Analysis Overview
Threat Level: Shows suspicious behavior
The file https://www.mediafire.com/file/tn4z10g4rt6q6rt/MMC_PREMADE.rar/file was found to be: Shows suspicious behavior.
Malicious Activity Summary
Loads dropped DLL
Browser Information Discovery
Suspicious use of WriteProcessMemory
Enumerates system info in registry
Suspicious behavior: EnumeratesProcesses
Suspicious use of AdjustPrivilegeToken
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Modifies registry class
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-08-25 10:03
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-08-25 10:03
Reported
2024-08-25 10:09
Platform
win10v2004-20240802-en
Max time kernel
329s
Max time network
331s
Command Line
Signatures
Loads dropped DLL
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe | N/A |
Browser Information Discovery
Enumerates system info in registry
| Description | Indicator | Process | Target |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key opened | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| Key value queried | \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Modifies registry class
| Description | Indicator | Process | Target |
| Key created | \REGISTRY\USER\S-1-5-21-1302416131-1437503476-2806442725-1000_Classes\Local Settings | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: EnumeratesProcesses
| Description | Indicator | Process | Target |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
| N/A | N/A | C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe | N/A |
Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
Suspicious use of AdjustPrivilegeToken
| Description | Indicator | Process | Target |
| Token: SeRestorePrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: 35 | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
| Token: SeSecurityPrivilege | N/A | C:\Program Files\7-Zip\7zG.exe | N/A |
Suspicious use of FindShellTrayWindow
Suspicious use of SendNotifyMessage
Suspicious use of WriteProcessMemory
Processes
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument https://www.mediafire.com/file/tn4z10g4rt6q6rt/MMC_PREMADE.rar/file
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=92.0.4515.131 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=92.0.902.67 --initial-client-data=0xfc,0x100,0x104,0xd8,0x108,0x7ff83db846f8,0x7ff83db84708,0x7ff83db84718
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --gpu-preferences=UAAAAAAAAADgAAAQAAAAAAAAAAAAAAAAAABgAAAAAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=2172 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2228 /prefetch:3
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2920 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3392 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
C:\Windows\System32\CompPkgSrv.exe
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5288 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5864 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5528 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5020 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6432 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6580 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6652 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6596 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7160 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7340 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7360 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7680 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5992 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\92.0.902.67\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5992 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5696 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4208 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6028 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5836 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7436 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5176 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6012 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --gpu-preferences=UAAAAAAAAADoAAAQAAAAAAAAAAAAAAAAAABgAAAEAAAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgAAAAAAAAAeAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAADQAAABAAAAAAAAAAAQAAAA0AAAAQAAAAAAAAAAQAAAANAAAAEAAAAAAAAAAHAAAADQAAAAgAAAAAAAAACAAAAAAAAAA= --mojo-platform-channel-handle=7868 /prefetch:2
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6500 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7248 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6960 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7312 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6472 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7224 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5528 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=7220 /prefetch:8
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5488 /prefetch:1
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
C:\Program Files\7-Zip\7zG.exe
"C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\" -an -ai#7zMap25707:84:7zEvent12370
C:\Windows\System32\cmd.exe
"C:\Windows\System32\cmd.exe" /C "C:\Users\Admin\Downloads\MMC PREMADE\start.bat"
C:\Program Files (x86)\Common Files\Oracle\Java\javapath\java.exe
java -Xms1G -Xmx1G -XX:+UseG1GC -XX:+ParallelRefProcEnabled -XX:MaxGCPauseMillis=200 -XX:+UnlockExperimentalVMOptions -XX:+DisableExplicitGC -XX:+AlwaysPreTouch -XX:G1NewSizePercent=30 -XX:G1MaxNewSizePercent=40 -XX:G1HeapRegionSize=8M -XX:G1ReservePercent=20 -XX:G1HeapWastePercent=5 -XX:G1MixedGCCountTarget=4 -XX:InitiatingHeapOccupancyPercent=15 -XX:G1MixedGCLiveThresholdPercent=90 -XX:G1RSetUpdatingPauseTimePercent=5 -XX:SurvivorRatio=32 -XX:+PerfDisableSharedMem -XX:MaxTenuringThreshold=1 -Dusing.aikars.flags=https://mcflags.emc.gs -Daikars.new.flags=true -jar -Dfile.encoding=UTF8 FoxSpigot.jar nogui
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2156 /prefetch:1
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=2136,115182168130494626,7807655161272951444,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7696 /prefetch:1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 28.118.140.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 104.16.113.74:443 | www.mediafire.com | tcp |
| US | 8.8.8.8:53 | 74.113.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.144.22.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 95.221.229.192.in-addr.arpa | udp |
| US | 8.8.8.8:53 | the.gatekeeperconsent.com | udp |
| US | 172.67.199.186:443 | the.gatekeeperconsent.com | tcp |
| US | 8.8.8.8:53 | static.mediafire.com | udp |
| US | 8.8.8.8:53 | btloader.com | udp |
| US | 8.8.8.8:53 | privacy.gatekeeperconsent.com | udp |
| US | 8.8.8.8:53 | www.ezojs.com | udp |
| US | 8.8.8.8:53 | translate.google.com | udp |
| US | 104.21.42.32:443 | privacy.gatekeeperconsent.com | tcp |
| US | 172.67.41.60:443 | btloader.com | tcp |
| US | 8.8.8.8:53 | cdn.amplitude.com | udp |
| US | 8.8.8.8:53 | static.cloudflareinsights.com | udp |
| FI | 18.165.140.57:443 | cdn.amplitude.com | tcp |
| FR | 172.217.20.206:443 | translate.google.com | tcp |
| US | 172.67.170.144:443 | www.ezojs.com | tcp |
| US | 104.16.80.73:443 | static.cloudflareinsights.com | tcp |
| US | 8.8.8.8:53 | 186.199.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 200.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 32.42.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 60.41.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.170.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 73.80.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 206.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.140.165.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | cdn.otnolatrnup.com | udp |
| US | 104.16.53.110:443 | cdn.otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | ad-delivery.net | udp |
| US | 8.8.8.8:53 | g.ezoic.net | udp |
| US | 104.26.3.70:443 | ad-delivery.net | tcp |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 150.171.27.10:443 | g.bing.com | tcp |
| US | 8.8.8.8:53 | 50.22.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 110.53.16.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 174.20.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 70.3.26.104.in-addr.arpa | udp |
| FR | 13.37.187.223:443 | g.ezoic.net | tcp |
| US | 8.8.8.8:53 | www.mediafiredls.com | udp |
| US | 8.8.8.8:53 | go.ezodn.com | udp |
| US | 8.8.8.8:53 | translate.googleapis.com | udp |
| US | 104.26.3.173:443 | www.mediafiredls.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| US | 172.67.142.121:443 | go.ezodn.com | tcp |
| FR | 142.250.201.170:443 | translate.googleapis.com | tcp |
| US | 8.8.8.8:53 | api.amplitude.com | udp |
| US | 52.35.162.120:443 | api.amplitude.com | tcp |
| US | 8.8.8.8:53 | otnolatrnup.com | udp |
| US | 8.8.8.8:53 | g.ezodn.com | udp |
| US | 8.8.8.8:53 | securepubads.g.doubleclick.net | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | api.btloader.com | udp |
| US | 8.8.8.8:53 | download1336.mediafire.com | udp |
| US | 130.211.23.194:443 | api.btloader.com | tcp |
| US | 8.8.8.8:53 | 10.27.171.150.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 223.187.37.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 173.3.26.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 166.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 121.142.67.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.162.35.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 170.201.250.142.in-addr.arpa | udp |
| US | 205.196.123.24:443 | download1336.mediafire.com | tcp |
| US | 205.196.123.24:443 | download1336.mediafire.com | tcp |
| US | 8.8.8.8:53 | 194.18.217.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 34.215.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | bshr.ezodn.com | udp |
| US | 104.21.87.79:443 | bshr.ezodn.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | stats.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | bcp.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | www.google.co.uk | udp |
| US | 8.8.8.8:53 | tags.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | tcp |
| BE | 74.125.71.155:443 | stats.g.doubleclick.net | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | tcp |
| IE | 52.51.104.112:443 | ad.crwdcntrl.net | tcp |
| FI | 3.164.206.24:443 | tags.crwdcntrl.net | tcp |
| IE | 54.72.42.145:443 | ad.crwdcntrl.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | 194.23.211.130.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.123.196.205.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 131.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 162.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 79.87.21.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 36.32.239.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 155.71.125.74.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 163.201.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 112.104.51.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 145.42.72.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 24.206.164.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | fundingchoicesmessages.google.com | udp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 104.16.52.110:80 | otnolatrnup.com | tcp |
| US | 8.8.8.8:53 | 110.52.16.104.in-addr.arpa | udp |
| FR | 172.217.20.206:443 | fundingchoicesmessages.google.com | udp |
| N/A | 224.0.0.251:5353 | udp | |
| FR | 13.37.187.223:443 | g.ezoic.net | tcp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 04f2c0c021ee037a40f6f51ee4edec34.safeframe.googlesyndication.com | udp |
| FR | 142.250.179.65:443 | 04f2c0c021ee037a40f6f51ee4edec34.safeframe.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | id5-sync.com | udp |
| US | 8.8.8.8:53 | gum.criteo.com | udp |
| US | 8.8.8.8:53 | id.hadron.ad.gt | udp |
| US | 8.8.8.8:53 | ups.analytics.yahoo.com | udp |
| US | 8.8.8.8:53 | id.a-mx.com | udp |
| US | 8.8.8.8:53 | api.rlcdn.com | udp |
| US | 8.8.8.8:53 | id.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | match.adsrvr.org | udp |
| US | 8.8.8.8:53 | cdn.id5-sync.com | udp |
| US | 8.8.8.8:53 | cdn.jsdelivr.net | udp |
| US | 8.8.8.8:53 | ep1.adtrafficquality.google | udp |
| US | 8.8.8.8:53 | static.criteo.net | udp |
| US | 8.8.8.8:53 | cdn.prod.uidapi.com | udp |
| US | 8.8.8.8:53 | cdn-ima.33across.com | udp |
| US | 8.8.8.8:53 | oa.openxcdn.net | udp |
| DE | 141.95.33.120:443 | id5-sync.com | tcp |
| US | 104.22.5.69:443 | id.hadron.ad.gt | tcp |
| US | 8.8.8.8:53 | invstatic101.creativecdn.com | udp |
| NL | 178.250.1.11:443 | gum.criteo.com | tcp |
| DE | 3.75.62.37:443 | ups.analytics.yahoo.com | tcp |
| GB | 18.245.255.11:443 | cdn.prod.uidapi.com | tcp |
| US | 104.18.35.167:443 | cdn-ima.33across.com | tcp |
| US | 34.102.146.192:443 | oa.openxcdn.net | tcp |
| US | 52.223.40.198:443 | match.adsrvr.org | tcp |
| FR | 142.250.179.98:443 | ep1.adtrafficquality.google | tcp |
| US | 151.101.193.229:443 | cdn.jsdelivr.net | tcp |
| US | 34.120.133.55:443 | api.rlcdn.com | tcp |
| DE | 79.127.216.47:443 | id.a-mx.com | tcp |
| NL | 178.250.1.3:443 | static.criteo.net | tcp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 104.22.53.86:443 | cdn.id5-sync.com | tcp |
| US | 34.96.70.87:443 | invstatic101.creativecdn.com | tcp |
| US | 8.8.8.8:53 | hb.yellowblue.io | udp |
| US | 8.8.8.8:53 | htlb.casalemedia.com | udp |
| US | 8.8.8.8:53 | hbopenbid.pubmatic.com | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | prebid.a-mo.net | udp |
| US | 8.8.8.8:53 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | fastlane.rubiconproject.com | udp |
| US | 8.8.8.8:53 | ads.yieldmo.com | udp |
| US | 172.64.151.101:443 | htlb.casalemedia.com | tcp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| FI | 108.156.22.128:443 | hb.yellowblue.io | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 147.75.85.97:443 | prebid.a-mo.net | tcp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| IE | 54.74.208.27:443 | ads.yieldmo.com | tcp |
| GB | 185.64.190.77:443 | hbopenbid.pubmatic.com | tcp |
| US | 8.8.8.8:53 | apps.identrust.com | udp |
| GB | 92.123.143.201:80 | apps.identrust.com | tcp |
| US | 8.8.8.8:53 | tpc.googlesyndication.com | udp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| US | 8.8.8.8:53 | cdn.ampproject.org | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | tcp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 216.58.214.161:443 | cdn.ampproject.org | tcp |
| FR | 142.250.179.68:443 | www.google.com | tcp |
| FR | 216.58.214.161:443 | cdn.ampproject.org | tcp |
| FR | 216.58.214.161:443 | cdn.ampproject.org | tcp |
| FR | 216.58.214.161:443 | cdn.ampproject.org | tcp |
| FR | 216.58.214.161:443 | cdn.ampproject.org | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | udp |
| US | 8.8.8.8:53 | ep2.adtrafficquality.google | udp |
| FR | 142.250.179.97:443 | ep2.adtrafficquality.google | tcp |
| US | 8.8.8.8:53 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | 65.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 69.5.22.104.in-addr.arpa | udp |
| US | 34.120.107.143:443 | oajs.openx.net | tcp |
| US | 8.8.8.8:53 | 11.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 120.33.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 11.255.245.18.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 167.35.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 37.62.75.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 192.146.102.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.40.223.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 55.133.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 229.193.101.151.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 47.216.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 3.1.250.178.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 87.70.96.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 101.151.64.172.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.20.18.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.85.75.147.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 77.190.64.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 27.208.74.54.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 98.86.75.51.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 176.168.78.3.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 128.22.156.108.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 201.143.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 129.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 139.156.173.69.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 68.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 226.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 161.214.58.216.in-addr.arpa | udp |
| US | 8.8.8.8:53 | lb.eu-1-id5-sync.com | udp |
| US | 8.8.8.8:53 | dnacdn.net | udp |
| NL | 178.250.1.11:443 | dnacdn.net | tcp |
| DE | 141.95.98.64:443 | lb.eu-1-id5-sync.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 34.120.107.143:443 | oajs.openx.net | udp |
| US | 8.8.8.8:53 | c3.a-mo.net | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| NL | 79.127.227.46:443 | c3.a-mo.net | tcp |
| US | 8.8.8.8:53 | google-bidout-d.openx.net | udp |
| US | 35.244.159.8:443 | google-bidout-d.openx.net | tcp |
| US | 8.8.8.8:53 | 234.75.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 97.179.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 143.107.120.34.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 86.53.22.104.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 64.98.95.141.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 46.227.127.79.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 8.159.244.35.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ag.gbc.criteo.com | udp |
| US | 8.8.8.8:53 | gem.gbc.criteo.com | udp |
| FR | 185.235.86.127:443 | gem.gbc.criteo.com | tcp |
| NL | 185.235.87.164:443 | ag.gbc.criteo.com | tcp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| FR | 142.250.178.134:443 | s0.2mdn.net | tcp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | tcp |
| US | 8.8.8.8:53 | 127.86.235.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 164.87.235.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 134.178.250.142.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 228.249.119.40.in-addr.arpa | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| FR | 142.250.201.170:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | connect.facebook.net | udp |
| DE | 157.240.27.27:443 | connect.facebook.net | tcp |
| US | 8.8.8.8:53 | www.facebook.com | udp |
| US | 8.8.8.8:53 | 27.27.240.157.in-addr.arpa | udp |
| GB | 157.240.221.35:443 | www.facebook.com | tcp |
| US | 8.8.8.8:53 | 35.221.240.157.in-addr.arpa | udp |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 26.165.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 171.39.242.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 147.142.123.92.in-addr.arpa | udp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 142.250.201.162:443 | googleads.g.doubleclick.net | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | a.nel.cloudflare.com | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | tcp |
| US | 8.8.8.8:53 | 1.80.190.35.in-addr.arpa | udp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| FR | 142.250.201.163:443 | www.google.co.uk | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | 162.20.217.172.in-addr.arpa | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 55.36.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| US | 8.8.8.8:53 | tse1.mm.bing.net | udp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| US | 150.171.27.10:443 | tse1.mm.bing.net | tcp |
| FR | 142.250.201.170:443 | translate-pa.googleapis.com | udp |
| FR | 172.217.20.206:443 | fundingchoicesmessages.google.com | udp |
| US | 8.8.8.8:53 | csm.nl3.eu.criteo.net | udp |
| NL | 178.250.1.25:443 | csm.nl3.eu.criteo.net | tcp |
| US | 130.211.23.194:443 | api.btloader.com | udp |
| US | 8.8.8.8:53 | ad.crwdcntrl.net | udp |
| US | 8.8.8.8:53 | 25.1.250.178.in-addr.arpa | udp |
| IE | 52.211.24.199:443 | ad.crwdcntrl.net | tcp |
| IE | 52.211.24.199:443 | ad.crwdcntrl.net | tcp |
| US | 35.190.80.1:443 | a.nel.cloudflare.com | udp |
| US | 8.8.8.8:53 | 199.24.211.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | tlx.3lift.com | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| DE | 51.75.86.98:443 | onetag-sys.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| NL | 69.173.156.139:443 | fastlane.rubiconproject.com | tcp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| DE | 3.78.168.176:443 | tlx.3lift.com | tcp |
| US | 23.227.151.242:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 0098a7e417949f1446f079565eb6e876.safeframe.googlesyndication.com | udp |
| FR | 142.250.201.170:443 | translate-pa.googleapis.com | udp |
| US | 8.8.8.8:53 | ghb1.adtelligent.com | udp |
| GB | 185.239.172.170:443 | ghb1.adtelligent.com | tcp |
| US | 8.8.8.8:53 | ghb2.adtelligent.com | udp |
| US | 107.151.11.18:443 | ghb2.adtelligent.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 23.227.151.242:443 | ghb2.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 170.172.239.185.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 18.11.151.107.in-addr.arpa | udp |
| FR | 142.250.201.163:443 | www.google.co.uk | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 8.8.8.8:53 | googleads.g.doubleclick.net | udp |
| FR | 172.217.20.194:443 | googleads.g.doubleclick.net | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | 194.20.217.172.in-addr.arpa | udp |
| GB | 185.239.172.170:443 | ghb2.adtelligent.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| US | 107.151.11.18:443 | ghb2.adtelligent.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 172.217.20.194:443 | googleads.g.doubleclick.net | udp |
| US | 8.8.8.8:53 | ghb.adtelligent.com | udp |
| US | 23.227.151.194:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | 194.151.227.23.in-addr.arpa | udp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | bucket.cdnwebcloud.com | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| GB | 13.224.245.70:443 | bucket.cdnwebcloud.com | tcp |
| US | 8.8.8.8:53 | neural40.cdnwebcloud.com | udp |
| IE | 18.202.27.254:443 | neural40.cdnwebcloud.com | tcp |
| IE | 18.202.27.254:443 | neural40.cdnwebcloud.com | tcp |
| US | 8.8.8.8:53 | 70.245.224.13.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 254.27.202.18.in-addr.arpa | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 185.239.172.170:443 | ghb.adtelligent.com | tcp |
| FR | 142.250.201.163:443 | www.google.co.uk | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| US | 8.8.8.8:53 | www.google.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| US | 107.151.11.18:443 | ghb.adtelligent.com | tcp |
| US | 23.227.151.194:443 | ghb.adtelligent.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| GB | 185.239.172.170:443 | ghb.adtelligent.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 172.217.20.194:443 | googleads.g.doubleclick.net | udp |
| US | 107.151.11.18:443 | ghb.adtelligent.com | tcp |
| US | 23.227.151.194:443 | ghb.adtelligent.com | tcp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| GB | 185.239.172.170:443 | ghb.adtelligent.com | tcp |
| FR | 216.58.215.34:443 | securepubads.g.doubleclick.net | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| FR | 142.250.201.163:443 | www.google.co.uk | udp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| FR | 172.217.20.194:443 | googleads.g.doubleclick.net | udp |
| N/A | 127.0.0.1:59533 | tcp | |
| N/A | 127.0.0.1:59535 | tcp | |
| N/A | 127.0.0.1:59537 | tcp | |
| N/A | 127.0.0.1:59539 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:6379 | tcp | |
| US | 8.8.8.8:53 | api.extendedclip.com | udp |
| US | 104.21.34.227:80 | api.extendedclip.com | tcp |
| US | 8.8.8.8:53 | 227.34.21.104.in-addr.arpa | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 107.151.11.18:443 | ghb.adtelligent.com | tcp |
| US | 8.8.8.8:53 | www.mediafire.com | udp |
| US | 8.8.8.8:53 | s0.2mdn.net | udp |
| US | 8.8.8.8:53 | googleads4.g.doubleclick.net | udp |
| FR | 142.250.178.134:443 | s0.2mdn.net | udp |
| FR | 142.250.179.98:443 | googleads4.g.doubleclick.net | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 23.227.151.194:443 | ghb.adtelligent.com | tcp |
| FR | 142.250.178.129:443 | tpc.googlesyndication.com | udp |
| GB | 185.239.172.170:443 | ghb.adtelligent.com | tcp |
| FR | 142.250.179.68:443 | www.google.com | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 8.8.8.8:53 | region1.analytics.google.com | udp |
| US | 216.239.32.36:443 | region1.analytics.google.com | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 8.8.8.8:53 | ade.googlesyndication.com | udp |
| FR | 216.58.214.162:443 | ade.googlesyndication.com | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 8.8.8.8:53 | 162.214.58.216.in-addr.arpa | udp |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| N/A | 127.0.0.1:27017 | tcp | |
| US | 8.8.8.8:53 | 8.179.89.13.in-addr.arpa | udp |
Files
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | 847d47008dbea51cb1732d54861ba9c9 |
| SHA1 | f2099242027dccb88d6f05760b57f7c89d926c0d |
| SHA256 | 10292fa05d896a2952c1d602a72d761d34bc776b44d6a7df87e49b5b613a8ac1 |
| SHA512 | bd1526aa1cc1c016d95dfcc53a78b45b09dde4ce67357fc275ab835dbe1bb5b053ca386239f50cde95ad243a9c1bbb12f7505818577589beecc6084f7b94e83f |
\??\pipe\LOCAL\crashpad_3508_FBAGSWGEAHSVEQLB
| MD5 | d41d8cd98f00b204e9800998ecf8427e |
| SHA1 | da39a3ee5e6b4b0d3255bfef95601890afd80709 |
| SHA256 | e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 |
| SHA512 | cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat
| MD5 | f9664c896e19205022c094d725f820b6 |
| SHA1 | f8f1baf648df755ba64b412d512446baf88c0184 |
| SHA256 | 7121d84202a850791c2320385eb59eda4d697310dc51b1fcd4d51264aba2434e |
| SHA512 | 3fa5d2c68a9e70e4a25eaac2095171d87c741eec2624c314c6a56f4fa390d6319633bf4c48b1a4af7e9a0451f346beced9693da88cfc7bcba8dfe209cbd1b3ae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 05685703b404a4442b7fd15700a28a10 |
| SHA1 | 0b7e961772cac5895e79f809af0e002ccf5b4c98 |
| SHA256 | 532f686213e7c2c5322f18a3e355bbb399f4ba8362a415165cc89b9bb78160ef |
| SHA512 | 40591823d61c763a5182ea590ffa280ac43c1801b5a09f1e669569df317cdfdfb2279a3c16f69a118a34228ff79b5b7f53c73cb79b1b5b22c0a031a6a36a8ac6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | ea12acd14669039ec7910b2230c06367 |
| SHA1 | 67b0e9f6115f36929175d77dcb336fd46de2c5d4 |
| SHA256 | b5026b137d6248360c44c522f06a5129b5311e9a12b483e0158011f8466121d4 |
| SHA512 | bb17649130f752ee63c8541d455957f3fcfd88288ff53fa38e44a238d4682f6c68b46a5deee3f785f1a3551dda01eb52a8c4ae4e6ea84b3cd194446ef90f8589 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 22a379ef4a2e20ea5a170fbbb4030359 |
| SHA1 | 346a93f8f0bab8fc68ff71a6ed0b5c36cb220fff |
| SHA256 | 56f25f454daf52b437447b3fb86c403e4f197de5fdd12879b7e881166c3d1467 |
| SHA512 | 6a76f47306c6a430dcc993ef21d7d0384cc410a950e5e0db9506067281741a1ca9ebeeabfa7c22eb542c6d1619be2c8783cd6dc36b51e68c0c934b091a46c56b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT
| MD5 | 6752a1d65b201c13b62ea44016eb221f |
| SHA1 | 58ecf154d01a62233ed7fb494ace3c3d4ffce08b |
| SHA256 | 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd |
| SHA512 | 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 22a7adab3ce536307e14f52b75152f13 |
| SHA1 | b7d2eea54b2d5a2ffc22d71c411018c135427a3c |
| SHA256 | 350f90553a5001c24a48aaf0b58ae27c8b6ef3706bf87acc242cdb275e994177 |
| SHA512 | 3062e68f41925a705bddb222e80166952d9ab9311e407846599d5913e1ab1cd61345bdaef28183aa6fbe29a131bbc3ea3c768ea7f1b98aab26c28fd48bd9e604 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | c32b7ba8a5d347e677cfee7d75b64f1b |
| SHA1 | e7882ea29868a15885ed98e28354058def4c52e8 |
| SHA256 | 237bc6f5dd715a06b7f52b8d258c2a50dfeefd587ea71a99463cde23c6230320 |
| SHA512 | 9aa361a3911e9abf8368e0189ba1f2056ebf48eae801cd83f703a4e3b90e965768e032103301a75c0d03a00294131847bbda30ce26fd0eeb84deb787d90e967b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe57c6ab.TMP
| MD5 | d99b2490d89b800cb0192202f6759eab |
| SHA1 | 8546c020c3ae27df84e3e69aab8c29c07e8823d8 |
| SHA256 | 87665b5023bcf3d60b976f39769b2c50b769e2354631cbb0301bd493d3ff5533 |
| SHA512 | f5edda79d055387389d00462d8d643a439e0e256bca334679de38ecf16925f7ffa506012108a1b59097acd20628390982678857fc73641555eb7187e8a283a25 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 66cf1b810d3b37b7114600ca95357ffe |
| SHA1 | b2452a9975fbb8fc04e86863fe1bbd5f1a6317b1 |
| SHA256 | ba628f7d317d120c3e64ffc1ed0d5449fb7f3817568297d3841d4fcfe96164f7 |
| SHA512 | f0933c12bcc468b627c2d9ff9c82412a1f3647454305a22eaae39dfdafbc94b0a041c681dc005349c54072e25470be82d37c3c1148d4a16598b36d3a4568e870 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001c
| MD5 | a1afe33ce7442502a96deee597945384 |
| SHA1 | fe34cd78635f5617cf238de6dc746058d6f88899 |
| SHA256 | f7eeb570c60aff1435db1daf3767c0672634269789870ef91c69b2b90a47edaa |
| SHA512 | f8bca21c3fd79d63c8265f5dfcba95419eac697b42efb600e7c33d15dc5d9c3e0d0d360da39e14004facaea4cff4dcfc00d7437979283ce0a2b06916b69b8c80 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 47df6c3bb323fe09e6ca15da5a3a15a9 |
| SHA1 | a4d8d73195591d23bf1732e187b221cd7a67660b |
| SHA256 | a111502aa23d5c3201a2e7b0da176c240e00b626f61e8451abf271aa91c1ffe2 |
| SHA512 | 2bf80d8984c2245a799f891d2e062483debeadf580dd40d8423e2a901e4688547bae1185522c2e9263cdec04aa82fedd6169f3488022e75cd72ad6937b9cfcae |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 9118c464796356944c809586751df56b |
| SHA1 | 77c35e2d50040d7564d3c920f2c909cceb6cd018 |
| SHA256 | 30b11b12e87e2d7102323852d17aa9cd5b984bf57b6f72b1d281d11cf2867a89 |
| SHA512 | ed4d7cbee70e6143e8f2cc63d052c9385fc72b5705ecac229d9d404760f1830c8e94cdd4bdc9b802c48c384df05fff2a62d91b648376005e0e4a2008f4722e21 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | 1362aac8810c3cea6ca028abb7de65e3 |
| SHA1 | 4b25dcaf120a5aff17bf7e18d06048b89859cfb1 |
| SHA256 | cf8c7a05300e78d6bf4a066de4002f6110199064bb638414427b1dcc7358bd80 |
| SHA512 | e1b0b340dec675264732bd78c7148ea43a0f57f6f0a578b4f7b39171740b2f1e46c43c7cb72bf72342f275c480d06f0a0a7dfae46c7afe4e94c4aca094373fc4 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000015
| MD5 | f79882e12fe87d482fe216d30ef3c93a |
| SHA1 | e3031f2d694529705d8634b397815cd907fec24d |
| SHA256 | c95d79ddd197080d143fdbaf458ce6d653621088f2d16827b3037f4417a32f61 |
| SHA512 | 075f20268aa1b46fd322da5220b1705e42076d6ee681417bc95d5e900c6ed9929eca102796757e5db387db56ed2e97937e074b5af75840e55b018623c0a845c6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000016
| MD5 | c03ff64e7985603de96e7f84ec7dd438 |
| SHA1 | dfc067c6cb07b81281561fdfe995aca09c18d0e9 |
| SHA256 | 0db8e9f0a185bd5dd2ec4259db0a0e89363afa953069f5238a0537671de6f526 |
| SHA512 | bb0fd94c5a8944a99f792f336bb8a840f23f6f0f1cb9661b156511a9984f0bb6c96baf05b7c1cf0efb83f43a224ecea52740432e3cfc85e0799428765eefb692 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000020
| MD5 | fa058e6c95864c4e2f6c1c49400abcf4 |
| SHA1 | 26df2f63522a14551cd04ea3820c53702e85a4bb |
| SHA256 | 628411d0740d7b00146182a8b7fda1e72781fe848fb31789c18696403496ef02 |
| SHA512 | f9c9ca3a8166ca38d13dc953097faab9cefbe50c52863b02e5b188b1a3010f5a1ef5e7e6396750ff2fc7bec1d028dcccf057d8abbab7fca5281b45dcf57f8f1d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000022
| MD5 | 9ae01050ab881681b6a14d1d71d26a02 |
| SHA1 | b34168f9c313d82e6b412e04c1aaadc4cc4e2d62 |
| SHA256 | 609003fda9506a763cfd824e76fc294baafab0d490210d6911fa7b1cd0f17986 |
| SHA512 | 98f193ddd9aef6a3bd078fb348d8bc021e06676db43141661049a421e97dc34d74d4424529e12fd4c0abe40cf98471d3a8829f45c5e4d583b877e6049126596c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000021
| MD5 | b3854266103c4064e34d3f723e6df9ec |
| SHA1 | cf67f8b933a9679d7ab9e7f189b11b5b6b34f541 |
| SHA256 | 493342067100a163821b39113e8772527214c2b240719cefe804474c2af93943 |
| SHA512 | 96f52a2a16b1e3ddfc4300f90b37f765336ce29af56ca41b27c7616f2b25fad104bed70be9031bba755089d2fe6ff27d183616f3c8fd485bed3b24611ae949b5 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001f
| MD5 | 851a923fc8b3f9eac08a589517a1f3b9 |
| SHA1 | b1ddbd18b81b6a8bf8d4f3427f842980d42a43af |
| SHA256 | 38fe926263773c5f5f8035ac457b54f36ecfad433c65047c730ab94c10af4d27 |
| SHA512 | 8f2b5ab49ab904fde803c860c903404399eeb8a9d55e1c82f6eae0fd6b5982d371a4fe712f62a6b87ba98b186e8f21eae8a36de8f9f8ba40af5bb6d11410ac4f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 689c6c9f35ba34a6a65eeff07b4681b9 |
| SHA1 | b9febf3de651ecf67b60c42a788ca1029abf6409 |
| SHA256 | 0ec3a3f81c297af5d5cbdc14a700b8a9dcabd55bc9985a7576885c4df87e9305 |
| SHA512 | 5f443cc9a76bbe48e0befded7999a645047abbbf283055803a29f401fe8b343f93e7f638c8a510f7c412653a80d7c31cf0d65572cbb222a42deb15dc0c033ab2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 73f30cb33adc35ad604aa4abe8ddc00a |
| SHA1 | 8eaa99f1bb7f1eeb3b02ca9312dddc76f48d7e86 |
| SHA256 | caf93aa9aa7ffd8ee0165fbbbd4a5c8031e867d52d2be87fedced4e063dd0fe3 |
| SHA512 | 36bd22a7ccc345816d344e3b6701b25dab951c47bd90b5a590d678618ad27c3a138d89423c338a794f6944851afc0a1d2fbb2e059ec8830930114cd325a3e6d0 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2f824a5079df42dd7becbe6d15aaeba4 |
| SHA1 | e02d868bc3de2a8e5cdbd08e041637f29855b845 |
| SHA256 | aae251506e5181ee4ffc424cbfb37410aa5ff2916d2f206b566aea0651a717f9 |
| SHA512 | 39309c39cb34324e80485de074510c610d28dc1123688558d6bd6a6b9f4495d14acd4a2ea131f1e0c11af6b8d040c2ad2e000eee87359f2624d56d78259a5711 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_000014
| MD5 | e4cc1ece2f2425b10ae2ccc212c1dafc |
| SHA1 | 92609e6d0093693110baa23758382889bcb30da6 |
| SHA256 | 92e9415d8bc8529e2a3f335258ef7ff159cce2965ce3b2b7c15f73720efee809 |
| SHA512 | 2848dee3a6da891b7044518bc97aeafd340705cebe846350b9a7f314b52450f1eb977b8b492638965ce4674ebaa341e4f832438199c3cad2fb0a0793ef83a619 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3ace8891be2fb1b7_0
| MD5 | ab905d9e967824b756eaf20cd175c8b4 |
| SHA1 | 52d470010f550cb9f5cb5bc9398bcb3e430f67a0 |
| SHA256 | b3f825e7a850fad927abb0ff97aed8766f6dc9a8a533dbf8ef09fb8f093bbe78 |
| SHA512 | 42dbaa9a4698d0c40cfb693bb67f1e649f4ce6f2aeb7b8071c4b020b26686ad8dbe0f6ce7edb12bb3e38b3a3e0c16f42ce513d445833267de53ac21bc669246d |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\7a77328c44022353_0
| MD5 | e51019267ab2beea6e5f5663b929144b |
| SHA1 | 957d85e95dc604bdca09842d76699c323c4f8d44 |
| SHA256 | b5d92cc5700b47d2a832f206b94e5d99166ee26681929c1acecccc7f5dbcb58c |
| SHA512 | fba008bdf06c88735c233cf3f09741f0bb38b8b3cbd713b011cf76ad9c99a9e8a7e635e0b7c3d3f85c13da09f7a3c77c168901c62ba0b86635abfad278e58f03 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\9501205598d9a506_0
| MD5 | 750c18cd212691c7ec026cf26cfb6025 |
| SHA1 | fd9e40d85f8e0eb05ac5870a7317b6c9a7ba7eb1 |
| SHA256 | 5924af8480d24ccc5b7eb740151470a86acec9fba32381999ac51c0240769453 |
| SHA512 | 81ccb8a3144876fa9d1c44d2e09c8ee0ca9901512b5838e068d8c79d10878ce26b1f01ce267e461e351ac1fa67fa6608c9a3bad512e8214336a9482208f2e80b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ee1ca9dd9ff6a95e_0
| MD5 | adface39ac85d5cebf7a9b942fa474fd |
| SHA1 | ea715ac724df666e0c8e03be402792fbf0e3fd6b |
| SHA256 | 70ada6aaed03764cb709f1df6170ae486a3d41601a9bca2657a243be6b99134e |
| SHA512 | 0e9df1193a06072a3fa4e9f1a08febbb1b7b7395ea50917fcba15a08ed824589f344c4598902d051714952c0e92af0274d8a0b2702ffc3ed2f1f25f745b0227e |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\3a6f765e4cc2340a_0
| MD5 | 4ab2c86665fca728cea1ea8ed12be1ba |
| SHA1 | 2a48900d832c9acbe3a7bd5a9c1a77133577fa73 |
| SHA256 | eb84835c60f3577080945158e12e31963a5cd4b752c8c815ac8183d607b2f03c |
| SHA512 | 75e4c2240d9a65d73beecc90401ef3c5e98f9f7425aca588f1fd8c85b36a14a013b9236f9207e1852c68f5e670cf9e65f08c48ddb5c36a999702b0fcd621c822 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\ac29195a901ecf92_0
| MD5 | 9f10c01e7c5ff5507a4dcb86bfd22b30 |
| SHA1 | 59875167f81d7b542c130cdbd16c3d48adb46705 |
| SHA256 | ac1f1eb982651e85bcdbed98335de3a91b32659a90d0f7b8bad45c5774bdb408 |
| SHA512 | 421da5e06168a8905c2e524a36a6ca3ba5c24f61845ac43c6d0d92d9385eb94d2f62da3e99ba512a11021314294c41934cf45f203a001b9b65b63215119d827b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\11454d2efd809101_0
| MD5 | 29e766e7910b4cb2e7149e4c04742f66 |
| SHA1 | 3194013386054dbd1064fe6f7989b5bb7e5b38be |
| SHA256 | 630c981b98323f7bcf4523e298e74605612faa42e0752060f0dda7b90c8b82d0 |
| SHA512 | 78afc6b9ea3d32f8afcc3f044d228f60d977b65f9a34d1bec51a7be0072772c3929bb6cc24e281bfda608948475bdded93ae98dfd07275e9404be199ce4d6d2c |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences
| MD5 | 3c48430032fef897c11f51d55a05c3ce |
| SHA1 | 4e1a0c44dfc4df25b1e45f64c690e829249ee747 |
| SHA256 | 5bbea2d20da81829a8e23372f31b380fbccc98e3dae5a208aa89c1abbd5d2727 |
| SHA512 | d2edee3d56ad5512018cc09dbd9197b27ffb063254e7b9f2fc603a39c61b81ac4ede0dba26f0c88a9d8acedfeb72e0d64ca5e1bc33b1b8688eab14817e42f663 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | b256857bd95640f57a8a55261a35feda |
| SHA1 | 4e0df5de6846cd1667dc015ed24f0764254df064 |
| SHA256 | 7843f7216f0b29f7c2fe6f4999dc02a35ff1c2b3a076224c0380ca2fd353194d |
| SHA512 | ceb4a4b776482892af17847142ccb214a198343d76da4c0672d177bf3f0b708a5f932c1828ef9d2c4b2fe693c81122d16445cd8931700f3e9c2444f89f0c43a7 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State
| MD5 | a97ead687f84b79bb402ab106394812b |
| SHA1 | d266aea7a4f618d44a2b435527552cbd53af3cf3 |
| SHA256 | 9f3d20ba7120fb51d929ecbab7fd4d7ceaad686f91ab623d307b9dc6a86657e3 |
| SHA512 | 089c12f2d041d6bcc0bf89eac9c7ce6b8ddde6c2b335c70ec2d70090f87faa216442400a2bb984ec2a80a48d5856a3c0592559bc36c168a05eb10c92c73b452a |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 96f903c75b3d8a54c04f76702fa76e74 |
| SHA1 | 1abe681a896f97f7598de336db4ea6e68bf293ee |
| SHA256 | 77046962450032448796b8909e7c43d4b081bab642522c5d204753cad1651802 |
| SHA512 | 3aa665fbca8f1ee6581e1d41af813f74c16b73b7a2d4000618431f760115d6d9364909586ac8d861ef5f579564782eae69229a06d86103078c31fe16608f5860 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State
| MD5 | 06d1f60b96cc74c7048a7fc3b34816e6 |
| SHA1 | df13e1fd95843147bc8fa499ca6367b3a1e137c0 |
| SHA256 | 58fbbe84c4fe496cea7a641ae85a1a1824c08b0d3ac671ebb93716ff9bc6e291 |
| SHA512 | 5afbc1b742d6806a2eace81981a8392f193cd31afd0e543ad30fc20a4277886e215d6296e800269468e4d82ee4c0053e025c87496ee67aa7a21397f2c044c785 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 18545bfd4bbc27a1528a1110f261afc5 |
| SHA1 | 2de638aad2a3186886911efad6f82c3a37b951d2 |
| SHA256 | 27bab258f0b44140fbcde07ed4185e63c7040a46cf8b0c85fe7ba185bde78f3e |
| SHA512 | c28b3227e16d196214f032564ee902db3b7ef2d5fdc0122fc22c1430058d8e3a6db7260158ab72f9dde97cc9fe0de7157d1c75c551a34488056440a4169d729f |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00001e
| MD5 | 230ab95d87a717be265134072eb17c25 |
| SHA1 | 71a3d3dd6f952057ba0c6025d39c9792ff606828 |
| SHA256 | 3fdfeaa675697f08f1c7c0fd6b77512f4bf9465e670637e8e332e65ebb9db068 |
| SHA512 | 9b0636421ad14161f211e846521149ab0a7c866e77db309dba79718487835204cee3821c9f4678e48e134614be6a02421c155a34b7c9bc424012137705960b11 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\d0c71056e9e3544f_0
| MD5 | f12b069f75bea1c67b44155b1d17d144 |
| SHA1 | 78170e9662a9c15b50e05e3eadd615e9a09c8026 |
| SHA256 | 2310fd91fb7a7fdae4fb8211cec96edc26c70f516a1f9720f449dd8b27ab9387 |
| SHA512 | fc01834b802b7cf5ea1674ca53e5d9fe639547c66f18e3155c23f51a4eb5ae01ee95d6017bc8aee25f39024ab474055cb180ff6e43e96adc445e94d7670675bc |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 2fa4f702eb66b3e37ff57d80bf934e6c |
| SHA1 | 629fdf6ab71c39a0f63e4a9eb8842c4da01fd439 |
| SHA256 | 461c765d6ee2512ac8e1a6beafeaae08b7f46ce33e336517617bada1ef2c32d3 |
| SHA512 | 35a69bc86e7764571efb5d6b29c98f873cabd78f3b59c8fdb883121d788f60bd4d379c932491facc18ab34bf400d77da26eada68461d54c90b9b0b4c883a9664 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 076e5adb57ced03311a08a2547fe9801 |
| SHA1 | 7ac494f62ffe30d86e5393966d3034123d84cfa3 |
| SHA256 | d3c6141ae10e08a2c97553cc84b023885b66491c0613633c174c3c7608b9ed2f |
| SHA512 | ba8d393a6514ff8063524d6b30e8e0a47d8ab584b89e277ba2143edb3b44ea534ed0362ab2d57d283770e92f92fdb37dc4b71140b3b6ec96d6667f2b5c62d9eb |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\770964c2385c48c0_0
| MD5 | 310e3ddc88d34c4a5242a6d770993dd3 |
| SHA1 | f98709bf3082206a6f1d926facb21c3d07c92114 |
| SHA256 | 3b9d227f266f3e8bbb1fbb8772f5f637f3de55d4eab2ea07ca0fccaa98e2f253 |
| SHA512 | 3c86c09ad4cbbd83d398d940ae4feb99ec3be39921cf317519cb7c7bab3a0cc863b5158a0d246bf1b97b7556462a8c7e5378a93c543f671d7fac87a5a95043ab |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\cbb498e9-87d1-4b28-b6bc-bb5f0a4b1981.tmp
| MD5 | e114ecf565b8ec3357a9ffc1973d1f8f |
| SHA1 | d31775f1a4a6f205ef1da047a2128bb7ca5d9dbe |
| SHA256 | 19ea2be4837d98832e6475e0f64e153b1af0c6ffa393614367db4b3132dc6b32 |
| SHA512 | 2af2898514bf2c13ba909e1822fbd0114aa01047d51042de03c54c55a11aa0069e7aa19f53e46a548341bd62e394d75c778ea0e549539447f8e5aae662fc5832 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 86502987c210afb38e462f3bb9575b08 |
| SHA1 | 8e826d520459cbef432e0c56b64870bfb2623d01 |
| SHA256 | 764f756a5c4c31c9c00f68de6496bcc097b4881199f6c530b992f4d9db4b2383 |
| SHA512 | 48c3bbdd4ae0d8e6278ccb6c11ea309a640ae74ff6bc4eae587968c04bb2d6ff4fbf3b5b68c3bc5f0fa689ac5ca865002ccc1fc464007ecf1d684e79b5073950 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index
| MD5 | 2486f994b1644c61a1918071264b5f68 |
| SHA1 | 88a9598364ab97232ae73c707c0a2604e8039fea |
| SHA256 | 9a7430bbeafe6e34654017be2e449e766ba5a99b6b7ba98c55e2592a7ad96c0b |
| SHA512 | 1c84bb1b1399bcb168e564ae29c1e2ee19af79dd6d7da67ed027ac102f50d287a40c791367b5f1a96e5c59a8332107aa0dd20844c3a42959768b40c3f130857b |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | fef8cc67ccc7a67d4427f39c2824f860 |
| SHA1 | 4007f401505e55f3258f2ad2e3e23eb3d8d55706 |
| SHA256 | 70656f7c898149566b0d794ac679f905f4271346807b2e0e0a9811069da83357 |
| SHA512 | 8d289bd412dba2d2ed01e735042383f990d57c1a802513996c2b348743ccb50d74ef15dad3931d75d0faab0b6fd415445fd31fb86eda540006ef0cf4129f8c23 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 2b5903c8e5114ea2e5ab7ae94acc1474 |
| SHA1 | 7d3f0f02bc082a1eb09bc888c7bd350ca9daf2fc |
| SHA256 | 85de69704996c082bbc3c056335aa124cf93f76df08477b44bb826547912dd81 |
| SHA512 | f60701c41fc8d817de8fe0a7d7d10bb5b35f78c2fd6333d40b1b27cfdd43929f9a4cd6c71bb1418bd997b6e17e5bc3b02ea47d23888b8543af4e7c7b86e8cbcd |
C:\Users\Admin\Downloads\MMC PREMADE\whitelist.json
| MD5 | d751713988987e9331980363e24189ce |
| SHA1 | 97d170e1550eee4afc0af065b78cda302a97674c |
| SHA256 | 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945 |
| SHA512 | b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 31d26398cce050a837d07c08ae13a7d5 |
| SHA1 | 45c950c1c9d6e936121e8e2f2c0fc3d188db3db5 |
| SHA256 | 06cc358e7963df4e4a5b35a5a8e4c452042f7d216f7919d82a4dfd28547458dc |
| SHA512 | ffd5233a6b28854dfc70461f0440d1c13152f160f9d4a997f58e5ec40ddad8ad3ec773ab96020d2d697d11ddcec6d94e89a4577ab9964e4962e999228d2ec3ba |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\temp-index
| MD5 | 6800c51aee701738c7c611136f795eed |
| SHA1 | 496763df1c81cbe3bc4d455a7c6fd57be561b22a |
| SHA256 | 404ac602c72d393c1bb5faa079264ffcf2634882a333bb9902a48e3a118f812e |
| SHA512 | 605b9596cfc5ce46fbb8efc1b625c8176f4e1be16e552a5d7e723e2d6229c37332dca3fdcbe7cb4434bdb7c292103fc14ecb9b2e6c8cf1b18d07286840188691 |
C:\Users\Admin\Downloads\MMC PREMADE\start.bat
| MD5 | d3448be91642719d61df4c3c8e38f248 |
| SHA1 | b3bcac02441370c5a709f283f29ba16c39d20ee4 |
| SHA256 | 3c5ce13d744ac5f13700702b414e81064482b83373387da87cd5736132761df7 |
| SHA512 | 26de8d6566b057ea74f030bf19ab4b4b0a118ef7d9ddfc4d1dcdede3d58d95d9755840eef88dde63919c536e82b78d1b0fb1d6a4af41b36ba7def212effb2e87 |
C:\Users\Admin\Downloads\MMC PREMADE\FoxSpigot.jar
| MD5 | fb6a15846bc6d3d1cb256da236f62db7 |
| SHA1 | c152e40863b5ec34189e2d98d9ed26d450560c7c |
| SHA256 | 79d5039645b65ee07d8269ce49e459eedda363fdb1951d1c97dfa87c71549d17 |
| SHA512 | 69071be7b5b8185de50a063d120cfa766c726ce31567acf53b2bfef03356b2edaf6325d6884a45e616eea1b6259bd0dca053e8e4e408883687f10ff81f5e8397 |
memory/5276-1840-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\License.yml
| MD5 | 78a56c582071639302d215b743e4bf3f |
| SHA1 | a2dafb6d17ce4ed8e052be61f31b7c8ef7ee71dd |
| SHA256 | 0f365949f129490896558cd634f790d4e3c947a0fb596dac7c958f8bfb39c7ac |
| SHA512 | f1fd3f915819bc95b1252f4a3b5db2fdade4251e175a18caa13c4e918f001dca58a516a0518da3332d105fd4c55d00f0198b56b198332e6ded49815924c650ff |
C:\Users\Admin\AppData\Local\Temp\jansi-64-1-8623938965741133287.8
| MD5 | fd3a20891286c958103f3ea07174cd3c |
| SHA1 | 829195c9e338d5725cf304ae33fc209db53884eb |
| SHA256 | c33505a7c1fb847c03329a4f0e4b3c5cebac3a3604133d797d09172de25e3978 |
| SHA512 | 5b0f8c7419f49b9cad6b950d0f95d07281b6ea81d17c46d764706b5d8aca521595131d51911c7565988d34228108de436796b773b486a41886e0f6013395d080 |
memory/5276-1914-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\usercache.json
| MD5 | 4f1c442492004414287da429834092b6 |
| SHA1 | 673d9a8fe9a7cf37f24c9c3a8e67e0b4d04d9046 |
| SHA256 | 59cdb1301ada6cfa62b7780073fb4335dbe296219654374ee90d294875f34b8f |
| SHA512 | 9db820b4394e043ebf7e3e04ed79eada27728615ffeb6de3cf46ced899eca034fa160fb7c27c1a90958196b46c847c64cc37c9c9b4881ed49b1a4263c158e251 |
C:\Users\Admin\Downloads\MMC PREMADE\server.properties
| MD5 | 9245b974244e87de480a23c4297a7102 |
| SHA1 | 7bca6f5fd28e5618f02e59d7d33a982130420388 |
| SHA256 | 108414926754e6c99796eabb1644e4b823a34298a9b9dbb9667fbe732eef5c80 |
| SHA512 | 187b53af09393cca806b7d5bc95519fd33639762f1a1bfe526ebd3f3e52380068ab4af5c6a8ed57f0fa9d734077067ba1ee67c7103325452970dea8c87f1e19d |
C:\Users\Admin\Downloads\MMC PREMADE\help.yml
| MD5 | ff4d20ee02e5d179cbd7275d836d12c4 |
| SHA1 | 85b770aa22da262e49eb23affb6e1fee15b9c732 |
| SHA256 | f50d372d2880b34e3217cff8c016263198d00c38b40ee3d50bd045474262b79a |
| SHA512 | 2c7aaf4c5f80e43cce1953dad69fd0c57dab627429d4fc8e00c34885bde4022b332493b384b6c638a549699c8c2f6400220f4a614480b34019c13f83c6308138 |
C:\Users\Admin\Downloads\MMC PREMADE\bukkit.yml
| MD5 | 4ef540c1bbd84bc529d6e6b04ffc8b30 |
| SHA1 | 32dced684bda480a4b194eafa10326aafc8ff4fe |
| SHA256 | 68d5a153abb9534e07cbd55d6bb48414f1eb0929cf72f3e28197681d4cd4be3f |
| SHA512 | ce1ff3f6c6125bf7256910c850f5bb3f06fd7cf6fb2c7631ebe52a8fa747e54f9edcce3626d95c9f50e9310d2de934042bbf5edf582b345d7924669bd28bf9c7 |
C:\Users\Admin\Downloads\MMC PREMADE\commands.yml
| MD5 | 866a7dc4aa7bf0a9479cbec2a5626937 |
| SHA1 | ec9e0cc4961ed992bd3f934bc51dfa2bd9f0c34f |
| SHA256 | f786d2061ec099366cb4557fe0b8fc152e24d64f6415cbdd77b8d6df2b7cda07 |
| SHA512 | 43c166ff75d44656bf53656a685433b5c7f067c52068f5b5c8e8897be8e1e4aced3a9dd24128d6208b2ad495ac2b8a5cb93d949592d8bf519a382a002d46707d |
C:\Users\Admin\Downloads\MMC PREMADE\ops.json
| MD5 | 0456a81653d2d4efff04b3bac94d85a3 |
| SHA1 | ccf422f521421c78648a4c666e95354182cbf8a8 |
| SHA256 | 282014b8748d375c42b3ce096e30a4b7c7a70c4d70936e2632d1bd3d15a36c92 |
| SHA512 | 6e33b73009730e9e864ebf3a186abbbdcaf076f62f46242cc21a8bc549383ba2843f96c9096092ead7fab63a621c8756c24fb0c1c63afbf4de4f32ff2db16a0c |
C:\Users\Admin\Downloads\MMC PREMADE\spigot.yml
| MD5 | c8d04290f9d33c94caaf11607a9f114a |
| SHA1 | 30af2040edde1aa71e1f44aad5d67e61de18498f |
| SHA256 | 19a549a101f9f1e05354932324a4e20224fe3368bec8652b76bcf4a2f955dd24 |
| SHA512 | db0acf8f0bac194fbdd4c77a0194aa9e8d89bdab29c01fcd87f017696356128df6ad2e20fb0a810ceb79f7d0155fda1d58cfd4d86eec067ba42be03712b6af68 |
memory/5276-1957-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-1965-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\FoxSpigot.yml
| MD5 | b0208e9847ee88d71b2965cfde5633df |
| SHA1 | 74af3d4e8fa91197c4cf67ff0c9a92b7923e8043 |
| SHA256 | 578f8e108a82fe96000e989ef97fe52fba2638151642f3e7329ef79971cf6f4e |
| SHA512 | 941b70480b5a7a39c3879543686fc514c82ca0bfe16691d3931430c5841f231b715571ca6ce053a21eabc4245a4702aa240d6339bb622c08b646864cd5dd7d03 |
memory/5276-1985-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-1988-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\plugins\AquaCore.jar
| MD5 | 810bc8f1b29bdea7b4ed52d1730728fb |
| SHA1 | 26d094a802622f520228a1e231bce7a38b0c7d2a |
| SHA256 | 7725e63abc2afee5b7f77656be8f0160b115bf328dccde7699f5fadfaca24d6c |
| SHA512 | c94dc8296e4cf2e078fe45f84e5ef272ac97dc4a302b4798630ef7fc81c5bab113e9b41f04077aa4957fc23ef091ccd911ff6d8c8dde29a6c3411525d3f9b22b |
memory/5276-2007-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\plugins\WE.jar
| MD5 | 45fea0dc4cc9d0f48ef958ce6ca3f42c |
| SHA1 | 8e56dc4ffb69b17cfbd9d3ad34f4dbee982d63e8 |
| SHA256 | 5a7b88f6f75b4a0b6efd47ae03e9c26a2036ecd122b03a45ca635dde386d6186 |
| SHA512 | 48160a2262b5943c1ab248768d9204b1b40d7067c5cf2786ade8e7acfbef39521077baf7bb0b44611a9e78a6873407884163371f43eb3bf6d7b60565ca92b44c |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ViaVersion-4.3.1.jar
| MD5 | 844ed44946cb43a939f326a348ae958a |
| SHA1 | 6908cb9d2a914ac632ee7bba8cb8f4056800e0e7 |
| SHA256 | 62fc31aa0251a30be1e69f4da15dcbf41189621ed09f9c383368444a8c625af6 |
| SHA512 | 803879fee30436b07fc58ac557951f6e10e7a9e9fc35ac5a7487eaa751e581458736a4141536af67e465517dd434d07e65a84b037c61f8c3e02d3b0d098dcc0e |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ViaRewind-2.0.2.jar
| MD5 | c9d471b2b38ebe967681aae054f1beac |
| SHA1 | 6b0fc8260304826d59844b39e7a504bd8b171852 |
| SHA256 | 614298377bdfb960c52972aed8baabc94b5e539a87117fd229c30b76eb9fc6a6 |
| SHA512 | c24d51909c2cdf476e19699985de2fd5130317476a60568e1625515d89634318e865523e8c297fe291261ba8ba6d768bfe164b6228700f9707026ae82a1483fd |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ProtocolLib.jar
| MD5 | a865066c2cdd6384fe8b96df75174b7c |
| SHA1 | 5ed343a0913d0e1a98232ab89faea2e38ad242ef |
| SHA256 | 95d73b881b5184bbc9629b8b1a6828f0996b754bcaa37197f2d478031cce1683 |
| SHA512 | 7b49129e4f8949e5417404a6e54da38d0cdb14581423dccfdc8a0972b35e26a762e59180baff98c01ccba742760dc3c501823c0234f4abf0c1799612f1245509 |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\Practice-OBF.jar
| MD5 | 0b830cb1161d21457aa153e006f8c84d |
| SHA1 | d8e519eca5dba33b78e79ff8f478a773134066f9 |
| SHA256 | b29d5e5d356a9eb629bc541f4dcbda5d29c345864990665d7dbea9155894ad07 |
| SHA512 | b2209d959e5ecdbf9e503ffb8c046af4185bece7e95ca38f6bcee3c8c9cd0caaa7032f7377388360aa6c4235759cfd678e83f5bcd4e3706dd8bebb80bb73c7ef |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\PlaceholderAPI-2.11.1.jar
| MD5 | 1cbc6fd34196d7f0af9c4dce3f6f69fd |
| SHA1 | 2f51500cbeb97cb4d72842a6194d71dbfcc2640a |
| SHA256 | 242965934b0d06e5b33e0241d914be866e831566f03a61aaee86091be84db626 |
| SHA512 | 6fd0be7f7a7d585f00faa7e2ec62c402d09bc0eef62b138dfad8c904ff5a30111f2fa457410ec8cf43a9bd7f20785f0f3c37410f6e7dadc095d09673f09767a3 |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\HolographicExtension-1.10.9.jar
| MD5 | c7740b64458ad79cc0e32177c235b9e6 |
| SHA1 | e688f89578831e309c0efa95ef598e1f4bb25dd8 |
| SHA256 | a132461efa2bc40f621612ef9df6916c0ab3518cdd04a5ba14b55c1c720853dd |
| SHA512 | e5a1001ee10acb5408b8e4d554c39def44789f330f6e667e02eff1282efa921caf9794e91b61520aab11c4bbbe2cf1cbf6c85ba532e515b0aeaae020a9462977 |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\HolographicDisplays.jar
| MD5 | 7986ac4e822b630e236a6aa7f4283ade |
| SHA1 | a5de3ccf83dd035d959e83591f3c3a39c1fecdf9 |
| SHA256 | 6ba5cfab439d61cb340be8ec3d14597a39f09879a03698497bf13d1a02880711 |
| SHA512 | 21144870d78406fa79aa7897efce36d7c62205e42605887cf2b60acd21c2d57baea02eb73cd40a58c7b41744763d16afc170cfb493b319ad47c5baff0ad0b1fb |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\FAWE.jar
| MD5 | 0c0eb50a228ef8ba26f015553d2690d7 |
| SHA1 | d1e72dfc28001e8e52ee72f1e24864e8ec64d334 |
| SHA256 | 482b0e661ff36e7f7b3e10e5b686ac04a258fe232e076a705f6b487205b8a466 |
| SHA512 | e7cd8d4b2458a7238fc1c48ffcb3bd1c70c06d28a0afdfcfe12b6f6f44b0f5932dc73fcaefaab43ef7e435ea598810ff91704f4d716c3891c77430265e53bc52 |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ViaVersion\config.yml
| MD5 | 363cea86f4d89dcb2d1774ea34282fa3 |
| SHA1 | 1d3fc607b2c2047fd89877bd5d92304b58af77df |
| SHA256 | 7ad7690787c1586b57deb1299f543c5e956a2b2804c648dcafbcd01956a87a18 |
| SHA512 | b973aaceecd997dd60b4da02c6f49392ac3d2a4c37969c0af345e261c555d7c64f2e0b76d13f4940d31ca4770ee52135704a6c5fa7e2b37c0b3f6e636f216b70 |
memory/5276-2030-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-2048-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-2052-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-2053-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
memory/5276-2063-0x0000022DA3B10000-0x0000022DA3B11000-memory.dmp
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ProtocolLib\config.yml
| MD5 | a37e9a396f18b68380cf57ba9316f322 |
| SHA1 | 3adc257b1884c3767aa40eb17ff1221b48dd44b7 |
| SHA256 | 1de4df6a6ac1452338859f345f5b3b14d8f73aa2bedd591ec43eae5949a89525 |
| SHA512 | 95cb0ef52c3c84083f2be20ddbcf0736b5163707e0071d1670dacf35be5206dc9c55bb7e6a7d7e99626533bdf4dcf55aa2492ffb1b558c0b658b1957eec992af |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ProtocolLib\lastupdate
| MD5 | bb41345fc10b5b9d816ab2ab3b1cecdd |
| SHA1 | c340e54d02d4c0177ce93da9ad1762a883a89d87 |
| SHA256 | f849023bf366e61e0325e824492fb44290637e743a7f0fd38891be227befdae7 |
| SHA512 | efe58975782f513b5cfd233b410977bc1b6b1e00ea4858fa49250a5aae6e9b75d4e064b6f56276465124997a5ce958562d474b010b6c85ce087e884067693b25 |
C:\Users\Admin\Downloads\MMC PREMADE\plugins\ViaRewind\config.yml
| MD5 | 3b548c18b9869628a4dfb29bac33bc95 |
| SHA1 | a0f1e3577f0340a5d45cfe8d9c4ba3b173748a72 |
| SHA256 | 6ff02ea56ef1de77c450eb549f81a7ca461a65d7992d2dbbac93cd8478fcc434 |
| SHA512 | 6cff34c15e2d0156cfe346f75d40e408238a746591ed571ad793bf1ba50a4e732fcde71c236753d23a9a45219df339b08b9da692e36837a657808f8c3cd768b2 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity
| MD5 | 94d86a5b08788ea8e47bad6e92764bd8 |
| SHA1 | 44ea6362a00e1883e51c6d040cf07eef2be19814 |
| SHA256 | 621becbbd71aa0c4c498d8343258bce971b7fe9d3bec7ab51323b2876bd35a05 |
| SHA512 | cb7f2b7fe1e66c0a304cb8ad380cd553476dbea2eb684d19563ffcd455efe3d393ac45ca5f582ec8e5d6dfaef8fe56bf2806881b952b87c9d2df1cfe2b868ce6 |
C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\2bfde39962961371_0
| MD5 | cef2fb3c53df8b683c0715ad9ac665fb |
| SHA1 | a4e2111da3b9f38093289b41bd20f1a055cf91c0 |
| SHA256 | c9353a84130e4eef1c7629c83716f239211cf9e2f0550e4079602e3d5efdbcf7 |
| SHA512 | de5e7af5e4866cc81381a7289e73564b6dd0ee7bb4a48baeaa84ebf66e989ecb2d099a0fa1fecfa4a0a83c25ab37181e711fa3ef9fa7744ae00b73d167d107c2 |