8d2e307802192b768ae6b2efdf3cc52c24ca51d6b0b37c53f8454531a275c0a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e72fb33771e85614_0
| MD5 | bf28250958ea455008b81f7d8960a1e2 |
| SHA1 | 90155e3831b5b794ecf0ba096b2075ae935d92eb |
| SHA256 | c1542f46d335f48213cf2f91b88c103c64e73a3aa02eefccefcf8511abf64097 |
| SHA512 | 66a14326dae8dd273f341ab63a471f0d4aff9950d7d19eee2eccf1669b114d68a114db50735072dcc45fec54f5c268aa5c78adf66d0e1f71a2d4ffeceaae219c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | e14a5efaac1f09ac7df13a3fe7d5a93d |
| SHA1 | 9312fa62d7b180da003b029f983f09ebe79207a9 |
| SHA256 | 12817d4ddac8e1306a65c34401e6df44f2815415d0fdd50eabe88d4f15f16a26 |
| SHA512 | 3c74f0009349edf00d04104d650c9ea7d0b835cd6172a6c551b511566908546e331d1affa575b4b7a20eb499f4af452e26bd39a6b12dafa28d7545ebb5a5248f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00008b
| MD5 | be2839284094069f7b3770dc086f68dc |
| SHA1 | 193bd141d335022f704ffd6a3061a282e5257026 |
| SHA256 | 23f1a59d0401dd1ff35a1da1ed3fd9d376ed41a72ffb5e1419574c01848b7e16 |
| SHA512 | 8eb697760985309a31399eb47e4ba819efa595ca7d810122bb686d6a2cffa0f7406b8cf29ff02d1cae9d99333b2bd20bd1089d68dc9df26ab59db8a023145899 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 0a2cfaf1b66099e0ad8bbde8354d14ce |
| SHA1 | 720591c79bf53f735234624c2833cd2917a2c363 |
| SHA256 | a1eaea1a6a0778016f0f9c298f23e55147ba92bc04625c56e3e514e95e73bf25 |
| SHA512 | 65d16c4f297b35e66a41436be20fb418ae08228702d9983ed8a2b90c0a9ecde16aa47c48980e1636f26272d793373ae4630050a60c4323b28f7daee856a7c639 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 473820576d6487e4940930c7c9a27f26 |
| SHA1 | bf73c73c731aa5ed515fa87c0d108c2f5607a395 |
| SHA256 | 0e14dfdd4f52e7394ae076d4d6c64ebdfd241910600b44c27480dae2c01190df |
| SHA512 | 43a5b5d06e9ec8bdf847fa89782a90800cec5fc220541250f06d498692766cdf7e264a33fbe5f501a62c2af234501f40aeb9f0f5ee08a93476a985aef5d77137 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e9804859ee66c32c90d4dd43413d0dff |
| SHA1 | 1dd0ef95a8db44c7bd1b332b338ea1dafede4384 |
| SHA256 | a7a0b1d90a4f8d1c8e593b31c71c92f6297bff84c11688263911f94a1927e465 |
| SHA512 | 89a7af57db7faafd67d0aaac9e3db0da43be2f64db4729c2ad119899ecbef02ea5c061d5b32274a1db15f3f96d1cc2e1c1c15157f421c0da22d17497289f427e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 1be2af5b4db2a2132b6bf45426aa464f |
| SHA1 | 95cc0d9f42a4ca44850926338900c115e53b15ce |
| SHA256 | 93fcee218c700c699f6499838642fe3378ccff4b0863f05c8ae5d0c8bfb69302 |
| SHA512 | 1832dafdf0a5622831819ca3ab11a254c77a04cf7b200a41e252a6aa33e70dd9b90a17564624ec5354220ee881e311d3808299af6f7be972e19908697cdaddfa |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 486b7d6affcb44ad9bf726ac9d6ccdcf |
| SHA1 | d8b6cfcafce48747359181456f88c4eaf284b6b3 |
| SHA256 | 6418f38ba47d2de74404e71fb8ac7f43dbd919f446c8302babf199fad8da9e30 |
| SHA512 | 6a9ba06c73173af5b360dd22150a59f78431f803d275c161a1f6ca39db106c705d8855c44944abe99f43b791e1eefcdbe453e2e59f7534608a4f7ea8fe540c36 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5da0bf8ad0cf3e772ec1b145cb993f43 |
| SHA1 | 72e7a7d79792fe223e39ee98dd99543c492befc3 |
| SHA256 | 86b2d073053a354fdf995cd9ae0b9ac7af355eef74f6179fedf005ab27329513 |
| SHA512 | f5163303efc68560749e955029db09fb6de96bf5f49c5e597425d665f1b573f9eb1e06a241f5bcbebb57a1d101478897bfd59f852a85f926c0fe05fd37fe78b2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | cb67968f3273d7f46afa792101bd0729 |
| SHA1 | 2f092c909fd46e01e1a7e8358ebc812560fd7979 |
| SHA256 | 399d9be88ff1423f11cb993c160253ba7f42786c60ef13a5321b8b20f077d039 |
| SHA512 | d1065ada117db04b79f0729dd2720735eebf564bd6686b206e1e3bfee8c5898f1bc66976588a5a7052c7442ee732095eb4b166fe1f60c5f477164b3f00a3c7dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 66560e0664035b8a29be422b7f2ae5cc |
| SHA1 | fb3c55171641abb2c7f8b5ecf9e8f2eef10bd835 |
| SHA256 | 81c2c985df691c16c7394415ca2e733367f45e4c63c3d612e9c3d67e561bdefb |
| SHA512 | 90eda37a3234c13917a245796bb878eb45bf3d0edaddbc94153a7e3d1821f159e6b4d898b78ff12a5d68baf36c1caeaa37889ddc1516bf6de32e74b833ac7f0c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d7063b57d83cff77154cd704c7240f00 |
| SHA1 | 9d17b354da759cb49b99d62f21f1e757dc34f2e9 |
| SHA256 | 12db231116265b68b1d4ac9c1808cd9d32cfe8fac4a96913fb5348cf288e950a |
| SHA512 | 0b5a3b88d5eb0295c252aa061c4f84ddfda1d2e3ec0499f60d9130b69063f684c64ce8e1a06d9bdd4bed0db8cc321af724619a6447813c7ffd82d36ea615fd5d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 289e90a1c3030f58541fd21c9372dc7b |
| SHA1 | cdb5a63f1ac1e12298423a1fe955536cab35d3ac |
| SHA256 | 7602cf21d95e3537b12b65f745fda3d8e1747d65515018a7968173844de0b2be |
| SHA512 | 04ebec9fcbe994cbb25756de0eea74331561e73f0f403fa0905754e118bac32304776e3df42ffe6b262bfe1895d31f7747765ea54bb415d01461232edf84c9d6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 56545b292f633250124035a79fe1611f |
| SHA1 | 06f12726c3d5e4d5865c658a39959411edb20cba |
| SHA256 | 81f1857cd8d1a11d985ebc806d41f8a2693bfc729f4fccac84dca9a201ab1639 |
| SHA512 | c2baa0584c6bad3352203119e16f3862b1446b3525d8aca49d9dd581ab1b23f135c6f1578accb1c464c99ae2ad550e437b28dd2e9b35e75e73e388b8b9b635e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 636c124f86a002a2415672f30ed59932 |
| SHA1 | 632700e4ce03572ffafdc8a759f590e315a4b09a |
| SHA256 | e9ca3130e10309054b16ab025141f0d7d668d69b15d8b625bb9925bf5ead8ed5 |
| SHA512 | 357f74f4197df837f020765c48003079d02fa6f0fe865a2eb6d7f679c6ae4eabe55b87e7b2154af8447199ffda86bcd132368b02e1cee16b4872df60daec6bcb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 10e99cf5654805daa467ba3c8867955b |
| SHA1 | c6deaf21b8906ac7cde65c7193696cb917f6bf49 |
| SHA256 | e6e9390df6f34dfbde3a92d02d0e6f4ff4ef435e31541f3f7da871b94f1886fb |
| SHA512 | ec658ad3b691fb775180a4132e76b982012e28301568b3e1d0a793f9636d779fb901d37c39d69606a919297d930f246f6aaa1e1e51be34c12b17df38db324d1b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4c5fdcce1f0ec1b7170de497e6c5317c |
| SHA1 | 0b6c3c98a76df54e0591e7d622487db79fb454d7 |
| SHA256 | 3f44d818dc709ae8fd7499edd071b53da4680e5da1cd28d0477963fe05064524 |
| SHA512 | bb2ecc8127bdf32e89a9017e9124a4da2a0074aa49459f5466bc7b6dbe1c440566ddcc727a0111b7d919f82288976b3ccbea2a32a942cfac63b3ec0f2e922810 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000002
| MD5 | c594a826934b9505d591d0f7a7df80b7 |
| SHA1 | c04b8637e686f71f3fc46a29a86346ba9b04ae18 |
| SHA256 | e664eef3d68ac6336a28be033165d4780e8a5ab28f0d90df1b148ef86babb610 |
| SHA512 | 04a1dfdb8ee2f5fefa101d5e3ff36e87659fd774e96aa8c5941d3353ccc268a125822cf01533c74839e5f1c54725da9cc437d3d69b88e5bf3f99caccd4d75961 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 76a164df5c9498bf267c24c7a5cd691b |
| SHA1 | 759683cc4516e7cccc71c5252c13e63b81ea2c86 |
| SHA256 | 8bcc091f5483130985b1600f23abb2796b137038e8bcd9edbee95f9e0dd3cb2f |
| SHA512 | c04f17a2da2627bb2d5e574f929abecd6bdb1b99da007ad99021f2de3eeb85e92011f8e5d1ff7ed0856b6118b10f66ccfb41aa3e418b5e42d5440f800a92d805 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 23f044b0dad9c9686a234216afc50905 |
| SHA1 | 2d8c6efb7e047285bf4b7a198fe15d5916895ee5 |
| SHA256 | 723313a9d00175cffa78697e051d578666e1d740e8b8bbce8fc38022e4f02253 |
| SHA512 | 09d6e0907386d4fbe4086d5e9dc1c8f0aca874b91fa13fdba0a8f87171f30bb42bd9e3ddb36bb365cec3020080c378f2f4637842c347522487851c68ba551694 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | a6245269783e319a34725b3fb57104bb |
| SHA1 | 98d4421b0b6ce7dca02f67288c75ec70977eb2db |
| SHA256 | 60ebb63b53eb59f008d911f5cb1e24bc92a9cbb95e82b298c6d592304e713352 |
| SHA512 | 08d66eaabc79254bb3d79ea93a60db160d45231a333fd6ca9e44672c2685f9b5079a0077eac9a517bf68c65b1e0410f34f4f3d3c8e76df0faf6f7ca5e7fe7d15 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\ec5ea768045d5c65_0
| MD5 | 2349abc8df4a74230052a955255a3d15 |
| SHA1 | 07b44d15f02e9249cc29e95b382544e78fe54b6c |
| SHA256 | b514c250889fccc5cd3738c0091e8bd1d08dba58b82fa9e26602eae4de2c12e2 |
| SHA512 | 991f17f16d5d53bfd56b52764155c982910dca690c449548f8f0402e9b07bf0afd1264a185dc654414c1f2d990483e340a83f005ac0f83e8f4d8e3935c725279 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\8664934edb8af2b8_0
| MD5 | ad3c804aa22d31ba3b8d1a557501fd0a |
| SHA1 | 2234bd4b3398cadf7ce820022def0c4c7694fe75 |
| SHA256 | d7a03e4437d358e1f6d3116783806e4a9bdf39824cadb95d15f73853381c83c7 |
| SHA512 | 4fd51629719e4ff66355af6729d0e75a360eebe960375c86efaecb94d398b6be3e32c29f5fe89ded18f0f2e4f3d255fe0743b07b2ddb431f96d5c50c5b256381 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\636455be48bb53da_0
| MD5 | db40c4e847d2e88ae88b51800d8ca103 |
| SHA1 | 29863af0c13f5bc28476dc505bcc5bc18aa85158 |
| SHA256 | 4195d98d50ff8d1e34c5790e04a65d2e0fde709558f9e0b2a0a716107bbc95aa |
| SHA512 | 5c72aaaecad2378a6158aa6d32955437131d471fb4851c4c22496b41863e0d3d640a2e593ef6688aba23dd167877689d9820f8e50c5f592183a85c723c4016fd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\d628bace90128654_0
| MD5 | 082a60ba4fbf7389b3cd70be124cd315 |
| SHA1 | fcacae2f558df4ebff168eaf5a6ad3863b001d1f |
| SHA256 | bf6cc65ebeb38134f78ba3aa5e6ef4de84ee6bb53bdfc38f3a5922c910645cd2 |
| SHA512 | 0b061e66df0e4216fc20ba677c24b3f4e51c1558b9e66c8ac4ccf9bd37225b4a44aeb2160f5e1fddba44dc161ef0e62c757c33f1924f3833bae04986095a9cd7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache
| MD5 | 69ff01fdc1efbe9f678e47ad86174fb1 |
| SHA1 | 433a44ea277624b358693faa494488ec476a3662 |
| SHA256 | b10a020ea33de4c949cdcfc248f7441691aaf99a481094fb616cb49e20e9906f |
| SHA512 | a27ae04a8e0ef8fd97fa6809a573f60a42d20f34030020419b7d7dc0f6f2a090d8fb4e331704931bff3443a0a3335cbd50c012505ae0d8e9490d0ef7b11a747f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Module Info Cache~RFe5e2549.TMP
| MD5 | cbce562b5957480110679ab3e976c2de |
| SHA1 | c76544f8b06a06b0819b35e68af247f85cf2251b |
| SHA256 | c5373516ea3203763ef83d2c0ad658d7c192978cd65896732fb82552086175fc |
| SHA512 | 0c9af1cf352b6ecff25c87a8d61619ce9eb68f3617dfcabe7c615a9d606755fd61b7e16183d833fdd59eb2a3b719d7880ada70de615f5e42f45a495902e2e1fe |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 39b6ed695c0abcbd7549ce0773c4df0b |
| SHA1 | ad303b3bb55b244fff15131f2a04c1c5ec548fd2 |
| SHA256 | 10769b63d2fd024a9fdda9642925dfba74f1c0987185415dfd1053e4cfbcb684 |
| SHA512 | 7b68e657844294ef547571fc5f8b3c144b0f3189affe303633b47d2db63fa17ca2184604ec1e1b5c44451e45dca56e96b336da5ddcf6b41b0f898bc1df103d64 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 55a2f9f4551b11fe0720d1cd01e0bcb2 |
| SHA1 | d28caf6774c6dca6bc1fe8e7b11f108e29fcdfb5 |
| SHA256 | 75056f06d1b523f4065168a7bf813fed454f8db1cd56d09ddebca0b9d95f256d |
| SHA512 | b24c4fb12cda4441e4668443c9aec42a3cc2b9da10e195524c9ba5f1aba3d7ffb33160dc1037148ef700c0000d45314a308f83b0b5b83386ea1a0e0f815b3858 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
| MD5 | ddb2df82c28b9b3dd7518b70d26350b7 |
| SHA1 | 1b1408ee9a8b9ddf1782ce308a3ee363ce3e57b7 |
| SHA256 | 5cf5f56d91684b290c5a7c6ab7d68e20a9c775160d4b7cd94ac3de3446ea377d |
| SHA512 | b865d7489809f1413c70fd403d30b900efc467fc71c50b2a1f6dbbc49532bf4f0d04b88441d1dca596b62a0862af2bec1be1b2cdf9e5757302e846be0433cf38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | dd01ade8ac539cd70e5c898a8796912a |
| SHA1 | 3c9b9b4f89c7769a630e780f2cec92de90a2cd9e |
| SHA256 | 9587f728f10f36fe1487e831c81afd900cf863a3ef35fce1540e303ae9f9fd1b |
| SHA512 | 71c012fd688047e55187e5b2b218b14f9e46d0902b3d7326b3ac6f799341f440317e82b13c4195094538e12a5a2bf03bf6e2f359721aaf28b9eea433633298e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 36e267ddb68630e0c5d6d823c4e9a2c0 |
| SHA1 | 4ea33a83a8d817575be0ae2bf1d53fc484b7752c |
| SHA256 | 52102e8e86cf7556fa005b46ccaa9497942ee55fe8cbbb3272f05eda276dad27 |
| SHA512 | d5b1ca61f38e2aaa30af17ce43a861348b70486f29a72a3ebe71cf9e991a894cb7895d9b551045802a0d2e3957a3fbb157b1d9cdca32e9f9c4a861f54454ea13 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 85a5196500063f4406ec2b617e9b8137 |
| SHA1 | 459bb16089f0dcd6fd4b5cafbd7b6a73d46c3d44 |
| SHA256 | d9f631929342deb88e7b010e207d6ce97f879650d10c948c4fcc3fe44901fdfd |
| SHA512 | 2eb0895dc1722de06a201d911b268ea0007a535050844b2a6b3dce4ade28197a52d140484e1243518a71de3df6994d93b7f7313c61370c636f640e4fee4846bd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 555ead54eb718bc00ca0bc3cadc108d2 |
| SHA1 | 0e5c9dcec6e8a0d4bb968843ad705dbcaf0a667d |
| SHA256 | 31ff8987124b59cbb39f67af2cbe071f27e1141b9ed564c20c41134dd0259f70 |
| SHA512 | dae5b3602f39169d63e1b9d16b9422adff469977d2c273eed6ffae01172af316f18dd73ebb41684592057f3ede5e14dee98fdf5193ff3f8f78903eddc546593f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\9025ec8d-3f97-4eca-808b-9b76ba1bd7e9.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1ec0afb4b7ff17ac80cafbb965349141 |
| SHA1 | b1cd47f92bf6f675d702d8b55eea2311b7d7ba9b |
| SHA256 | 928e5316ab223c4fd37172788321ca352cd2d95241bfbc3ab9ed0f6b0783dd12 |
| SHA512 | e4085069b9592cd5e8aec000191788120b43ab67ea4b6caa3fc0ad5f1d5652834f60ed43801b6595aca02137829f804148176c87fd72d5d1f63ef1483c72cb1f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | aefd77f47fb84fae5ea194496b44c67a |
| SHA1 | dcfbb6a5b8d05662c4858664f81693bb7f803b82 |
| SHA256 | 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611 |
| SHA512 | b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b428cdfae1a19bfbfb159c5d2f001e90 |
| SHA1 | e2b46fa8060e81960daf94489c733c32771d43a2 |
| SHA256 | 45108ff870c898ef7a8d3163c0870a0bf6e790c975f0f944f31e9416f3f89e94 |
| SHA512 | 430f8e882f4e0849b1296ea41249e19306d499d21426e30dc87ce57b343e0118bd81d4e557dc22bef38244a1099dabd10cebfd0a94f9b15f8c1f0a0a691b1e1e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 122c8e7e91db3a26e13784d128a078a7 |
| SHA1 | eaf88a76c8ce84e82b9b777eaaa37cf18ae42c17 |
| SHA256 | a86ed2bb272fa97626a377f423ea302c6836beb19b982a91ec769f684880f01e |
| SHA512 | 339d29db9384dee1acebb7bc54f892bb63ce67f5cfbcfdb2deffda5023f9860266026f1ffbfb9bc9bb2c3e58b5782bd8e2836b80352e4fd2149282b704985985 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 8d2340b0f09300c8f2d55682855c839b |
| SHA1 | 3d7a83d7495cecee59452821b4115dac19e663cf |
| SHA256 | 4f072bdb481322462829810268dacbeefcba9eb332da46693bc7ee5f0d6942ad |
| SHA512 | e941b570e3c94a6b8c7dff17342d856bbf257c1909928dcd536a82a3a760d5d9b7fa921a6c16b12733e874277b2bfe86ae590b3f2f59865b487f6277aeeacb14 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9166563e034d4bc4298eed27bfd136ef |
| SHA1 | 4ab40f20042f867d481efd75f848931b01f02bf4 |
| SHA256 | a42c14d8ef0d7eb9cbe3648770d51bf22506ac49bdd8068ea5383f6af54510f6 |
| SHA512 | eabb243f493191c572cf51da28f61a5d2a1c8e017280bce8873e82786ede92df8c9416f99d42d5b4907a0eb9e159c47d6b291d5c58bebff22e0d114031583163 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e2afc24862c8126023d45b2ef9d77055 |
| SHA1 | 12a9d60b0353c524583d64c97a59bf5e2ae04de6 |
| SHA256 | a2ab7003e10f4423e229008f9f6178b4b7558d92eb974a49c1e2051fe6ec092f |
| SHA512 | ac59a029f92b3791759bc11bf20a5d1e6f91773e86e9a8bb66ff24df78a1dd5660aa6cbf859b2501b38e58a892c658224efbced78215af180f7c3663a33efa38 |
C:\Users\Admin\AppData\Roaming\Microsoft\Spelling\en-US\default.dic
| MD5 | f3b25701fe362ec84616a93a45ce9998 |
| SHA1 | d62636d8caec13f04e28442a0a6fa1afeb024bbb |
| SHA256 | b3d510ef04275ca8e698e5b3cbb0ece3949ef9252f0cdc839e9ee347409a2209 |
| SHA512 | 98c5f56f3de340690c139e58eb7dac111979f0d4dffe9c4b24ff849510f4b6ffa9fd608c0a3de9ac3c9fd2190f0efaf715309061490f9755a9bfdf1c54ca0d84 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 962eba6cc34b5bccb8658df1ecb6af22 |
| SHA1 | 6679b807f7bf60eb99e6f289eb6079dfac837440 |
| SHA256 | e458bebe47033920ee640a7f553ea843fbfd79a3c3f4f01ad04a60a82b6afa79 |
| SHA512 | 8d38e6471d4d46e694e55b7f890773393219680311a6e496d562f301342b2c56130c769971ba15e506bca8d904fab757542ac7ffe01eaeca2c78ca3f684e8e67 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 4d53b8a767b30f9eb08410bdc56897e2 |
| SHA1 | 5ccd4bcc7ee353e8141db689a3e08b36671eae4f |
| SHA256 | dd81248fa39fed2534dde070e702d29d6fce61bafec86bf1c39114b357683e6e |
| SHA512 | e0db37ac7c343dae5e12f044dfa467184599dd93ef10be789d65b698cbfc8f8a9b6b8ef4b0cee7ff812497f45fa4473d530b43f72da26f9a07c619235dc7250c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7951378ecc757006bc6379f72cf5e97c |
| SHA1 | 9e1d18355d1258ff708c9f561ebbb1b5a938d01c |
| SHA256 | 418152bcd02b97e2a4a97fa2fde590b9d1196a4300fec0a3db33ccad5bee1b85 |
| SHA512 | 4802f0f0aa763586115e29ad5107e46a7a94f9b18f60f421c3b6fe71f70c4af4be20ce81c73b9f7bae94224a3075ded2e6c2f8f2d3b6c0e79c3a10fc95be1048 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ce85e4faa410885c8ce5f50fffe5d9a6 |
| SHA1 | 0a23e9c1ca06d7dcf06e1c8c70e83746421b96ab |
| SHA256 | 1a1b40936c674981a9583d157dd50cd20d24c34ece9559fe19c96c5e8e549972 |
| SHA512 | 05df88e49091b1a7c749f8f6a10da8b3ca359f3cf14f5d02fb8df1ee6bfe43fcc9500c56c46c5eb6af99a45e69d3c73df54f7041046b0a94d609c566e2a6b291 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 06e74db3199057558315d6156933a2eb |
| SHA1 | 62c896f0f20020546d5108874d9d3e8d2cbae100 |
| SHA256 | c686d2f6e22c943d5ce2d265cf9317f2800472cba48920b63992a8aeaaad861d |
| SHA512 | 512e0897d277746726ab51bd19360d48fd1d9f384e9ebf9c1f5392b65eac3297f85b8dd73908d532604704c53eba1e2196964e3113f9823d016d90d19a000f61 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | fddce400df53ae7e0b7ae08d7cb73422 |
| SHA1 | 504dfe6ffbf88ab4fb5d6e8192d2ea640caf74d5 |
| SHA256 | 25dc46bf497c2c9fd4bb722d64a6f0e5ce78149dd720ed63652e866d67bf1a4a |
| SHA512 | fc1e1e597bb7d3c774363b66ca1a02ede03fba33cf2ceb55db900f02ae9b5ba1f4472ec4c6c56e83f3ccb026991c5f870948f34f86f383f31df2f7fddb13483f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 760bb49ffc350bbcaac503457eaf40de |
| SHA1 | eefa1ca02adf801e41c2ce25e865b8e61235788d |
| SHA256 | df6a96196d41a983dde66ab46994577541420f1bcd545b512e87f54479653b2f |
| SHA512 | d5f9624e82677c6ea6a7f4ac3901b0555cd7e64369e08fda2f93cfd5fddcba100a0c691518c1eb9894bdc2ae8284a316cfd984d3c6b7d0286b60c29f64465a96 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 9885cd65e8bde0c4ded0c8016fbaff9e |
| SHA1 | fb5862c20aafa966367da21ede99c5b428e3843f |
| SHA256 | c1d31b8861c408d0fb0a9ae4fc1e78a9ecc34788ef214d307967318ba7ffa12e |
| SHA512 | f4be6afa91df260d80d54864adfa4c2bae70f20657571207cdf560514c5b2ca0b17198b2a8d8c692441974304e69b38dfb1b686e0c3482b7da6dcb4c27e2e84b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | dac58d9beab3f4f70472711fd0ea929a |
| SHA1 | 5248b89b07ed5d0101b981c82167522dec4575fc |
| SHA256 | f141ddcc5ed13651819ddf1c23642439fe6781ba911ed35f8f2bbf4adf42bd7c |
| SHA512 | 84824201384fee93e4334b7c672cc63688ff8e6eed898181532e27023eec80004503f6e5329963d4149df30715e6e7805e25948ada9a88706653b1da59cd7ad3 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | cb7de029b225e1f4a35a8221f5350c06 |
| SHA1 | 8544f49639304a04adbcb329f7e456edbfa31349 |
| SHA256 | b53e6acddb977016efc6999b74ac03bc68ce95808253e522f70b2007cbe76a7f |
| SHA512 | 3ddb395294175e00159fdba96331b74402607511bcc9dbab11e7f89050e5d6b38a38fdb5e9f4115aaf90bd8798c8ce5962d00dffc0bcdad6b4acbef282a2dafd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f1
| MD5 | 53436aca8627a49f4deaaa44dc9e3c05 |
| SHA1 | 0bc0c675480d94ec7e8609dda6227f88c5d08d2c |
| SHA256 | 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1 |
| SHA512 | 6655e0426eb0c78a7cb4d4216a3af7a6edd50aba8c92316608b1f79b8fc15f895cba9314beb7a35400228786e2a78a33e8c03322da04e0da94c2f109241547e8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f2
| MD5 | f6c5f91182d258e81425b5814913051b |
| SHA1 | b82c9fa9215cc431995b0d5a6a74f44945a8c008 |
| SHA256 | 6978a3d3b264438b44353c188da1097721f8ae6bd6c42756f130de64b1034731 |
| SHA512 | 2cca8e44477ab360a5bd7ca0af4e12e54714577e9edab90f7e0fbf079e81e15229f7e08419dc7f839a2cb00129211cc837df2c5da97a346e7c8db9fa174f8da7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f7
| MD5 | baa80a18dd87df5735d95654441feed0 |
| SHA1 | e600bd34f9822eacbe76dccac24d70178a839d2c |
| SHA256 | cd12b1ca0960d19a282b891a804a3c21729d00ef26ea23b674e908465d4a691a |
| SHA512 | ba381c34f3be056d6d44debc209d97921c2bdd8e3af66a8a899e4ba2b67d163395789e32aae31ee80c7d0d0c35685c01d1e734ebcb7645ffa54a72f0729adab2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000f6
| MD5 | 1721006aa7e52dafddd68998f1ca9ac0 |
| SHA1 | 884e3081a1227cd1ed4ec63fb0a98bec572165ba |
| SHA256 | c16e012546b3d1ef206a1ecbbb7bf8b5dfd0c13cfeb3bdc8af8c11eaa9da8b84 |
| SHA512 | ff7bfd489dc8c5001eea8f823e5ec7abf134e8ad52ee9544a8f4c20800cb67a724ec157ca8f4c434a94262a8e07c3452b6ad994510b2b9118c78e2f53d75a493 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 88c73f9d3c2b97b549c9d9e7d5842b4b |
| SHA1 | cb36d0f86ec01b8bdddc3299ca6a677d784f92cc |
| SHA256 | a60ae9e607254fc8e2332d52407db01463dfaa88ed65ea0e5a296369527bfd5d |
| SHA512 | 3e296c9f5d358925b8b32001cd8976b57caadd351d8def194d7aee3ba4ccc5a94acbe2ec5f54a8730751d353223a857f878154429c63cc6754e4b2bf8fa10a78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 39b3edaedde7a91597dbfda8f90db77d |
| SHA1 | 062c2fe22c6342c5469c6f6b2b8d8ac3dc7944be |
| SHA256 | 6e44e05a896223e307a294ba6b3833494c39aebe94de31d0fab373c3ba56ed69 |
| SHA512 | 660e49af8b13f2bc3c8cf553cee7a6b005de66210ad739cfe7421efe5d6e488b2b25c15901f675d87f3337ff7cec8cc0e4add170f07ce8576af667b91d840b13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000cc
| MD5 | a799c5d90448b19e5bf1ef28fd43daa7 |
| SHA1 | d94342791e84cb4b6e3ad38978be1993cfbd53bb |
| SHA256 | 99c01f008221eb196d1d370e313b0cbca23ad9d7abfeb5070811e7d3364a2e81 |
| SHA512 | 39f6084479b4538e1d4eb886280c577f39eb4112c4c4b304d3cf40aa9988dacba46a728551d951992c1b2e3b22a360904e11e666b536cc0c946340695416aa80 |
C:\Users\Admin\Downloads\_Solvettube.com_Grand_Theft_Auto_San_Andreas.mp4.crdownload
| MD5 | a053bf8db2d01d294114e64a52ae824d |
| SHA1 | 1eb23eb90df61a40d308ea6e16ce4da5cca2f5ac |
| SHA256 | 51cb357afa3cdf91aa61822e50448726411a0e3123c772d41e7ac9e2f80f0fdb |
| SHA512 | e2b5d61b4b962dd1e9dcb1a318654adffb42affa6abf892653675b8e5c8ea4e86ee3bddb225620d31377c457404265cd471d697ac978504befc171f3c14881ca |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 60babd4af9c84dc87bc618edf75b262c |
| SHA1 | 83483037982068455d2b23cf5dbfaae0383b7682 |
| SHA256 | eff0f9b1e6fdf96feb3e7a14ac7914ccd846a4aab23935e352648c397789d09e |
| SHA512 | 3ca033753f097cdffe213aeb0cad647de5b6e6db118c188f8290c6508ed6db8daaaca466df27d9e8f2260a6bc9184598de68e30ec791aec6584902bb7bab7340 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | fdedb13e3a894e3e57250bb0d8d23de9 |
| SHA1 | 6bf41e327378969d2fa9570475713faa04575436 |
| SHA256 | e7c62c6af811493eed276e882f47ea78883f7abe40572d8ba234c0b19c1b66fc |
| SHA512 | 3fd6554b81887118553e985d7399139b0f21fa34e7c81e950f9fb2f426a490d56001fb3854b4655ce30b9e864463fa59d922e31a4a03fa2a579905e376852b33 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3e1196b55a1e9742600ddad9f474ee3c |
| SHA1 | c60d8f648e4d2cef13661ca3cccdc0d0efd16f01 |
| SHA256 | 70d3590ea44f502befb064eb9d1da7899a14c532ce57c0cb87307739646f2b81 |
| SHA512 | 058bfb7141fce8f60fff33055a3e2e7950ff881c5e910dfc72152c21ae5b0b2333105c7b2aac0334d1368bd74cac1769fcdce3e3dd2bf8f57a0c6917067c18c6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 13dcb81243439315106c00415e065757 |
| SHA1 | 8225388df708893515e31453d4556394b4be4a95 |
| SHA256 | 2cb975305c54d0cb98751d71934b49b822979a0ba6a6cb7a3b8199fc13ec10e6 |
| SHA512 | 48b8f5697f21a64f4b4eab366773ef032647e43d53ae108323b7d141114c3a942ef6c9412f73cbfae475653cdaed02ec4527863bfb0242a20f845a9d888a431c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 97e4799bc7a5e10921e218d96cff236c |
| SHA1 | 7a2124bb2193d6000832e0d41f363d6b0287a0af |
| SHA256 | 4a451425ce49e808e294739035425a3725efd96cb2f4ecd7c4667f84ee2d31d7 |
| SHA512 | b8b3594406e210e1c49ebab6e382eafd469190d47f1ffba852a16a654bf4662b6c04bc6a6d7aad1848f3455247f02f3a6e62334f42907e360924d92751ed6732 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 18f6cc30824ed3319db6ca8cffc5fdf7 |
| SHA1 | bc66dd0f7a05923177030f9c8850d1ede773444c |
| SHA256 | 1036c6dcb951175e0a29a8b8bacf99820c8d0d5b3d6eccf4b8048bd418adcef8 |
| SHA512 | 07799c8ecda12a19e907632e65a94315b4b7c154eea273f3f14ac4371b506f926fa5cc78cdac0de0b4872b01a94c8ee6a88d9dc63fbd5912ba209fe5e1558093 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 60841cea4f60386c084e16d9483216b2 |
| SHA1 | 58b3f813933a0285d4302a1b2d6e766eb5ff490b |
| SHA256 | 2669e7d520c0cce9975ccce1adebd498f4d8386a251027632479e48079a2a519 |
| SHA512 | e16a7493409c4daf59ab413fedb5e6b053db2c828da278f2459e9d86285e6c891b40ca2e0def7b71b3ca62ae98e25beda27bea58655693eb65db1579096be59d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2b13d5ba5989da1b8a5af655732ed710 |
| SHA1 | 2fcb9b378ff186ec30db71dc2301b89782da6896 |
| SHA256 | ffc07fdb19988292256929f55618fbf0207cc8bab9b845488af5527baccdb627 |
| SHA512 | 3358ae460b5254d2ee94ef89052cd7c961c83022b2fdea38f1fe92c06de2214c806509957c4f887514a3fc4ba2e62ab1dc1602b212738bf5ab5eb551f0147950 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000fc
| MD5 | f31f7f11c53ffc113225a1419b910f91 |
| SHA1 | 6b1e94f317f8ae03396d8f3b58ed7805f38a22b4 |
| SHA256 | a0432341518d74e3bcb7c4c18d513ca9c0b0679012fe329d60c3744da3ec3449 |
| SHA512 | 8c01cf17a45c8e620b16afd0296889beda3d08571b44797b0cdcb43b4fcdaf5f6cababa9043ba7836222350d1683c12a8afccbcfb3aa41003779b98a2b2eeeea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000ff
| MD5 | e966b0d0e44eae6b2455da381d106cd8 |
| SHA1 | 15cf617cd786a12398c427b4f3778b69a86b6887 |
| SHA256 | 901b7ff2d6c83d3a69f6b607a50e7801f97dcdf7487335c8883ad6e7c1d0c979 |
| SHA512 | 4db4542d24c414d07723028f9c2fb255afe8838941d717ca29791bb9988156beffeb36db7811d07b9e5b07bca7218bd299ec0e1cc68c5b398da6c9ec51ba0eae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 04349839fcdebd1b594f096c027f5019 |
| SHA1 | 8d5704af69f40afaacc1ff6f3dc3b13742435849 |
| SHA256 | d899f5846e98e22115a89c3a3abf44118843d35424081d4e49a9ea5ef7c247b1 |
| SHA512 | 8f2e1afc71e0c80ddc82239d9bdc4e8bcff1359c050a5c2db2e435b5cbf0c7d638bb03ecdf30da1b136baf6e46f4fddb3b7a66e68d149f98111fa0d5b88a48a6 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | e7901e777e460eef1d668b6cb3de11c8 |
| SHA1 | 90d1c4694b4e920fd8bd88be56ae667a72f549b8 |
| SHA256 | aff4738de1369ec145ecd8a17ea60e76066b0cfe6836cb4685a53474600687ba |
| SHA512 | 111fd469d736c3d4e085c408c1aaf9855359ebe212a1fcf0ba6806f9671aecec1859d266dd7ad23e46dba52352c1d0a165cdb8a287440200fa31c2f8bbba34f3 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 2f931a110201403ec1723c999100f282 |
| SHA1 | 16ddd77a365b906af487934a740d252c41dce90c |
| SHA256 | 36f05fc960ea02d47eebe7de79255b7d1a1da0a524da7e7a9678c244d0530a07 |
| SHA512 | f4362b36c1fba41fff93398c72969febe9a28d7b7bf3b5b438eb372d8f220b6a9a74b307443fa16048eb952bf7c3dab042e17dca189e7f57e4a191d4bd1f4287 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | cbbffe6c1c437b145e38c5a51ddddd54 |
| SHA1 | 87d5446a804afeb8839018ebcf6644dbc2105547 |
| SHA256 | 23acb5a57023df2d9a14272db192d7c7cde0e0b8cb19d3e93c675d8903789b85 |
| SHA512 | e8663ba3308025c66eb48fd71351ca1dbb1d1669b35bdd2a3dab7c7a66cdcc155d9973e412e26c9d98e7fee7c1a0eb671f2233623ff397042045bb2b95fd8d94 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000092
| MD5 | 3051c1e179d84292d3f84a1a0a112c80 |
| SHA1 | c11a63236373abfe574f2935a0e7024688b71ccb |
| SHA256 | 992cbdc768319cbd64c1ec740134deccbb990d29d7dccd5ecd5c49672fa98ea3 |
| SHA512 | df64e0f8c59b50bcffb523b6eab8fabf5f0c5c3d1abbfc6aa4831b4f6ce008320c66121dcedd124533867a9d5de83c424c5e9390bf0a95c8e641af6de74dabff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000093
| MD5 | 68f0a51fa86985999964ee43de12cdd5 |
| SHA1 | bbfc7666be00c560b7394fa0b82b864237a99d8c |
| SHA256 | f230c691e1525fac0191e2f4a1db36046306eb7d19808b7bf8227b7ed75e5a0f |
| SHA512 | 3049b9bd4160bfa702f2e2b6c1714c960d2c422e3481d3b6dd7006e65aa5075eed1dc9b8a2337e0501e9a7780a38718d298b2415cf30ec9e115a9360df5fa2a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | c4db6412270d16bd00c3b76ffa76fded |
| SHA1 | bc56fcdc9ee58dbf11296fdb913fc86666c328af |
| SHA256 | 0b14d64a769f0a94f02569c14f9d7b48255abdc6642ab7f2d18fc1233723f597 |
| SHA512 | 87df900110f7515ef369916f1cb7f68a418676d41a519658781218d5f5330e35b61a96fdb3b299925f2a48de1943d1706a501e1cd13d5fceaea14e3969ded94c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000fd
| MD5 | 51b23726dd367bb2bdd396e5d26b5c85 |
| SHA1 | b4f7f397b955084384eb67a760c78b2ac964f508 |
| SHA256 | 4be4f7c0b4e925c23385c5cc2146f63f0ba77de6e199318c68ae7fbff5d19061 |
| SHA512 | bbaa8ba422e21a7a1d574c220b7191b369a570d90ece1a1c64ab412107e9e0cbc17daca87d092c13594cb7a11520ff887f9a0f718c86205c132abefe35af3ce5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | dceca3a9ade69942f053d5804483ff9b |
| SHA1 | 87a5e3a4d8274bf7998f34e9dd4ae651cba48e31 |
| SHA256 | cbf5761fbc19ac555c1a78e6f6b8e66e1bc30c163864fe4e3d9829ca28e0c8ae |
| SHA512 | cb3114ee925726fc62aca59b007190aa44c249bb6d964017254b96872deb8149e34fc3adcfd688e0cf51ef111a358b55c008ea59d8da15a42c198302d9883c29 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\388da9b5ffc67954_0
| MD5 | 670f9f3ff6724a3ad16006fd336cb590 |
| SHA1 | ad243af58be1a49c8ffb193377b065a31d049246 |
| SHA256 | c17e28aecd5495a973b8b7ac4e42c253007a1a98260801a61e64a913f2ec2ff9 |
| SHA512 | 241d9d8e3a18bfd03f6ef28d5a89a2fae05f4b4eb3398d8c5394e211c83cbddd7f8b0ba155f462a7bde39ef8d0d6ba0284d4a4bf069f230a3961816495cb0ad4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e80b93b93dcaa889_0
| MD5 | 89473ae817d8c73c2c1f501375779270 |
| SHA1 | 143276b21dd6c76a64a3020e1945b6f3bee14556 |
| SHA256 | ba2a44415e680571582786086c46f73e55d9078ca6d14d0901af7d8f951ccaf4 |
| SHA512 | 45927f72d1811483d172bf72ba24026a1f6f85c6a71e871db242528807e447d8c04615eac1342e187ee907050101d502e4c08fe3a7afd176912701a732aaa64b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f5984af99b2c3420ff93eb0604675b56 |
| SHA1 | 584d9d2df8a7b94ecd038a577995d2995686f661 |
| SHA256 | 2b9e2a0e1bb66107273b8d81329e610b3ae7451367183ef1bfeacc8bde8722c3 |
| SHA512 | 2c6df5b70a6fa9aaf08ebf4141006612f435958db93d82b3d979cd8baade23b7c2ab97d95f385897850447f31ad1326549732b79af58e64316f222bc74b51f05 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | d950fd19d4f875544f2c2324caf89731 |
| SHA1 | 9cd4fb7cb0341054695307f799b146f8291644e8 |
| SHA256 | bafdbe022c46c21f18bab1ec894d6ea58dd2a42de12d4347e2a61d6750cc7228 |
| SHA512 | 61328ce2c0f2d667788a4ff481e22f61226ba5734962b9e5603a07aa5fa94de728e01a9d8c8b48b76d523ac5ad5ccc8a9153e49ab16164671037f368c6257f80 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000fe
| MD5 | 0647fd6c5438121aff1a6fcaf7071660 |
| SHA1 | 0a1b0ec51e5d7a40044682c6f2e6df28d78bcfa8 |
| SHA256 | 7a295fad36c2a919a04971921638e3f7852be7dbd4678302a35de0b607ca6b1b |
| SHA512 | 5979318d541f527d68b7bba2fe0972074fc124892a149894ff7c988acd4127389740f015ab6dc58c702bd41f9bb8d6dd77c572199348f9518019bde0669e8801 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000104
| MD5 | 53e62619f99eb9330f9faf3147cb5265 |
| SHA1 | 39889b8cd50a912ec58bf472a6a4e605aa7e3af0 |
| SHA256 | a28ddf10b01b4451516b656b3f607d1e48df6f9f9b198ed173cfcb21855aa877 |
| SHA512 | 0774cda7842adf68b4805686941af3fa53d86bf1319bba6af0c6d48e9c70efcc5e920b795398e56e79ba90ac1087600c36c8f30b940b509ac931b24f64ca7e38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000103
| MD5 | 5fcb10e80a3262ea97400efe02d3a348 |
| SHA1 | 034f9b525991f885f71c6551c8f77221f951fc04 |
| SHA256 | 974b590b45b504ffcfed9159fc03cb045137f8a9de0bd953f95b90f270519cb2 |
| SHA512 | 61cd39f931082528f5196c9d81bf72a9da3b013c3da4ebb9da9de5eeb544274c0b50bcde802c641054ebdecede5dadffb5340606450201da39e8e57f010f2c40 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000102
| MD5 | 6f0f9c7427dcfb7e0d82cafa00398df1 |
| SHA1 | 922b922cceba2ece2901c4d42bdf48215fdc7fdc |
| SHA256 | c906dc429319779d01f6ea048c60f95d63eeee02f3a5c616d372faca49458eae |
| SHA512 | 5a60fdeceaa2dde9ea823ec5bd2ff533be78cf1784a25c57178abf8ecc6feaa1cf15be355516dbfb865586534cd9535ee9618d41743359a18dbcaef86b3f2d05 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000101
| MD5 | b39816a73db22ffe385c96bb735168c8 |
| SHA1 | c29645e4c825cb2fd90690d9ed5d0072947800c4 |
| SHA256 | 2fae61734e517aa983ffa706fe29d1c1dacbb1578c11de6c9fc0b1d20a658f71 |
| SHA512 | adee86ddb0bd12e7cc67dcdba7a79a12de9aa098318f76310d9f42ea5608a76c71b10352c2e1d56eefc462b0bbbf3f4742a690a7f4ce95961f91dc22b8d6d102 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000100
| MD5 | 5927abac1385e7bc96b851b5640b1193 |
| SHA1 | 40cb80b81a1cb3df448518db83531597d6cfb8db |
| SHA256 | 65299c9e2f2f0fc9d9fa57d2817bff059ba3ba0b843bbe0192a9057173c47889 |
| SHA512 | be962e7683fb83628073dfc09215d6f50be8a13b1a76768ad79ce8dcde45f532f8c93e922fd2a86a4ba0187a10a2e50712247a4f295c5af390036bf1e278bb94 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00010a
| MD5 | 695ac2514207cf91ed0b3f6a84bac71d |
| SHA1 | 2ced1d09c6c1a69b6a7d93d9be180b206e6633d2 |
| SHA256 | ecc5ef3a0782ff27fea77af7490ec484a73908e309449768b96161d2655bd7e8 |
| SHA512 | 7c7ba6fdb2e4690385345b46ce2dd27e1cfcd2cfee85e4c9f168b3e9a4332450a8640e04ebe07891d22e507dd0b6003051057e806d5395f40b6a95454a93b9e0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000109
| MD5 | 1e77b95d15cd5684283da5acf89a320e |
| SHA1 | c5f8ab5ea0d565e36f49f33d86fdf156e68a0fcf |
| SHA256 | 36e11cd79defe5a0637c6f47019e050b69e8df463689c465e4505faa08680ea8 |
| SHA512 | e82d4861b21eb38a5b380cc56b206923f66a7500606e9bcb8b3a6cbac7c3b60c859d628f73383e85970b7ba32d9c4598c15783d47a0306f067e54766fde3dd22 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000105
| MD5 | a377d5193bfe5d721edbead9a67b2e2b |
| SHA1 | 1642708d7fedb7eea46f7c523188bfc3decafe8e |
| SHA256 | ea6e4117adaea08daf271201f445c64df8cf9826ec50a44fd565f006208879c6 |
| SHA512 | a199b50aa26ca1aa5fb5aa9833b3dc60cd0117fbaa4b1742740405eee63cf61db807394730dc29c38e6fd1a9200c41e39d8c4b40abd4844654810da67086c8e6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000108
| MD5 | 257092ac88dd1b0761455edab96ce6bc |
| SHA1 | 740c5d1b4363241842acc188ac0860ef47fc8e8e |
| SHA256 | daa12537929bd76f2f869a7427fb7290fe94202182db164ca6de123381988483 |
| SHA512 | 5f12af6e38183ea0dcc71d8c6adaa6346b9d36c4cfd90b6a4c7b56fe47b52572335eab2497438352b10fd2129e0993c708fc7cc8a49745ff86392f766f34b35d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000106
| MD5 | e9bed9dfbe96569b4b848e2767732f55 |
| SHA1 | a11846b2d6a78e657009a93639e4c9e8a6e462f0 |
| SHA256 | 874d1a6f540733d7f3272ae90b88a72837ce4b4c28c2746b4e2e478f49cc9107 |
| SHA512 | 2e7147af48c4c58f25334d7a75f2087ce6cbafca51febb6bb84dbbf05df90181eed524a1da089456ddc65fd8daada4b1219e8cd291581aa1b17a8bc599dd0bb5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000107
| MD5 | 9e1c15543198f5c8125c3deaa8b4a212 |
| SHA1 | 86fb6db4aa470b88317aefadd1f7bcb0cd1eaffc |
| SHA256 | de95c6de55e5943c0ce5f26c523f8f63058229e0df75276354af3153e3fda35b |
| SHA512 | 299d9bd0258624114eff12992d6500ced5ae6755da08370c1cd110842593f1b179148e38db7227899a203d1dbde2f9cd3fd9afca94e83d64b9a76092179d1c88 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 57e161cd3dc0e648da999663f0dcbcff |
| SHA1 | 36475835ffbd4b66bd90af49a4bd69b4402b6b92 |
| SHA256 | 3db061a7522ab56ab3d15c123549eea36e24e420111eb7191641a32477ecaf6b |
| SHA512 | 8deed29b3e51e78e6e7b2f5c4df7139d7015639e5a157be53e461dbd737ffb63e68209d523a9a06727b74c3eefdd90b0b9775e76fa5d44b09719509ef3098978 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b8a5269e6a454b7ecd35dd879da06e3d |
| SHA1 | 8f91963ecc4f5ef9e51b6a128b2aa64954efd582 |
| SHA256 | e583fba3674779da4882d3cbf48d48e17a127822e8300a623e12043485975253 |
| SHA512 | 4dd6621c18363d02898cd0fed6168be21d7259af9cdb0ee2b349f0d09a03da1a1abcfcc12387f5ae39e54f15e493972d35b719e2dc4823487c4994f103bc3835 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 935e43dd87a0c5a44526dfc09528e89b |
| SHA1 | e94b374f6571afdac6e78a0ecfd2218a3119e5d4 |
| SHA256 | dcad59b30ace54713d03213299ff680b40c0f13edeacc5989f615b05148e395d |
| SHA512 | 107266476ab8177b0f1f26ed3b685369e10ef4c9b07561e5a9ad2db7781647dc01b8a7e461924d8cb78ff3739adf9881205c7a0dfd64419c62b9fb8597a734a6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 19c556b5bf25b1aa13b0707e55235e91 |
| SHA1 | ea6ab73b0091531c98f88758fb075eb791928a18 |
| SHA256 | a8961045fb2e931ce6d3857fe178451de1c53ff15a6484a52fb733568871d684 |
| SHA512 | eb527674a9a58df2744fb3eaaa6a8ad8c5bf2846d975db599d28c44da1c2fe5261082424c2ce89845ba7b48f70c43610d4cdaac4783c8e236ac27c19772d86eb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 0259df47fd789665ffe16bb7690b07a2 |
| SHA1 | 59c7111f7482de9d41bd97c79a7fbc7e324bd426 |
| SHA256 | cae7e605ae87aa1ea2aad36cb0ad986e846425960e829bdd7fa6db4b40b53ec7 |
| SHA512 | 3c43fe2b8178bb2e9b2c9b5b8bbd59321bf5b610283bd651d84dfee7fe537bec6d71ec940682f16911cbdeec738073411faa8f08b1d7639eb2a91f4a9fc90dd5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | f5928249e2fc0b3e68246ea20334431c |
| SHA1 | b64ff92f1ac517466a07e7c213daa6fbe49ea3f6 |
| SHA256 | 678b65d400c5c9458f74ab99dc570d756254019bace572eac0e98b429b06a500 |
| SHA512 | e0be0e8aef58b2fe24630116bb2a2083c84f387c526093c65ea022bc7484a798350ed15377ab66b9c2308250a4dd127ed1e5ca5f47b145c5913a315897785f6f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 29c9b3ab22eca11bb5f6194cddff7c57 |
| SHA1 | e99f18866143e05a3d17b57b83293dda5fdcd4e4 |
| SHA256 | e54ffd45ed0c09d1f36713c39c19d04a62c68850f7d14a781355d24065de2de9 |
| SHA512 | 555a670c2392123dddd3d3d28c69e73bf212a7c4a458c6d2dccee6c2a40f080bd89c712082372bafd3a617fda80aae1157d40cd6c1471b46df2102a34cc6bf72 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 11a1e932c9401ac06e5a5b9a5f065326 |
| SHA1 | 1b14f5a379d3ff637e93ecb74008abb8c5398da6 |
| SHA256 | 63c2d450762b33ef236e570ba1cc7c8199cde8e02dca4d99e185007f9da0e567 |
| SHA512 | 47a9d7a47ae3591e6829426823d51768ed4a0d8e2225ed8c593fccadd405f6b2bc199695d5125da31c31510133e305ef100334528c2e665fe1944df4bdd1663c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b815dca75bcdb5f12c776b6d482eaaf2 |
| SHA1 | 2001362440a221a7dbb195df92fb77a329dc648d |
| SHA256 | b928444dd8430a3c990cc9856d10a60afa140a79379f48ae5f1811a35eb5849f |
| SHA512 | 5d268dcf3fe2e25abc468f20009760a8664d872db5227939d6dd5c328ca3716bbb9a9ee757d19706f4ad2e7f5836849a59a64580385bdc836a026a002d43b751 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 246fe912a3cc4d277d0f58d76035a1b3 |
| SHA1 | bce93c0b281a0f0b35c9b030d464d668f4b87866 |
| SHA256 | a412be8e4ac43560fd525b20ef9db0596e37b3ba169a5e0bf7137e9e43278f43 |
| SHA512 | 2964561dea56839ab301804356b2774ca3537c274c4d47937f3faf68e3e9ae8b527d8c5c487cddd94d17c73d9ccb80f9270d982fd2404d16e80e26bf20bd62eb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\IndexedDB\https_uploadhaven.com_0.indexeddb.leveldb\LOG.old
| MD5 | b023be4160109b5f6a150bb8d9bb29d6 |
| SHA1 | e595a7eb95425de0ed55e03cb62dc8d1b30594ee |
| SHA256 | c991015cb1b10836a15751b8e032d019982aa867639c72e86316794778c397c4 |
| SHA512 | eb5fd6eb12807e9300c8fa7b154441ca7cc4a594db13e8a9ce2e0e4b446440d42c47b4fc4c908ee0a4bd682d14ca5a5ca4ad145db3cd6f11a05f3cdd91dfe6d2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 78b7d69f8241ff12928d269fc978c02b |
| SHA1 | 99829446295a81c6976a5861ed0befca81ede0da |
| SHA256 | 28ceb9e143be0a4940737470670c225b3643ecba95bede394a89999ca7d4fad4 |
| SHA512 | c4ac0abfad35dd02638935b0d8f059f48079336d4078b9b2c3bcf9b15176bf31fce39b0be288e1aab515498699bef03967bbe4042946ddeec894607886ebce31 |
C:\Users\Admin\Downloads\d0bde8b263194b91246e7607cc0b94f4.html
| MD5 | 35453e47a8dc976604c289c5eccb36e5 |
| SHA1 | e0d0fe0fcf582faf6a1e0d7293486ebc32666ca9 |
| SHA256 | 6ba5b5615782e5612a386bfeac91bc4583e9da7f47622d939740eabdc636f279 |
| SHA512 | 349c30da8b5eabdd29d9e65ddeff8ba9f83c85b36c07fc594b9685dcd7adc4df5e05c81bc76134cd854aed14c217f7941ac387d54961416ec6ec96df22f4ee26 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d26f0c9da9eaf6923d5398150bd740b2 |
| SHA1 | d969421bc6ca55672df3c2590a2b151563dc4759 |
| SHA256 | b7aea1e407bfacbb0ba897edd4a39edd962a87fdf87c1a659c94ab47b53ed2a8 |
| SHA512 | a76704a5b604cfaaaf22fa6fd1eb866e1c2dfdf7e6ad863ba7d34026ff30945e7d060c3945eea39f62cb10084d4a2fc2a981975ba8d9c8e8cd04013c1093f4fe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 5049da0a8504986c517a419a70ad5d62 |
| SHA1 | effac1fec534232d9f32399d0f492d63f9a1dbce |
| SHA256 | f6f2b452f291193af03ac30fb0940f3a33f0c0dad92107d081ecb930b15d369b |
| SHA512 | fbe9ffb902b3729feab44cd34888cc69d2b5d15646cb682cd6ec8eb826003095f7a3f2d74fdf6d738b2c05bc607f3db7479502026176b1ff341894d9ceec0760 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 0cbd1d4325060ceb9caa03e8e3143232 |
| SHA1 | e76af295d366891900863a71503df69894a88de4 |
| SHA256 | ece53002e6f40ba494dcb6b716102b0bc4df0157a9bfe5fe64b6f153c3028a48 |
| SHA512 | d12804f318d01c486a5179dcf80376afb6281bc5361ba1e747b65f2122015b0cb83ca83f322df5a34a80fa242d66be9c1eba54670aee03f007cd1ad82c351fe2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | cb7e36dbca28becb04e053328439d5f3 |
| SHA1 | ec2ae7294d5af498a69129eb70b00caab98f01cc |
| SHA256 | f449b54c146051b9df938092a9525cc7551fd4c1a94b8baef40e1a605600e94c |
| SHA512 | 6db924012f672bf98529a268b30ee54fbed81ae10e5bc7b0043ec27e5d0fb6ebc47f94b73e90de8bbe398423c36414b20e740212ab1b671d7c40448aeb01065a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 6e3f2fa51a3865aca404d403bbe6a1b5 |
| SHA1 | 94b2ee623d401f63168ab3dbccc9f8ed9677e600 |
| SHA256 | 637c20b32aa8732f321168f1cdb36f236f9a6428b0856ab1a3038fe8166626ff |
| SHA512 | 546317765f90a62f1fd923dfd9d8dbce106aed71082fab85faa2d2c2d667bc91e717db1db404ee60113bacfe9f41246c3e51ae1ab9df0e34da1bfc0ba74161a2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | dbd06913804dd355e84a432944f4751d |
| SHA1 | dfd99c9dd5bec27b44881a818ee7911cb4448b1c |
| SHA256 | 55180f177513da94207cdd88c0d84c6af522ecbbd4c405b09c410370d42fe2f2 |
| SHA512 | ece1f75c713a56c6d5f724430428a75cfde0afa69763c4a92f6edb07cdae0a6877285eb5f056854015ae31688ab2e38896882ee6fd27c7e5db68aac187e4ad8e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ae71a1b0a46d355ecff731e60fa5fb75 |
| SHA1 | 0fa0c47fae056e1a1743dcbed5f945b475d45eec |
| SHA256 | 7ee9ffbef13454835d2ccc87595942c13a702ebf43d15c0e2ebea6df9571b5a1 |
| SHA512 | cf3fd53bd503feed9ae57de3d4b5b9220abb3da46f427a51b8a0f677abf69ba3c6ef9e9d9931a96f3a549e299b5bbfdbc5aea221ed6954fd99cdabd028ea6be1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e4384637ddacf994_0
| MD5 | c6cce245f47828de03d0dd08b365c57c |
| SHA1 | d60bdeda4b106903afb868db4c7dec767a336c5c |
| SHA256 | f23e6a348c2a6f7b3b5bebfbd585ff15cadc61c85dcfbcd4eb03021c6cfd0cec |
| SHA512 | f7beae1f857390bba2a4a71490fdeb20a6a2fa0f4a18177699c30cfd55aef177130a279dad727d4f43517db3b70465fb19fb9413d2b00d16d8f4aed9c8a77f59 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\26a7bae82638801c_0
| MD5 | 06ff3d384feafe893478d566b210e614 |
| SHA1 | 395c34609a4af993f022e6bb75758a89a9b172bd |
| SHA256 | 42d194e924e05673994a7865595ec6ebc57e55fb00e66f9322d026dd1888bbad |
| SHA512 | 98e3d5fb1a14bf728ee07141f81ebf43879032c27acbaa055564c9ae275b118df35329ecb05c9fc6f4eeed3578ba00fe7250a4ed129ebc7a0b480bed8e4115f9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7e23bcf4dbf5c221_0
| MD5 | b0e70f57650808f60d59f602f45b60d5 |
| SHA1 | b1b966e52cd799a091849b5f05be2cabff878b6c |
| SHA256 | 464dbfcc32a3628b361d317930fbc32ecd4a2fedf13358b1991a8a7acc0c8185 |
| SHA512 | 926731d81bd2fb36b6511596327d87b1c845ca1a35e87e0099c30fb4d19610353416b3d53ff6fa999df1e55f028c8d9d31c90ae5ba2c98330fcfc168b61ac60d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\695c42f61090a800_0
| MD5 | 57ed407a44f3acc9a24db795411fbc79 |
| SHA1 | 93f26d79309a5767df86563046df427e106b1f6c |
| SHA256 | 9d6470c83b87258aee406c3d26e9b6909ecfd1881616108c786f53146c21d7af |
| SHA512 | fb338fbf279f95e4b35022d862cc1a700d783dcaa4fba7301b2e16ab8e5ae973e280af4c3e6b53b31f892c504171540c50b29f327d100c4c940c477be6332e39 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3f02c4494b1a18ff_0
| MD5 | b2a550c8982fec784aaf2868cccc764c |
| SHA1 | 4670fbe74016bd2276709cfe10bf18e4dd8646b7 |
| SHA256 | 45dd2d3bf99763e7941d3cfc52e81ff6710bf4af6f60eec728f60731f3dd43c5 |
| SHA512 | a95fb540945789e4590c86f9bb3646d273ea9bd8a6eaa35416c0417923b5441f1df73aa196ec73488353ae58322db6e6118cb502fd1775f7ad0af2de23a5e45c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8ee73a31bd0cce7d_0
| MD5 | df78342a30f14bb15607952ca445061a |
| SHA1 | bdb74e045810e88806de822bdec3cd1a1ea60d17 |
| SHA256 | de512f745ef67ac08acc8f3ae1ef5eae3bc7de32488ed683db4a4d730201d9bf |
| SHA512 | 9a8673e4b5cdbb3fbe99908cfd0993fb8ccbf0d9809dab8e159e81d2c3cf9d1b0125a21fbb5a224310edb89620cc89c37602e491e9cd6c4649af00a8cc637ba5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\0f3a18f9a65c7df9_0
| MD5 | 058097146d41cca691b976a5cc87092e |
| SHA1 | c6757df8bb430aa047945116e5bfc1ddd8d99e37 |
| SHA256 | d1e9686e00be59ff3ca361aae81f117b274235a959efecb0755a1e33758e8ae9 |
| SHA512 | 42e43992dec1c850095cb9ae840a461dcddaa5059561c176b5f9792fa6e9204eed958eee8dc75734d9aba28cab53fb8b891906b01dda95f61735d2160420dc92 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d7a29efad91a1117_0
| MD5 | 7c5edbe823695d34f9bd2f18a7c7808b |
| SHA1 | a1d046e984a5d4d65744dfa5cb12f4476fd7df8e |
| SHA256 | 02254b67047e523772595a2963ada253d4da90905ba0fb28406d832fd4b96d96 |
| SHA512 | 01982d91975164ae455ae2881f82dbe67189bb1684aa57de5cd9df9a309356677f405e75e67b8d7cca9196f3a9f3915c3c89bac6ee563aa38289354e68d7d09b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ceb88c56dd50d3e6_0
| MD5 | cf468b08c3d87274e6d884a3848d1b36 |
| SHA1 | 3d5e5b8bcc4a9629a7f7c90a86df0d0831e9b509 |
| SHA256 | 356adab857fcc28eb982a237ac86177bdb0efe8cc9bfa1cb1d7a12cbd74c1db5 |
| SHA512 | 134bf6b8cebe9e4eea9a50961cda50a644e55b3610d253de4ab3587dff0a13fe41dd2d1e0a84e33f3bcb9f5e321bbfac39e5fb16ca4b4e4cbfcbfb6aff895704 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\bfd9b5c29c5c8524_0
| MD5 | 43d38a9c19a2806bf203ee454b054562 |
| SHA1 | d7dd48dbbc4c2298cc1a14fcaced3ac005a297c3 |
| SHA256 | 6213c0424b3f68505c98fe5aa46e315c67a164e8e71810ac8c31f9d55249a6e8 |
| SHA512 | 4bfce576b0239d0223f06492d291261866e9c4dd04b2fa56c79ffddaba908f97e73dadcc4abc00d3176414272a5ddaee829a812d1a2080f031efb1211f8e4c4b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8e0fac44aa76f2d2_0
| MD5 | 09bb5575f339650762f18a93f15b9ae5 |
| SHA1 | 95cdea1d9aac100dd6d5ed5ee649f02030449b54 |
| SHA256 | 3e5c69e56dd2054400b3ed1e779937d34b2739c54089855002afa9f9375bbeea |
| SHA512 | 6b828322d133f1d739f564dde6ac0993bf7a80e5dd1a33a1627a39d49c243c1b48c29806613db3a601bc18b5dfc389f6ca095469a79dfbb6f0c476f624585ce2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3bd4f38d1e11ebc0_0
| MD5 | c7cea5a1992ba9bd6fbeda3b1ed0980f |
| SHA1 | b674c5fdf067248592fef8faa9a0af8f1d0cb242 |
| SHA256 | 2790f375b06d4757d1db48c7b6179d4fcfe6430d2cd7b7f05a94578409e687d0 |
| SHA512 | e9dfccd339f6e9f49b37d096414be85640c690f9f084f7bf3ce01ab2d0814353fe52d715d1d92bad5a6859f907d6782b961483a0bc6febf846c011f3836cabfb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\74b88724f60b0383_0
| MD5 | a1386314826d9722e8e8ee9c06791ec7 |
| SHA1 | 187ef004bb1749b8e0315ea144d6bcdc8e4c6dc1 |
| SHA256 | 4a5e93e734e0b5f123882a91727b39efc1d4aeee07aaed2ad4073418dbda63ae |
| SHA512 | 68fb129f6d76459fa8e3c5686243da164ac197ef7cb96025a5beb637be37e61d248d52bb4e160ee598ceafa4b6a70236b703037424b34453721331d3a1d5dce6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\45a16ff6d0d9ab5f_0
| MD5 | cf9e553af79a4a88cd64d8b88572f3d4 |
| SHA1 | d49cfa1edb458e8494beced2a3b1496dbc381190 |
| SHA256 | 682082644ab237941820bb809e50dc267379230956c7263aa045c71fbf38c676 |
| SHA512 | 29ff021e4c2932c5109be14f3df821e41e8b8564da3e24a7f99facb756d8d6e97414aa6daeecf08c5bf3463e8e3ab838d9b349d818bda1a5f723a494bff42726 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9412c8b664751f90_0
| MD5 | 4d3504b240076e1a5134b8b2e6641daf |
| SHA1 | 344ca7fe52f081bd1eccb9fb0e8e9b409f6b152b |
| SHA256 | 8c2334d72946d76e89917e82cd8ab09b8b3c365370ad91355192b82349f32551 |
| SHA512 | 285ab44909822a1ff88340eafb1094d86a83ae64ac21118fbd395c9974051828daf458adc4965e2190130efad36a3d5569945dc347acf4dc0e99d275eda20597 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f89251fac2b69325_0
| MD5 | b4ba77b966ac519c65c1a178c4994b7b |
| SHA1 | d2025e85267817c697c0c87cff9c34be8899ad1b |
| SHA256 | e64119d9d1ab420409523b3da27266d84de87d8f73a538fef19aaf8a43e842d1 |
| SHA512 | fa2f156ab66745af598bbb82b5f8cf94bcf68d7f37fd08e117c2463463dbdb4284e52022b4d0d74953e671ee0cf8780df007e18d0183218017d1f1ee5a1201bd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\53ac5abc87e80789_0
| MD5 | ca35debfd181f476b752157b76bb9f79 |
| SHA1 | 5efa6fdbaef45e58f4b415513d0efe4f6caa1ea3 |
| SHA256 | 81746a71febbf3041fc022e7430ca946f1d7a190427aa2bdb3bac5f85ed22600 |
| SHA512 | 01e9a0d106f3e017fb059cf417f530c9a7def2d47cab1819294a1f2579059b830402523a76af1b97081729ee9f52c5c0c49e1ab4fcf7b17967c597111d460910 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\c035c55e661cf4e0_0
| MD5 | b82e74317194d17d469c4e732e3b43a0 |
| SHA1 | 780e035d0e7d3064bcdb47429d0a5afe231bb544 |
| SHA256 | 56b1954f21a19153ffc69f72864b9e650740634a0b8e2ef71acecd99491633df |
| SHA512 | c84470626abfe1e46055b512a96d8a8ac25644aec099e415dccaecf80a6e03ca925eac8f55a21c8f29b2ace65ab0e96ff35fba430f6beb415a61c9b23a470a3b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\25c90b4fb1c6ef85_0
| MD5 | cee3b3de95846e5e87381e136165389a |
| SHA1 | 07b1a323fe76e94a43391bd530c35e7c6e8737bd |
| SHA256 | 56098c94ceefe4009c879b33f7b605f7e84190cabad826d8e365772fabe77520 |
| SHA512 | 54b0ca44002ec65e94517b040e069598e1f0f12347d7f8e1f03487df54d148ce335c5ead38a91508f91fe12d45f80494bff4c6b74709a81c5e27c8d11b7a2e52 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\eafdef011b18f148_0
| MD5 | d392dc8f8a7eb0c2a774f24bee28c76a |
| SHA1 | 193c9da114f044dda2873b8526b9649c9e02c572 |
| SHA256 | 2f1272b55df358d43219563ebe30f60a9bf23b8d162baffe18523c3b58c5d002 |
| SHA512 | d7069d375e5426e573a8cd90dad6dc4bb5d7230a0e75349576af0081d9bc2611f92ee4e8b14edf365fee9166485044781fecdcc3be04c8a1b641f08b1ad52f43 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\06450eb6a7b09545_0
| MD5 | 029cba29ffe7d35209e7f23ad7476bee |
| SHA1 | 33efc10fb8ec20df82750488c13b78385dfe3acc |
| SHA256 | 907a81c64e993379b2b66646700f1cf38131c2cf6dee3a3b7e50e498ae27586e |
| SHA512 | 3311c611a2576fc2f333ce8d9ec40e8e0831ad646a675d65826a4c048da0c2f244514845f62c7b49707d6955d1bb204661f9e0a89388ca2ca371234ffc36910d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e55f0a6d1b533c66_0
| MD5 | 7e1768b51f37ae62056bfdf3fae1d76d |
| SHA1 | 490e568b2d00802d95187534d4a7d81150971efa |
| SHA256 | a08557b049bbfa8b8bee005d5060c16f1f8f04f19ebf94b6f7c152d48aba001d |
| SHA512 | 9ca3828920ec60121b50726522266b988895af3e14684ef4d03ee92a794ae88d7fe6605cccc252db62e1d23fed2a562110634f8ea7fda636e51ed67298533c41 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f2e4bbad99a372cc_0
| MD5 | 96047098cfb2b3366fa55879b9202b14 |
| SHA1 | f827ac27b3dc344d22d3f27c33e9ac6f1b35acac |
| SHA256 | 92433e3d1ea46e0a5fa9f793e3e5ed35ba4374f1f06f867d3b86b103abca8a07 |
| SHA512 | 151d9fdb56b82525c4bf85ccc3b5ba72482406b1f209e9fea5857b4fe6c770e9325d1ca2b6b5c923afffbf97a7020c00ab821b77ce902e404e6240df5859bb8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a267b7c21d8b8c9c_0
| MD5 | 978776c7179fb4c9e26ac27a5caec8da |
| SHA1 | d29280d45e0e25cc43dba7a825c08c79ab7b85da |
| SHA256 | e21c21c2c190090ee9ed13197cf048fbc3a172c830009ce1440649c8cee90dd4 |
| SHA512 | 91dabcd6268bcf046a6eb9ddba86c0c8e9a08865e777ada42b7b03a7109e74a493ffab364413e3a2de2e92c1169d876cf2503636e7927b02bcee324c0679eaf7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\4ff5a0148ecbe9ce_0
| MD5 | b2b148bbba936a64c39138d388d72585 |
| SHA1 | aa3fead01de285cd1353b865d05c66aabd1cbb5d |
| SHA256 | 6aebdd1ff8bc32ed30a29fa2131da4893c82430d7054a62b80e5db6a12f7b2ab |
| SHA512 | d07b2e334c4af8be22dd7abe941767be5d67454282631cbdc55bfbbb77caf51e0e9f39f5205b885dd35579279a0cf38d3f9440060111fe900c73a7d677c7d653 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00013c
| MD5 | 71e9b9fecec99006776d8c944612bc4f |
| SHA1 | 0716023e0bf0ec3f2b9bc73f820ffc93a35dbec4 |
| SHA256 | f94dff0e84fe00c51324899f076f8a0e7e9ecf8d2003a2c700104b057f2ef8f0 |
| SHA512 | 92f7fa5585479407d02ae184fe10d93a9f39482f1e74bbb94b5fc8c3cee17a17bc0c6f7a97ac6e24d147cd69e8955b07afe03d15b23bc78f853fb8bdc4b46018 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d3dbb3008455b523_0
| MD5 | 24c35eebad190586221d3cc28f336ed0 |
| SHA1 | 5b0d1b3d5f3b1f5e9ce1719dddb0496043f29189 |
| SHA256 | 2692058afd834fe2bf6a6867b870653a12de754007baefe1a2dd92fccb0581fa |
| SHA512 | dfdf2941c56d7d9b217dfcc0c1127e779ae6175b415415f698da96c793abc1829403994ff37566da8850e5b39bfb106c334bcb3d17d4e715d952879b76792e2e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a00dd22ef7172fc5_0
| MD5 | dfd67da9a1a8d6b5698b3c97a9aaff18 |
| SHA1 | ff1eb730385c5ebd1bcca8115f6c815fe8775679 |
| SHA256 | f7d114e3b04e2922f177d27c69910e422ba35c0144bcbc67083763033b50c2f6 |
| SHA512 | 5c3190f971dfc3dca2783028e51f5480db412d030042c725577e62b3b0635df069fb8afe10bfb33087a3de544894130f59c8d182c23a21c3787406e788a400ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a09f6271ad0c4092_0
| MD5 | f68fd5e4ef6deca0c8334daa55c8f9a8 |
| SHA1 | 03bebd3bdf7ceebad1f46235c7c7cd8fd0b6afb3 |
| SHA256 | ce027d255aaaab97e996cf2500298c492d0cd81f58852ce0e38771a8e5fb026e |
| SHA512 | d6453e063b0a52b0e349dc32a8348779c0487e02841be7850d31c2d3b71c5294e43a959ad4e96af333f9a9cd6589f6228af73a97ceb2261b11a5e75420d8b8b9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9aee5cd509922cea_0
| MD5 | 168e9abebe36773418b858b3729b6b24 |
| SHA1 | eb89739efc977dd7e6f5bb2a0f6a2e292fa551cd |
| SHA256 | 68bce9301bc6247b55a5437f75d677e34450cd076d15bb83638e1d760ad52cf8 |
| SHA512 | f99c42b38f72c73364bbbe834cb7d1191dc9b314c4da9bc558a33149bd8e97621e56215809754448b4016298addf58e246f2ef0ff6d557d7eb9b13bef00783c4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ac9b40a0411376f7_0
| MD5 | 64733db053900b9fd56bdde0a1f14b1d |
| SHA1 | e0bfbf464bb1919789816132c9db4ed0247c1309 |
| SHA256 | 4ec12293c82c656df917b4f277fb1fe5c9141654fd2cd30046c6073e45612330 |
| SHA512 | 436866e8c53606b897124440c1b77fedc7d231eb98687413eac9a925ac495b4aeab257457136b321685cb7951b88ef214b14fdb1e5c480aa1f53c9b433496d32 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\54621936eea23565_0
| MD5 | 120f1e4246ae9a489b015438be6815dc |
| SHA1 | ba17bfa7a35ab8b948b6e3d404d0337ed00e6d9a |
| SHA256 | bb6d0957046a63b682d48555ad8b8bdbd5a5a508099f11cc542eb284e9f9c91d |
| SHA512 | 95c51712c83292b72afd5b112730f8f90464639c358fbc81633b2b26e661cd8ef91656d4b918c02014b34e198fd0124c9b4be6191371be501cdb0045f104bee2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\daca09b4eb185a45_0
| MD5 | 5be4cff3d4850567028aa7028d4c6693 |
| SHA1 | efec2336d942ca66658e15629ce1d92bee6d1523 |
| SHA256 | 548815c08a78207de81cbb85260a4a626ebf9297b3beb9f7eab125db0eca1103 |
| SHA512 | 5e90972677472f824e06d9a445615517a329244b1849f00343b3ca63311e1d29b59db3d014d195ccd55e95c6d5d6809365802082b8db2706150f308d1987ab4b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6f814c1e224f4c09_0
| MD5 | 3b4d1344219417c4d726a215dc053500 |
| SHA1 | a1a82836bb4c66b0904f7ad30a1ffdf4199d992c |
| SHA256 | 7fee4162614700b526a9d7ed75f6a6e95273c430455f4be5532a5da9b9814e72 |
| SHA512 | 5111a073dba677ac1e331d99329a0b27fe4cf957a833b07ae57aca8c3338bc634537273f26e984e9007590efa8bff2a1d1e8f157d29d82b9665d9ec3950b5b81 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\dce0950ea8c5685c_0
| MD5 | 50eda8df8d1bad07254df751d2d1028b |
| SHA1 | 40b48199583066609fb75e9540fba7c5e473a97f |
| SHA256 | 6c45fe405390736c3a12ab562e2c30174a846e0650939a908492f1d56b8844f9 |
| SHA512 | 3d8544ac599ff6a3be16faacc2053b05253ffe0768cb6439342c53658f1cd6ad8acd3e12a0198adcffb7d67f92aab66564487f5562bb2d7711185a9b45a1bd80 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\83b98d4a35ddfd31_0
| MD5 | 7f2acbd1dfdc10cff9bddfd10ecac2af |
| SHA1 | ae822dcb92cb1317c0a8540411f6cf75ee4f8606 |
| SHA256 | 33e8bcf4961bc431e607f52bd20ff6d40019320566e6d66a4367302a1df95c32 |
| SHA512 | afcb0456537e3153019d24188ab75c0a063b80a8c9f0307a35475085cdb653e6e0ec132bf9d6c87e820e33429195e9e1a26666e8f0332b1248bb20cb21578fa9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\47d4e623e47f5bdd_0
| MD5 | 49cb394a884efd0ec7f73deb2cbbb34e |
| SHA1 | 705d5589db828bae6315d4c7609a5f1cc12d34fe |
| SHA256 | b444ca0e721aac4150f46f219eb7d6124ca796e41b7093f723b0530d670cd6ae |
| SHA512 | f308846a7ea6551da1a3d8d9480ef8ae889b60765e615a333925317489ee392d876ce9e9f2ab6d422e74f713501ae997e8de0560bf434114ca5e1ba8da30af2d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1ba208775fb5fe09_0
| MD5 | 3ea184e96e294856fc06b77decabe4b8 |
| SHA1 | 755a0b2260df8338c5a17d9fb9e3f5521f462a1e |
| SHA256 | 5a40aaf22048b1ee7e312f9489e8b3c7142057202fe08742ad983b4ad2fd9d7e |
| SHA512 | eea60226edb578895b30882f1012f249c904b57f0cc830d7915878525b9f8be622cabfbba24adf581079e7f15fe68e01857093fed63276e702a478ece06f5539 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\aa20c296787a3f88_0
| MD5 | af1ad489750d69223187b18731f2d928 |
| SHA1 | f262f9685ad533295925de70ad75a3020286e6af |
| SHA256 | 949c3e86b688c12de6046b81e8687913c0d0a893806376292dcbb7ff6e10eb4d |
| SHA512 | 97cb394cbe093f1379376fbf3dca2c2f4098519d4724be62ae4c5c3fd34360cd3d742317153f30c64b182f74036399621c9ba6cce05a017aae23f26036d4151b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d61aa13717464b76_0
| MD5 | 404e9084c2544a010ebc0caf8260fa73 |
| SHA1 | 62c2f0c19fbe4ca2b0f1c8631ffd91317d864b35 |
| SHA256 | 4c130a562654344aaf7737215a476490784674467209f026b402390b42be270f |
| SHA512 | 17a66f4a3bddab09d37c9986944b3dcdd9a157cf44497cc5df1d56e8ea4f1a099dada4af88a2067626d7a855a0c68818754034e54bc0bd9f1dfa335f6498dfcd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9c0109f54c03223c_0
| MD5 | 91feb71c1b9ed2df940dff26872ae066 |
| SHA1 | 66592b1216a8785ab1084eb206edb6821aaebdb7 |
| SHA256 | b6c6176b712231c070091dd5d6118c04699b5aecb31ce8302e875f823e90b084 |
| SHA512 | 2b5c4afda6d7337e97d5c30f365586def1a9829d2debc43082d64c5eecf8d34d2fd58be63bdb212ae554edcaf4088e4845e1e56ab7996fd62741c3d5d1822d09 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b1d7d09e2437e8ee_0
| MD5 | d36fe20567da459f7c2af03ea6a14258 |
| SHA1 | 3604bd9c05b2957b4bb7624f5531a827cca0f43b |
| SHA256 | 2f5d964e5cbaf220f352fdf234a32b628d51d969cf14332ca0ec09fd2368a87a |
| SHA512 | d16ca29055ab69e2ba14f97c5ff9b1546c967109b681a0c197545d90d47d6824943d2c979ab9709e5454c64f56faf2ac49aa2394c089ad67fe53829dd659958c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a6adc9df11da7b3a_0
| MD5 | edaed72f0923305d3b43b8b58f644e36 |
| SHA1 | 8a7c2d6b21ea18c71f81daa72e0a64bb78da289b |
| SHA256 | 77ad20b603eeb0fe0311bd12ed33f2e1fe9f64a20fac855fb042c82b83cbe41d |
| SHA512 | 472f43aee1c903fa405457d04e4e07ae9fc10107cf8a9cb3290f8b2337c947e919c8b4f279a3961e01e437c92887754532b67d0b1613f1da0185014b99686a77 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\26e5049f9de24c2f_0
| MD5 | aff1803ea20fea631f49f9a55de8433e |
| SHA1 | 5f41cb48c2a6df848b4bb6f59ad9b968426daca6 |
| SHA256 | 523ae78d1c1fb87bdb2b34269cb87234c2b4fc4b16ac30b3ce48d8910a40308f |
| SHA512 | b6fbedddbe4d1acc639435979b28f2d9d0ad1fefc53008359cf8a53aefba1bb378552255612b34fcbda6293d22eb92fa0e766ec8228d65892b43d3170c1099f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5b2f11f3f15a5775_0
| MD5 | 4b032006141e14750d62924bbdd4dfb0 |
| SHA1 | b3a8e9717e6619732605a73a938bd5d4a1907e0a |
| SHA256 | 643d0d5d6abe9c17a04ede3311f65125483a459642198fe67fd988006c2b83bc |
| SHA512 | c4a2a6da08848e857e5c71dfae35c0c693e41f5c5b90ea6db3384b59545a5809f355f348ad464fb7a1e4851a1e8289cbc2fed69539ef970282a685b2680dd00e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\71cf33e27b57a88e_0
| MD5 | 277425c67b6095d65ce8d4fed0166481 |
| SHA1 | eb906d6ae11d59395a37c5bd1c1d76eb69381cb7 |
| SHA256 | 0750a07e669b77c057869c12d76108b6ffaab4d620ff2ddef0660f7f6cfb81d1 |
| SHA512 | 1ab2427c57bef408234f15c145fa6591537233f733666e80be7923d9265a14305e43325debe9b0e2b785674eff7a4eadc2caea8cf9d5bef0e9adcfd0ec44d5be |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\f078f5fb70fd150f_0
| MD5 | 70b69fa21cb4f1f8692f986264740507 |
| SHA1 | 2716ff10caf71c38502b51dc57985934bf8fd976 |
| SHA256 | a3eb322cbde829acdd226d2748741998d33e002fca8133246de3a81edcf3e9ac |
| SHA512 | 8b9f8604bc2d941d59355196afa7559fc94aa3bc589c1fbafb0027fa8b2fcb916d7b7d8648418fe9295712697d3cb298b9145cd4da7b6d27fe8d33f0c0353e83 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a66a1246c4f29f4_0
| MD5 | 9a2dcc3bcabc8ed4b12ca08e7e8823c6 |
| SHA1 | 3549acc0a10dd0144695acd3837c710f92b8dc22 |
| SHA256 | bed7880d59ddacb6cffd74689c1e155024a0b33722a9eda173e65e0b445e88da |
| SHA512 | 460ea5d686dad9780d599716ac4228cf87de806239d00f96ae4964923ce317e541dfc7f3b1f18af6c027c177955abbe7f46e2c8f3defc2cdc1c531ca595e7ee1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d00019f29c31fea5_0
| MD5 | e68b4e9753b2e8411bb07c2925c72115 |
| SHA1 | b294a121e00f46ec86503e9a96169969426e86f3 |
| SHA256 | 0b63428da9047b296c282c306b5452697ace43bfb757007da7faaa40e59a175d |
| SHA512 | d1201d4f5922b6563c88e5904b929408d9d61d4fd00e539c12205f2161ba1833d7ac8ba6ca306cb3d6851278656004b3a6ca4dfdb34108010552425735817c2f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\edb3b6840a8ddc0a_0
| MD5 | b2a3bc7dc63e0f1e36d99f30abfbee69 |
| SHA1 | 858ddc438ffd5a2250701ff3c166fc87f6b71419 |
| SHA256 | 361fcc478820afaaecf9fc85fce62d4eca5d97db9aeb5b85c6ca533115fb84ae |
| SHA512 | 1a9f4792e8c0bc547c08b3dfef3249d93b4c2a71ae6321c2053601b15f3322f22fabb7211cbd9358fa85c85a6b29cc4e9836e37e20632c3cf50e1f4bd32ef42d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7cf9843337c39c04_0
| MD5 | 58984913e5e58c0e5a793a2a290cfd99 |
| SHA1 | 45c755d61bc3e3253fb82310d9f20f7e093b3196 |
| SHA256 | ec0b97e3ea60f8b1b8f7a4d05762453ec7ab86e4a654c4a0df5d135749c15102 |
| SHA512 | 04251fcaeb94385f8067f34491bc7151747084b28ff090e6b84f59dbfaea54b9ed4bdef70956cdbbdbc80fd2c7da028f0544791657f23d2ddb060965282f39c7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e8f6640eef188435_0
| MD5 | 932a64f25ad3a5b9632cf87d8e979f3e |
| SHA1 | a08bd648e514a0f5935b064fc12f873fbd8ab654 |
| SHA256 | f520e1c57473c178d8d10e43698919e29ae1f7be0ebb481a0d8f382c367adfe5 |
| SHA512 | 3a9dab34d531ecfaab663c01850c83f691b7f134104c2397b995cff9198615fc6d693302eac450ffe7a0a49f0377af4eaa9f6b8861473287a604e5b4f9def5f0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1927a26afb9a8b4a_0
| MD5 | 6aab781c1be808a0640d680ac0353bd4 |
| SHA1 | 535c4abfbdb4d8aafe2924346ac01ecadd5715bd |
| SHA256 | c0a7297cabda32e5f4e34828266eaf8b8edcc6508989445ff8d603f95f6555a1 |
| SHA512 | abbfa22879fae6a495cec8426675e03f057d62e22a72cdfce83917f999117bbb59ca7c0e5c6f05c04111dc6695d67649e4f2ce127bce02cc2180bdd4de5ef8d1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6d3b0ad57bdf7db9_0
| MD5 | ce709c95402076e4cd78dec00b11784f |
| SHA1 | c19d706e9811b3fec1a0a4068eb8295cb26ccbc8 |
| SHA256 | 7bc1065ac0340bcac72b4b6ce8e9e898ec424ed2b1da8b68497302773b685902 |
| SHA512 | b4a18c079b0effe18dff118937f9a8f4f5d0f46c80b95c54a3f0793a329ada770b3a1c7b3462f81e9bb8dbfb7aa6fb9208d2aebd936eb82d05f4f2296ee6dab6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\af2cfcaf6d9b18bc_0
| MD5 | 572f8b04488136d42c997337a9db2d99 |
| SHA1 | 0bb2dc7850072f0e99acb11ad82d5daacf808ae7 |
| SHA256 | cfcf9f1e81fe99230110154616469f4081a7ee576ed430f7969f49aa8513cf8e |
| SHA512 | fcafcb849fe6f425f7aef9b755545473e8233de2a7d4111ac02a473a8e386442330de3a4152c36444f825f257a9e538a5cc3099b4c04bf42e2d8b4ef42739f38 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\daea348421cbc209_0
| MD5 | c822056c293e3405f1e0febfb1f74cd2 |
| SHA1 | c629e5f570642b658095dd8bda534263bd86b5c5 |
| SHA256 | b839e7f8f98fe5f9532f66b1339f28f75b22f6f123f7886db9648c615d499972 |
| SHA512 | e5a695ad078a99794edc28a5509466aa3e50a028d44e73d7983a663a66bdae11536d628ae188c30d8eda6b3a9320fe64493538389791c2f95c2d12cbdc3240bb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000151
| MD5 | 6ce975f74258b54a731501f00d44b7fe |
| SHA1 | ec10a81588c74bf371bd081c0f6eb0875fba2d31 |
| SHA256 | dcf44e6d33efbff9b7a805350d0879cf52ac760039c72c73874799f4cb3bf534 |
| SHA512 | e55a0000cb055024c64db19b2106717391b44920748e9e2a19cee6a47c4ae00d48f1644d903bc777188303a3a08e01b3699711c98a0605e4607ba942a7d964f4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000150
| MD5 | 87e8230a9ca3f0c5ccfa56f70276e2f2 |
| SHA1 | eb116c8fd20cb2f85b7a942c7dae3b0ed6d27fe7 |
| SHA256 | e18d7214e7d3d47d913c0436f5308b9296ca3c6cd34059bf9cbf03126bafafe9 |
| SHA512 | 37690a81a9e48b157298080746aa94289a4c721c762b826329e70b41ba475bb0261d048f9ab8e7301e43305c5ebf53246c20da8cd001130bf156e8b3bd38b9b8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000152
| MD5 | 679031f413c733231df260741497c811 |
| SHA1 | 025a9d4ca574d19b9734ff440d8f5544c5eac885 |
| SHA256 | 8c84007cef1821e55cc3bbc4e587a7e83eb93c3e0075cb83731907134df594b5 |
| SHA512 | f86a68dbc06ae9ee7150c004b3c5b2ab6d8bab5c53c5babbacd999ee3859d8270dc30fc60c8b1e63cebfb2692c6b775a3f03bcd7e4e9651006617ffaaeb75b48 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4b4737479bfa0e366efa2870a82473da |
| SHA1 | f998c31ddbef0a6e4bbc641a045eab10bb101e10 |
| SHA256 | 3611d9aa3262e26b42aa597059ef14796e864d86d3ba210df8a2636ad3be1815 |
| SHA512 | 6b04a68071f850b512161843a0d9ccee4814930c66741a8441a764c020874e17e820a7d4c2137007de7e88355d01418a4bb7bbf2af02756bd98ceaecee8b6d2e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b882c66af9003334e1198c66ecf15f5b |
| SHA1 | 9633eda86ccbbeb8cd67c5d39b6065bf8a6b1f60 |
| SHA256 | b2b078cc7120471aa5660283ee31f990afd104ff6579c0e0beaa66200447f284 |
| SHA512 | 1c0a4ce6d01cf0a70c377755b9bf61dfefa0b8c5e853c36b108cc412028a4ee3db01e6cbb6769e3e1c4027b5cf48ad764c223ec6887a272e7d0a9927a1ed2af6 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 5c8a81997c5a6d7e0fe46af7427a2545 |
| SHA1 | 895c49d833b5d2a6f64941a204f7ec2de7977a3d |
| SHA256 | 18c221daa518d9ffec9e9bacba68d2ddaad614789bbfac4aaeaf64742fd830db |
| SHA512 | 2ca302162f42dc8b384f249f4d03d351cc2b4e554f1e5b3a5553197f0e44ceed6fc7d9f5afdea0cdcdc3c2699b02d04b6d36712def93e3fbc59612bab08b8b5d |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 3b1cb208850418e2bb014fd7b76a15e9 |
| SHA1 | 12d8bd7ce2210b13c49af911c8623972bf3ce2e9 |
| SHA256 | 511bdbc071f1f93ef73077c57693517e6451df309f6c4cbb3988e9289b71f99c |
| SHA512 | 7d38fb66e448c98abe01c75da5e5e0ee169c2629edc2ad59c72689e9eef49ba54788eabf398b56d533dca689c586b24fa810ac8983e9ee9e982a59e2977b33b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | a0aed057f3c2be5d2485a4d75378c05f |
| SHA1 | ed43e223dc3aecbf0c20e848daf1ab3a3b139396 |
| SHA256 | c3660b8e4ab8bb17a81712af24ae95822bf52d4f12bc984dfaf1cfb19e4c2260 |
| SHA512 | 46c336fdd7537b94a0732120bf733ee6a83ad58e595d518a66e93260740b92658f441637694be5ee0bd60c11fc8d2533f7616c2181f602a2025eb0e4e11d5b44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | b15791f73fa2994bced42a6b603d0359 |
| SHA1 | 904921a85911c1cb82dbd08c5b006e63e027d798 |
| SHA256 | 4d0deac411539de878625ddcbece3669eb1ad419cceff25b291c5adb690f77cc |
| SHA512 | 704f3676f8708a7e16b0375728617024863566b119862b106f1129c42180304c8304f166250c9b616a14454392bfbd2d4d470cc660dfc37fcd7575b6aacf8050 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 90ad1f52473beba92026c0236a11315b |
| SHA1 | 9d69497377aac9e9f81646e98aafc668886af590 |
| SHA256 | c50d2a356f6d292f90c83fbbdc9e0cb7d1353f380fbce1bc963d08e98de04545 |
| SHA512 | ae14f6d47e89f470b0a51ac8b9d7b34d27801dbb22e2fba12f2475b2e54856bcca61cb73d05cacd344610221b3a528c226d54a507e81e1ba2e4dd704cfd1902d |
C:\Users\Admin\Downloads\Unconfirmed 531810.crdownload
| MD5 | 602bccdab8382b689f8e6f0c9481af5d |
| SHA1 | 819a58675e0057786ad486864fa605921b7f1ae5 |
| SHA256 | 733ec0b8c401089858b0d041bcf036d6d186b7c12e5b852860de0a5a510e5e7a |
| SHA512 | f72310db7c831f21943a43c381dd6d3018aece22c7031a9a7ee2c5bc1b22e74781c3e47478e69e781f624644b69c2fedd9e25e9adabfa573a667a9904fdda8e4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 370783a1d4467833a6d1920e62c95291 |
| SHA1 | 293637220f335c0e4647a093779823b899a18f55 |
| SHA256 | 9300c430603791a520f06c8162cc061010fb9cfa100b8eea5e089fa96205afde |
| SHA512 | bd6c415bbe8523b6ed13ff59a26fc9da7707beb71aee316dab846d50047eb29a5f055700efe28656a981f445206f4273eeee8edd7f20254194c0113df18c2087 |
C:\Users\Admin\Downloads\setup.exe
| MD5 | 76954d7dbf005d6db5e38d64f25a8c20 |
| SHA1 | 054ad10803aa95f512a2c56293be7d1a287696f7 |
| SHA256 | e9e2eb114941f9f9157b4fb139e5588665fb89b709df82d4a8346ae66ccf03e1 |
| SHA512 | 49e77880255470096830059bda1baf1d955f7f33659118995495aa6a6e090e32c798a8568504f213a90c4d3c3c81db41c22c54359d0689adb7b233c96c4fff4a |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\install.ini
| MD5 | 385081d5feee87a4ed1a6e5dcee85f36 |
| SHA1 | 8517162855b477e5498e95ff2e82584ef06d5c6d |
| SHA256 | bdc6fb93206c1e7a590f2d4e97d0dab7d3badaf8b4e1a7b8487e9cf59f05eddc |
| SHA512 | 52bcb1cdae8abbe4b14ff85b57e03426d61e5cb25b1535a827af526ec66c00ae0a327b187cd10279cf18c379c912d3e478ef9966bb497a8b626824fe32d1093f |
C:\Program Files (x86)\Winamp\System\vp6.w5s
| MD5 | c71acdb16c4ae8342089da01369069d1 |
| SHA1 | 34d772a229f07f016064e87a2adf6b71d1455ead |
| SHA256 | 7557589c7a425fc51ff55b4a1dc9a9c75174b859c7dac7b0f91d52a4d9a85deb |
| SHA512 | 5d26c2ddc9c8f55c193dd5bad3c1fc06a694d05c75d960cb9d4328f4e6175f74dea9110948472c7336701b94d7a9fd12af91789f1b27bda0a0b48385fbee97a5 |
C:\Program Files (x86)\Winamp\System\h264.w5s
| MD5 | 38303f39eb179ff6cab518e817e22cae |
| SHA1 | b8d69a8513dbc8a3afdf959513022b30bf9c505a |
| SHA256 | 721d283dff6ac902ea86eae324fdc3deaaf45aa0e77e842f044c11683c31d80f |
| SHA512 | 8f3457c46dfc8aa09fab51d6411a5d7297ab9283de12967bce9626e764d7568ac1daba8b34c7a146232d09fada15b5f4c86613bd272b6763dd9d53c368e0a618 |
C:\Program Files (x86)\Winamp\System\h264.wbm
| MD5 | d352d4afb5f848673ab37f308f156c80 |
| SHA1 | 8a900dfb1126a0b7480445853b8b2b724ff7ccb9 |
| SHA256 | 5ba3da7a72134e9b65a5f1a268bab65c2065294cb430a29cb481b505ede2aa44 |
| SHA512 | a1346bb7faadcfbecf8875d4a66f7c8093b6998e32986200cde55e282fcea6614e60da18835657c215c884ce50f6d34bc0382e8617839d139e210e511f204177 |
C:\Program Files (x86)\Winamp\nxlite.dll
| MD5 | f270d9dbf305256d0979841886f288a3 |
| SHA1 | 6e85e6d9e80c97e2d85b1754170b4ff9e50fe6bb |
| SHA256 | bdc9e1a1edf9d42ca846b67256fc30befdf63c69354dcb30046e594e347a39ac |
| SHA512 | b5b139870ac0ed729d6281a47ad002af2ac9102624846f0ca9ea198322fc20db9825261d4b3df26833df93d1dab3a2dbb8896eea100d06c7bcdbbd5ed08ea1f2 |
C:\Program Files (x86)\Winamp\nde.dll
| MD5 | d1b7c43550af02cf4e9712b1c1a63cc3 |
| SHA1 | 0f0d82a6b341dfce6fa4d2b93252faf46a211e19 |
| SHA256 | 202e7e7e30965d970cb37462f0bd763551d757bdf35e04cdc78721559118a469 |
| SHA512 | 22d45cfa22343d5b74101e91cacdeaa73d6520588a365b0667c61e8e82451e78c0624b021e7ce5421d449e5d33f7df15355e272defb9d70c1cdbb89f611760e7 |
C:\Program Files (x86)\Winamp\jnetlib.dll
| MD5 | 30665a3ada30519791cc25b8ea60292a |
| SHA1 | 0b7b4756bfa6ecf21c7f598745c70ccc041e6b13 |
| SHA256 | ba88bcdccde54392f150a1b9be4f597a5d0342bc234fa9dbcd5918a5418551a3 |
| SHA512 | dfcb1b3191d3e8642e277390657241b8bc0932d357251ad6f7a28253408ac74a2ed5ca64385565c62ab76a28b3c673ea4175e52a985300bec92a61c0ae16d6ea |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 69c56e3d98acc64fd35ec6b2916db596 |
| SHA1 | cc9d47c9fed45c892578c04e080696ffc2ac0eab |
| SHA256 | 85b420b1faf6d7e70567eaf2b01eac6dcb78e02e2375956c317c8e98d6cbbad1 |
| SHA512 | 234f0db4c217469ec585903915758c890b0040a97735574caa1d73cde68c0fe239b58ce60720a16ee136c14ef0977af894167d12488af5993cd7514d9d79ce8f |
C:\Program Files (x86)\Winamp\Plugins\Gracenote\CDDBControlWinamp.dll
| MD5 | 72ab7ff3886957602a68b3d89bde44fa |
| SHA1 | 91365edba7dc4aae61edf0c5a16705552e668b6f |
| SHA256 | 025ee64129129e7e6bff4c0769cf93e00e095b752299e7d633de5d9c261e173b |
| SHA512 | ac1b58c308bcebe6c4b4672b5a4aa14cd1d3a923c80ac495f4d42aab45db0d085ddbf51111f3045bbdc74d1456f642f62775362cf3d132c1b6aaae0c47663c35 |
C:\Program Files (x86)\Winamp\Plugins\Gracenote\CDDBUIWinamp.dll
| MD5 | ac5430ae266925bb85d2d5800d03c262 |
| SHA1 | b9a86664a0fac9b79c162587a203674bc6ae9191 |
| SHA256 | fb4211686c2ddba152cbc239ef8b630c5d2a8c05e9056d4c797cd0ddb200e9e4 |
| SHA512 | 3992049fe87785c6827fa35b271c37696733b362bf276d5098b0e1befe6c217ee7847d1256dedc1fbbb2d608e7cc195e9229dbde7519615127b7f361edd8a15b |
C:\Program Files (x86)\Winamp\Plugins\Gracenote\CddbMusicIDWinamp.dll
| MD5 | 37ffbcbc724d72a49248cd6df27cea84 |
| SHA1 | 7ee0fa08510f549d9ad7538416e0e19bdf911ad8 |
| SHA256 | 98a8b5ce8023885391bd4be08781deb141479eaae5c70e264eac2d6c2da54f7c |
| SHA512 | b6fc63a76321e241547061a876f50f5b99e68880f6ba4af3d66656354cf827d99f07d38ffab6764c83c5ab1f35748876077af04743d747df3a3a5f86314a69e1 |
C:\Program Files (x86)\Winamp\Plugins\Gracenote\CddbPlaylist2Winamp.dll
| MD5 | 7c7f404f3923a9346978be902e2257de |
| SHA1 | c1f41edfb4af754db2e2679a8ae40d3b1a9075b9 |
| SHA256 | 1239b23e01467f6fdc2a0dd109c5713588fe77a4d206d60dfb3712e08d1dc3d5 |
| SHA512 | c60806b31bcb314c4d6e3e4ddd394752a665d16ee223359677e6d08dbf288aef88967a4aea46efbe28600f35f7abc5b6267a6c69820a29ce3f9f2e805fbcc477 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 234454a611f12a1e7455fa28eb68cff9 |
| SHA1 | d57de1b5c8f665693d74b9cbf94512024bda0539 |
| SHA256 | 28f435ffbc2590fd44df0cd3aa469e701ab1ae2caf658b60d8f05b85c4114bd9 |
| SHA512 | 7fc39db78c5f058bb96ac3687d6d868a860d5027ed5a65340f3dcbbcca1efea64cd1cd9293c38c4c00831d052f338888936257a4899e7426f5b7f68227f547ba |
C:\Program Files (x86)\Winamp\winamp.exe
| MD5 | e000683011d966dd6cccf2bc3b6027c6 |
| SHA1 | 7fea5c8039be8e5476c9322f14eadb9d855d1d72 |
| SHA256 | 6760afda7a59a7dee557680e48a957cf1367ed04194808af61f779b7fb668850 |
| SHA512 | 2dac85d626cb64b0ebc811b8d92d06503e06306df4830c562195a8116b25ae531bceedacb2b36487901454279cf4d9e328117f1133ea0fabff0a973ad7f4225f |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\modern-wizard.bmp
| MD5 | 2d63e33fa1cf672338a22c88fa45e6a0 |
| SHA1 | 86c510009d6c71d05eb2707fe6a10039df525192 |
| SHA256 | 7ae875cfcb6e3b1f4a06460fbda99d8014dc4674ee256b0b79ec656777c7e292 |
| SHA512 | d42a7401c1d0d77d517d2f8086286bd6cf487cf5400cd8b8d720bcaf15149727751677f444fd9a8e340072deabad51347956894c1c034dd81df793b3b8087252 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 554d32852d2a83b5b361bf5d8f45d875 |
| SHA1 | 80d4f2ec5c163553ffce2e32e9f1335f53f12afd |
| SHA256 | 5bc7b2deac07957c902f253018504810167f8000efc576599ecd086ff8867539 |
| SHA512 | 5804ea062d455e300d4c87fbfb6a6d28aeb1ca392a138c3a1587913ebc3fb84b297c4323092fee00498bf95f56bafa2680eaedc99324e89ce7a146daf77896b4 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | c3759fad01ae44054939e53fefb2fb88 |
| SHA1 | 842a9e0c7d4fffa14ad116395bbf9ce00de56f27 |
| SHA256 | a401ac5f0a7286a1e62eb3178c8c0b2501dffac8dc1a46761a350613d7e51137 |
| SHA512 | 528f4a2ee34a9247d3d02ab4bc4406b483363187cc05a74fd33411c106662db3d522dba53cdbb28b384f28d39f8db1073eaed7f30b6576cc4adc5f182e3cd436 |
C:\Users\Admin\AppData\Roaming\Winamp\Winamp.q1
| MD5 | d24f1b829d1bd197e157b12d19c220e9 |
| SHA1 | 555274f63e5b6ddbbd548179754fd0b2cbddf888 |
| SHA256 | 58065811d8e881a5087af0c9a44d2baaa9628dc3cd1b1847533dad2c35a02cf8 |
| SHA512 | 55c5c6bc1c466eebde84b98e024d774711bc1f1e32b28842d77eaea93dc030878e74012ea48179925313490b7c77d07383213ebb63d691228d2333e4217b33fc |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\install.ini
| MD5 | ed5064e17d099e24aae642b83e786dbe |
| SHA1 | 0346f37ae7d73889a7a0124ba0275a689a9016b5 |
| SHA256 | d969216f427aee597aca696859e5ffe00c0a0b6ef113f1f6e9d1004203e29b96 |
| SHA512 | b92d948c7507ca149175c0302c9698b27ecf1aec22b5e228d038378169ec693b34d75e82cea5e4f0fc171f117538a58b3784a1fbaf4e04e1975c1c07e9f16cc2 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\System.dll
| MD5 | bf712f32249029466fa86756f5546950 |
| SHA1 | 75ac4dc4808ac148ddd78f6b89a51afbd4091c2e |
| SHA256 | 7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af |
| SHA512 | 13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\nsis_winamp.dll
| MD5 | 1e1ded1cf1c69852f2074693459fb3b5 |
| SHA1 | 81b165cae4d38a98760131989fdd8aed2c918679 |
| SHA256 | 5946278545abbd0b0f5188752fe095e200c85abe0783632a00726d090c0753ec |
| SHA512 | a6f9a43d4432658c3504629e9209ad350af69eff542d139e0ccfe0dbf8662f15034edd3cf8b56d606a740b66c8221cafad999088a4e64a4c9c9fb47793a19f96 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\NSISdl.dll
| MD5 | 7caaf58a526da33c24cbe122e7839693 |
| SHA1 | 7687112cb6593947226f8a8319d6e2d0cdef3b11 |
| SHA256 | 19debdc4c0b6f5dc9582bda7a2c1146516f683e8d741190e6d4b81ad10b33f61 |
| SHA512 | aafd0cb2abb3d2dee95c2d037a6a1a5bff0518e3210ced0c39e6d6696e4fab4734df01476fe9dcb208f02c529cd03346bc8b7f3319ae49701bbf2cb453d59bae |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\nsExec.dll
| MD5 | 132e6153717a7f9710dcea4536f364cd |
| SHA1 | e39bc82c7602e6dd0797115c2bd12e872a5fb2ab |
| SHA256 | d29afce2588d8dd7bb94c00ca91cac0e85b80ffa6b221f5ffcb83a2497228eb2 |
| SHA512 | 9aeb0b3051ce07fb9f03dfee7cea4a5e423425e48cb538173bd2a167817f867a30bd4d27d07875f27ca00031745b24547030b7f146660b049fa717590f1c77e1 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\nsDialogs.dll
| MD5 | 4ccc4a742d4423f2f0ed744fd9c81f63 |
| SHA1 | 704f00a1acc327fd879cf75fc90d0b8f927c36bc |
| SHA256 | 416133dd86c0dff6b0fcaf1f46dfe97fdc85b37f90effb2d369164a8f7e13ae6 |
| SHA512 | 790c5eb1f8b297e45054c855b66dfc18e9f3f1b1870559014dbefa3b9d5b6d33a993a9e089202e70f51a55d859b74e8605c6f633386fd9189b6f78941bf1bfdb |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\LangDLL.dll
| MD5 | a1cd3f159ef78d9ace162f067b544fd9 |
| SHA1 | 72671fdf4bfeeb99b392685bf01081b4a0b3ae66 |
| SHA256 | 47b9e251c9c90f43e3524965aecc07bd53c8e09c5b9f9862b44c306667e2b0b6 |
| SHA512 | ccc70166c7d7746cd42cd0cec322b2adf4a478ff67c35d465f0f0f5b2b369c996a95557b678c09cb21b8311d8a91eed4196ddc218ea7d510f81464669b911362 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\execDos.dll
| MD5 | 0deb397ca1e716bb7b15e1754e52b2ac |
| SHA1 | fbb9bcf872c5dbb4ca4c80fb21d41519bc273ef5 |
| SHA256 | 720be35cd1b4a333264713dc146b4ad024f3a7ad0644c2d8c6fcedd3c30e8a1f |
| SHA512 | 507db0bee0897660750007e7ce674406acf9e8bf942cf26ded5654c07682757b07c9eb767bead0966478abc554dc9a6461c4288dc35d12cacfadad4c128f1bb7 |
C:\Users\Admin\AppData\Local\Temp\nst8617.tmp\Dialer.dll
| MD5 | 61b40a89c8b94ad6355262e118c8420c |
| SHA1 | 6b8fcae8baf661e115763cec2d69db7a6b767030 |
| SHA256 | 4e63d7b877a7e8889b6cd7bebc1dec767bff0f5bd41d8936d4a5b29d934ea4c5 |
| SHA512 | 77f7e3cdd2f2ec3a2cf619afec6438e0966a2f0d43539d62e9cd8e2acce56322e2dfa2f747937c3d62346640fb64e1176b52a329027a5a0569e0f05ceeb7a126 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 3c87749cbdfd856a9ca5455f94909a9f |
| SHA1 | daba762700520889c907f63843c198e10468141e |
| SHA256 | e1e71ad71d751b23e218ca8a629f40cfacddccadb20f8e9b522d58083e878dc5 |
| SHA512 | dee15b1027675779ec25a569c7d13bd0ffb8670df55475df7837ceb564b929ca168ebb9aadf7e77bec5e1d2fabbe0e0000716e128dbad8d7a340dc8074fdcccf |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 50c4c5cdea5b6a512a2b10b6ee6a925d |
| SHA1 | 08844e6d7693d84b6b31f949513e68172f21124c |
| SHA256 | cee6aa1b81fdc7380ab411d4f6863a2342a0488563462b8b7ad78a1dffcc49cd |
| SHA512 | f943c7d22174c30e44189e4bfce648189e9d93de268cbc3f448c2b0e99a6b9a5333e9c20b821fe23e5b1e7ae0fe0e9d220dbe3bd2318df5248ccecc3eccf9c06 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | e7f9ee7cde46ec8dd995b9dcad2c5f11 |
| SHA1 | 063ac9a303f67af64e59e1d7783691f3a0c02ca2 |
| SHA256 | d5331f1d21aa07c50720f04e4e539c199a293bf230aed12d2b0c56e314d9df09 |
| SHA512 | 4d420ebe6c0e0e6629743ec25039362a8e5bcf6d66c8a56c81d65dfe043c9898df77f3c855e47a8e2c8a97fa4504e248e0c6aceed9f07f5e0dccc617ecb9e81e |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | ab9f3dbecd105aef264498484d9b9ded |
| SHA1 | e6a3729ac31cc0e3059e7897626dec53c9f2119b |
| SHA256 | 795155b4649166ae881e323f6c099509a54ba3b1b3b8893fcd21353ef3f7c954 |
| SHA512 | 816d2539050258f6ca84f01c9e6a1f8abff25491557e2f934059585287b253a2c358ee76b9bacf655e7ad2caecf2483e66ec54d943f46db1be7d47a820266911 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | c5e12b23d98324e3f79a1c870026e042 |
| SHA1 | 9f60acb207f145cde70cc3d06543ffcf79ed2d22 |
| SHA256 | f35b0c49248d57078b990eddcd6c9e7e5d6f0416dbcd0f972f31056294425608 |
| SHA512 | 2af8ecb1c70f4e573941e99b5caf9e69052e55dc2800341d65a812b766b58c6c5c3780591dd86b66c7db79898c398e8ea7314e9db0d3f635e0c9afec78bd2678 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met43DE.vmd
| MD5 | 2cdaffaec77db6248825896e5c424893 |
| SHA1 | fc8df8ddc7811bfcf8f426dce0316c7eb6366b69 |
| SHA256 | 6217223a02d019b85e566e2804ae6ae4dd3643c95578279a27909c9eedbdb961 |
| SHA512 | 387e12cab715c8d9530b21725808c91bface84949f03d17312890464ec53ffbd79ce3a83685e0897e208a2e26e85c8296b848d91b0677df1bac446c229cfe05e |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met340C.vmd
| MD5 | 9936bebab9c4e0e2aac7dceffc42dbac |
| SHA1 | c1d2b8ceed49c904db7f174e06cc4e8ef851a87b |
| SHA256 | ee730918e759544d7d087fe0b2e0aee12145ec36ecd4f4aced4336d85503a124 |
| SHA512 | 16a5da57970c1d9b0e00bd8ac21ad53260b48db7b7b8bdb1953c625e8b6a9a132afa53fcb835163b73fe6a5dae40aa5ddffda9a11f42e8942c07b180363f2ff0 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | 661f2206ac253963428371f575ce29e2 |
| SHA1 | a3ae20abb92b0a39f5be0e48387ff36c878d8999 |
| SHA256 | 5eddd08dbbbb3f45bdbd18c5cb621e1d8b4f88961a51b25fb61c972887a20bae |
| SHA512 | 49a4ab478e326a5b820399c64169cf1a28bc1c7f00cc3a3c5b34b3e5f0553527087c4bd43eb2b4244202186f47e5ea969bf962290ce338f0e28b974d2af6d767 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met53B0.vmd
| MD5 | c386b2dab1e50ba2766d84fbff261563 |
| SHA1 | 04689715512886016010a77f4cb1e6659e0df0b5 |
| SHA256 | ae6359b0c31c69599ebb789f3016908d680c7079d452c4648a3af0226b78a84b |
| SHA512 | f67d207fad5f0a78d1c7e507257aa903704020f8339720c7e6e23e7d4699d084a57628703a0cd4f33b0460e5454a6d33b99c51f37e346a95504949ce30929723 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met2449.vmd
| MD5 | c83239613245411ebd5416fe69629720 |
| SHA1 | e0b7924b12a88958fb9e18d5d8bdf1ed9ab84337 |
| SHA256 | a1defd5d6eed464399dc2a0f2c07d1f3a10e45963899ff4b824f748b690362d1 |
| SHA512 | f3d264e25bbceb2c58d741bfa16c35213df9a629ac59ef9a275c2ec60320b6580c6f1468627e966e14bc27695d9e157ce264a6259a4f78995e7fbe304d5e4528 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met341B.vmd
| MD5 | 252e14c85c8b8288fda93614891308eb |
| SHA1 | 636d352077cab476c805fac2bc4ff58d83a14b99 |
| SHA256 | cd160e25ecd10aeada7cbe1b0913b8dc8098d009e43b9a549765e0250531c81b |
| SHA512 | 7c5654607006bd1300874257f9c452b7e5aeaf90e4815ccfa0f195988f7d51dfb8dce68c71d15649242f8d05f970d67101917c4ddeef12ea05d39fa8aa1f293b |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met43ED.vmd
| MD5 | eebb8da8e062bd685542bffe0bb94e74 |
| SHA1 | 75faddb50b83eae36988c1e3eab075fe8d5a3415 |
| SHA256 | ec58f79fffd619862667c1a7644ad34f76c4623f2b7857a5341640c893d4de18 |
| SHA512 | 8a23a32b28a558e9a5d3a615d4412b768af8948f132b09e97ca121471db46693a4d05ce4df64f1ad951749d65c4d19000e08f7870d99eef9b90b62d2864f1bfa |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\met2459.vmd
| MD5 | d39c2a872b313f71c47f6bef8a44b425 |
| SHA1 | fb0b1e55ba114f0ec0856cec44934c692690e487 |
| SHA256 | 84f5b0b1ecb3612db2d369b18c758cd0de8ad31b371943343fc5b776092fceae |
| SHA512 | b21b234843480ade18abbfc1dcae5edd536def427bfbd39d0c384e439c2b0692d1654703e32b4648ffb6f719fc1236edbc588bffd242ea7792fbb41b82d65b7a |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | 9eae8c6a1c21fe04f2fe98a9567c893d |
| SHA1 | b8747a18ad90d2c7e86fc209148604cd9553e439 |
| SHA256 | 7b42694c66a01e8f1ef8b5660fdd23362ad8cc491b21ec05ce93cd2b40e586ee |
| SHA512 | 4b0189055f7d6e27cea8dd2f6250ba72a34c87ef7bb177379f08996683348af56dd2a146998feb7c9628a5fde1aa6e8fa40e3ad263b0281aa8ac588a714ee16c |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 46d00cf42598c7ba1520e84a283c60c4 |
| SHA1 | 2c7c13f57408a7d984bf028b646924fa615e4274 |
| SHA256 | b6defb3e426d037b0d102dc63cd89d244c5b7e567cdce83b073f1ac9b2e84e61 |
| SHA512 | e48d09c20061863db1fa34965ee637f39aa5d64fd728e8a0f89a650d4020ac713db4098834db1828d844755be2d50d739b1e0db2ab0c7ab537d91e1ae6cf1f31 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | a66b235565c7dd66a05f2b8805616c57 |
| SHA1 | 6f3eeb008d4158108fe687269c4cbac9af3abb21 |
| SHA256 | ac8088c2315afdbe6d7317aa8ecb7ee2087817edf6a3642deba9714e7a96b2e1 |
| SHA512 | 684770412890122098a387d8f62f55a4fc805420782706a231fc6bccd195e01cc1f1b8a0b79f0caf24827d3dd68b3650f51f9dd0bb108970cd25a4682596bf9c |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | 1c3fe32079716a56179e8286d8ab3062 |
| SHA1 | b0304da5583ea1aa37c3f20997e3d68b8433528a |
| SHA256 | 5fd76a808c88e2a807f08a6196a2798144f6bc92a11c46e0e7ce0cfb49993233 |
| SHA512 | d9c728f105e7ddea201a437765d6eadb59eff85d5908628c93cfa7eb3af7128bc55f2972adaef94a7339d91fa7d558cbd3ef5d239af578dabca5338dc0db2ff6 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 26bbff076297dc9bfe8c356b01aaa497 |
| SHA1 | 4b5927de6c2411754db106de3c8ce6ebf6376d4e |
| SHA256 | 35468e065303b9fca1d5e5e65025698e29a245a52dcef450a3d89c8e2fefe115 |
| SHA512 | 2e8b0eda829ec68f7cc0a0eae2d50fe13d508e33f982ab624565e701c0458ac17eac4ef72253ac6604535a79e59e1c9b6b689ea67f7d208fdb6a7f23c102f866 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\recent.dat.o1d00000144
| MD5 | 76a66845f666c52790c3442f7e1a491a |
| SHA1 | e392a609d9dc81fab060d8aece449fe616a40053 |
| SHA256 | 101f682d9c519400a4d36b6a09cf0dd39a9faab6353b3ce0eb2f071860b6d05a |
| SHA512 | 71a6ab36ebfb6ff89ec6fbedfd1982fe0fb7e8c76981d24467eb73a924dc96cc4a0483381beead6517f829fa8babead0176a8df229072040564e708d99b4c783 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\recent.idx.o1d00000144
| MD5 | 137faa0c3baa69f733eaadb966b64ade |
| SHA1 | a55982685efc19bb0afffa2eb1f3750241480eb8 |
| SHA256 | 9cc291dcb5847e7f0e6d4bf322164461c6607da934ce9d376c0e15f7ddd33181 |
| SHA512 | b6286a581aa3d1add62836804a1fc79a2399fd6fa7144945b47f2ff8c0ebe88af3f289bee95db0cae1aa7c532b487a4bb6a9e65710c581afa2b7f13989885d78 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\recent.dat.o1d00000144
| MD5 | c97c2657453060003e5d6256fd59b65d |
| SHA1 | 1d4afb401905f3d426f7d1a65ba297efd255245b |
| SHA256 | 6e0520e518dc647d081c8240079524c4f0dd112a2a3d48c23552c5302bb2d2fb |
| SHA512 | 60eff186e66b90fc4460e9e31dfc610bc0e83c8a8103b1bb934590299eac41004e7831f4f99c0607d974fce49425666721b817dfe5f18a3fe4a2a7d82a5b22e1 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | c4d3e89d73ec9f549c09bc38eae06758 |
| SHA1 | d30353c42f521ed1ec4c3234db96c6bc7ddb4d92 |
| SHA256 | 7e5db90eaa6dbee1c854d67cc3ba731a9598351d5623354b75cb923963e8efaa |
| SHA512 | 941617a9d7f0dd2d1e654d2ed0903ffcbfcae7897f55e5228186b225a31caa10d8820650675c2bee9410919e43f82e51f7a2218ddddb64b1d7ceaa8e2cb1573e |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\recent.idx
| MD5 | d39305c16a773b222871032c4148600e |
| SHA1 | 196b2a21dabfd3d001e2c79f3fdc7c411c4ca261 |
| SHA256 | 01786514a6a5bb357099b7c11c23615c0e8e6e07aced1f3764f034b6a6be8d29 |
| SHA512 | bc16b755eb56da66ff8290d1498c9ebbe7a29e27c50a4326cf3cd9018d20c13bccb4d23e63429e07ac33e323ec19e11a69ad2e25c1b5a4a67341ea2019862093 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\ml_online.ini
| MD5 | 869c023e6356f60322b9959002e199b0 |
| SHA1 | 11f9f69683019566bdc932b2cdd8cc69fc6ad926 |
| SHA256 | be56a246bd91885254c46cd2b13bb2b1298a7810df495d4b5ad9e12e857b6aab |
| SHA512 | 58b089e54eb3bc7b2de61e9cd726a370289f0e8737c8bf56fc4513b250991b542b1a1ad5cb57a27133b741ac54301c3c9981f968caabac4815fbc48dff12cff3 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\gen_ml.ini
| MD5 | d27ac3f8522d30488e7df6cb9529ef83 |
| SHA1 | 6eb9e418d8c4bd356e53afa13102e121e8a836c9 |
| SHA256 | 4a03d974bf4287ff8e264b7cfa2df1b6f9ba1619cf3521bf8a8848d21cdb799e |
| SHA512 | 1e6b2380e2a20a14ed1570f4c8c5146d86450ca80ea85f0856221e67ceaf6f8f3b664a97119ad56a88a6fb62d9320509bd6ddd685ff9b4d67f6ee27399f98e52 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\et243A.vmd
| MD5 | 28a371f877c6521e10c83d92590d9055 |
| SHA1 | 2b12ec57988d2f28446414fb789354ca8d24a00b |
| SHA256 | edbb8cdf73ad305b72503d1411585edaa49cdf51b4535fe347de0c1ecc468966 |
| SHA512 | 13cc677f41d7821f66fa6ffdd90dbeb37f380e3d81fc839ebc420398d452baf1dfc4c09caa7a09ffcbf8fd226669163548671552bcd4705bf0c142cce81910e0 |
C:\Users\Admin\AppData\Roaming\Winamp\Plugins\ml\views\et243A.vmd
| MD5 | fa6b6eaa81a2662b8c45b126727ea832 |
| SHA1 | 6087f9505d21819ed2f656517a0a13664aeead2b |
| SHA256 | 370be262ff415bed2a40f450f69dfce660e3e635af0924dca0c1f118e489c046 |
| SHA512 | f26688d6236021172c0f2d001e5636f018fef9ba7c7fadf688bd78fb1f9633c766cdf9ff2581997bc7af8a5ffd92da19cba699a46a64a555ccc0e7e57bd7b3c1 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 7ba5f6657bfaad15098d0e932ef95896 |
| SHA1 | 47943a361e24ccd1e1b180b356ea856d6c9cdbbf |
| SHA256 | 87de5925757a65a8066460f81f5d0e334790b54bd103400e5c7467034b6168b8 |
| SHA512 | 542ec6835b4ac16e68155b054f976bf25c057dab56b28a2e0f7e0c318ade0e96172af7dfab5e0696b765bb82f41359ed4b5e35cfef00f11bd5a3baa52ecbc989 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 53e4cab12b33cdabc8b67753d9a355b3 |
| SHA1 | dd7ecbdbb9910e86eb55b1d2ca0cfb1f5adbc6df |
| SHA256 | 2d25ec51a164397a4eb9cb97650e14b25bf89f8fbdd63290bd837a9ab132af04 |
| SHA512 | 772a6f3e591b5feb2b6be511504337334bda87cc5dfee2cf3a25f32a31355a9dd06f1048e0dfe165f9ddd62f4baa10c46be8e686f685ec351d664739b4e6fec7 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 7c8869cbfe86ae566dc37f3d3d9e9043 |
| SHA1 | b67e53031237fdbe17c1da4903cecc210cafca91 |
| SHA256 | 031898a723c808c81934daedf23809df9cc336b9de1a8de676c49e18d48bebb6 |
| SHA512 | e6a68c78d41e810a515fbd24cbaf253c2f0c921044bcd111a1656bb34f6c2f68e62f6a6c8163a8bdccff188bea813b6915246d7cce792a75c9ebbd0ca483ae55 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | af699e925b6bf0499451e285239f6508 |
| SHA1 | 9f066b8a3c44f9c3f0afa95402df863275b5e43d |
| SHA256 | d51819a12df1d5bf74b3351de612fb37be08560ba236bf0a493db5925407b349 |
| SHA512 | e845a991b4ca3e9050c52d67fdf0be21920b47aaf0801c4aee85bced517bfb072e3276f9e89c2a3fe261d774d0a175cb4a91365dbb33bcb46f932dedec834909 |
C:\Users\Admin\AppData\Roaming\Winamp\winamp.ini
| MD5 | 2f68b075be74ffe58001f725b6d838d6 |
| SHA1 | 01c590aa9b9edf5871208d6ac681b824c22ce0af |
| SHA256 | 2b35d8c41359bb73421e7ab05fe81d39fde9309b42a551c54afcace3f7455f52 |
| SHA512 | b9a8db4dc2fac60a9c6b8466cade64e46877d748f36ff0b1ec58af835a777a7a66c5e01aa9420258f60b76b158a5dd3ea4fef09d979b7d2e6d6eb37a58efac59 |
C:\Users\Admin\AppData\Local\Temp\nsr4B1D.tmp\modern-header.bmp
| MD5 | 827358320dd8861c44eac1e220047c29 |
| SHA1 | f31677b280a72c6b2eb87fa206f0586194f2029b |
| SHA256 | 88e8a05be9cfb8daec31872c8322b7313b66ceaa45c361f8efeda53809f46910 |
| SHA512 | ac27f720a9bf69ddb5821730558ad1b838dcad6cf9eae9990a8051339321ae912e4dc7751238ce3ccd9a1f615ab60b622e3c3248fd808fee63f39b7a38986fc7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001b5
| MD5 | 2b494a3bbae5906293ab1b04641b5fef |
| SHA1 | 9d2840d66111e02ed7e747c48e67e52727e39457 |
| SHA256 | 384fa3ca4effaba21d3b25588729ac5fe5de90e052e3bafad62aa05d05471a93 |
| SHA512 | 5443227374c4e78e275f83ded42466a72d042cb021fa971c5b89b0f73ee4d19e3c35ead921664b67225bcd0e49e3c94e9fa046da4b2d015f6a965c6c41ebacde |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | a691363f0a2fc1a79644156161e587f7 |
| SHA1 | 47028fc92e50c6ac14539125cce61466961d7bae |
| SHA256 | 3a1081312f25824a2fb84ec2eaf6aa7aa35a2ad393f5dbc76afb7a93a27cb519 |
| SHA512 | 08308d27bb38e5b18edf40631d16f3f4f78e7a3cdfc172466f6b5fd935eb2cfa39e78419427be29e8480da1459e9b83387f2a58242cb2a4883a13012ac3aded2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d451c73a322bedb6bbdcf293eb67e258 |
| SHA1 | 3568e3d7d2aba79b81bcffa5019b607ae59d5ed7 |
| SHA256 | d29be9db7a0c116eb564ec291674967ab61c8556eea39eff23ce8244dcd66d73 |
| SHA512 | 42a71fe00fe5e9a8f16c7390c75a6f5d227b704f75926ed6f712ff903f93e234eaa1a7a6474c66db08af9d3e54735edf8549932e22da18557541642cfee81dc0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\14ff8116b518ca2d_0
| MD5 | eaf3598b6315aeb55167e4be22a14e19 |
| SHA1 | fa99c1bd087ddfc025ad247452c94029a1c39195 |
| SHA256 | 1c2c4e0fc2c8f9b9013fa16924c2195edf63b9abe4fee3706e28e57cf70b2f7e |
| SHA512 | 88dabe180241b3ee7b474ba2d5c8d54032259999420b63430b73c37a128399328b885dc77a6538f1cf6e27986a2ca9a0d8aa5b1822132c15acd1adeb59f7e760 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\632e260441be7404_0
| MD5 | 6f267e3bb8183690a5013bb15c9ea42e |
| SHA1 | bc452c8b70a2a5ef40563067e1261bf6bee86f66 |
| SHA256 | 5615dbf75da7709fd5e80815dd1b631887c557affabb5c034fdf2b6f3fbcabde |
| SHA512 | d89c788f190f9c8ce8b4b5dd1309c7eb513d5e0b6d874c81ee81ca8ffc0d0cc64e8a34c3367d880fe475e920ebd7ec44ef46d55874f070097d47fd1d78c228ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\1ac673f66e12ce14_0
| MD5 | af2f3c7180c4661b616f810a76adfb80 |
| SHA1 | 9b647dd31acf8bc2058182a04eb00c09f1427a37 |
| SHA256 | a6bd9e906a97a17fd6ca5872818073deb21ce3e54d6d3c35136b810086b05b60 |
| SHA512 | 0abb75ae9b22d676e6b354085c54100e19a91e64e15e3f73337ef0788f7f4ad2717773a0c0b293974b214325fea5ea88d1164b7541e09349fea7b6f5e12fea8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\81764cdb356c9506_0
| MD5 | c0e1f24a99501ca3d2b4afdbeb4cedb0 |
| SHA1 | 19eac3b5bc1d0c7c1fa04de192a99e8231fc783c |
| SHA256 | cd881d114491f45148fc4791b788014193056326dac6090f54989d1e468aacc4 |
| SHA512 | 6bdde3f5029adbdbb8b4ab80fa27ec9c4606982041ed55b0d9ff0de61cab157a01883c670bf01e17d8fea072972eefcc075d98750b74a9533942d7f183c33bff |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a37ad9a49149528a_0
| MD5 | 6a26167eb4576978ef7525232e0a4813 |
| SHA1 | 9fc1a2d4d35d875b56eb79c8ef189aaee84339c1 |
| SHA256 | c9f2770f0a1b31fb1b2bb83b512d830a88e42b7ee78ef352d7e1f3e19e69408d |
| SHA512 | 8c91e29fa4cf6062cb74b4b0e9cefe503c19842b03d20c7dfe769415cbb79f22944fe1ca999189343f803b82488adbc5c1bf28ab42247bd009409d2c5406d0e1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\635e64b37935c888_0
| MD5 | 4b3b7e940d4567a09f2a9111cb89d685 |
| SHA1 | 683248c54e73531e886421075fcb29c46a01f0be |
| SHA256 | 5ec7ed9954d37b4a4e78f9f57d0aaf0199df860c15b5cf6166d03b7720d418cb |
| SHA512 | a8ece0c4ab89d98e7f60c4d257004b8d0b54ccefc289d4caab2111de1e321f23550533ccabc34e7b563c7f8ec444c7d229a9c5b83fe83262bd5734142ae10e85 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\718aba49c9504085_0
| MD5 | 46db4a082c608ccdb28297e56f8f7bf8 |
| SHA1 | e91930e7267e8c929e189b73fec017a33c500448 |
| SHA256 | 7a5a9637d641d87d6e06ac14aaadb3f1cd9cacbf38ea99bfa4b27b7f5c7a6f39 |
| SHA512 | 995db88470ed350c6a828ebf91582c7b8db97fc6b54f4cedba254c70279b248751c21901fdd58302ef735e5dc8a24cc97f22dac4afce9bbd566b9b0636924ee6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\94f93ada55bda7c3_0
| MD5 | e42b2adc942e354feae7743507de7bce |
| SHA1 | 645d83d4cd286b0fd0ef47f3189b2ae005422508 |
| SHA256 | 6787c75d80e685a18982eeaa65616992715a812f7bed452ee739fc9aec7e927d |
| SHA512 | 791ed4045c2841975689d21e85d0d7cd9923167ce9fccf9c711815d87e4025f6601186db861c02608135b155d5478f139d6ab872dbce550e10bb838888eb8575 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\a6537dab24e365f9_0
| MD5 | 570e0e91f4593632d2fc5c9d1b7a91fd |
| SHA1 | 8a17cee3d06ca5bdd770061637561374d22cfdd4 |
| SHA256 | 8f76a18b76903c9cfa0e5b81389d6d863c04639e6b3bc535e0c7d2b77906f062 |
| SHA512 | 6d3702ee3e9594ca81ca70369e10bf933142cbd79f3d1bb243abaf2f099a661dfd79b17435edddf704b73d1dae552f75085446cabe42a6f7822f1bff6e261d68 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\718cc3a9e092869d_0
| MD5 | c3fcfd5fe288328ea0aade8489552eca |
| SHA1 | 26bbddf9ad9fdeaabe693c8ef67aaddf33e22e3e |
| SHA256 | 8652db390a52dca6c6e6c96e98c58157ad41cacdc46ba0fcbbc9eea6a4bed0fc |
| SHA512 | 49ff62ac15b7858d4dcbf651a643f5d379093becccf74fb3bb1e4711158a25879fa0f50b340ec46becad4db1c2e6824548763a4741778d1a37327bd0fd85d1df |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | bb8ced0df76055260689f29060d9774e |
| SHA1 | 5ae97502c5f2a7d70ae56f8f8e741d1c801daa77 |
| SHA256 | 35fe8ac8d3ccd202f867a28ff46f8eb7e311d3afb0f422978c7ed70d9c20773c |
| SHA512 | 9d1a877a99cfa13d571eefe495c2c75f3425645ef697f986e46c980ad1b8c9bec012c1c91de44728e2c8d2a29b17549e6d322dafc4ad7ac3640800d130c48eed |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 909352b69e5d5432639f915a68cab2fd |
| SHA1 | a12755acc91e80df662d72d25ec1a120ab9a7f79 |
| SHA256 | 82077b4e0834b714389ba1560e92f902c2af186228259d0a1c4396b138ea1dd5 |
| SHA512 | b3ad12dc3fdec25fcafd8084a8cd023b1b5347f5ba2777ed5315915f3766bb80d5d70fe0d335b79756143712c99ff9e3c0d21bf62eded1aca2dad4a2006b8a25 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 1bc4f627b2493286e90b27a914392dbd |
| SHA1 | ae22255f8167d266923f7214e36b9e32fdb57382 |
| SHA256 | dd8885569a225e899966dc510cef1fff3ec1e163971c92049e12cd9d5c080a85 |
| SHA512 | 83adf212c2277df3d5fbf3392e8613dabebca9860c0c463a55dee6e98a0115ea7e261dc3117b35400b02da0ba3f7ae0d61b37c202e5ac5223c80d273d8bacdb8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4aa658f434b29ace2d190cbc59df5983 |
| SHA1 | 542fdee70f83597a230d66028245c06510a6241e |
| SHA256 | 6072fa2521115dc627dc2924b8bcb5b999ca438223f3201dbea743f03d6ef01c |
| SHA512 | 94d7afc65e7bfaa3250f3d45ae61803f34a27b0e22445ffaa866d4d83a2ce2dc1a1ee94982d0b1de0b3a125abfe2fd1968269b9b2760b15e7cb460956285e756 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ca5bb3c84b908d6e_0
| MD5 | e7a770d5321b0b4f9619aaebc5418f6a |
| SHA1 | 7e5f9cf6810236a3301445e4da6dffdacf2f65e2 |
| SHA256 | e8de1a648e5a8acd9a5ed2950caaf1a19a3b0b3f460c4d227fa8a9a762d842e2 |
| SHA512 | c36f6cd12615f6651184eef1e07944c0abd6ac7ddbd450dbe881e888db3279e79bb4fa7017bf3dc5a956b348428b1898714d9479ff4e7308f216ab05c6574b22 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\59fc8adf66a76ab9_0
| MD5 | 8bbaabbdd7783cef7127990ad92425e4 |
| SHA1 | 7eaba5dda02ca54547c2cafa880f565d40d12681 |
| SHA256 | 99ed0c41f9852a51cab7aa415c152d42b1bed584c8b2ef11923c7b2f660ad602 |
| SHA512 | 67169f72df5b4ac0536ff34093d1d01a679f2a0655fa3fa6776a2142ee3db20e85087b23d55cad4d94d27f6259ae676f560a71b71a905457d622090dfd5c9840 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\99110e9a19c3c06d_0
| MD5 | 5ba0c48a149d829239a24432351dd156 |
| SHA1 | fd8c59f3568fafa2ee7918682c1f3b1a28ef19ed |
| SHA256 | 2ab93336a67b6593f65de2dba5930b6af1383c5a57d21d8bc5732c93014ae9fa |
| SHA512 | bf35b009dfba8e1b0e705d7bd243c0ad5e89766e74f1dd36ccae21ae6d1d830a5f9ca44cd8f1e378bb88cd3cbb4fc5f39b62ddac35a0b96f89a56ff398ab2e87 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\5801d3329fb36c59_0
| MD5 | dbe2378ecc2854a00146b445fdb2904e |
| SHA1 | 3b9944dfcd16a4a78b46920906406e8c24dd4ea7 |
| SHA256 | e2a67891824c81866f68f214d6737b5a448f66b63b56809e1dd90552c7ef3c26 |
| SHA512 | cf8bf596474382beaf1dc7685f251bc060c718bcbd97219798c7113651a7a9ce58dd0e58d8c171bfbb53f6ac48add9ee3ebc6cf34d84e7262ce2f42c86aa34b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\960f838b42b585c9_0
| MD5 | 72071e78f40bed279739f492cc250ae9 |
| SHA1 | 6a366c44bb3ff49074ca8b7a58d9daf53a651af9 |
| SHA256 | 213a21795f5af5735df07d373ed0bb8e0d412ed86789986217090a5d24611fcb |
| SHA512 | 8588106443e236acfe751e7381f1e84a94bcbd6d7a0920a3ebcd4a61c4e5e14b7122abe0b5126583625be17c2d2af2b51be4b19dd42b801d27bef2a80db93aac |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\e3d18be5d494e38e_0
| MD5 | b7178cf0616edc309dce79a1bcf0736a |
| SHA1 | 525d50a8c1b826a39dba23f7e16ef0506678b9b2 |
| SHA256 | f375a204e33abfc186e14cbee2ee8797c6a8d21c7f46e031629632faf174fa48 |
| SHA512 | 0fcb9b06f09e49e598207af06526a061672ac6f0365a1a16baa03e4ffb3fd8f7524a6212f356bd7e9ab984dce7de19e8493d5342f1b4dc2a9bb53d85ee983b13 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\87bfea9426cb2ef3_0
| MD5 | 39b5d05da151dd756ea78aa834dfaaef |
| SHA1 | 4f5f815e6b74988866337da09ecd34f691514ddb |
| SHA256 | c443cbc29120db0ea5e66060ad0cfe49a6858cb53fb13ecfc765b7f07e8cec5e |
| SHA512 | 43f01f40731d8d12af52e499b884f68ace6ede65dd15eefdeb6b0d225a580609eb807002e2b1d37433fd712b26637078b9f82d69b69b43ef0924da1d629703ec |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\6b462fc8990cd7fd_0
| MD5 | 1daf80264be06ba1cbd2e56064b26f3c |
| SHA1 | 366e262d6cbc8c0521bc4f1f0610e3f36467781f |
| SHA256 | 96fa387bd962f43248492889442a2fc6fa8b235fe8047bc9f870cfb311a8b75c |
| SHA512 | d18b09e0c6e792469d05f7322b02a24453215ba6e9bb9cde1c598d32bfa1c39e39313d5688bab9fffe2a69b40734c7155e540c6b0b7e3c51ba4e580081b3e910 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\8e5987d08f7b6e11_0
| MD5 | 301973bc8e699e35723146187946de27 |
| SHA1 | bf1f215ae2613e043689f882d2f5e3751701079c |
| SHA256 | 12fe3d4cf8b65fc058adc3b1db7645781dfed2d80916f30b74b369f3f0ec25be |
| SHA512 | cd9847d643b38cfbe9f408abf0e2e34673c9f243f4d0ee2cc226783e37453680764e1586887772fcf8e0ffd54979ddaaa1865b8744a146374f79b3000394b371 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\02735674612cbc52_0
| MD5 | 5b4c0aeab634f1df0af5542463f32736 |
| SHA1 | bbbb5bdd8fe0c9d04b4dfcc5facf47becb01b41c |
| SHA256 | a492813de962045ca3d7cb1c0beab305b27c1f2718c192b7c3e390809b74882d |
| SHA512 | 9db59a80e85a4235ab7a8fe59d514a2136ced0e378ddb821719477485b618d42af83bd4667ff58576de203f87969f48b36b99bafa17ff43c9cf8df597128ee6b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\62f20db8aae8f96d_0
| MD5 | c52fadb37b514e4e786641221ed978d9 |
| SHA1 | e5aacbed4bbb38273af1c4a5334d428b60c07f5b |
| SHA256 | 1a9821c4cbececbe3a24046eb168ac8a7a93dd09497f20f225db615d29397614 |
| SHA512 | 546f3a45b72c0ddf756ac59cad648c6809cc4353b6136472ea80b1216845d4653ebf978cde6eafd43a6ae39be8710863bac56a258bc8fe49e86ada89630a34a6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\48b1105b4c2874b5_0
| MD5 | 4a302d392ff09c8f63a5023d3c950ae0 |
| SHA1 | 8a51c76eaa62506c63526cd29d0078943ba37064 |
| SHA256 | c729b88c8547ce9eb7cad5b51e76070d9996faf1b1f7c912c466884970858f28 |
| SHA512 | 754db63eeec05ba8d3990dfa93c5b3b325ffcb9ee8806536cffdb08cd15fd61036be20fd0f5f8bbef9b8799e4b3cd200f84364746d2c6f4bea3b980497a60887 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ec
| MD5 | 5af551639f7fc501b08aca2b94ac5981 |
| SHA1 | ff7ef4d9b6f21aeb45ed1f837b47359dadc3e298 |
| SHA256 | 99ec71fcd27ea88a10963e2105977cfec80f08fb0d35d64e57f8b7ffca3fca94 |
| SHA512 | 5d28349cd7deb814a00a9d2b8cd9eb20272ddac76b672e70b8315a6da299480a894a29de2bb4678a5e1632e2828461a528d3c285bfb5e433c8d5b34fa2b957c9 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\JumpListIconsRecentClosed\8b0b2bcf-516b-4eba-bc11-dd4dd21206ba.tmp
| MD5 | a36e9e4606a1a5ee16ea8104cf1a5c7b |
| SHA1 | e9fdbd0d5e058441e42da0a9443c10b08b4501a1 |
| SHA256 | 226522107a0e534d988a5cdff6b410f66d4f26b03ce28ea915041920f7f4047b |
| SHA512 | 12ed66f9f12dcbac9bdfa98c5ec58ee6d6abe8327cde11fdde47e838ad0dfc21ae37f48d0bea85d6aa126553e560e2de0433151f6a5d2dd3223850423f931ce7 |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 543ad6fef5332289482f735f116865df |
| SHA1 | a3ceb6e30cbeefa45bc7f229198f8949911220ef |
| SHA256 | 540150ae5eaf3acc9dc14af938bc9d258b75e500c1231fc1368a2c48c24ee4cf |
| SHA512 | a5ee7391acf68cd73f79cfc9a84835eeba833113400c1ee0550f0eb7d02edd0d42614d7467c477f3667ca2f80e1b46accadc434bf1112e4e51d59451bb1ff728 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 06470f7850b59397d858c12fad20bf3e |
| SHA1 | a0033b284f62b0ec9f0c73bbb43e7ec09ab3bdc2 |
| SHA256 | b8eb2c52209090988d82f98d8674b20134bf59ded2e3dc183f837e2e5c663f91 |
| SHA512 | 30ec4ccb222bdeb0ceb742fe1ae4ac15fce577741cb0b8e7bafd67d229b9dcb6201a7dc55c5308c7fc88d9b8b980bfd93f3ed5445bd3d4dea8bff0f39a4f4216 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | fdfa499188b68b737b2adb49085a472e |
| SHA1 | 35fed5078d5e9a4c8aad29934d0bdf4a2ba45eb6 |
| SHA256 | 05cace1b6daa8debccd777b92206c64f0be40179c85b1578e82bb5a9d3eded30 |
| SHA512 | 811802c2c354289df224b8f30059383e8453aed238f947cbdab0f14cba5397e92ffbca292f810948f5467094011930c284e3efcb169329f7fb777b43eb219d64 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 746b4c8dc06f4ee368c091b52f2d5c06 |
| SHA1 | b4cba5cda9313763a46764a43bce5dc227f11469 |
| SHA256 | 2ea68fde62d8fb1809e584df6c4a899a1d550c9cccfba41fcbecbd01463ef1ff |
| SHA512 | 309b98f522dfe8f59a31dfdc773ac8f6278558a046cbce7615adaa430ee71f2fdd7381fa56b501bf7313e557a17a05eedf8bce898c32e49448f5c19c912cc01a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Service Worker\ScriptCache\index-dir\the-real-index
| MD5 | 7a29877bedae9e05a6986d9b5302852f |
| SHA1 | 3694c788eb2ae218a2bc0210b7ad07c4afcbbab5 |
| SHA256 | 004b48ead9c5919b7279c0f78ccb272c6a142c606eb7a3a9f2e84135ad643aea |
| SHA512 | 7fdfc16635c3b7c6ae4b042190db4b1051651f9685628fca57d37faa5b10d4f5f2d311016f9099a49f911298a060c4316463bee9dc20f75ae84051541f7275d8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | fdcff4856d7acdf082ed6b70fe6f217d |
| SHA1 | 731e07d351b5286a95a7d712641da7d0ec4f9779 |
| SHA256 | b719e2e0e986f10d39406411fc74060e96bdebf3ca7161e0d33dda17e341d34c |
| SHA512 | 759b89bd84d957a0b0b17b445930fbb5f84efb27420e6fee0cb4c0c41f6b6a6b454c2daa4de892c691ab0fb984399554b3978b7a406f85aea0e4fbd1cc7b53b1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001e1
| MD5 | 1cb55c409de6c5aab988f51eddb6fdeb |
| SHA1 | 2c9deaff213932251b33da72885fb68ae864030f |
| SHA256 | 8f2c773bcf8619dc80b4a7ad862eebd75f0056fca5773d3cc61518639ed81d54 |
| SHA512 | ee44f0455df592289fe6458038b731f3bd5ad1876fa1ec1972bebc16ecd669f131017a0c57a6a3c17fd1a69b99c630b0d19c91918981abe572f3c57adbb779bd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001e2
| MD5 | bf13f58cf788bc1ae74ecdd86948c0c5 |
| SHA1 | 89c8263919c8328d6c64b80b5787da89a79e06c7 |
| SHA256 | 648c276856c1eaf9aa44e2d0a757785ced4e701eef82dbdf3ee38cddbe7d7c62 |
| SHA512 | ba4936ee7377e84342f6bbcf5d5bbd534f16e8c3ae20da0cd6b0b4a6d89bfe6f0aed1cf3c5f22f51c6248c4fa4d4f49efc4a5c99f2f81ad31deae3b830b2f058 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 75337e9f7a58a9226a7aa7df3f794baf |
| SHA1 | 96e73aeb68c61c1449a3ad6f527c7a2c59935c37 |
| SHA256 | e24ab77f161bbbb7843d32e6628d09a1f231985d51c9851329e024587ed90589 |
| SHA512 | fbc33d6e764512914d6b4ef95175e2e0126852a97cc7c7067307700888430b629380ac6696c99bab46143a0c8191dc0aa21dfde37f68f93bba04adbae9b1fd4f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0001ed
| MD5 | 7820201f0db0c706a0ea5bb7ce018ef2 |
| SHA1 | 6d116650afbb3b25bfd6226c7d5ee00dd1fe4515 |
| SHA256 | 04f262a5cce0399379de17e5635f1e1acaf4371afe981edaaf792625a682c44a |
| SHA512 | bfecb88d8852c413525e1e1bdb3eb69c97a10e4ff67ae3ca5eb97fff5a2ee369a1b80a0d314440a375d0f9e950e0e970a6de6afed09062d8523ca28ac878946f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 6369399e64e3695580b3e6866a4c1696 |
| SHA1 | ada45b2f6eef04952a576e07c4468039e8400675 |
| SHA256 | ecccb81bf10a5c8afadd63ad27568921c8d39444296761ca1ebbc1f0d0d924d0 |
| SHA512 | efa6e6be87f7cc6b121d4691eb06164255a37713e4bf60ce7ae4e901a093cfa1ea3d3f17a7dea1b3bf9e236ec6e2bd73caa3e8132280bbf8c114cfad8afaa348 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 8c229ec7a34de3c846388248c8748882 |
| SHA1 | cdbdd26c16d7d919fc7bd83b16fb659f9723aa58 |
| SHA256 | 9cb96b6bcc687001c7d4ed28c1a5ebeaf2a4c3010168f0f9cb11eeaa20e18260 |
| SHA512 | c1441fef5d1655b3f44512c4ed6694459b7f51ce00124679d4ccf7b5d53b58fcfa7a6057c6c6fb19d5b78937f6d2ae354fb5f615ff8002ec5b20dbe0e2107b36 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b35bf989452abdf6908f2428df7b6441 |
| SHA1 | e175b6ce3b468e138d7e8036d44da868905b67d3 |
| SHA256 | 0275c3eb9acc733e8ac1caaafc277cb306ea9fd23af2d0ca1c442df82ce48ed1 |
| SHA512 | f0bc30f8d3df3a764f7e65c4ebb98be6fc6af48ff62e587baaa1e4741589faab6230f5ca11efc89e109183536a77231b90e627f1241d7be0607e7731d8508bf2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 1d42635cb86f3d607b3aa1bda48529f8 |
| SHA1 | 71b408f2dd76086e3c59eeb4aaf62035839ae263 |
| SHA256 | ebdc7ff41ed568e0b885048c7bc6e02e6dd77f835208fe77b0afed32818a65f2 |
| SHA512 | c33680b92555d7d12cca7a81969f2dbecb0fbe7aea3184a22e1a65b50fb501c7b4617255c2bc4b3fa100ee9d3acb74670458f2b1702a1efd030fdfe620fd0bab |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 4e785eb0baa277a9ae0fbb7153a20106 |
| SHA1 | a0100d4fe0420aabb66e2e7b7780ec0d9cd3424f |
| SHA256 | 100c83146240ec50cb328bd9901267999896df95d75ad357cec9f9d821d4dcbf |
| SHA512 | 72c22cc27a8f5426e497b40cd24d32e9959ec8a401a5d0043b6d96268a0d64d14ada5456c3f4ea3fd6484ed8f987e430a905d93fe6b5bfebbd4bd7dae3516887 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3a55fa54283e47ff1649bb4f620b4379 |
| SHA1 | c14a9d8e0759bc5ef897556aa994a90571a96a13 |
| SHA256 | cdf41f6976d5f63ff69946a9febbb6f2dfdace9534fcd4f41dcd00a6f1125115 |
| SHA512 | 22f53ac63ebe069c63da9193fcd8a0d4057e9a060c378628c59df7c1c30306d8ab18d2e553a537865ace4835e30001d1148a57a393e7b99b00284a9cf79ca697 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 97577bf9fea97b04b0b28e5a5d96f730 |
| SHA1 | 2f2362811221ea67125cbe8928f42dda75acbdbc |
| SHA256 | b71b2bcb8a3e4b74721512aebde9508f8d6ea6abfd27732da3b84c0eb401ebc0 |
| SHA512 | 78419051c60187ed065eb4d7f8cd0fefd9b6a791ffb95c158feacd9b39c6e4929c7b531ce2daf0264d23271b9c0276d1f7a101fa5019993469eb402ee0251d4e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | d33255172ffd769d26e348ab0126bb01 |
| SHA1 | 44d16a52ef4339159acd80d451f36be9c4b1d344 |
| SHA256 | 332fed5c02c38cef70bc163e1c59a591322e1a5b952f3c88275f61590ab8f446 |
| SHA512 | eab9e96befbd733920ab8cb8c2f39249a107ffd7ff8418c33c1d66263ddfa2c4de027c427af5fe9b4804887cce0c70dfe0d4849c5de51d3314f67ef61ec6ea05 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3c0650213d6128736202099db163e540 |
| SHA1 | 640799c43d6b1fddbf7285170dd6622580b2693c |
| SHA256 | 2d159e4434397d03d5aee7dc544c0d665a61f419169e75662f768d58449be7a0 |
| SHA512 | 6d68570cc868381810c2cd3abc7b185e5ef49004e5270ba9c9b7a40129ed4abccaa387d88a99afa573ee3a49769af7e09557cb0f53bb17f0a0f717d2c141886b |
C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccba5a5986c77e43.customDestinations-ms
| MD5 | 6b574443856f7e159ee1a8bdf159c6f6 |
| SHA1 | b0a4bdaa1675af12c5779575716f1e98a3444d99 |
| SHA256 | 7bb21ecdca3d6756e2bf9f5c4d70e7b66668fe3f4d7f9f3fde29eb8825f0cb17 |
| SHA512 | 50ff95bc45d3c2ef7b861cbf6b017d01ef7d766583f7b8668f9db3561c6dab77c256c8776be9ce1f775dea530a5a18e03c8972e46af419821e48db24ce07fc3c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00023e
| MD5 | b3363821d3c8586ecfe5175e1eb055bc |
| SHA1 | f8ca5a23dc63ec2bb8b73cb48600f8c698ed8a24 |
| SHA256 | d66b309b447b218c2fc783f8aa357aa6e9606bf7ceed4ec4293228f57bb32c00 |
| SHA512 | 71cd95b5c7b13430162f594f8ce5858ce43801103948ba57751db689c4f19669c87a545fca8829d87044b8b08e9bb24a1471bd67cca0174a41fbd7ef7d973575 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\cc2f0fedd3e9608a_0
| MD5 | 5ec2eac96f4f15e92c984d33a10dd405 |
| SHA1 | 376d1bb13764656e2897aaec897f4ad157700c46 |
| SHA256 | a0b197624933b9164cf8fc7399957e56bc91034eb3417af8be50e09ba5270a7b |
| SHA512 | d58d83f4e42263c18289f5f0637b6570e7d1c24bb7c02efeac5ba6f267b6311ff05ebcafe5c5b0303f9f8aa94158e719eadb4998fb1e70bf99ff9d931e82cb9e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3fd2be14abb3904c_0
| MD5 | 76f0065f2fa08feb5dd6ab088230c066 |
| SHA1 | 9e4050fdced42aa9d4cb946f68b238912b618e58 |
| SHA256 | 2a39d7229c9987b14ea8ca326be82256cc7878f85768428e9b60e99a8d04455d |
| SHA512 | 67dad4bcc860cdb967182fe50825a3f986b987ae359aafcc3f78e9ed2ba4f8ea870feff47658807135b7d256f631a10ecdfe509d6c65a24c403532bb1f912e19 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 685409eed8aa0e83a542580e00b4b71a |
| SHA1 | ade3b34e845d98033d21e1b570923c6b36599328 |
| SHA256 | 62839049a21c02dd20d84517136f166a98f1989e57c1b7e315031a29ad37f1ae |
| SHA512 | 7ab016920bc037851e26a29264ea66bf052f0ac20a7efeb7d6a038a23a7ea523c452e986701cc8f7dc31f8f641c73cd1a22ad21c3b788c0b5f46769e329244c7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 928d43dd87a811bf07d4d1409960ab08 |
| SHA1 | ef35a721453b5249da3892d5445bb28d91529b14 |
| SHA256 | d2789374124ce64fc86a9d36f0e934eb5c8981ec3c9a211532f7c3abcc1a8fd6 |
| SHA512 | 78f07e918ef19f3964a670dd0ddf2bd81e9faac6a885e071cbdcf46c543075a7b35b8ee6516f7beb1e557066a360c6f91ed4ca2dbb671d0e473ef29e44b072f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000242
| MD5 | 261191361b8a954828e381bfcea414db |
| SHA1 | e33955b2cc6e47b62115356b3de53985e5dbc5e2 |
| SHA256 | b0fc264bddcdaa7d327f2713acf32310cb999222226972f9300951bcafb177e7 |
| SHA512 | d0e0940852db11733fce8d617953d6561a227d77d756d00cdfc1a1b96f96a2ef85c28dab0b1a6434ab95f84ad1e0ac0d4e77acdf68c4ce16b0a51df19cc45115 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\65a17db215bfc27c_0
| MD5 | 40f2dd88a16c4e5b326d3ba8485d6ad0 |
| SHA1 | 3fae70177df5ad397ce1a97fb994005bc0baccc9 |
| SHA256 | 81ce3bb8fa5c591f2514dab586fc6026fa861812ee5d18cc61f559508de62951 |
| SHA512 | 82e2df552a289675276042ece3037624f045aa218394ce25508bf7eb8add3f01a3dc16cdb04e377eaa22c0e183d052dfa5c4d4cc3262541ca0a0a42907bb35f6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\87e1ffb07d850b0f_0
| MD5 | 8cc74a4b057ffa5a4efffadeb5e72ef0 |
| SHA1 | 03c664ed02c703da9555d7888ddf5be8e2d60cb4 |
| SHA256 | 2715b25d1fd3692460ada0db80a2fd438ee2aa49f20b4b7a85c4d3b2ac5fa638 |
| SHA512 | e3fc3fbb09e7f7cff25e95525a59c32692f2f4605c80f64e34c095ec4a8229db3fff1dbdaa111acc18ee29c06bcc4735bdb9b38f2cc870444111bd528daf70ac |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\b9c1eb04784ce0c1_0
| MD5 | 50a0d5952b2f4c51a5c0d86245e0fab2 |
| SHA1 | 0d0df8826c81c26e76531d9969f813be37319a65 |
| SHA256 | c9f351e4c1614426c9e0c373bb38e86d0faebc0258b8caaddf891b4149972057 |
| SHA512 | b432312a1c15ef01a236677aca4f0cabbf50894ed1caa8bdcecd9fe299c853a1f75d712460a323b8aa2bd2480e71825d7665b9d66c19f9a14856345200d79beb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7f2d48d3144f7624511862b513f18de4 |
| SHA1 | a315b574f1f809cd947e95f4b8768440f2b10201 |
| SHA256 | ed9a6a10b8b295296a00b0653a5a2e7aa1ef97ccae0158aca78528d87333715f |
| SHA512 | 347ccae577d876c0e15f886b5b2dae10785a9670eba61a4e7fe49701eac1bd718e74359ba9b43edb4681737b3ef9b05f9feff8ceb8a752a74345c5dffa9d78a4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 402a96fa6d428586c5b88a7dcf178108 |
| SHA1 | 49c609b94f87bcf9880a9a14e6d8b98463a65b09 |
| SHA256 | 03dfa4f00d80066a5a69b8ba3cc7ad0ebe9816aefba3e7d8dd753657aba19fde |
| SHA512 | 6c43fe9a9be160e69ff3ac1598149cb3fcf0f6779029c7ba44c4404e8739ba798ca8deff0dd5e885d8401129f773f61a7cb43a11c7471faa6177a3cf4f3dc948 |
C:\Users\Admin\Downloads\WannaCry-main.zip
| MD5 | 3c7861d067e5409eae5c08fd28a5bea2 |
| SHA1 | 44e4b61278544a6a7b8094a0615d3339a8e75259 |
| SHA256 | 07ecdced8cf2436c0bc886ee1e49ee4b8880a228aa173220103f35c535305635 |
| SHA512 | c2968e30212707acf8a146b25bb29c9f5d779792df88582b03431a0034dc82599f58d61fc9494324cc06873e5943f8c29bffd0272ca682d13c0bb10482d79fc5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | a5fe22ab71f1367ab3971d33ae374146 |
| SHA1 | 35a0b31942fed49bb05e46582e06826ba311829f |
| SHA256 | 11d95179387433b79c861dbbea0d15e93c1aec81e539f51f2e8bbf582d24f877 |
| SHA512 | 3882763573d3107a8ca962bdb56177f7dd881054b2b499c55cc8d8cff58f735bcb72d0ed1e489fef9cde843c355e5580a1c3202abdcbd5375be92292e36cf3a1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 3f9c635cf203031e0b8076d9101e857d |
| SHA1 | b144f09d9f9bc5fd6796ef008e9d802dbe40d21a |
| SHA256 | 1a6a5fe55a681974754d318433443b9b65ed89739cba9b0d2312ea0ff58c3f42 |
| SHA512 | b5034e7195e4574f82bd8d3a586a708beebf3f79de71078b2bff46b9c24a69fd45857b32509e453772bbb5dc5fef77be7cb7db4fd564e737192f77c0d56ccbd2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | fdffef54ce747c3483789bf28ac7dd8e |
| SHA1 | db19345fcfb3a61f75a5acad221cc13f6165121a |
| SHA256 | 2952030318f73916eca763ab13a05eba521b4d9f322b07e9c6cfc4ce512984ea |
| SHA512 | 8adc013d6354a63f94bcb21d39410bb79b99a92093c2621f8bed8639ee9447f6a0c4b9045b378519321de143ea9ce3833c01f0759c152fd161fea38f89f4c566 |
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\msg\m_finnish.wnry
| MD5 | 35c2f97eea8819b1caebd23fee732d8f |
| SHA1 | e354d1cc43d6a39d9732adea5d3b0f57284255d2 |
| SHA256 | 1adfee058b98206cb4fbe1a46d3ed62a11e1dee2c7ff521c1eef7c706e6a700e |
| SHA512 | 908149a6f5238fcccd86f7c374986d486590a0991ef5243f0cd9e63cc8e208158a9a812665233b09c3a478233d30f21e3d355b94f36b83644795556f147345bf |
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
| MD5 | 7bf2b57f2a205768755c07f238fb32cc |
| SHA1 | 45356a9dd616ed7161a3b9192e2f318d0ab5ad10 |
| SHA256 | b9c5d4339809e0ad9a00d4d3dd26fdf44a32819a54abf846bb9b560d81391c25 |
| SHA512 | 91a39e919296cb5c6eccba710b780519d90035175aa460ec6dbe631324e5e5753bd8d87f395b5481bcd7e1ad623b31a34382d81faae06bef60ec28b49c3122a9 |
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\@[email protected]
| MD5 | f97d2e6f8d820dbd3b66f21137de4f09 |
| SHA1 | 596799b75b5d60aa9cd45646f68e9c0bd06df252 |
| SHA256 | 0e5ece918132a2b1a190906e74becb8e4ced36eec9f9d1c70f5da72ac4c6b92a |
| SHA512 | efda21d83464a6a32fdeef93152ffd32a648130754fdd3635f7ff61cc1664f7fc050900f0f871b0ddd3a3846222bf62ab5df8eed42610a76be66fff5f7b4c4c0 |
C:\Users\Admin\AppData\Roaming\Winamp\@[email protected]
| MD5 | 3ab2b53f2dd8cfc623e6ff1e59b7d0dc |
| SHA1 | aee92a2f762ec1dc29a2c6a74b8798ed3f324c7b |
| SHA256 | 7c563c3dd3c2e9588814c7f3953e998aafbb9fb2d603c94e26f86976a85e07ae |
| SHA512 | 428e058620325e2941e622ef2c53a236ca11df86bacb8e649c2630999bcb602847a454d3e298a976f58f1c00d5e5f75473550c0b3511ddab7f19e848fd54790e |
C:\Users\Default\Desktop\@[email protected]
| MD5 | c17170262312f3be7027bc2ca825bf0c |
| SHA1 | f19eceda82973239a1fdc5826bce7691e5dcb4fb |
| SHA256 | d5e0e8694ddc0548d8e6b87c83d50f4ab85c1debadb106d6a6a794c3e746f4fa |
| SHA512 | c6160fd03ad659c8dd9cf2a83f9fdcd34f2db4f8f27f33c5afd52aced49dfa9ce4909211c221a0479dbbb6e6c985385557c495fc04d3400ff21a0fbbae42ee7c |
C:\Users\Admin\AppData\Local\Temp\Temp1_WannaCry-main.zip\WannaCry-main\TaskData\Tor\tor.exe
| MD5 | fe7eb54691ad6e6af77f8a9a0b6de26d |
| SHA1 | 53912d33bec3375153b7e4e68b78d66dab62671a |
| SHA256 | e48673680746fbe027e8982f62a83c298d6fb46ad9243de8e79b7e5a24dcd4eb |
| SHA512 | 8ac6dc5bb016afc869fcbb713f6a14d3692e866b94f4f1ee83b09a7506a8cb58768bd47e081cf6e97b2dacf9f9a6a8ca240d7d20d0b67dbd33238cc861deae8f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | f784b471c6492df9da5556eccea7a5fb |
| SHA1 | e907646f26c743cfaf0fe0332a844bbbf5ea9a70 |
| SHA256 | 3a4e955ab99a8310ccb1164428aa2bf88a28f005e1cfc5f5bc2bc7eb546d7515 |
| SHA512 | 574cb5dc0a18c8333207c9e00056959650fbb1a3b4423ffeb0e34721436cc194fc6647ff4c6dcb40f6409e14e398dd17ce2c6556cb5d16c30e83bad0ac328741 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | d48752b0dac9dafa003b122698ef9b90 |
| SHA1 | 5a668fe3561e46a24d41734b2b516bf68fb17fc5 |
| SHA256 | 1c92fa898caa2383504ed079ac4509cef4f00e3bbd6816c31946df3726de48e8 |
| SHA512 | 9a9ea7718feee45deed92e670657ce38da20be1d5e468ca19a030f31e53ca74aef33af07047d264187e83747e6296d4d1131164caa19baf1f4b1217c9f2e5b39 |