Analysis Overview
Threat Level: Shows suspicious behavior
The file https://github.com/Lachine1/xmrig-scripts/raw/main/linux.sh was found to be: Shows suspicious behavior.
Malicious Activity Summary
Loads dropped DLL
Legitimate hosting services abused for malware hosting/C2
Looks up external IP address via web service
Drops file in System32 directory
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in Windows directory
Suspicious use of WriteProcessMemory
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
NTFS ADS
Modifies data under HKEY_USERS
Modifies registry class
Suspicious use of AdjustPrivilegeToken
Enumerates system info in registry
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
Suspicious use of FindShellTrayWindow
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-07-12 11:45
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-07-12 11:45
Reported
2024-07-12 12:15
Platform
win11-20240709-en
Max time kernel
1798s
Max time network
1786s
Command Line
Signatures
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
| N/A | N/A | C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe | N/A |
Legitimate hosting services abused for malware hosting/C2
| Description | Indicator | Process | Target |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
| N/A | raw.githubusercontent.com | N/A | N/A |
Looks up external IP address via web service
| Description | Indicator | Process | Target |
| N/A | whoer.net | N/A | N/A |
| N/A | whoer.net | N/A | N/A |
| N/A | whoer.net | N/A | N/A |
| N/A | api.ipify.org | N/A | N/A |
| N/A | api.ipify.org | N/A | N/A |
Drops file in System32 directory
| Description | Indicator | Process | Target |
| File created | C:\Windows\System32\DriverStore\FileRepository\display.inf_amd64_01cf530faf2f1752\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File created | \??\c:\windows\system32\driverstore\filerepository\display.inf_amd64_01cf530faf2f1752\display.PNF | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Suspicious use of NtSetInformationThreadHideFromDebugger
Drops file in Windows directory
| Description | Indicator | Process | Target |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| File opened for modification | C:\Windows\SystemTemp | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies data under HKEY_USERS
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry\TraceTimeLast = "133652583452648880" | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-19\Software\Microsoft\Cryptography\TPM\Telemetry | C:\Program Files\Google\Chrome\Application\chrome.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\IconSize = "16" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\Mode = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupView = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupView = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell\SniffedFolderType = "Downloads" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Mode = "4" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByKey:FMTID = "{00000000-0000-0000-0000-000000000000}" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\IconSize = "96" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\Shell\KnownFolderDerivedFolderType = "{885A186E-A440-4ADA-812B-DB871B942259}" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByKey:PID = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\MRUListEx = 0100000000000000ffffffff | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByDirection = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\LogicalViewMode = "3" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByDirection = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202020202020202 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1\NodeSlot = "5" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\FFlags = "1092616257" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\0 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\GroupByKey:PID = "14" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000050000001800000030f125b7ef471a10a5f102608c9eebac0a000000a0000000b474dbf787420341afbaf1b13dcd75cf64000000a000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000900444648b4cd1118b70080036b11a030300000078000000 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\1 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0e000000ffffffff | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\IconSize = "96" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\Shell\SniffedFolderType = "Videos" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\Mode = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\LogicalViewMode = "3" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (str) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\Shell\SniffedFolderType = "Videos" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\ColInfo = 00000000000000000000000000000000fddfdffd100000000000000000000000040000001800000030f125b7ef471a10a5f102608c9eebac0a0000001001000030f125b7ef471a10a5f102608c9eebac0e0000009000000030f125b7ef471a10a5f102608c9eebac040000007800000030f125b7ef471a10a5f102608c9eebac0c00000050000000 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\Instance\ | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByKey:PID = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByKey:PID = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\NodeSlots = 02020202 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\FFlags = "1092616257" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\IconSize = "96" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (data) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\Sort = 000000000000000000000000000000000100000030f125b7ef471a10a5f102608c9eebac0a00000001000000 | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\LogicalViewMode = "3" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\FFlags = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\IconSize = "96" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\2\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\FFlags = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\5\ComDlg\{885A186E-A440-4ADA-812B-DB871B942259}\LogicalViewMode = "1" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8} | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\LogicalViewMode = "3" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Set value (int) | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg\{5FA96407-7E77-483C-AC93-691D05850DE8}\GroupByKey:PID = "0" | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\USER\S-1-5-21-3866437728-1832012455-4133739663-1000_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\4\ComDlg | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key created | \REGISTRY\MACHINE\SOFTWARE\Classes\CLSID\{4336a54d-038b-4685-ab02-99bb52d3fb8b}\Instance\ | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
NTFS ADS
| Description | Indicator | Process | Target |
| File opened for modification | C:\Users\Admin\Downloads\xmrig-6.21.3-msvc-win64.zip:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| File opened for modification | C:\Users\Admin\Downloads\SRBMiner-Multi-2-5-8-win64.zip:Zone.Identifier | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
Suspicious behavior: GetForegroundWindowSpam
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of SetWindowsHookEx
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious use of WriteProcessMemory
Processes
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://github.com/Lachine1/xmrig-scripts/raw/main/linux.sh
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff94ca1cc40,0x7ff94ca1cc4c,0x7ff94ca1cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1804,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=1800 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1940,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=2076 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2176,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=2328 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3088,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3096 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3100,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3144 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4116,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4404 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=3284,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3716 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --field-trial-handle=4732,i,11272031823665909161,3052550772711813605,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4792 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff94c323cb8,0x7ff94c323cc8,0x7ff94c323cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1988 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2056 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2788 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3340 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5000 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5180 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2152 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5248 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3908 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=4920 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=4772 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4784 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5344 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5548 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6044 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5756 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4572 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6020 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3936 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3772 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6904 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5536 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=7120 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5480 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6772 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6440 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7232 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8032 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7844 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6484 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7268 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7596 /prefetch:1
C:\Windows\System32\NOTEPAD.EXE
"C:\Windows\System32\NOTEPAD.EXE" C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7592 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7932 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1904,12957782318299718212,17757701839856409741,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6380 /prefetch:1
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd" "
C:\Users\Admin\Videos\xmrig-6.21.3\xmrig.exe
xmrig.exe -a gr -o stratum ssl://ghostrider-asia.unmineable.com:443 -u DOGE:DBbAv4ZWFhjFLGwNo9FgxZPf7HJJWwuLWQ.NoxzyVIP1#mxeq-d0u9 -p x
C:\Windows\System32\NOTEPAD.EXE
"C:\Windows\System32\NOTEPAD.EXE" C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd" "
C:\Users\Admin\Videos\xmrig-6.21.3\xmrig.exe
xmrig.exe -o ghostrider-asia.unmineable.com:443 -u DOGE:DBbAv4ZWFhjFLGwNo9FgxZPf7HJJWwuLWQ.NoxzyVIP1#mxeq-d0u9 -p x
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd" "
C:\Users\Admin\Videos\xmrig-6.21.3\xmrig.exe
xmrig.exe -o ghostrider-asia.unmineable.com:443 -u DBbAv4ZWFhjFLGwNo9FgxZPf7HJJWwuLWQ -p x
C:\Windows\System32\NOTEPAD.EXE
"C:\Windows\System32\NOTEPAD.EXE" C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd" "
C:\Users\Admin\Videos\xmrig-6.21.3\xmrig.exe
xmrig.exe -o sea.mine.zpool.ca:6240 -u DBbAv4ZWFhjFLGwNo9FgxZPf7HJJWwuLWQ -p c=DOGE
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff94ca1cc40,0x7ff94ca1cc4c,0x7ff94ca1cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1896,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=1892 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=1756,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=1928 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2212,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=2116 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3068,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3228 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3136,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=3256 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=3760,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4304 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4724,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4732 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4956,i,7119146694420384096,1089391074283219413,262144 --variations-seed-version=20240709-050124.519000 --mojo-platform-channel-handle=4820 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff94c323cb8,0x7ff94c323cc8,0x7ff94c323cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1876 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2120 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2692 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3316 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4988 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5008 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=9 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3604 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=3592 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5100 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5172 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5364 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3496 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5272 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5424 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5300 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3616 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2908 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5084 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=5280 /prefetch:2
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\guided-setup.bat" "
C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe
SRBMiner-MULTI.exe --setup
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c set
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3520 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5972 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6208 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6692 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3740 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=6240 /prefetch:8
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c ""C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\start_NoxzyVIP1.bat" "
C:\Users\Admin\Videos\SRBMiner-Multi-2-5-8\SRBMiner-MULTI.exe
SRBMiner-MULTI.exe --algorithm minotaurx --pool stratum+tcp://minotaurx.sea.mine.zpool.ca.6240 --wallet DBbAv4ZWFhjFLGwNo9FgxZPf7HJJWwuLWQ --password c=DOGE --cpu-threads 0 --disable-gpu --log-file Logs\log-NoxzyVIP1.txt
C:\Windows\system32\cmd.exe
C:\Windows\system32\cmd.exe /c set
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6936 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1888,13160128254184948582,8507027121055333446,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5792 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.106 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff94ca1cc40,0x7ff94ca1cc4c,0x7ff94ca1cc58
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1784,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=1780 /prefetch:2
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2104,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=2112 /prefetch:3
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2192,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=2200 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3136,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=3280 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3188,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=3312 /prefetch:1
C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe
"C:\Program Files\Google\Chrome\Application\123.0.6312.106\elevation_service.exe"
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --field-trial-handle=4432,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=4428 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4764,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=4784 /prefetch:8
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=data_decoder.mojom.DataDecoderService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=4812,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=4780 /prefetch:8
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=4648,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5112 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --field-trial-handle=4692,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=3776 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --field-trial-handle=3588,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=3456 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --field-trial-handle=5160,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5000 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --field-trial-handle=5188,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=3388 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --field-trial-handle=5292,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5388 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --field-trial-handle=5524,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5368 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --field-trial-handle=5616,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5612 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --field-trial-handle=5784,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5744 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --field-trial-handle=5896,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=5908 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --field-trial-handle=5928,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6052 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --field-trial-handle=6080,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6200 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --field-trial-handle=5900,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6072 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --field-trial-handle=6372,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6552 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --field-trial-handle=6428,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6688 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --field-trial-handle=6832,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6844 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --field-trial-handle=6960,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6852 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --field-trial-handle=7144,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7160 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --field-trial-handle=7280,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7112 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --field-trial-handle=7288,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7460 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --field-trial-handle=7448,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7588 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --field-trial-handle=4620,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7052 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --field-trial-handle=4512,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6616 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --field-trial-handle=6612,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6980 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --field-trial-handle=6676,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6624 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --field-trial-handle=6868,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7728 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --field-trial-handle=6720,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6764 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --field-trial-handle=6548,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6440 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --field-trial-handle=6876,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6692 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --field-trial-handle=7748,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7756 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --field-trial-handle=7004,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=7900 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --field-trial-handle=6828,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=8052 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --field-trial-handle=8236,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=8204 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --field-trial-handle=8244,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=8212 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --field-trial-handle=8524,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=8492 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --field-trial-handle=7812,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=8196 /prefetch:1
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=7824,i,16087166624233130298,16255904518065323475,262144 --variations-seed-version=20240711-180158.427000 --mojo-platform-channel-handle=6560 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x100,0x104,0x108,0xdc,0x10c,0x7ff94c323cb8,0x7ff94c323cc8,0x7ff94c323cd8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1932 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2272 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2572 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3308 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3328 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4964 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4992 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3420 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5024 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=4352 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3496 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3012 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=4988 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3900 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5048 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1908,17618736962035686044,1016497143982597008,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3992 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | github.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.110.133:443 | raw.githubusercontent.com | tcp |
| US | 8.8.8.8:53 | 234.16.217.172.in-addr.arpa | udp |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 216.58.212.234:443 | content-autofill.googleapis.com | tcp |
| GB | 95.101.129.233:443 | th.bing.com | tcp |
| GB | 95.101.129.146:443 | r.bing.com | tcp |
| GB | 95.101.129.146:443 | r.bing.com | tcp |
| GB | 95.101.129.146:443 | r.bing.com | tcp |
| GB | 95.101.129.146:443 | r.bing.com | tcp |
| GB | 2.19.252.134:443 | aefd.nelreports.net | tcp |
| NL | 20.190.160.17:443 | login.microsoftonline.com | tcp |
| GB | 2.19.252.134:443 | aefd.nelreports.net | udp |
| US | 13.107.5.80:443 | services.bingapis.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 104.21.61.81:443 | xmrig.com | tcp |
| US | 104.21.61.81:443 | xmrig.com | tcp |
| GB | 95.101.129.43:80 | apps.identrust.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.110.133:443 | raw.githubusercontent.com | tcp |
| US | 104.21.38.221:80 | goo.su | tcp |
| US | 104.21.38.221:80 | goo.su | tcp |
| US | 104.21.38.221:443 | goo.su | tcp |
| ID | 103.145.227.179:443 | pastelink.id | tcp |
| ID | 103.145.227.179:443 | pastelink.id | tcp |
| ID | 103.145.227.179:443 | pastelink.id | udp |
| GB | 143.244.38.136:443 | fonts.bunny.net | tcp |
| GB | 143.244.38.136:443 | fonts.bunny.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| DE | 49.12.134.254:443 | g0wow.net | tcp |
| DE | 49.12.134.254:443 | g0wow.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| GB | 95.101.129.233:443 | th.bing.com | tcp |
| GB | 95.101.129.194:443 | th.bing.com | tcp |
| US | 104.21.6.114:443 | edukits.co | tcp |
| US | 104.21.6.114:443 | edukits.co | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| GB | 95.101.129.194:443 | th.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 172.64.154.167:443 | www2.bing.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 20.26.156.215:443 | github.com | tcp |
| ID | 103.145.227.179:443 | pastelink.id | udp |
| GB | 143.244.38.136:443 | fonts.bunny.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| DE | 157.90.33.71:443 | g0wow.net | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| SG | 157.245.150.253:443 | ghostrider-asia.unmineable.com | tcp |
| CA | 198.50.168.213:6240 | sea.mine.zpool.ca | tcp |
| GB | 184.28.176.105:443 | www.bing.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| GB | 184.28.176.35:443 | th.bing.com | tcp |
| US | 8.8.8.8:53 | r.bing.com | udp |
| GB | 184.28.176.112:443 | www.bing.com | tcp |
| GB | 184.28.176.112:443 | www.bing.com | tcp |
| GB | 184.28.176.112:443 | www.bing.com | tcp |
| GB | 184.28.176.112:443 | www.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| US | 104.18.33.89:443 | www2.bing.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 185.199.109.133:443 | user-images.githubusercontent.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 185.199.109.154:443 | github.githubassets.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| US | 140.82.114.21:443 | collector.github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| GB | 20.26.156.210:443 | api.github.com | tcp |
| GB | 2.19.252.134:443 | aefd.nelreports.net | udp |
| GB | 184.28.176.104:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | pastelink.id | udp |
| US | 104.21.38.221:443 | goo.su | tcp |
| ID | 103.145.227.179:443 | pastelink.id | udp |
| GB | 79.127.237.132:443 | fonts.bunny.net | tcp |
| US | 216.239.34.36:443 | region1.google-analytics.com | udp |
| US | 216.239.34.36:443 | region1.google-analytics.com | tcp |
| DE | 136.243.223.251:443 | g0wow.net | tcp |
| US | 104.21.78.9:443 | srbminer.com | tcp |
| GB | 216.58.201.99:80 | c.pki.goog | tcp |
| US | 8.8.8.8:53 | mine.zpool.ca | udp |
| US | 8.8.8.8:53 | minotaurx.mine.zergpool.com | udp |
| US | 8.8.8.8:53 | 9.78.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 172.217.16.238:443 | clients2.google.com | udp |
| GB | 172.217.16.238:443 | clients2.google.com | tcp |
| US | 104.26.2.223:443 | whoer.net | tcp |
| US | 104.26.2.223:443 | whoer.net | tcp |
| US | 8.8.8.8:53 | www.googleoptimize.com | udp |
| US | 104.26.2.223:443 | whoer.net | udp |
| US | 8.8.8.8:53 | stackpath.bootstrapcdn.com | udp |
| US | 8.8.8.8:53 | code.jquery.com | udp |
| US | 151.101.194.137:443 | code.jquery.com | tcp |
| US | 151.101.194.137:443 | code.jquery.com | tcp |
| US | 151.101.194.137:443 | code.jquery.com | tcp |
| GB | 172.217.169.78:443 | www.googleoptimize.com | tcp |
| US | 104.18.11.207:443 | stackpath.bootstrapcdn.com | tcp |
| US | 8.8.8.8:53 | cdnjs.cloudflare.com | udp |
| US | 8.8.8.8:53 | 223.2.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 137.194.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 78.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 207.11.18.104.in-addr.arpa | udp |
| GB | 142.250.179.234:443 | maps.googleapis.com | tcp |
| US | 8.8.8.8:53 | clqul1720785.ap.whrq.whoer.net | udp |
| US | 8.8.8.8:53 | duxug1720785.ep.whrq.whoer.net | udp |
| US | 8.8.8.8:53 | ktleh1720785.ap.whrq.whoer.net | udp |
| US | 8.8.8.8:53 | gocnv1720785.bm.whrq.whoer.net | udp |
| GB | 142.250.179.234:443 | maps.googleapis.com | tcp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 234.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.179.250.142.in-addr.arpa | udp |
| US | 104.17.24.14:443 | cdnjs.cloudflare.com | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 104.16.79.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | tcp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| GB | 142.250.179.234:443 | maps.googleapis.com | udp |
| RU | 87.250.251.119:443 | mc.yandex.com | tcp |
| DE | 193.108.117.116:443 | tcp.whoer.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| GB | 142.250.179.234:443 | maps.googleapis.com | udp |
| US | 8.8.8.8:53 | stun.l.google.com | udp |
| US | 74.125.250.129:19302 | stun.l.google.com | udp |
| US | 8.8.8.8:53 | 227.16.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 157.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 119.251.250.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 116.117.108.193.in-addr.arpa | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | tcp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | udp |
| GB | 172.217.169.78:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | www.reddit.com | udp |
| US | 8.8.8.8:53 | www.expedia.de | udp |
| US | 8.8.8.8:53 | www.spotify.com | udp |
| US | 8.8.8.8:53 | login.skype.com | udp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 162.159.137.66:443 | squareup.com | tcp |
| US | 104.244.42.1:443 | x.com | tcp |
| US | 35.186.224.24:443 | www.spotify.com | tcp |
| US | 151.101.193.140:443 | www.reddit.com | tcp |
| GB | 184.26.44.234:443 | www.expedia.de | tcp |
| US | 192.0.77.40:443 | www.tumblr.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| NL | 142.250.102.84:443 | accounts.google.com | tcp |
| FR | 157.240.202.35:443 | www.facebook.com | tcp |
| IE | 52.158.121.3:443 | login.skype.com | tcp |
| US | 35.186.224.24:443 | www.spotify.com | udp |
| NL | 142.250.102.84:443 | accounts.google.com | udp |
| US | 8.8.8.8:53 | 35.202.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.121.158.52.in-addr.arpa | udp |
| GB | 162.125.64.18:443 | www.dropbox.com | tcp |
| BE | 18.239.206.60:443 | www.amazon.com | tcp |
| US | 151.101.130.132:443 | de.foursquare.com | tcp |
| GB | 184.25.193.136:443 | store.steampowered.com | tcp |
| BE | 18.239.208.78:443 | www.academia.edu | tcp |
| GB | 20.26.156.215:443 | github.com | tcp |
| US | 162.159.152.4:443 | medium.com | tcp |
| GB | 18.169.120.191:443 | slack.com | tcp |
| US | 104.26.13.205:443 | api.ipify.org | tcp |
| US | 151.101.65.21:443 | www.paypal.com | tcp |
| BE | 18.239.208.109:443 | 500px.com | tcp |
| US | 151.101.128.134:443 | disqus.com | tcp |
| US | 151.101.66.217:443 | www.meetup.com | tcp |
| RU | 87.240.132.72:443 | vk.com | tcp |
| GB | 2.16.167.81:443 | www.airbnb.com | tcp |
| RU | 77.88.21.37:443 | mail.yandex.ru | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 205.13.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 191.120.169.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.65.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.128.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 217.66.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 81.167.16.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.132.240.87.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.21.88.77.in-addr.arpa | udp |
| RU | 87.250.250.16:443 | 360.yandex.ru | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| US | 151.101.194.219:443 | b.cdnst.net | tcp |
| US | 151.101.194.219:443 | b.cdnst.net | tcp |
| US | 104.17.148.22:443 | www.speedtest.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| GB | 2.16.167.147:443 | cdn.ziffstatic.com | tcp |
| US | 104.22.20.144:443 | cdn.tailwindcss.com | tcp |
| GB | 2.16.167.147:443 | cdn.ziffstatic.com | udp |
| US | 104.16.21.118:443 | www.pcmag.com | tcp |
| US | 104.17.249.203:443 | unpkg.com | tcp |
| US | 104.17.249.203:443 | unpkg.com | tcp |
| US | 104.17.249.203:443 | unpkg.com | tcp |
| BE | 18.239.212.129:443 | c.amazon-adsystem.com | tcp |
| US | 104.18.128.216:443 | diffuser-cdn.app-us1.com | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 104.17.31.174:443 | diffuser-cdn.app-us1.com | tcp |
| GB | 173.222.210.203:443 | cdn.static.zdbb.net | tcp |
| BE | 18.239.212.129:443 | c.amazon-adsystem.com | tcp |
| US | 104.18.32.137:443 | geolocation.onetrust.com | tcp |
| BE | 18.239.208.90:443 | config.aps.amazon-adsystem.com | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 216.58.201.106:443 | content-autofill.googleapis.com | tcp |
| US | 104.22.53.173:443 | cdn.hadronid.net | tcp |
| BE | 18.239.208.14:443 | tags.crwdcntrl.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 104.18.34.214:443 | trackcmp.net | tcp |
| US | 216.239.32.36:443 | region1.google-analytics.com | tcp |
| IE | 63.33.101.247:443 | zdbb.net | tcp |
| US | 3.233.164.234:443 | gurgle.zdbb.net | tcp |
| US | 104.19.178.52:443 | cdn.cookielaw.org | tcp |
| US | 8.8.8.8:53 | 90.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.169.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.201.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 14.208.239.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 214.34.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 247.101.33.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 234.164.233.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 172.67.23.234:443 | pixels.ad.gt | tcp |
| IE | 99.80.240.203:443 | bcp.crwdcntrl.net | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| US | 54.87.247.88:443 | rp.liadm.com | tcp |
| US | 52.44.209.9:443 | gurgle.zdbb.net | tcp |
| US | 151.101.130.219:443 | b.cdnst.net | tcp |
| BE | 18.239.207.196:443 | aax.amazon-adsystem.com | tcp |
| US | 8.8.8.8:53 | a.ad.gt | udp |
| US | 8.8.8.8:53 | st-1.fibrenest.net.prod.hosts.ooklaserver.net | udp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| GB | 45.10.101.252:8080 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 45.92.46.45:8080 | speedtest-1.london.network.youfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 152.37.112.6:8080 | speedlon.hyperoptic.com | tcp |
| GB | 31.22.12.17:8080 | speedtest.swishfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 185.82.8.1:8080 | speedtest-lon.retn.net.prod.hosts.ooklaserver.net | tcp |
| GB | 188.94.45.252:8080 | speedtest.noone.co.uk.prod.hosts.ooklaserver.net | tcp |
| US | 172.67.23.234:443 | a.ad.gt | tcp |
| GB | 185.241.227.127:8080 | st-1.fibrenest.net.prod.hosts.ooklaserver.net | tcp |
| US | 35.170.251.55:443 | jogger.zdbb.net | tcp |
| GB | 23.59.66.82:443 | tags.bkrtx.com | tcp |
| GB | 184.26.45.79:443 | stags.bluekai.com | tcp |
| US | 8.8.8.8:53 | 17.12.22.31.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 21.82.148.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 252.45.94.188.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 1.8.82.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.112.37.152.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 127.227.241.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 82.66.59.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.251.170.35.in-addr.arpa | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| DE | 3.123.222.124:443 | btlr.sharethrough.com | tcp |
| DE | 3.123.222.124:443 | btlr.sharethrough.com | tcp |
| DE | 3.123.222.124:443 | btlr.sharethrough.com | tcp |
| DE | 3.123.222.124:443 | btlr.sharethrough.com | tcp |
| DE | 3.123.222.124:443 | btlr.sharethrough.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | tcp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 185.89.210.20:443 | ib.adnxs-simple.com | tcp |
| IE | 54.246.194.93:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 54.246.194.93:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 54.246.194.93:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 54.246.194.93:443 | c2shb.pubgw.yahoo.com | tcp |
| IE | 54.246.194.93:443 | c2shb.pubgw.yahoo.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 93.194.246.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | dpm.demdex.net | udp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 216.239.32.36:443 | region1.google-analytics.com | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 104.18.32.137:443 | privacyportal.onetrust.com | tcp |
| IE | 54.78.41.255:443 | dpm.demdex.net | tcp |
| US | 35.244.159.8:443 | ookla-d.openx.net | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| US | 172.67.23.234:443 | p.ad.gt | tcp |
| GB | 142.250.180.1:443 | 5b212fe610c9f96014d8ba2e29b47e08.safeframe.googlesyndication.com | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| US | 172.67.23.234:443 | p.ad.gt | tcp |
| US | 69.166.1.67:443 | sync.go.sonobi.com | tcp |
| NL | 89.149.192.201:443 | sync.smartadserver.com | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| US | 54.213.6.218:443 | ids.ad.gt | tcp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | tcp |
| IE | 54.154.120.239:443 | secure-us.imrworldwide.com | tcp |
| US | 104.22.4.69:443 | p.ad.gt | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | 1.180.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 218.6.213.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.192.149.89.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 67.1.166.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 9.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.120.154.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.4.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn-gl.imrworldwide.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| BE | 18.239.208.2:443 | cdn-gl.imrworldwide.com | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| IE | 54.154.120.239:443 | secure-us.imrworldwide.com | tcp |
| BE | 18.239.208.101:443 | bee.imrworldwide.com | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| BE | 18.239.208.2:443 | cdn-gl.imrworldwide.com | tcp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| GB | 216.58.201.97:443 | cdn.ampproject.org | tcp |
| DE | 141.95.98.65:443 | lb.eu-1-id5-sync.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| US | 18.233.12.6:443 | idx.liadm.com | tcp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| GB | 184.25.193.73:443 | eus.rubiconproject.com | tcp |
| GB | 184.26.56.245:443 | ads.pubmatic.com | tcp |
| US | 35.244.159.8:443 | ookla-d.openx.net | tcp |
| US | 172.64.149.180:443 | js-sec.indexww.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | tcp |
| NL | 69.173.156.149:443 | token.rubiconproject.com | tcp |
| NL | 198.47.127.19:443 | image6.pubmatic.com | tcp |
| BE | 18.239.208.26:443 | qqibtyzkfwo2kencan8ltajmfqujc1720786005.nuid.imrworldwide.com | tcp |
| GB | 142.250.187.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | cms.quantserve.com | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| IE | 67.220.228.201:443 | aax-eu.amazon-adsystem.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| DE | 91.228.74.244:443 | cms.quantserve.com | tcp |
| DE | 85.114.159.93:443 | dsp.adfarm1.adition.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| NL | 82.145.213.8:443 | t.adx.opera.com | tcp |
| US | 54.174.250.123:443 | sync.srv.stackadapt.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| GB | 185.64.191.210:443 | simage2.pubmatic.com | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| US | 151.101.130.49:443 | sync-tm.everesttech.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| NL | 198.47.127.205:443 | image2.pubmatic.com | tcp |
| IE | 52.214.212.45:443 | sync.crwdcntrl.net | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | tcp |
| IE | 34.240.255.196:443 | pr-bh.ybp.yahoo.com | tcp |
| NL | 35.204.74.118:443 | um.simpli.fi | tcp |
| US | 104.22.51.98:443 | mwzeom.zeotap.com | tcp |
| DK | 37.157.6.243:443 | c1.adform.net | tcp |
| US | 34.102.163.6:443 | ad.mrtnsvr.com | tcp |
| DE | 57.129.18.109:443 | ws.rqtrk.eu | tcp |
| US | 34.111.129.221:443 | cr.frontend.weborama.fr | udp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | tcp |
| NL | 185.184.8.90:443 | creativecdn.com | tcp |
| DE | 3.71.149.231:443 | ups.analytics.yahoo.com | tcp |
| NL | 63.215.202.169:443 | pubmatic-match.dotomi.com | tcp |
| US | 34.111.131.239:443 | idsync.frontend.weborama.fr | tcp |
| US | 34.36.216.150:443 | pixel-sync.sitescout.com | udp |
| US | 8.8.8.8:53 | 123.250.174.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 6.163.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 49.130.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 221.129.111.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.51.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 45.212.214.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 118.74.204.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.255.240.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 243.6.157.37.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 90.8.184.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 150.216.36.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 109.18.129.57.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 169.202.215.63.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 231.149.71.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 239.131.111.34.in-addr.arpa | udp |
| NL | 198.47.127.20:443 | image4.pubmatic.com | tcp |
| GB | 185.64.190.81:443 | simage4.pubmatic.com | tcp |
| GB | 45.10.101.252:8080 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 45.10.101.252:8080 | speedtest.boxbroadband.co.uk.prod.hosts.ooklaserver.net | tcp |
| NL | 193.0.160.130:443 | p.rfihub.com | tcp |
| IE | 52.49.103.72:443 | match.prod.bidr.io | tcp |
| US | 35.186.193.173:443 | ipac.ctnsnet.com | tcp |
| NL | 35.214.157.14:443 | csync.loopme.me | tcp |
| SE | 213.155.156.168:443 | d5p.de17a.com | tcp |
| SI | 195.5.165.20:443 | core.iprom.net | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| IE | 52.215.155.11:443 | cm.adgrx.com | tcp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| FR | 141.95.171.142:443 | green.erne.co | tcp |
| US | 104.18.24.173:443 | s.tribalfusion.com | tcp |
| DE | 162.55.120.196:443 | matching.truffle.bid | tcp |
| DK | 77.243.51.121:443 | uipglob.semasio.net | tcp |
| FR | 54.38.113.8:443 | pixel-eu.onaudience.com | tcp |
| SG | 35.186.154.107:443 | cm-supply-web.gammaplatform.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| NL | 64.227.64.62:443 | match.adsby.bidtheatre.com | tcp |
| NL | 46.228.164.11:443 | ad.turn.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| FR | 54.38.113.3:443 | pixel-eu.onaudience.com | tcp |
| NL | 208.93.169.131:443 | bh.contextweb.com | tcp |
| NL | 46.228.174.117:443 | sync.1rx.io | tcp |
| DE | 3.124.210.90:443 | ps.eyeota.net | tcp |
| US | 8.8.8.8:53 | 14.157.214.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 168.156.155.213.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 20.165.5.195.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.155.215.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 142.171.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.24.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 196.120.55.162.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 117.174.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.164.228.46.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 62.64.227.64.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.113.38.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.169.93.208.in-addr.arpa | udp |
| NL | 46.228.164.13:443 | d.turn.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 142.250.200.34:443 | cm.g.doubleclick.net | udp |
| IE | 54.229.132.244:443 | aa.agkn.com | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 95.100.245.12:443 | stags.bluekai.com | tcp |
| FR | 149.202.238.105:443 | rtb-csync.smartadserver.com | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| GB | 31.22.12.17:8080 | speedtest.swishfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| GB | 31.22.12.17:8080 | speedtest.swishfibre.com.prod.hosts.ooklaserver.net | tcp |
| GB | 51.148.82.21:8080 | speedtest02a.web.zen.net.uk.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 50.7.152.4:8080 | lg-lon.fdcservers.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 151.101.129.140:443 | w3-reporting-nel.reddit.com | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| GB | 93.113.26.250:8080 | speedtest.thn.lon.network.as201838.net.prod.hosts.ooklaserver.net | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 172.217.16.227:443 | www.google.co.uk | udp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| US | 35.227.252.103:443 | rtb.openx.net | udp |
| NL | 178.250.1.8:443 | bidder.criteo.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | udp |
| IE | 52.19.59.173:443 | c2shb.pubgw.yahoo.com | tcp |
| DE | 52.29.55.233:443 | btlr.sharethrough.com | tcp |
| IE | 52.19.59.173:443 | c2shb.pubgw.yahoo.com | tcp |
| NL | 178.250.1.7:443 | ssp-sync.criteo.com | tcp |
| NL | 35.214.149.91:443 | x.bidswitch.net | tcp |
| DE | 37.252.172.123:443 | ib.adnxs.com | tcp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| NL | 178.250.1.9:443 | dis.eu.criteo.com | tcp |
| GB | 142.250.180.4:443 | www.google.com | udp |
| GB | 142.250.178.1:443 | tpc.googlesyndication.com | udp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | udp |
| GB | 172.217.169.34:443 | securepubads.g.doubleclick.net | tcp |
| GB | 2.18.108.180:443 | acdn.adnxs.com | tcp |
| NL | 185.89.210.82:443 | ib.adnxs.com | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| GB | 172.217.16.227:443 | www.google.co.uk | udp |
| BE | 74.125.71.157:443 | stats.g.doubleclick.net | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| IE | 34.240.191.32:443 | secure-us.imrworldwide.com | tcp |
| GB | 184.28.176.81:443 | www.bing.com | tcp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
| US | 185.199.108.133:443 | raw.githubusercontent.com | tcp |
Files
\??\pipe\crashpad_4204_MUUIWGODKCURTEXV
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 4fb21ea0ba751d9699ce4cd66cd49c1e |
| SHA1 | 732c176e606703732af05ec9a38b7696800c8727 |
| SHA256 | 5f598055331d77231244fe8e5c3a0e47ce8a6ef869c3e0e46234d2f756c79c20 |
| SHA512 | 9114bfc1a7496d96651fb3e651bc57becb9db1a1617bee26cd14752afd22c796ce27c6198b8901e30ffa9ad0c6cb03c6f447f819a176f7619df12e8f310d496f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a9c52a4892a79e109c0031de72c375d0 |
| SHA1 | ae95352d5c05df81fb6895d5563e243b48a6c93b |
| SHA256 | 5ff94dc92ba18735ea34ba14f6a2718403dedc9364e5d0ea3a0b2c196e8c9873 |
| SHA512 | 729a4b3906db55bd00447b9ea33c201d61798d4dfeac67a4f47a609cdb78b90f99b71b4cef57fbef10de5d4451c173a28bb6369e40c434709df0f01c7f1d4ed0 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 45e5a8094f0975f5f2e82f8b0b646138 |
| SHA1 | 5b220c100b0eb119d99256c5eecb9d14bbf55072 |
| SHA256 | 16556252cd9d4c5f855f65c1192d5d92e674fbb15783779436731d946f5e1d8a |
| SHA512 | 805d9e943c8f7d9671ca3748ced107f4e2942cfaa1db00948293256e6a3271a5ea305b1c96b6db5e1c40e08e3a50f37db74f1d06d789a636a8cf12071a7494eb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9040ab3337c79b4e0a6df75e9db5b26e |
| SHA1 | a85eced2a183fc416e6da55c3e6b493e0310779d |
| SHA256 | 2bb6c030b97548ccf16c2b88e568b8d4fad57ea5be21860235bd5879481a8b08 |
| SHA512 | 1fb6c6b20fc6433ce9a561bcb18b1d2d4db174623481e9c04dba67141ccc05c1c1d5345f3eb6a8ed404f51567565853914abfbfe60c0828e581e413746245d51 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data\f_000001
| MD5 | 151fb811968eaf8efb840908b89dc9d4 |
| SHA1 | 7ec811009fd9b0e6d92d12d78b002275f2f1bee1 |
| SHA256 | 043fd8558e4a5a60aaccd2f0377f77a544e3e375242e9d7200dc6e51f94103ed |
| SHA512 | 83aface0ab01da52fd077f747c9d5916e3c06b0ea5c551d7d316707ec3e8f3f986ce1c82e6f2136e48c6511a83cb0ac67ff6dc8f0e440ac72fc6854086a87674 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 6c70acf1c53b4b34b20301885a63be9b |
| SHA1 | 2922cd125af0d0477960b93b751705ad1732f151 |
| SHA256 | 8838b99250908e1492b6a55cc78ec8f035a242610bd1e7f3ab693f558adc6587 |
| SHA512 | fc83985e5931edadf1b281482c8c0afe87ad61ebb65420d92c5168dc9e2aa2c08254abba7ecd6f8d63e0739a5dffc0d49e35ca317d788025eac3b56a50cfd840 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 6c092b8888b2fc41a00bd70052389c07 |
| SHA1 | 106edfe954aea2b849dc70359e3a477223d98a99 |
| SHA256 | 2a945c3af5b120a6dfb5008c742704698da2c2ee74f176d23f298430aee501dc |
| SHA512 | bcd9acfe4c8385c28aa4c3b5fc28e70c6335bfc41cb6c39c02dc25fc86732fc6d836f282e7a10cd7199900afe71a828c0f31541a4dfc8810ee841c334343091f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d1addb0e2a11b460070766448aec15a8 |
| SHA1 | db70e466163df753a7c2679809d33a62d5d1a56a |
| SHA256 | 962f60b0696bc234b1e517e212f6b22a052a73f47a2151f3075e6f9d3bf8e333 |
| SHA512 | b65aef58bca5efee46d4dd222c08a0cd3523b30e164b697b936ba4d203ef6bc766b762fa0ff59a16d2d6151709cece5114106f2e504b5ac6ffcbf14831ac21e2 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 270358907ed251d0209d9ce82fdc9587 |
| SHA1 | 35f0f23a9585239748a19d401a9f7e5d2cef99d5 |
| SHA256 | 40e4e5fef694a69cfabbd8d29f6eb0cc9d44ac75afc2fe1010a16ee0078e388d |
| SHA512 | c648b6d2b9bb7c0842ee732a30b980374b4c2cfa16fc17159cdb63126c432012dfbf6e273c3094560c9f14124ebec90a19a7462e3f08d0375305417c6a0e04ac |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | f3c3ecab176bf9149fb371053da7f7bc |
| SHA1 | 3ea99ca3d2ccdebae6fd3bb6b18af4006e2a99f8 |
| SHA256 | 0b8e67f12fbf1d635eacb11c8d0c02e8e656437933af37cac44f570f9a52eea8 |
| SHA512 | fa42dec0ee190dbf23e0e43c8654267834f21ecaa1c2f4149e0ab2b763e0c8ba52c51f9ddcfab5d7840f77bd6813debbed3f55525f6f7a92f64dcc75fee1337f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\ShaderCache\data_1
| MD5 | 51677f8b118dc27ca0b7d71ab196a728 |
| SHA1 | c408d7a8d02b7e345f6686eb4f527486c5d17bb4 |
| SHA256 | f5d3c094ab3e31c4e082eaff91fbdca859a91a7392d386543c52c83a1eec0c16 |
| SHA512 | 6c3df9d91301f70177fba436e8b3d413d2adfc487048119498be0184715cad98942f55ec468da12d22f8294b4e5c9df3a1e822543a62f3d8995f276acab44792 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 5efcc43219d778bd14d32016100f2708 |
| SHA1 | b06f6726698a68781854bc342a54e06bc4562217 |
| SHA256 | a7534c7d125854f7fe662a7951443cad1d1ff0d8d3eb537dde5a381cd3415666 |
| SHA512 | 6bbdf16b41bbc3ac5d4e2b93683a712d56eb58719799f69cb7240a77f799928b48af2771f76d9d7829846db12d0116e3a8ea6c5d0f02d5e840db1b3c018480b4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | b26cef15e9a3cc82fb429a163f96ac6b |
| SHA1 | 718ac4822198b1a21f43b6941d0d8df107fd0015 |
| SHA256 | 73af2c2ebc9187187d887e4abc8b04561c55f36f7f9cdf20293d522ce5c2f506 |
| SHA512 | 87f96314ea9a1f394d24de5657e61cc6809c961fd05280b4875a06bb928f4e19dadf725fcd0417f16c93cdceca349dd27dd95d0f8f0f756020322803b2f91cdc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3c22346ce6c23cc870d115800c7ed59c |
| SHA1 | c387428955fe3e0db60dacd54eb56b4a03ccc114 |
| SHA256 | 000eb601d872f30fc8572dbdf70da73d8241f026d649811afecb76c4a2a1291e |
| SHA512 | 7c6f75c99cc415f19ee35e2bba2eb215131611e1ac1bc3cc4243322bae1f1cfebfa8b1f9d2ac6e25df61c646f41623f9404c748e2b87f41b6f3ea0718cc6d792 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 46295cac801e5d4857d09837238a6394 |
| SHA1 | 44e0fa1b517dbf802b18faf0785eeea6ac51594b |
| SHA256 | 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443 |
| SHA512 | 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 206702161f94c5cd39fadd03f4014d98 |
| SHA1 | bd8bfc144fb5326d21bd1531523d9fb50e1b600a |
| SHA256 | 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167 |
| SHA512 | 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 63811f92e6511a0deff02d0261af37e8 |
| SHA1 | 4bec34bfc1adc2f988d2ee25d48ae57e2449e3b5 |
| SHA256 | 47c600e4d31c67c87094e882d970474261c6c29b50ae7abff16853409631de37 |
| SHA512 | 614e9ac6729dd1f101a71b79181238f3428e146ef053bb9318e5d424a1c3e09f7eaccfb40114e6711ee54c09a9e7f78168423a56eb19287de5b04a6278adecd1 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1afbc802be1cf9299e2dd3611d7e9e34 |
| SHA1 | fb9f367a86d80aab7580f0d3ce64b955e27145fc |
| SHA256 | e8a28bceae01d49d46f9ded30c1f0c36c40cf64094b548da7818fc7f6ab11e19 |
| SHA512 | b98e33c4ec0ef1e399bed596866a1f9783f9590534d004cb108795e75362118ef7c61c1b8088eb9047e36257f21405c6baf87f820b82e641aad9644c4ca1bf41 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f286893b0cf7e2b990bfa209c65cb8f3 |
| SHA1 | 426264c0351c3891ae3441168bef5973caefc4ea |
| SHA256 | fcb6a53a706b6bdd2c6461cdee6409f37269bb8ed189f336f2c7fbce9ca822c6 |
| SHA512 | bbe36ddb8d791b3679697f2cfff94a13dd54276f41b6f95861cf178eb0f3b547187aec948b42dd78fb0fcc0a48e2cdd172d594870771e0d473fe775ed757784c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 3e48cf6d788271e092d0ad988bd9245b |
| SHA1 | 360b7d9d200da7bb285d892e2648c462ba954c65 |
| SHA256 | 131f5f3122db2e673aa70efd31719d68a7424c2d8015d06c6b8ec6e29c2dc3ce |
| SHA512 | 02f6f8317852f13224318b8e9b59168060c58e1d99e8db67a0c95dda2abdbaaf9e1d64240b5555a261307948c9697a72c146879f1ec157e4a4ec619a486aefc6 |
C:\Users\Admin\Downloads\xmrig-6.21.3-msvc-win64.zip
| MD5 | cef0ae1ab544e40b659261a4e07fe48f |
| SHA1 | e5ff855ce3c7726a50eb50a634ff9f406b3df093 |
| SHA256 | 713263085499ae626a6148fab67932c9a69611b21ac3d04cf52a5e23495f902e |
| SHA512 | 1fb23b385e6cff3653f0b4b397d092c7be4df62899c97e18f675df2024e5f06ef2596fb626b85ae2ef7d7583c5bf54b00dba1a5ad566c2707a669a48d9814ba8 |
C:\Users\Admin\Downloads\xmrig-6.21.3-msvc-win64.zip:Zone.Identifier
| MD5 | fbccf14d504b7b2dbcb5a5bda75bd93b |
| SHA1 | d59fc84cdd5217c6cf74785703655f78da6b582b |
| SHA256 | eacd09517ce90d34ba562171d15ac40d302f0e691b439f91be1b6406e25f5913 |
| SHA512 | aa1d2b1ea3c9de3ccadb319d4e3e3276a2f27dd1a5244fe72de2b6f94083dddc762480482c5c2e53f803cd9e3973ddefc68966f974e124307b5043e654443b98 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58dba5.TMP
| MD5 | eab89527d3780ee5489f3cee2b59a3d1 |
| SHA1 | 083c9fac8220f279a62dba35dd3546a7371ec5da |
| SHA256 | b2f40ff3925edb9e7868e29293690f50f448c334b5c60ec19d5967aebeec1cf7 |
| SHA512 | 5bb51bde0c8ad6bf07de45dc05763f915386709aa8a2e0adb404ba689e09b4762b391ac8430b2921baa52afda750eaf92f66cec5f50336b75f03db0f9a989905 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 7e3398be500fcee1e1bffc11532797a2 |
| SHA1 | 38e8de3abc38084d599e90b01e829ec03389505b |
| SHA256 | 0df072f06b6e95e73a6cb32dd30d01bff099dd68675de56b7926b566eda64f9a |
| SHA512 | 77e6900b1176dec86df33e676b3dbf1a9fb7f318d8da013ffb0aea71a10c27d681f4ec8ee72704594b8b6b6d590d25c1dd69cfe19ca3b964a67267fb6a727840 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 106ef8aa72c6699773c30547ac47ccc0 |
| SHA1 | 8944a91b7e3fabc74988ea9bd825059cba06badc |
| SHA256 | 6dc922154c66925012312b28624d2a65c5084d11017e4468fa358d0f43a3f0d5 |
| SHA512 | 4932eb88f73595cf26548d546932cb224d683ece190090ff8256ec77bcbffab78e0958ac6543e3169293b40cd343e7d18ddbb04cbd7d3c2236919f3cfb3c6514 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 0a0e5a857e44ae3ac067c0ae5b6b3697 |
| SHA1 | f3319f48c4a804037930e8c432b20b33c3714e91 |
| SHA256 | bb18499a37a3f9510a831ddb81c219c9a12ae7e971f3cfcd628512576e8a8c17 |
| SHA512 | f51e23b9ca6fa279c929d1c3a26aa5cf822180c1576d90e24f65ceef9f9d287a3d84193530826d681b221af7dbc3fc4761153129186b50700524c8e00e167ead |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 908548c7cf037a71259a4f6671bdfda5 |
| SHA1 | 88fd0de7b42142072d28a6c056d246929724461a |
| SHA256 | 4d24ea61857e6628dbdb891c83b694d2bc5660655c26f6b07721c5b9ee6f7fd6 |
| SHA512 | 482f836c590ed1f9e7c7559fd1975e7c7159ed275f5413e7666572fbc58ba8684a890fc8a892696439806fcc931c077106b2283c955e215f26fb2db519faef42 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 29c858655f355f3cc1e5f0a32bcd2078 |
| SHA1 | 837c25b6c8005fcc243f199c6dfb863a7236eb71 |
| SHA256 | 53f815831e2904022f7af7301326746cc95e869af14c5b2fae59056f3d94e222 |
| SHA512 | 6b7bdadbc3a763bb427032ab1a5fdad6b33ac78089a094befb988fb218f2e9b3a5bcb4131583f5238a36446d07ca6837a12a34ffbf5e11cdb04596f0d6be9283 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 099e5ec184f2952cc9c4387c6ee941d2 |
| SHA1 | ea99692677fa4743246b53608f339be9b3a459d6 |
| SHA256 | b637a4ae9980d19efcaabb61b65f92513c1fcea01a4ea54b16170d2977bbea1f |
| SHA512 | c54853de4ab344a900d58bc5eed1011d4f2929852433beb4165dbbded9897cbd22c60e2991f913b0f6682a93d5a78e44daedef13bdd3c154a22c0f72eb7efe17 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 75d14dfbd2d2d1d03fa39f1755779e03 |
| SHA1 | fb38c14d37d3a7c0d4caa1b678fcf4c5c46a8720 |
| SHA256 | 810f7f67795290ad8a1ffbae6f92208d329a60e7d7873a9999c25c970306d140 |
| SHA512 | b6487c00cbc8658c8e2288ada3e24aee2dab13b3953a363d67b2504fbbecb94051caf07447b6b2868efd21da60d85354bff73b115c11fb2ceb9dfd8e1d43659a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ade9a59160e35e2e9d81512971018e2d |
| SHA1 | 4b07494ee2d966916f6d858661c6af30b40dfa51 |
| SHA256 | 262bd87946aff82ad4479ce3329e5b306d38f341db3da5aec0bca2f2f0e14a9d |
| SHA512 | 4fd517ddad141d8423ce20dd6330bf81cf4c98bb8fdf367ddb8e5e391d3280cd198d5b62a8ed6badd0944a6a55486e1115e25a3bb1858b94a742c196d4a3d182 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000003
| MD5 | 7d5e1b1b9e9321b9e89504f2c2153b10 |
| SHA1 | 37847cc4c1d46d16265e0e4659e6b5611d62b935 |
| SHA256 | adbd44258f3952a53d9c99303e034d87c5c4f66c5c431910b1823bb3dd0326af |
| SHA512 | 6f3dc2c523127a58def4364a56c3daa0b2d532891d06f6432ad89b740ee87eacacfcea6fa62a6785e6b9844d404baee4ea4a73606841769ab2dfc5f0efe40989 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000002
| MD5 | d6b36c7d4b06f140f860ddc91a4c659c |
| SHA1 | ccf16571637b8d3e4c9423688c5bd06167bfb9e9 |
| SHA256 | 34013d7f3f0186a612bef84f2984e2767b32c9e1940df54b01d5bd6789f59e92 |
| SHA512 | 2a9dd9352298ec7d1b439033b57ee9a390c373eeb8502f7f36d6826e6dd3e447b8ffd4be4f275d51481ef9a6ac2c2d97ef98f3f9d36a5a971275bf6cee48e487 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000004
| MD5 | 6d3c25de294d27958fe9151879026fe1 |
| SHA1 | d26788a3d86a71397fa2dfbcd8f66264f8071507 |
| SHA256 | 615520069a22132aa4e2e822eaffa71859512f2df84f7eaf34a4f31852f41b5c |
| SHA512 | 6600537c5e08845f35cea335077d4321a77fc1c1c7d270202e4f15a6cc3521beff35b033097134dc5fc3d171abf4fba9f55cde0b8fb93ff4b9995be3b847d3b7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000005
| MD5 | 76a3f1e9a452564e0f8dce6c0ee111e8 |
| SHA1 | 11c3d925cbc1a52d53584fd8606f8f713aa59114 |
| SHA256 | 381396157ed5e8021dd8e660142b35eb71a63aecd33062a1103ce9c709c7632c |
| SHA512 | a1156a907649d6f2c3f7256405d9d5c62a626b8d4cd717fa2f29d2fbe91092a2b3fdd0716f8f31e59708fe12274bc2dea6c9ae6a413ea290e70ddf921fe7f274 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000006
| MD5 | 710d7637cc7e21b62fd3efe6aba1fd27 |
| SHA1 | 8645d6b137064c7b38e10c736724e17787db6cf3 |
| SHA256 | c0997474b99524325dfedb5c020436e7ea9f9c9a1a759ed6daf7bdd4890bdc2b |
| SHA512 | 19aa77bed3c441228789cf8f931ca6194cc8d4bc7bb85d892faf5eaeda67d22c8c3b066f8ceda8169177da95a1fe111bd3436ceeaf4c784bd2bf96617f4d0c44 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000007
| MD5 | b38fbbd0b5c8e8b4452b33d6f85df7dc |
| SHA1 | 386ba241790252df01a6a028b3238de2f995a559 |
| SHA256 | b18b9eb934a5b3b81b16c66ec3ec8e8fecdb3d43550ce050eb2523aabc08b9cd |
| SHA512 | 546ca9fb302bf28e3a178e798dd6b80c91cba71d0467257b8ed42e4f845aa6ecb858f718aac1e0865b791d4ecf41f1239081847c75c6fb3e9afd242d3704ad16 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000008
| MD5 | 32f58aaf5a515bdbb3d13f72879d2bf0 |
| SHA1 | 1742585148dcce5d9a85464fdc5b25f394e4736b |
| SHA256 | b2be2096fe98a9b55d92512ae7859e8ba6a54be03afd7eb454b220f9ed888ec8 |
| SHA512 | 28c693e9a85da7cd7441209c60c4da4b9b6b7da7555c86c2039387b470c453a474a07597069959cccc2840360f76dbb307f88a77e52248adcf8de71ab99cbe19 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | bf7b02ed0b5d985e5c31a0385c920aee |
| SHA1 | 8a02e182993fd779911907a97c39b6724d18f568 |
| SHA256 | 1528579cf43d225a6f08744af61868285933f775179e00711bfffe2463699ab4 |
| SHA512 | 902bed222e89645d0c441e6ba073f27663fe5e018834cc23bf9cbbcbdb19e01194428b4b759058f52f85579976ad61a3245624656bba1e71c50a68af8d0e11f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 0f36b9f8debaebad5158a5d54c26bf20 |
| SHA1 | d6311f80b9ce68ddeae7af8210a0b2be6c4ecb10 |
| SHA256 | 541501d2e32315b04ed169eaec3b409b26e04b5412a1c372df9751349f8c7e2c |
| SHA512 | c274e70ce5cd206a7227fdf1b17f18523523054266c64b9b01ea4642455d9591193ec3b3a40c8e5cab81a58243cf1a7d22ff64e56fa546ce108e5c300868705f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000b
| MD5 | 7322a4b055089c74d35641df8ed19efa |
| SHA1 | b9130bf21364c84ac5ed20d58577f5213ec957a1 |
| SHA256 | c27e6cbe88590ba6a04271b99d56aa22212ccf811a5d17a544ee816530d5fd44 |
| SHA512 | bad26b076fa0888bf7680f416b39417abe0c76c6366b87e5a420f7bc5a881cc81f65b3ef4af4ba792aa6030bcf08bdc56b462775f38c4dbf48ff4d842c971bea |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000a
| MD5 | 209af4da7e0c3b2a6471a968ba1fc992 |
| SHA1 | 2240c2da3eba4f30b0c3ef2205ce7848ecff9e3f |
| SHA256 | ecc145203f1c562cae7b733a807e9333c51d75726905a3af898154f3cefc9403 |
| SHA512 | 09201e377e80a3d03616ff394d836c85712f39b65a3138924d62a1f3ede3eac192f1345761c012b0045393c501d48b5a774aeda7ab5d687e1d7971440dc1fc35 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00000d
| MD5 | 507f57349cfda724d8906a3e6851af5c |
| SHA1 | 89cd50348b61d91a459816664014eddc88b83cf8 |
| SHA256 | a966979bd2d3d0031a0f512e17384c61817b3576ee861f9e4125d96cdb40f5c1 |
| SHA512 | 62b7f8f32d23abb7456f384a0bec730caa49779397df5bac4b66ffef2f7445d2f67885da8b20700ca6236fa8252493079a8be28b46041902fec78748c6bc5cc7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | ca966a384519c042578871db72d2ea8f |
| SHA1 | 4f08dbf12c5c0a54689492637af39135a2442ecd |
| SHA256 | 0c5af4f98098abe5f18bc6c4c9db8c8cd85c58cea481b6fe167623962067aa43 |
| SHA512 | 2969e395b831b894f5d13d9ad66626ca3850d84772e07a2720e169cc3a8f1421fec36a677106e260bbf831f69316e208017962740333f6eacfa627480321065e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | e986040ac20073bbac11863d0db0ea3b |
| SHA1 | 110302c9f68442d30708f5e2b5438bf3db4a9aaf |
| SHA256 | 3c35294122c0d3d2d365b7fe40f7c39f5fdb53da836a29c213a72d1d8bc61dc7 |
| SHA512 | bf3dea2706f6b6b5a97ae05656dd81ce8ca6b83ffb2facd6e713938925d449cf7bc5b4fce60c84129bc4f79b88efd7c92a2f1a6701981a99a0c8a7a5a8d77fc8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b4fc309169c2b3b0f8ba91c4703c4fbb |
| SHA1 | 57188f28c5a822ced18f8bc4b2f02e9a2cc8c979 |
| SHA256 | 80df9e09f4baa1de245740fdee223ea4b087529222e9c3f6a624ace1365d4913 |
| SHA512 | 06c5449300589269bbeab90d69aa066e6b6d4090783ec770f9383872f4963623f447d6fec97093e24febedc51bc16e1863129edeb4b889906fbf5d93532a995c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 4345f5211eaa97ba37e72b6a7149fe55 |
| SHA1 | b3cca110d052cfa7086cbcb01a849491d5a226af |
| SHA256 | ed078030b890e0aee849b9e539a08064a1e44fd2da9f4baed9952dbdceaa39aa |
| SHA512 | ccaf6e888f1b860fcaac56494150d9b2edf131adfbd4f2b692679af24e8e9bbf76cc3d51b7960bc77aaced02d5e0bd13dd4399881cc5e383c5a3738b799043ab |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | de96f7054cf38a756ba25c6e59190aba |
| SHA1 | 98538d402968e2d8a9afb0a00aec5a814b813c9e |
| SHA256 | cd9685092d5e41f00803b95a08fc7d994695d0e94603b62e5051b4f8d69dff8e |
| SHA512 | b77244f827011255b9f3fdd2ffb79f3f60fd7a8b1f702c465def9011d2297bd9fc8051c674c12a9bf3d87fbf4eadeac4bb4040b7bf7a662155305b25c3ba1e7d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 61eb390a31de717244ea155bacf9ca6a |
| SHA1 | adbb5cf577fad85dbf128ef6eae59311e2a51e7d |
| SHA256 | f181899ec9f29eb7143d20e952384687c70e75475acdc31518e855d18f209da7 |
| SHA512 | 5cffacf7aeda5a46265609dec0c0368fd2995a8962cba77095478022b0a89db6bbeb6d7f844db3c1789544896c5aa3d50146d0c62ceaab4f2e341401701f2c36 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 4cdb41e14f0969ecdcbf3a23c5baffe5 |
| SHA1 | 2e4617c7255f6cc5bfd2c846b84416528b99d330 |
| SHA256 | c6746a26144f990c346c85825a46ac420d232319b34e513df7a92b59250cff57 |
| SHA512 | 195252546551801189edd1afe0148b8210a1a9000f53a34bb104de002e70974285b5060dec7f8cc0447b4370f419d707b8cc5afc1066f7c304e5f3f3323ca2f2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | d5ae6ce7000b06bc3beffb357759d00d |
| SHA1 | 11df0eb3d9f9806f6ea7190174e0fa2dcd2c3b78 |
| SHA256 | a1214d698173eca2ed6e4e1671fc8279664d6424576c2974faeb9f1b7af991a5 |
| SHA512 | da399cf27dc4188df3321d201dad1c12d683f66a98b27d935fc6e9b5b9fc907fba90ba36c727710728ad2a0a9b5ec634da3f745233b96e57bbefe3176f34c2d8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1484beb3baf9465d8c006a57b7666586 |
| SHA1 | 7b05688467819f5c68b9e18492246613da236e33 |
| SHA256 | 9578f49a7b41ac1e5b43c84240c2ad191e0d826b4a956c1d098e6fb31084e8cf |
| SHA512 | e9bd4452c7003bbd2608e9ce052097a69c286b1a1f87e2bcd3e8c43279e12996020accdd7c9a22044803de07dfacaa3908d72ace3c8df8524540e1fe986e4ebd |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 34cb8fc2c7162ea2e701653ef5bf81e1 |
| SHA1 | 70ad6e85fccac8a391646bbe993f5335e8156175 |
| SHA256 | a2e18f9bbe645d05d7fd7ab214f4b7281f7b19a3feb46aa644547085dffce129 |
| SHA512 | 8ca3ee265f1ba5dad24e12e37eb95ff6f0cea9c4f991551ab30d638cecf20a7c2fa6e865f780f1d974af253bd7c94b4960f2a1934d8241a7b0a4150c0273ac03 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 58da815a3b5c35ab16c83926d8bc0de5 |
| SHA1 | 31c1b442b790b6608e13dcadad9c33380a704bf3 |
| SHA256 | 7e43f36569b3e427cf9301d7ae21e1a4b8159f3d4e4870e6dd02f70bca623164 |
| SHA512 | 1ee77a2a3898143d1b55e4117b76ba77d1e202e5ce393f2901fca4e7becad2fb32f7bbe4f07c155ed3ab411f518d02a2eeacb595959c4af88cdc6073c27783f1 |
C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
| MD5 | 38181352d7fdf3fbbecc10ddfcfaddde |
| SHA1 | 7917d0c3d29c549ca9993187d4161cd9b1302585 |
| SHA256 | 1448fa49ba79b57f6381b21b450937882f3508b3d7c906a1c80f476b7fb8bea4 |
| SHA512 | cc44b3c7a9322e1314fbbb034e7d57fd557dc675eb8dbf9fbe7c9ceff4760bf6f9fa2bf05102d80f13680b9cda8b3f84db32b89a0970c7115081cb5fc0c8dede |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 64f4022ab5ca2f74744ef7f2a966daf9 |
| SHA1 | 5bf127b9790302fba7f691bbbada5514a077ce0b |
| SHA256 | d65e83ae2c95431a5b72ccc2ef8b745029bf4aaa3e93ccf3e094b413f10a45fe |
| SHA512 | 3c515b821a048a730ba4f5eff31ec83c4446500a25bc83173bd24bec48367acc4427354fe4a54874308ba214c0812453073dd5c03766d3589e0c02aa54d92ede |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 93923ade928d6bddbb66077e0eac34e9 |
| SHA1 | f56c871179e87789203e94f76deedd239b67d111 |
| SHA256 | 3e561b9e13dd590b179842f242a775374f94e2467e4c56db65be23784056eaa8 |
| SHA512 | 2c64ff7cff566cceee4690c90b14e7707d16c7f547ab2b4bc3bca80ec90a8bf4c28bc9878b0b14021d69ab0d1773a13a702be7d927330dc42a185e700afe1511 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 229fd74272645eea6d938fad7149f032 |
| SHA1 | 2f0a8152e9b59ff8c7225d3ed25c5b857f8f5fc8 |
| SHA256 | a4482a998e75d3ecdfb19a658da0b0b401cb82a0dd4dd69548e7e6890ff5dec0 |
| SHA512 | 3c13c32b4206221a4b182b0dd7a0dae853244bcc98e790271df03b58f3a358550f02b04eb959c2f3ce8b43917a95f2e0967abb53f82993e73e2287ecff88ebf5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ab86698b0884410656557ce79bf2c0bf |
| SHA1 | 9dbcad38a2797aacae59bf04eb5cced67c9ff0f4 |
| SHA256 | e94ba855fe48a99a3a0342f5f9dd34fccfdb34b1b5b61b2f3cdb8b267094e8e5 |
| SHA512 | c87e925f44501554b9b3021a3d552e0416927117cbe5a15b255bc609b039390a6fec51325050c3e9068d65511e4a962ae3a21ffbc1b0904e53e739333d0f78a2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 86df61e88bee3956fb31f44939c1a568 |
| SHA1 | d4b1826c32dc5db4fa4856c7509982dfd30dcd24 |
| SHA256 | 69972d8d6c3f17ca248edab643390bb50c022decb1078966bd6331ab1b60d44e |
| SHA512 | 2d83406dbab6add37e92e2353004b664d2affe930027a454b11c7adc238229ae98fca1997600eaff0cfcd8560c059228f5f5398dfd263f54d36cd54918cf436e |
C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
| MD5 | 1e35de2fae84bd4fed7ffbfd1349efd1 |
| SHA1 | e87a4d664ac2ef48661982a045f278573b52349e |
| SHA256 | 6c7f04c25da2068ff2be45ecaed75435bc39bc4515933e0b87bdd801ab3c1bc9 |
| SHA512 | deca471c3f53ac54a40d873466500caf2dda0160bb0ccd1c9cce18ef43904b632db3b1b3861402ad8b1c6dd979eed967c55a27d86fe105977ec0a9864754a010 |
memory/2444-1176-0x0000021192110000-0x0000021192130000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | a2df71ffbde37c8431b9f93f9370aec6 |
| SHA1 | bdbc5fde4f7f80f6267ad6080dfa5fc32ae30277 |
| SHA256 | ba47f9362aafa56d4e75721a159f57a14f890956427e94ed6ba850815e54bccf |
| SHA512 | cd7e1a63920bed6f5f8ec87a3444700aac4943f9d1e354cef55e4c9d85660e1943a0cd301caa115a7e6337978f514c8881ad9773ea3e605c20c1aac9289aa58e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 2d5449f9d1e1cdc0764334007769d64b |
| SHA1 | a9858dbfe24a4245064039701fc432f4cc52c709 |
| SHA256 | a2041f1c74c0f73c3b7fe38b7f25ef35c3b013143ed8ab4025b5f1c493877331 |
| SHA512 | 65957de44d6c8610e51a16c0df605d6e922ea40bc81ee307c64aa80358ba54a25ac9b1be99a06a5b6d7f30e4367cf4ceaf86e6479785ef1e697815cda6e79eb8 |
C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
| MD5 | 757eaea939e1eab7020714ac55a578b2 |
| SHA1 | e623a80487057011caa292eb71759ef776dde48a |
| SHA256 | 75096ef54ca85cc8e12ab08838bbb101dbbc749a8bfe809e3a0891df35e266a9 |
| SHA512 | 526fe01ab04e674accd45ff8f23b1c881abb3b226cc72fa251207636f707bb32a9b5b8ef7adbba249e905a33c45d96db04c98704b3e8887e6214a1d05d105f94 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | f61bb69b51880cc2cd26cc5d79199004 |
| SHA1 | 20e6bd60f7e8ff97161e777650a52cdaaf1dc2ce |
| SHA256 | b481a9baabfb57a93c7a92b5cf14df2007b4ba6b4b69c86807d146824371e3b7 |
| SHA512 | cbe9d5127e77936ec7d41c6710b2a3b53d1f71a52291e5c800e86fdf56a668edaccf14c8b210841b8378619a4dcfb62e1014b8a506f50263cc82dc1a23f40a25 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 5ae3e76ddceb688726047bfe0f91b4de |
| SHA1 | ee803211a878ff2e8de442f06aea9aa2d6617c71 |
| SHA256 | 176471dca6ddbd79f6414e6b1f85535362a21b8f3772b40bda15e2f85e4c6ad9 |
| SHA512 | a8ccc72ac8f71249b5ae3df4919d08c212a4409a72d1e80fbf3105075fdbf0c11d9a682c304a44fcdc3c8fb2f941c495b49ba0ebb35b496abed9aa5d9f880a3b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 523567d2564375798d4f3a3ccf82fae6 |
| SHA1 | c05a8f79ee030db755f9b25bfa378751503a2225 |
| SHA256 | 9ab560a302c686453c6886ebd2b6dcbbd1ed3239faad015022b4c1ff4896f42e |
| SHA512 | af1482129ee56984531c967d247cb9ff38b83fa93dedfe808d4e3de61223408b92060f5588f74c5649170ce445fcebbe8ff1289b6227b667a3b2b478258cde2c |
C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
| MD5 | 5cf0e62ec1cf6b15677f846628cac219 |
| SHA1 | b2553ce945e0fa26e565461356f66ceaa3e486e5 |
| SHA256 | 3aa3d3a6d286b7cc207eb3e5ac7c63f93e19f57270dcbfac4fa209ebec94896c |
| SHA512 | 8353dbf4f58966356fa1c0077b229a94d9ebdb94fc080321c84f65ef73a61aa18cb43ce56e72dc4ebdfea197eff4b0f10013ef9d43ced86469f443f0a6d56533 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 748b3254a7171e582fc858e43a1ac9aa |
| SHA1 | e9e34f7601ba2920f28c38d63d73a44a674c6c95 |
| SHA256 | 320384ee9d8a3eb77ba9d5cf90eb76792d60be4a3815448cc486a7d9f408cc73 |
| SHA512 | 9b635bf7c8f5ab618db0137839c0c4cad1f7976086eeff959292ddc74d905be02f1b6c30269e590aa4bcf7740076dc6550328b8b011614edf9d1556c968fcfa0 |
C:\Users\Admin\Videos\xmrig-6.21.3\windows.cmd
| MD5 | 8cfcb6c75843a9b541a6b48305c23229 |
| SHA1 | b4e6b4da37d3343b61db35ef256f0c5b671bf3fd |
| SHA256 | b9bd55d7ba7f048510563138705449b7c01ebf3048af16f46f43d986454cff91 |
| SHA512 | d8d5c4cebcf89fc81f40582e50cc56c95b53a1149411d826439cc09782f49bbd91389e97e7ded634c60dee69e3c53ee596e8c86aa06fd079271129d74d8a7b92 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 05b5e3729328a4ca53638f38b9413eca |
| SHA1 | 65a64403699da57684b01ac58da4fbe2df86aa15 |
| SHA256 | 5ee8bcc408936081fb942666c41f42618aaae4a4ede01a428af416a72aedd3a7 |
| SHA512 | 3586dbb8f10ba75393bba344b8b13ce0050d1b35e1d544cdd05ab5e9f2dc3e2f2b9b7ba2b4d7341c3810cf935587934219333e202aca2aa893bd3f0f53b74960 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 27acba1db330b121c934c855f5d9a874 |
| SHA1 | 0ed9924ff6b5f1a0ec20d22973d8b7e32d2c2c20 |
| SHA256 | 71381e47ef78545b406286cd129b2c7ac383a98dca29860b5b3826174beec553 |
| SHA512 | bd0d6977dd48fc70faf67c0afca2064cc36fb8a54e27db6ddd261d120e0ad74b179d3e697127e241d75768b398a888ba923b93aa25bd7ed9a9c5870fa5fc5f52 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 4851b0518830833b6ae88e72a472e78a |
| SHA1 | 1f580b6d6aa3ad38483a19d7681f7ab60cdd22ba |
| SHA256 | 1ac3a3e6f7bd6a01668308ac35ef534311677b927c5a0060cd98f3350186d0f7 |
| SHA512 | 82d15a9c809305798fdfb6b3e28a49c5e076abf032f10dc0b85091dc3427742b87effcfd8639de7b2bb682a94098ed7f3c4d46d125db8bbd4c3fda0d18ffd849 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
| MD5 | a1c92f4dae778c476dff1c0e70eb1476 |
| SHA1 | 0b81718a5bb2e413505ef8921564338d53a97fe8 |
| SHA256 | 384318224b78667d3723f880dfad66cc79f3553170bd084453f795b5690f4a04 |
| SHA512 | 4d48d2c909a84cc1bc8810498ae79ff7b88d700e8153ea8cb99384d0c0cb7b91a4d59d1e219f34ea4eb4836cac1dc5a2101d1bfc89199d180ea8e6f0a214f337 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Variations
| MD5 | 961e3604f228b0d10541ebf921500c86 |
| SHA1 | 6e00570d9f78d9cfebe67d4da5efe546543949a7 |
| SHA256 | f7b24f2eb3d5eb0550527490395d2f61c3d2fe74bb9cb345197dad81b58b5fed |
| SHA512 | 535f930afd2ef50282715c7e48859cc2d7b354ff4e6c156b94d5a2815f589b33189ffedfcaf4456525283e993087f9f560d84cfcf497d189ab8101510a09c472 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db
| MD5 | 4723078d0b8dcd3445aac00b4949e6cf |
| SHA1 | a3e2061a06090b60b192f6b2cfc258b319ccd04a |
| SHA256 | e9499c02ca11223f3339fdb330f749a3eecb65125d8e1a1c5b37c8bb98ad931e |
| SHA512 | ed7b0197340baed100caae0af48b4cf5e5fe82034ddf36dd728be3222a2f567a5ab53981c8c95cdb5f9e7931f260ae02e66cbce979aab8870a34cdbfd0dca7bf |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
| MD5 | f3cdf2c0c13f30748d4837a93d9d0584 |
| SHA1 | ebdebbf4527cba8d3a952ce1d96f74044e362e52 |
| SHA256 | 49fd12e89beec5f4d0425a013ffdaa72754277b09c4e8992c882bb253be9c215 |
| SHA512 | 9ca9bfcd0aa9faf8804206b97edaf53c759ff7ce42c547c71a3d20ec03a75b3151712904f86fff58dd024a590882d23c855249acf34b648cf5c5046e289fe823 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\segmentation_platform\ukm_db-journal
| MD5 | 98d78f155fa869655ccd78145c8ff672 |
| SHA1 | 18a9535a46cd255db4e291f10f181863e86eb3aa |
| SHA256 | 746373ff66340795835256f78bbbc7d66b09a14c547905898c8db67f219d2351 |
| SHA512 | fda870aa43a793c185c1acbcb3856397ab0975d55712ad4f714baad6a20095381db8a7436150a2254ae9dec5c521ecaa3aa05ee4985307676da4e509485d8157 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Last Version
| MD5 | aaa1d3398c11429309df446cc70a4b24 |
| SHA1 | 426037d880450cfe67c0db4e8836d8cf67c3af33 |
| SHA256 | d3c5bb416732a0643cb435ce980e4cf7ed0d96375d6d1d866565ffa4cf5f4e31 |
| SHA512 | 5400a74ad59ee80e11b97e884bedee53af567520b807e4c3c43b68446bb495a967e22838aeee4bfbf02486ec5abfb2e821c5165ab2b894a54e0d7eb70c7355a9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\ebaf1e35-60f2-4934-a97b-9c062c56917f.tmp
| MD5 | 5058f1af8388633f609cadb75a75dc9d |
| SHA1 | 3a52ce780950d4d969792a2559cd519d7ee8c727 |
| SHA256 | cdb4ee2aea69cc6a83331bbe96dc2caa9a299d21329efb0336fc02a82e1839a8 |
| SHA512 | 0b61241d7c17bcbb1baee7094d14b7c451efecc7ffcbd92598a0f13d313cc9ebc2a07e61f007baf58fbf94ff9a8695bdd5cae7ce03bbf1e94e93613a00f25f21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 86ebd73903bce6afa955626c394d6fb0 |
| SHA1 | bf410252487cec9f4602d853a0d86f453c112753 |
| SHA256 | c674001c50c308983f5b7d95a9f2e8ce89d2afaa70d4472a025da093d69be9b4 |
| SHA512 | 140770938c6cb523a1a8d5feca3af15b567308a346aa799dd9398958035f57830742ec180d9a3f8d2f02eaa7f15739295fdd6a49bdc1577e1d6d12267d094a60 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 1014596cdd93fc2d19e6c001a937841c |
| SHA1 | fdc5ebbb8a30b51946a4f1c9277e5dd11399e21b |
| SHA256 | 2b583967e60440f914f3e5e257b3525310c0864c1da061e1c8bc6ba4da8c43e3 |
| SHA512 | 09d671cb29cdaf479e31d8d9f4fa754d143bd8574ed54689c96da5b378e167f65d03adeccb12e5844467a05738475f62e0124d14761813f494ad0f837b3b4315 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | de20f82b013bffc06dcaf2cf3a86625b |
| SHA1 | d06d72ac2764d933639f1dfe4c853259cc30cf94 |
| SHA256 | 32b8a3ed9274e8191382eb8bfa9b595332b515620f32d472f13249817e8f67d5 |
| SHA512 | d98c644530db7c497da463e2990d6d464dbbdd4e463873cd6a340ec24336ef0fa478631279522925048dd277773755b8db14548bfdaf82154bcb14c4d2de0a47 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | ae8e44bb843c566c35c55e3cc9464472 |
| SHA1 | 6ae335d1280ea76e03c05e382e89bd376367ff05 |
| SHA256 | cdd4dc96ccea1d749c4e3da092d053f2e9480f87a4e40b0602956b660bbe4d98 |
| SHA512 | 015eeae70b538ed0e5de0813518c57aad68b85f6d716dc7ffbf3e5fa72a00a85c4b9da29173824c951458c2d3033bfdf850b03ee694e6b8c85ace5695a5a368f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 0d06b08d66f44ca0ddec1eee81344ff9 |
| SHA1 | ee230e6ed1929dfa7d5ffda3b1d6391a2f0cd3e3 |
| SHA256 | 39e89cc16eac9d590592affc74b2eaa992aa5631da2ebbd1714fef5979335ae4 |
| SHA512 | 037884efcca8cc327420a45a0fea5f41dbc8c8141ada3346b39a2edaf2a30f83a37d910908460783494cd1c6a5154e97db6c8894d04962739bb42b0ffadb8544 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 5cda1147c7d198ad094b6b932f1de98b |
| SHA1 | 22792c477741cec20421561429abd81ca83d3c4c |
| SHA256 | 1b9168e373fa9c92bc80d50097b1e2ece6af19da1a7973343bef6b92ab6f10c1 |
| SHA512 | 46ae8f2969d6cb3bd4c07b8f2b2f757db48730e408a8f8361ff0cdbf68be069a5e40579af6fe758bd598a5c050788151d91acd0f1dd171517924a1c536ac192b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000022
| MD5 | 822fbd79572d12360582c2be2184fb90 |
| SHA1 | aae84939254100cef45fc515a0b7969f7af191b8 |
| SHA256 | 57cf188429c1998ed4f5fd01a03c81be379c416863502224f380dc09305faec4 |
| SHA512 | 679634c67d2e690c5a743eedf32a603609eba00dda53820af292a25388673f4e41cb0d95fa70c2ffd01667e7c3038420b1db79a7be4447ad7c6b6e29dbfa662d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
| MD5 | c401d8d46a8f1e1bdd7f4dca63b27588 |
| SHA1 | 648a498eca8ed9e7f086890185ca634feb66baf6 |
| SHA256 | 37acf6ba072429ea1bf79691c63ae5446e75f94121383a4b76d22ec3cc114c14 |
| SHA512 | 2ad8b8591fa522b6e867a87c8d3b75ccafc0ff214495544fbb5ad54e713218cc4dc833fc0181c5e77f703f26702e299510e132a9a6c084f01b4c61a463b01199 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | b2fc06cc2c546226ea7abe38171c1495 |
| SHA1 | 001c12f177d8d4ad5e82641e0a8a03bcb12f345c |
| SHA256 | 8149a760f76980312bc281cbeb0985b867b0a41222e5616615379ab29f91f7c0 |
| SHA512 | 3f44f900369174c77acf05e0cbb4d4b0a966fe92b06f26184457ba123cb30960814e8f97aa15c2f191d0aea438890969c1059471f96a8846fb52c0a6cf78ebfe |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 6380a5b5522a36148dbd2998989f499b |
| SHA1 | 969b86588ec0fa800d0360cc8c3513409c79ac5c |
| SHA256 | 4fc6de382da80a33912d0899de118847eb1b91c0909cf4e1dca6fbae856951d3 |
| SHA512 | 5f1f4674aabba7d78fce078fda4700085da2ed09c3141aeb8fe6f5499f7113e4b69e8e9652cb333891457eadfb37b718842d3c75048f7524fd0884a008e0e633 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c75151eefd0d0f295002bd0a8397e862 |
| SHA1 | a05b87cdd0ea3ac25c28a0f577f93fda86579616 |
| SHA256 | b35a7509aec0e70fbc6ddc283908b350e039d51bcc3cd56608c92e156729dbd6 |
| SHA512 | 97f254428bc4b38b80c806fd78d73b2eb56db614ac5088e4e32c8c0293491807d6e6ae3e17d0e215f45f4b5c4a31d0a07ab3e64de3cf9402b347db13c104f98d |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | dfaea8ca256b1ead9bfef6e44189c149 |
| SHA1 | ec05f70445a237948cb41b9c5d33996d479e1b87 |
| SHA256 | c96e0e2e4501270d9f1eb2db04f073b27b8424871e022abaf8d3b3ea7ab99a54 |
| SHA512 | 2c9707a166e7607efcacaba7ccb23a3d76db41a049d506d6d0be9f62844a9a6c9be5e15e5ee3e762d78eaef2ab15ec1d25a5b05d95588444023d222082f2c5b6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 9fa6ba5ef7e9dc2c80e10876c64496b7 |
| SHA1 | d7cfc848e62d8e940f6b5e667a878e1a0071c782 |
| SHA256 | 348601828e1e4c42e01937ec55824a7cfbc1e86262aa6ce3d485048b1fc67d39 |
| SHA512 | 6d0e6fc0f905e1b82fab34bba10b752acbedecb34d9edccfce2b4b47842ffc8b8a7e0bbb7231879722d222edac0b47e1e6704c75b6a7f506235a137f169d6d28 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | e60ca60b537c9368ea148440ad8f871b |
| SHA1 | ba6299f96cdf0641578f2cf6838a3cea8f36b4d2 |
| SHA256 | d47f3aa6c2961076f869c1c5ec386b594d615cc25673242e8c97b2d887331bc8 |
| SHA512 | cc81c49aa63405ecd14e6d46e47e07482efc3ccf44035f5c176c172fce33d6859579b0b1d4a17bbcf2f9c2f598f848064c93669084aae7bfd3fc1eba23fc31fc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fd063b649fc21dd920dd1caca7a34fea |
| SHA1 | c0d4bfd2866cfee519f388271101b8f361fed7f2 |
| SHA256 | bc1b059769e07be1462e4f295e3b91def81727260ae6cd351a2b89bfd8967dc2 |
| SHA512 | 69f6b676f86493db9c9bb74ce9ec9c1ab057d2e327b0d7faf8ca1f69096fdf1f7618f25fb12a476038df2102eccafe8150bf24f483f1a747fe1d20321e79c995 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 631512709d36aa8ce221ceb2fa294648 |
| SHA1 | a82e706062a74e3579365829bf045c45ba07a61c |
| SHA256 | e1ef758b555b0bc2f730e3056415e7dfffa73f91507a1671d236aa6440e7b7f7 |
| SHA512 | e8162352c2f55006e5577046ea86f35de5cc8a1c524140aa72b38b8645f1198764b583487b712c85fe25ba8ea4172c1411044451ac8faf8dd8f541b938799604 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | d018842dadbde53be564375b1f67945e |
| SHA1 | f4f3a6f7152576520e332c28935d5d01bfc00a6f |
| SHA256 | db9c830815d6467134aa7012511ec82016698e5bdffaf68deb1942b357f153e8 |
| SHA512 | 109f3b48e69ccd8c89346cfa8a0f1dfb3c8c4ca3a4a16a004ad36cd78ea57b132992d8bd01fcd9e9a3895fce7a6d7d99713dfde4e763fbcbad1a41e956193af5 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | e65076a2f6a7e687e79bf8f8fd1ec254 |
| SHA1 | b8ca153f5eb97e81ab8439ea72cd13d282509774 |
| SHA256 | 1b81169fe5f69523bc20f8f3525d32bec9b74b63a5e8e2e2591af1fe5358f3a6 |
| SHA512 | 759794cb145cdd386dc475720934cc71e8d4930800ab98096b9bce0cc04fdd8e8619b0bc8cefbe6117e79ec538acf74746d16d5237cd2f4d154af9769d4331df |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 31c23361b1f47e14937aa31c85bee984 |
| SHA1 | cf060e861e9dcb02d69869df52d7b2d9c4fe6414 |
| SHA256 | 73f1f48bcfc6cd1ad1db0f87a8469968d2488a2ce3edc0db490b4604eacaba49 |
| SHA512 | 477abce6b9d8c96768c17f7630d618c88f11a5ba129378d905286e4e8aa43b5bb1e4418090a6ea85075e87b6e2f5dcb7d632c4acebf628049e74a64a818b35b0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b9c219dfc2ca4d5bd457ac65e411e433 |
| SHA1 | 0b7f9ad81c84c438f7df8587f7bd9cc5d134f9a9 |
| SHA256 | 67bcdade2b790bc579f3a2cba66fb8af3329e0c85b0e4452078f15404b5f5521 |
| SHA512 | 6703940f76e45b697ffa8ff27a8db354e5e2052678e666e6fe2b8efd67db06a51072fae5953bc87e5cf11895a2718333f78d799c801d3c7207da00b2f6c62eab |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | fba72fdd6dc403668b34f56208d69f78 |
| SHA1 | d05c50836213e1ab759847675fa11fc6b5f806f6 |
| SHA256 | 8914500908a2cecfcb0734edae26d593e59becc6cdf2e9b9c3efe4f3c6be8bde |
| SHA512 | 0e1f5ee16ee711926b826b7a12b5f000344d060203bcfb9a8032ca23718cae0a3c9f49b020dcc883b62089e03caace976c058358b1d7d1a02096b2a9cd969433 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | b325942bb6aea9fb8475256fb51046ac |
| SHA1 | 58cf55931083f5cb7944069d7e2395191788488e |
| SHA256 | 4123e36a2e52ac7754b0c1fc55d0099e679acc0d7a81bb0a42a501b225450f99 |
| SHA512 | 412e91c1bb85d56aebac0ad9f038815c91f03e88f48b104dcbe0422ffab1977d8d58ddc9f7db42d78b6a31ef7504fdd67cf627517d697fcac84722a62f69cb8a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 853a7edf9446fcc08e27eb180f2f663e |
| SHA1 | 30495dd6c1844dcc0371c82b0349869c66478ac3 |
| SHA256 | a1de8771c67206aeaf83feb4ea76d0f4955d217aeecd632601615993686c751a |
| SHA512 | ddf2cfe196057c1273bd6c77011e5c23ac8c5ef7a8913d664a18229a08659443e5f4378ec119f84231622bdd2e1272ddc09277283d3724785e5d2afea8c6c9d8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 720fc3af8dc6319aaa639ab7dfe77df4 |
| SHA1 | 1790141567db9f6a97cc07da33e46be50a44570a |
| SHA256 | 07d7a4e347654db07d7c5da5189933e1f48846c10314758e9dcfb77c902481c0 |
| SHA512 | 77dfc8820fc88ca29ce228f6cd951abf9adc18712f47363833f0e387aa97e448244ad36c751927aaa1e2936461476cb410bd200aeaf15c7f866e7ff9e9b63191 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 3259b48518cb81f7de27b4e9ed3d23d4 |
| SHA1 | 88035508a017d0346926cbba2e8e14d29718ea0a |
| SHA256 | d51e085e272007692f7825e580967842ed0902d2fc5c4c15d66ce4388f344129 |
| SHA512 | a88027c5da707b85219d961e130d3f0d00927f6306c916194f00ff7a447cc06780c522592199c76307366f2bf28446ad3690eaa2ed3fe7f2e64d63634643c982 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 0a1bdee2271508d1ab68c5458b6e4ed3 |
| SHA1 | 1ab8dd17c71aa0a530927cbdab9f619e412a28e1 |
| SHA256 | 4bdfa0273dd99eee2b43f8f11d2595b75c2d5a0a7babe2ccdfb5776ef3235d2d |
| SHA512 | b44e64c4f09d1abf8961d852f3da1864d128c0a3e894b39d20a46943ca44cda8e86ebe8adad182a01b104c36f587caef3a165a021ae925c6d06b222e31215987 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | fa5a9b681d367f7bfdaa2dbe393072b7 |
| SHA1 | 47ffb9556e8f2fc87671e1cc2a8037c6b38b5263 |
| SHA256 | 8339773d1a09366c668efe1923bfde9219eb155e187e0f4229f94551c6ea8973 |
| SHA512 | b4481ec3fa73bf9c32f12ea0378f02a551435040f89c1af42579f4663986fdce929fb0cd421391744a2e2844bacf6111fe0ac251e3ec31ae403f03e15c5556a5 |
memory/4760-1990-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-1992-0x0000000356B30000-0x0000000356DE3000-memory.dmp
memory/4760-2005-0x0000000356B30000-0x0000000356DE3000-memory.dmp
memory/4760-2003-0x00000002E3650000-0x00000002E3666000-memory.dmp
memory/4760-1999-0x000000037C1A0000-0x000000037C231000-memory.dmp
memory/4760-2008-0x00000002E3650000-0x00000002E3666000-memory.dmp
memory/4760-2007-0x000000037C1A0000-0x000000037C231000-memory.dmp
memory/4760-2004-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2006-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2009-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2010-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2011-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2012-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2016-0x00000002E3650000-0x00000002E3666000-memory.dmp
memory/4760-2013-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2017-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2021-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2025-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2029-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2033-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2037-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2041-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2055-0x0000000140000000-0x00000001443F9000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | ca53a4e194e21f9b00a40e1058af205a |
| SHA1 | e49ddd98bcb79b83e1529880429ca5d6105dc448 |
| SHA256 | 6f3ab8085ba49cc94bc00bd75e78eacc2793c552b5344b69a7dcd0fd51daf982 |
| SHA512 | 9d6c4ace8138e54c90aa2837eb174638dc2f006cc7dfdf4ea33bed1baaaaa5a474deaf554043d009833cbed45f236b4129dfb5db6ac860f90a8d989fd3ae2b6a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1882f63259f046f7ff9a8a60954ab9e8 |
| SHA1 | 8158283e65f3c60304a37b87b4d4c81006da033d |
| SHA256 | 405118627c17da72f396326e36ece0393a511797646ba11431c016ed6ec88031 |
| SHA512 | 1d4bf42e16ecd800849e6ce73062d78ed793c2bce4e49186748317c5f20467c8c7b98612f882fe50fc30af69a3487dd7107a2097f1d8b17e975c2280a1a4004e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 732a2c7f0183db99a16b2701af96a9a2 |
| SHA1 | d58d33e3924c2a513a9e75af34e6cf73d58a0d96 |
| SHA256 | 20a94cedd1afd44cad7418bd3d887bbc99fa6dd68f55f8488b23a641ad6a9de1 |
| SHA512 | 197d13dddeb2b9d461f2c654c6268c93102df6838c466a412c4299798d0f60231301f2811dbf16c0b8b90622464e985f3e37a4b94651cf4081b85b9b8af80db4 |
memory/4760-2095-0x0000000140000000-0x00000001443F9000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | f7f9b99a49578d11f3a3500a2c5613dd |
| SHA1 | e4dc366ee09aaf9d8f4a1b15ae7f356ea06c54ab |
| SHA256 | b4ba0fac23116baa962c45aa20ad36311976fb6291e2f16d62fa5ecb02dc804f |
| SHA512 | ef0ea9e896b3cd6003c31a63e3b4e327d3ad57cec09d05cb1f314edfc2365df72c415f7b2ac08879ca908eb986936518fa172357d2be00c2dd9bf3173dc19f65 |
memory/4760-2117-0x0000000140000000-0x00000001443F9000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 23cf769306084d4fdfa0ad5750c8d1a0 |
| SHA1 | ea6fb192bf4c05296f9eb43b9295424b60814952 |
| SHA256 | b733a661a904e4e64ef15bc50a4d10c816230b5d6bd25df93ec207a55ef9a3fa |
| SHA512 | 16e653db1e3d805200f90ee63a55a886b229e0f097aedeff90e186897dbc3737adbf7b8e1733ab9456ef0c92d3586d65c5bf88a7770b6ab911911e5b1f7094e4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 2e2118c8d059ec65a9504c067da0a31e |
| SHA1 | 69bbf5b75751efc68d17559a97cff3473d9caded |
| SHA256 | 28f51b1525deacd6587f7024131c3e95a25d8514c2cb74c4c578498fcf57bcea |
| SHA512 | 4216c832a3c070b15f37771bd9669ec4e23a17d10c5673a2993717e35e4a6f0fc7dfaad1074ad13afec5276609ee5bba901cd7ca676ba5098ebd94f2634c40f8 |
memory/4760-2157-0x000000037C1A0000-0x000000037C231000-memory.dmp
memory/4760-2158-0x00000002E3650000-0x00000002E3666000-memory.dmp
memory/4760-2159-0x0000000140000000-0x00000001443F9000-memory.dmp
memory/4760-2160-0x0000000356B30000-0x0000000356DE3000-memory.dmp
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | a055b6e7b8a7b0a28e0f8a93fb0c08eb |
| SHA1 | 9d9e2da37fe5fdf4cb8d88e304d3d35ec6f0ad54 |
| SHA256 | 800c774263fdd496726447f636d96f8603f1f3631a4fe2a72278547ed37c963b |
| SHA512 | 6fb79409e955cc0b5611c645f6973473bde9f798ba452c9156c7368b3280469ab852c62831fe841d262e894bdef93902562e8c7d8a4a077d35f8bfb42ba500a8 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | e262308300fb7c9831bb022a4eb32dfe |
| SHA1 | e564f15853b0e6234e8bd9db7d7550f95ebb9f36 |
| SHA256 | df904b95cbf4fb82f39cc4b78aad9160b3e0b4a993776316fb9c16c31568e12c |
| SHA512 | e6d995c0a874abecaa235a9f65d9a0411c11319073235f8f759d5115ee082400bc9101a7730a03972c79be19fe4b277c2570196d1316244375d4e58405c31bfc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 901dab2c646eae91111ff17376668485 |
| SHA1 | 68a0ba20db64005a0bf542ba2e89ff99e6020ecc |
| SHA256 | d97ebdf872b48c8dfb5374399d4688d264fba742aebf148a46435adc42c3e80c |
| SHA512 | 3b36054722b2193858d0ab928f5a68affbecb6deddeb3e4420c6d945aab6f06b69179498ede22dd13afc0c12f02c428d80a5ff8f29806f9e3c14858539127ff4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 05837c815973d8ef3990d551aecc6d0b |
| SHA1 | 9b69769e219477a1f7901341ab518baa4078c207 |
| SHA256 | 4ea167312d187a78d27e27bf49bc34d6287742cf0a06ee68e242ef8de3e785eb |
| SHA512 | cbcfc34e7628a8563cf0c1b83d21f87bd8311b31e46440da31d915ff37c44400e303b8f5de552b52d15518faa705899b2d20943507e72cfdb4b495bac78a2128 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 139c6b75fc3f5f305222425d13489c28 |
| SHA1 | beec06f63cd1c149980f4389f89fee572b93d585 |
| SHA256 | c2a7d7517ee712333bb85f0b01da32e4f7f1404f5726c6f8b0aeb16bac10f631 |
| SHA512 | d6918f993812f8ec4e8662e3fdd09a58c9c72f5164cd0319d93a4c3de9f7c1d1aa14e447f2242c95a58de6e25788fe9ca0bd761d47c9d28d8d16a6d9b73cb6f9 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | f0fe1681a602c7c287e48c1ad88f6f5c |
| SHA1 | 7fc65700fe32debc43b1951518cb42dbe2497fd4 |
| SHA256 | a507fb2c46d12658bcac8732ac317eb4cafb0a652c0e1890a423b11d33f0c910 |
| SHA512 | d9dce8912446174b533d6b6a6f7b0095f3d69742c2ea726399413fa7450f749fecc748c0391aaf73f975e56344d1e60b0c34e51f388a550e91f53908bb8c6a1a |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 746ab70ed0ee084d29d4a034903134a5 |
| SHA1 | 72b14115fab2a06cf496ec47bbcf739e2c725fef |
| SHA256 | 6d053e39356f459c9ccec8b0f5eb48427aa1341c8fde2f067165301da271a470 |
| SHA512 | bc2f3ea7a6b288e0d71ff94d6bd22ecebb3a0fb48c298824f274f62b7f1022fb6d0acdcd5fb9ec102031695b33b4b81c8d58649b773646bb119867bd47983627 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\Paths\MANIFEST-000001
| MD5 | 5af87dfd673ba2115e2fcf5cfdb727ab |
| SHA1 | d5b5bbf396dc291274584ef71f444f420b6056f1 |
| SHA256 | f9d31b278e215eb0d0e9cd709edfa037e828f36214ab7906f612160fead4b2b4 |
| SHA512 | de34583a7dbafe4dd0dc0601e8f6906b9bc6a00c56c9323561204f77abbc0dc9007c480ffe4092ff2f194d54616caf50aecbd4a1e9583cae0c76ad6dd7c2375b |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | a261087b96ab9bff07352b6013483cda |
| SHA1 | 8218ff68141637a31cec5581f10967a1e89c1dac |
| SHA256 | 74f11ee306d5bac608ec5e7352047cda830e9188feec7f1794f0fb5b56f09d4f |
| SHA512 | 12d4a25c9f6fec06adbb6581ee78050192eee372e439ae5cd406e39b8193245e9f5180264d834ca01fdeb5ee44f6371db9ea63c2e05cc3a9c7582b7e7b727e87 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 2f266c0dcb6996db9900337623665515 |
| SHA1 | 877a73360779b48d5f824b0219dca1d49898ea3f |
| SHA256 | 9cd766593c06ee6ce5c861c68ea63bafa441106dd9198994ede9f8389e578dee |
| SHA512 | db2fb57973ac701d6b037fd623e2805ec45b2f5ba2fce3ca704c914d9a52b91d8c2af4d4997b8a2838d905b105cd0588e8c1a2865a276ae95aad461f96fe1f31 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\1fc8a277a85446b8_0
| MD5 | 3184de1d3df8818384c571bda9f7ef4e |
| SHA1 | 6de6961e31d01783c9395388e2780d83259fae46 |
| SHA256 | 88a949a82fd41a5aca88f77252373622188468e33bd6710272403112d809d52a |
| SHA512 | 077778813d4de1c3e53b8ab1993a274e20117a08fe9ad752dbe468f7cb46c3718113cffa44216573545d787eb236d3014095de9a05b26c3b14983cad0cfd6d38 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\fc4079d7228fa9f6_0
| MD5 | a574bf9106b8cad03f6d2ae537e8c9ea |
| SHA1 | b27644e76bc2b27be6d0d54a6018390a83976ea3 |
| SHA256 | 2baceafb94482cb3bc6eafe38772a7176e22aa4e7bb5e70977aabec8abfe06db |
| SHA512 | c658a52c277a1a5a7cb48be526223f082a0731e797dfe9cc8a203001cd0880e31ac7a959ab06c6d7c0210bcd923b3e83d7892fe3e7e8b869348333a1bae99938 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\6a2d19f920f33ac4_0
| MD5 | 5db38ac4cbcd17cfd748981a73287137 |
| SHA1 | 48eead84b23fea0ba9206123fb2a556b14c9140a |
| SHA256 | 17fdf4cfe5a2e2b11101b66612322cbe5ab8f313ef98c03271659516459d7cca |
| SHA512 | db913afb57aecb174e78f32f0ff7aba9c6e308ad45b405f7a65657ea9fcbbce0d13f7fac41909a5bf92240f8a8774371f96b4fe63b692410a103850038912b1c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\f0504b19b6ee10b9_0
| MD5 | b16a5ed102052ff1ef584ad5c88ae546 |
| SHA1 | f3480083ba6c3300555283b67c8e77e52be4df13 |
| SHA256 | 0eb8e824257916e629c2893cc4415cb01c826f8da156de620dd7c41180606e38 |
| SHA512 | 297f5c3c5db24267ca4edc769f55872d092c4e0f376c31f7e6b70c6185387b444c8a39d85560c7d77c71ad203bbcc0c0a411e816fd2746f458d81bba058771dd |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 9938ed99b6e4b9a7f0b0b2a37187c9e9 |
| SHA1 | 047f7835a34f7aa5cf8e34f36d20f05477671b66 |
| SHA256 | 743f165b465a62c6d9e0c7b2ede5736726674d4ac7262af7c29be2a1638684d4 |
| SHA512 | bcd41bdd7a9001e222a02a2532473039323147821f677f27da30d65cc826167377f971b23d1b623055a6f58f87e1da9024bf85480f57615d8773b20a787a63e8 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | 462953d350792da4469602ce113f4de1 |
| SHA1 | 7fd57321b8929fc9988ee4204b516c011084f45e |
| SHA256 | 23dbc6a8f1bfed35c56eb7ae55e7974c85681ee33c9532d12f78de59fba97038 |
| SHA512 | dfb5b44c7249228e0697e1b58d0a1cc3cf2350a0318d52bdb0197c812b163f02ee3f518aa041e43df7b7685954b82adc373b1dad452b83c4a1189f12b81f8adb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | ffd016388008d7223a989db4f1873ff6 |
| SHA1 | c3a90c17a1ffd2e0dc36206ede11c7b88b4c3bfa |
| SHA256 | 3c1e0e6e7c2bcf7daf2b918fe9c7ff37923d67e4104215887e0592fc3342e31b |
| SHA512 | b8d29e8500603e3c0b3260643557cc834cd6ac56b3805051761bef9022d6c750ef05c974e15fb6c3bfec5f06b0eb1502574f3a849bf7376f2e8bc619359da2ef |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 421aa67fe34e7060a14e0ff20344783e |
| SHA1 | 2bc3c3388c65624a7432dc6bc80fe01e9f84be1c |
| SHA256 | 43d8dc2b65cfc3318ce8bea79effcb64aaec644ff44ed0e7342e0e76bdf649f7 |
| SHA512 | 1afcecdb1af0925aa812c9202c47778dc129eb9d0895a2328f9db8a2181d208e7dd883185d26ab929b008c2e2007f4ee870475c9c73b93e1a9adafb51d4462ca |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | bba355da73f9039c01cc7859dd9cf5e1 |
| SHA1 | 3199db68a011f921e6516d495ef170be5fb9501f |
| SHA256 | fd97b67b7129ddf8a5edacb810bf6a0da9e99ea77a723a9eb88fc7bfd9eb12a8 |
| SHA512 | 987d24f116ecef91b07cb6a52c1b0d232f4126ec2683e6db91e8e3545b5661b6b04e4af537b4f0a24856f0c8a99260724f85330f05ca049b987ed6d667ca51d7 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 5ca0829d7fdcece868956ffa0be3bdca |
| SHA1 | 4ea9ce1e494ad5f36410ed0c16cd10d059fca819 |
| SHA256 | 22d12427c7d9c38e3298ea0933581f328f6b0ca7208521d70fe0f9c94a727831 |
| SHA512 | 0d10e8ae6f2ed969372beb95d539873a5acd653e5c4ce14ad1bc6115c75a4b2fc40ba46c0242d24d08e7b4c00368fcb28f2e11fc134b3f3abdaa16a8b16cd468 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity
| MD5 | fafe152351791b618bb04a85bde7879e |
| SHA1 | f6ae6f819368d1081f079ef454ed7d271af5d81a |
| SHA256 | e913b05abc5dacc4fc6d0d5fdc02ac453946a702852bdd409ddb4f416fe832b7 |
| SHA512 | 2604b457a021a645f27c882377093ed462ea0323a19baafe1ab6e92a4fa97910df162f2f2bfb4690a1f5f4c1e3ed09a36280e32c59f2e83c310eefaf6f4ea5bb |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 490270b9f44f3c8a540829dd08cb842c |
| SHA1 | facc091c7939ee7a506bb6b3c8eae4aad32ec2f5 |
| SHA256 | b3d145f1e21107f38b63d563f1adfef0d89cc1cd387f9616b6c61cdad152c8a6 |
| SHA512 | c543e861dda8ccf5f776218160fe0db932f9787f2ea31596082b4f5e16cbb64fd47e4136a23d38c86f41424adb12d53e56ec490174e933a434c857ba957d8d26 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 9c8a4829a4aae00f1a0a2877f9b3c04d |
| SHA1 | cb69d480ea0edee4d4ea73ed76e90f3edba1abf9 |
| SHA256 | c1def2fb933dfd614c98bdf6c0b3490c18d560be0aae2c792cbcc6272de69c77 |
| SHA512 | 46294b35f4192f8c3c2660a4110bf9b8611be17ecf47c85ac1c92ce6f2e350d085ba7ca5f94d3291a41cb7c578a0364a7d22293ca4bc6615aac72160efae1015 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2871c2f965bddc18cf33a053d5f12a8d |
| SHA1 | 80ef0fee985710bc05787973c9b87dca02e908a6 |
| SHA256 | 0f1ba2f50cd77660df6ea9675efbbb27d1e920be7f48c089a3d4c8f4c1aa2020 |
| SHA512 | 4be3fc7f01003164791a2652cc6d8ac4f0a1bf5607ef32e461f6711cac39e4ed503b8ed50dab0633a96e418a5bb0b2ee87c0523c1c320a9a12e3c0d045332ea6 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\a89c7c0d45472fad_0
| MD5 | c11f75faa6dbad116e69fb13e09fb12b |
| SHA1 | adbaf86c49ac639f70072a95d6e0c5ad1930af36 |
| SHA256 | 66a7364df76a6839c3c3bbecacce51e540ad4e5f992d0bf136fee5bfb61b8159 |
| SHA512 | 67a2d5d67c65b2cea79a05136d97e9965458eb3a24f2981875c9938d2c1dbef6d47b83ec78a1fcad0ff4c59610892f46a58810d0a8ef4df35ed877f4ff436c9c |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 1a34e5743abdfa316a363d3b97d146a1 |
| SHA1 | b4063c04febd1042434f4dff806c3fb24c71060f |
| SHA256 | 776a5ba5ceb13529ffb75e663a029a241692845d5f7367340044181e757290cd |
| SHA512 | 2d437e1348200738799933ccf9ae258210234faa5512edc1a476669043c0d4be759d40c607e904bc1dc770fb2f18533130f9a8843c77c3a8cfacbf02968f95aa |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.lock
| MD5 | f49655f856acb8884cc0ace29216f511 |
| SHA1 | cb0f1f87ec0455ec349aaa950c600475ac7b7b6b |
| SHA256 | 7852fce59c67ddf1d6b8b997eaa1adfac004a9f3a91c37295de9223674011fba |
| SHA512 | 599e93d25b174524495ed29653052b3590133096404873318f05fd68f4c9a5c9a3b30574551141fbb73d7329d6be342699a17f3ae84554bab784776dfda2d5f8 |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.val
| MD5 | d222b77a61527f2c177b0869e7babc24 |
| SHA1 | 3f23acb984307a4aeba41ebbb70439c97ad1f268 |
| SHA256 | 80dc3ffa698e4ff2e916f97983b5eae79470203e91cb684c5ccd4ff1a465d747 |
| SHA512 | d17d836ea77aeaff4cd01f9c7523345167a4a6bc62528aac74acde12679f48079d75d159e9cea2e614da50e83c2dcd92c374c899ea6c4fe8e5513d9bf06c01ff |
C:\Users\Admin\AppData\Local\D3DSCache\cb00da9ba77862e\F4EB2D6C-ED2B-4BDD-AD9D-F913287E6768.idx
| MD5 | b5ad5caaaee00cb8cf445427975ae66c |
| SHA1 | dcde6527290a326e048f9c3a85280d3fa71e1e22 |
| SHA256 | b6409b9d55ce242ff022f7a2d86ae8eff873daabf3a0506031712b8baa6197b8 |
| SHA512 | 92f7fbbcbbea769b1af6dd7e75577be3eb8bb4a4a6f8a9288d6da4014e1ea309ee649a7b089be09ba27866e175ab6f6a912413256d7e13eaf60f6f30e492ce7f |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | eaa698530f3cd43b34d0b3a6698e9a05 |
| SHA1 | 956509d392ff4b1c5f6b383f2275bb1ef6156d0b |
| SHA256 | 4e58ec631760128abef278e52151d9ddd2f32b2cfd837567b80072a8b6e44db8 |
| SHA512 | cfdd23bed4fe76f53741651092ac9e826d0e9b0f45d904a3abb7b53512d53207a4662572ac13c279a8d8e623d0e4efd68806d6fa565df4ce589f8511a2757225 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 5be9d725a07c137211d949013f5f1c3a |
| SHA1 | 99f3ebe76949cefa465c7835538b7583585519ec |
| SHA256 | ea0ff2a90ed20233578562982cd8631956bae14fccb1b6a86290cfb446051ca1 |
| SHA512 | b79bacccb06f81b9192bf6755d62b749e5283918808b192dd4c7da4b04e43a520b82809bdf7188db887a1c7ec91366ed39b02f0b1b86fe7f0bd9a300b5c1e887 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 68664d115a4345a2337b2dd0df9b240f |
| SHA1 | abafa01f174444693dc8ea4c3601952ad06c98c1 |
| SHA256 | eab305a06a662886c9461f03855a3eb2f6199ea2c07971e8be8948067ef3fe1f |
| SHA512 | 622d9709e07b7fc03f6c4c4ecbaed92056323f44224799ee0ddafe8a696a64ffb87c305554db3c18d33a8305aa35151805bdd77408ecc513dbae28bee69523e1 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\55ad0fd2-e6b5-4240-a398-9a859e0a9cd4.tmp
| MD5 | 62802f8353763aac7501e9a741272190 |
| SHA1 | f402a6f9231a924b182414aa796f3eeeae1a144d |
| SHA256 | 5416fe1e38cb824303a3f9cd9faba5d9325bd90cc955dd26713da4663231b38b |
| SHA512 | 2f16a1a89c246870c715f07e44fd6b34ce90ccee148eb48b9f13197ae215524c021b6c59db7c6fc96fe6ba56ab18e2242630cd04b851f61fa4d092c2db51f486 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State
| MD5 | 73d60e0d5763e9b3cef1b6124991e917 |
| SHA1 | 092000af2f17477b22b47d31326021da8026886b |
| SHA256 | e7d7120f1741cb0a852af6a9619f9bff7177bbf3602d9eec4d5768db1cef526d |
| SHA512 | af61c7e9f5faa712966489b9af76dc4ae077697fc8c7a366fd85352dbedb3d7947f9671d3315acfd021328de6650ec38189323d26d2010e3c595bd4d65984ba3 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences
| MD5 | 2c8e530931ce2bff19af6899cb3d27d8 |
| SHA1 | 0c0ae29328e8d22651997082ea57cbf1f38b08c3 |
| SHA256 | 0d063facddeb99a21a86818bbbae09fb05acaf71e199b4ce617e89ca572c9d30 |
| SHA512 | 6e36436234dca3efbd1f2cc15ca33d6fc0de795bd6cff06ad07af813449d14f55f1a22084ce6f9da73aae0f5f2ac1ed7514578e20126c6e675afea551ae58769 |
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State
| MD5 | 3ae682e8f61fbec8333eadabf670c055 |
| SHA1 | 364b1c20a81bf241548fd5b80ee3787fb0ea3b93 |
| SHA256 | 129ae954fcd3b4d35761bcf1c29aea86288b1b8a68f9b61c038fcb3857a79087 |
| SHA512 | c9d4fe54670f203083f9c5cfac2896aa4ac820cf5384173cbf406d4be055a3883b6d657671a6c6ab30ad57429ed481762a5726b14b5411bd9382521cc8f8b391 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | c4ce7bcb81e9ccd1181514de2e7ccb49 |
| SHA1 | 6f3468f22401883f0ceb798b0df7dc62e75eaf6c |
| SHA256 | 4d9c5535d76f768c14c616120f6709176fed962fb6c1fad5695b0189aacea622 |
| SHA512 | 5390c13f7bf6d73b2660b7e186d98de8c76f3f6f02ad24a1c3c8abf4514f6c1eff02fbb756716b48a018007cb149a2ac387ae332e63d3785f072c2d225f7914d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | afb19e740c9a3ec6d290fc3ce59a555b |
| SHA1 | 662aa87f55379cc5f53973d6c5ca6ea320db080b |
| SHA256 | ed61e9dee0556c0cb7152dccd2491f636636fc1b9f8825ce57b9c00367353eb2 |
| SHA512 | db49a353807ff2901db3fd6812a472a942bb8dcc1d2236f27d9d91559c7cf66a9803a7fa6ac2a6445a1f9f8b2fcfe8033c257a6c20c0168ae5545428f4354918 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 407bb9bb4bfe4b12a3303383abdc7510 |
| SHA1 | 2c705f33ca3239b49d337498ed780f7e17bf7abf |
| SHA256 | 634c58de0f813e207635478aea6ff8a7b1a6cce95fb0e4dc7ccc75fdf2459d84 |
| SHA512 | 366bd9c52a6071690c81194f7346777322bb86e29190b91af993b335ce5617041c4e81ef3e224488d38503b0d6649689222d6da39c12dbe60f0114fa9467b530 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | aefd77f47fb84fae5ea194496b44c67a |
| SHA1 | dcfbb6a5b8d05662c4858664f81693bb7f803b82 |
| SHA256 | 4166bf17b2da789b0d0cc5c74203041d98005f5d4ef88c27e8281e00148cd611 |
| SHA512 | b733d502138821948267a8b27401d7c0751e590e1298fda1428e663ccd02f55d0d2446ff4bc265bdcdc61f952d13c01524a5341bc86afc3c2cde1d8589b2e1c3 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 6a9fef75714b2a463eebf277f36a1f8b |
| SHA1 | 16582713c3fff598f2b610b02523b889f04ede9c |
| SHA256 | 8a3bad77d6f149f35293db877ff697ef9dda943a84fbb471df6dc657a0229702 |
| SHA512 | 30d3468be49f9323a52576f4492f090da4dcc145ef4dc16c77f4be4a88dccebb6c88adb36b8923ce84e7db044065f8a43b66be484689e5812fdbdeb25a615999 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | b7cdcc33b7c214277fd1edba768bc39c |
| SHA1 | c6fc19edee5441825516d6405a05bad25dd24647 |
| SHA256 | 9a695309c6043186c623a479aaebbaae255efc1282d846fa1841bafb4bd6d027 |
| SHA512 | e03b0a268bc8ba8f18cb809a817dd7173ab545679a9f24677b90f6e5caf1ca149ee472ef7744201b67b1dd15e96a8a1f827d3cd5ac349c0b1cc147bbff72df78 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 2dd7ee411f86d6b51331cd1b4ee19f8d |
| SHA1 | 2587e81db95a7eb95903ccce75620878e73e41ba |
| SHA256 | b6e73ea5c987ffb3cc706de1de6b3203744fe72042b8f69394f85a6bd4afbda4 |
| SHA512 | 3ee863bad63d73307f5fb01a4777a4f9dde2a2671c249f6bf3d525f8a238ffb6958b5d6ff8196fb052b455b2b899a5efea83c5177a1573054f535915feda36fa |