Malware Analysis Report

2025-03-15 04:05

Sample ID 240827-kvwn5asfmf
Target AHHHHHHH.exe
SHA256 793d8850b2bc88071892297a2db39d044c8fe8db19918a0530cec893f4d795a0
Tags
defense_evasion discovery motw phishing
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

793d8850b2bc88071892297a2db39d044c8fe8db19918a0530cec893f4d795a0

Threat Level: Likely malicious

The file AHHHHHHH.exe was found to be: Likely malicious.

Malicious Activity Summary

defense_evasion discovery motw phishing

Downloads MZ/PE file

Executes dropped EXE

Legitimate hosting services abused for malware hosting/C2

Mark of the Web detected: This indicates that the page was originally saved or cloned.

Probable phishing domain

Subvert Trust Controls: Mark-of-the-Web Bypass

Unsigned PE

Browser Information Discovery

Suspicious use of FindShellTrayWindow

Suspicious behavior: GetForegroundWindowSpam

Suspicious use of SendNotifyMessage

Suspicious use of WriteProcessMemory

Suspicious behavior: EnumeratesProcesses

NTFS ADS

Modifies registry class

Suspicious use of AdjustPrivilegeToken

Enumerates system info in registry

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Checks SCSI registry key(s)

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-08-27 08:55

Signatures

Unsigned PE

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-08-27 08:55

Reported

2024-08-27 09:04

Platform

win11-20240802-en

Max time kernel

486s

Max time network

480s

Command Line

"C:\Users\Admin\AppData\Local\Temp\AHHHHHHH.exe"

Signatures

Downloads MZ/PE file

Legitimate hosting services abused for malware hosting/C2

Description Indicator Process Target
N/A discord.com N/A N/A
N/A discord.com N/A N/A
N/A discord.com N/A N/A

Mark of the Web detected: This indicates that the page was originally saved or cloned.

phishing motw
Description Indicator Process Target
N/A https://storage.googleapis.com/script.aniview.com/ssync/62f53b2c7850d0786f227f64/ssync.html N/A N/A

Probable phishing domain

Description Indicator Process Target
HTTP URL https://chatgpt.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8b9ae097cfaa634c N/A N/A
HTTP URL https://auth.openai.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=8b9ae10519ded1fa N/A N/A

Subvert Trust Controls: Mark-of-the-Web Bypass

defense_evasion
Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Browser Information Discovery

discovery

Checks SCSI registry key(s)

Description Indicator Process Target
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000 C:\Windows\system32\taskmgr.exe N/A
Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\Properties\{b725f130-47ef-101a-a5f1-02608c9eebac}\000A C:\Windows\system32\taskmgr.exe N/A
Key value queried \REGISTRY\MACHINE\SYSTEM\ControlSet001\Enum\SCSI\Disk&Ven_WDC&Prod_WDS100T2B0A\4&215468a5&0&000000\FriendlyName C:\Windows\system32\taskmgr.exe N/A

Enumerates system info in registry

Description Indicator Process Target
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemProductName C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key opened \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\BIOS\SystemManufacturer C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Modifies registry class

Description Indicator Process Target
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-131918955-2378418313-883382443-1000\{0C68A1B9-B4F0-4C4B-9BB1-24335BCD1018} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
Key created \REGISTRY\MACHINE\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppModel\Deployment\Package\*\S-1-5-21-131918955-2378418313-883382443-1000\{97C81CC2-2CC8-4E75-9AE9-5AA52599D41B} C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

NTFS ADS

Description Indicator Process Target
File opened for modification C:\Users\Admin\Downloads\Unconfirmed 242951.crdownload:SmartScreen C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
File opened for modification C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious behavior: EnumeratesProcesses

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious behavior: GetForegroundWindowSpam

Description Indicator Process Target
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A

Suspicious use of AdjustPrivilegeToken

Description Indicator Process Target
Token: 33 N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeIncBasePriorityPrivilege N/A C:\Windows\system32\AUDIODG.EXE N/A
Token: SeDebugPrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeSystemProfilePrivilege N/A C:\Windows\system32\taskmgr.exe N/A
Token: SeCreateGlobalPrivilege N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of FindShellTrayWindow

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of SendNotifyMessage

Description Indicator Process Target
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A
N/A N/A C:\Windows\system32\taskmgr.exe N/A

Suspicious use of WriteProcessMemory

Description Indicator Process Target
PID 3768 wrote to memory of 2996 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 2996 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1572 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 2972 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 2972 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
PID 3768 wrote to memory of 1880 N/A C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

Processes

C:\Users\Admin\AppData\Local\Temp\AHHHHHHH.exe

"C:\Users\Admin\AppData\Local\Temp\AHHHHHHH.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x108,0x10c,0x110,0xe4,0x114,0x7ffef5f73cb8,0x7ffef5f73cc8,0x7ffef5f73cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1936 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2292 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2520 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3228 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4816 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4088 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3524 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3308 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5316 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=12 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5052 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=13 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5684 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5340 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5860 /prefetch:8

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004CC 0x00000000000004E0

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6048 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=3580 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=18 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3988 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4804 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5572 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5100 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=6460 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6604 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6388 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=6148 /prefetch:8

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Windows\System32\rundll32.exe

C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1924,17833037353669825969,11451392351903568467,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1648 /prefetch:2

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Windows\system32\taskmgr.exe

"C:\Windows\system32\taskmgr.exe" /0

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Users\Admin\Downloads\AHHHHHHH.exe

"C:\Users\Admin\Downloads\AHHHHHHH.exe"

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data" --annotation=IsOfficialBuild=1 --annotation=channel= --annotation=chromium-version=90.0.4430.212 "--annotation=exe=C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --annotation=plat=Win64 "--annotation=prod=Microsoft Edge" --annotation=ver=90.0.818.66 --initial-client-data=0x104,0x108,0x10c,0xe0,0x110,0x7ffef5f73cb8,0x7ffef5f73cc8,0x7ffef5f73cd8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --gpu-preferences=SAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=1848 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2304 /prefetch:3

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=utility --mojo-platform-channel-handle=2552 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3336 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3344 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=7 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4300 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4896 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=chrome.mojom.UtilWin --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=3568 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\90.0.818.66\identity_helper.exe" --type=utility --utility-sub-type=winrt_app_id.mojom.WinrtAppIdService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=5352 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3976 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=audio.mojom.AudioService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=audio --mojo-platform-channel-handle=5056 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=video_capture.mojom.VideoCaptureService --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=video_capture --mojo-platform-channel-handle=5000 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4996 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=15 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5520 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=16 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5796 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=17 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5700 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_collections.mojom.CollectionsDataManager --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --service-sandbox-type=collections --mojo-platform-channel-handle=5536 /prefetch:8

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=19 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5568 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=20 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6300 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6492 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=22 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5652 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=23 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6896 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6912 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7248 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7032 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7548 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7768 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=29 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7920 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=30 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8132 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8312 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=32 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8468 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=33 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8564 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=34 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8708 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6588 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=36 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9104 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9272 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8976 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9640 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9648 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9420 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9976 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10156 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=44 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9572 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=45 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9596 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=46 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10788 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=47 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10768 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=48 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10948 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=49 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7172 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=50 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9204 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=51 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7148 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=52 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11832 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=53 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11408 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11348 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=55 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12084 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12152 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=57 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11840 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=58 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11352 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=59 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11276 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=60 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8484 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11900 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=62 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7736 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=63 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8632 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=64 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=12200 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=gpu-process --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.22000.1 --gpu-preferences=SAAAAAAAAADoAAAwAAAAAAAAAAAAAAAAAABgAAAQAAAoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4AAAAAAAAAHgAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAAIAAAAAAAAAAgAAAAAAAAA --mojo-platform-channel-handle=9156 /prefetch:2

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10228 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=67 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9936 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=68 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11260 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=69 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10852 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --instant-process --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=70 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8804 /prefetch:1

C:\Windows\system32\AUDIODG.EXE

C:\Windows\system32\AUDIODG.EXE 0x00000000000004CC 0x00000000000004E0

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=71 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=11220 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=72 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6624 /prefetch:1

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=73 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=10824 /prefetch:1

C:\Windows\System32\CompPkgSrv.exe

C:\Windows\System32\CompPkgSrv.exe -Embedding

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe

"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --field-trial-handle=1860,17914305215082966569,7111232466159055632,131072 --lang=en-US --disable-client-side-phishing-detection --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=74 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3868 /prefetch:1

Network

Country Destination Domain Proto
US 8.8.8.8:53 134.32.126.40.in-addr.arpa udp
GB 92.123.142.91:443 www.bing.com tcp
N/A 224.0.0.251:5353 udp
US 8.8.8.8:53 r.bing.com udp
GB 92.123.142.129:443 th.bing.com tcp
GB 92.123.142.177:443 r.bing.com tcp
GB 92.123.142.177:443 r.bing.com tcp
GB 92.123.142.129:443 th.bing.com tcp
US 204.79.197.200:443 bing.com tcp
US 8.8.8.8:53 200.197.79.204.in-addr.arpa udp
US 162.159.136.232:443 discord.com tcp
US 162.159.136.232:443 discord.com tcp
US 8.8.8.8:53 ajax.googleapis.com udp
US 8.8.8.8:53 cdn.localizeapi.com udp
US 8.8.8.8:53 cdn.prod.website-files.com udp
US 162.159.134.233:443 cdn.discordapp.com tcp
FR 142.250.179.106:443 ajax.googleapis.com tcp
US 104.18.34.227:443 cdn.prod.website-files.com tcp
US 104.22.21.64:443 cdn.localizeapi.com tcp
GB 2.18.190.80:80 apps.identrust.com tcp
US 104.18.34.227:443 cdn.prod.website-files.com tcp
CZ 65.9.94.213:443 d3e54v103j8qbb.cloudfront.net tcp
US 8.8.8.8:53 80.190.18.2.in-addr.arpa udp
US 8.8.8.8:53 213.94.9.65.in-addr.arpa udp
US 8.8.8.8:53 227.34.18.104.in-addr.arpa udp
US 104.18.32.137:443 geolocation.onetrust.com tcp
US 162.159.133.234:443 remote-auth-gateway.discord.gg tcp
US 13.107.5.80:443 services.bingapis.com tcp
US 13.107.5.80:443 services.bingapis.com tcp
US 104.18.33.89:443 www2.bing.com tcp
US 104.18.33.89:443 www2.bing.com tcp
US 8.8.8.8:53 gateway.discord.gg udp
US 162.159.133.234:443 gateway.discord.gg tcp
US 162.159.128.233:443 status.discord.com tcp
US 162.159.134.233:443 cdn.discordapp.com tcp
US 8.8.8.8:53 status.discord.com udp
US 162.159.133.232:443 images-ext-1.discordapp.net tcp
US 162.159.133.232:443 images-ext-1.discordapp.net tcp
US 35.190.80.1:443 a.nel.cloudflare.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 184.28.176.98:443 tcp
GB 184.28.176.98:443 tcp
US 52.182.143.214:443 browser.pipe.aria.microsoft.com tcp
GB 184.28.176.98:443 tcp
US 8.8.8.8:53 214.143.182.52.in-addr.arpa udp
GB 184.28.176.98:443 tcp
GB 184.28.176.106:443 tcp
GB 184.28.176.106:443 tcp
GB 184.28.176.106:443 tcp
GB 184.28.176.112:443 tcp
GB 184.28.176.112:443 tcp
GB 184.28.176.112:443 tcp
GB 184.28.176.112:443 tcp
GB 184.28.176.112:443 tcp
US 52.182.143.214:443 browser.pipe.aria.microsoft.com tcp
US 4.150.241.254:443 arm-ring.msedge.net tcp
US 8.8.8.8:53 711e646c3d3021f57618857341b52f5a.azr.footprintdns.com udp
IN 20.219.13.99:443 711e646c3d3021f57618857341b52f5a.azr.footprintdns.com tcp
US 8.8.8.8:53 254.241.150.4.in-addr.arpa udp
GB 184.28.176.112:443 tcp
US 8.8.8.8:53 static-ecst.licdn.com udp
FR 152.199.21.118:443 static-ecst.licdn.com tcp
US 8.8.8.8:53 118.21.199.152.in-addr.arpa udp
US 8.8.8.8:53 99.13.219.20.in-addr.arpa udp
GB 184.28.176.104:443 tcp
GB 184.28.176.104:443 tcp
GB 184.28.176.104:443 tcp
GB 184.28.176.104:443 tcp
GB 184.28.176.104:443 tcp
GB 184.28.176.104:443 tcp
GB 184.28.176.99:443 tcp
GB 184.28.176.99:443 tcp
GB 184.28.176.99:443 tcp
GB 184.28.176.99:443 tcp
GB 184.28.176.99:443 tcp
GB 95.101.129.146:443 r.bing.com tcp
GB 173.222.211.41:443 aefd.nelreports.net tcp
US 8.8.8.8:53 41.211.222.173.in-addr.arpa udp
GB 95.101.129.235:443 th.bing.com tcp
GB 95.101.129.201:443 th.bing.com tcp
GB 95.101.129.201:443 th.bing.com tcp
GB 95.101.129.235:443 th.bing.com tcp
US 8.8.8.8:53 201.129.101.95.in-addr.arpa udp
US 104.18.33.89:443 www2.bing.com tcp
US 104.18.33.89:443 www2.bing.com tcp
GB 143.204.68.94:443 www.sitepoint.com tcp
GB 143.204.68.94:443 www.sitepoint.com tcp
US 8.8.8.8:53 cdn.sanity.io udp
US 8.8.8.8:53 uploads.sitepoint.com udp
US 8.8.8.8:53 eu.posthog.com udp
US 34.149.250.58:443 cdn.sanity.io tcp
US 8.8.8.8:53 connect.facebook.net udp
US 8.8.8.8:53 cmp.inmobi.com udp
US 8.8.8.8:53 cdn4.buysellads.net udp
GB 143.204.68.94:443 www.sitepoint.com tcp
GB 143.204.68.94:443 www.sitepoint.com tcp
GB 143.204.68.94:443 www.sitepoint.com tcp
GB 18.244.179.36:443 uploads.sitepoint.com tcp
GB 18.244.179.36:443 uploads.sitepoint.com tcp
GB 18.245.162.106:443 eu.posthog.com tcp
GB 18.244.179.36:443 uploads.sitepoint.com tcp
GB 18.245.162.106:443 eu.posthog.com tcp
US 8.8.8.8:53 learnable-images.sitepoint.com udp
US 8.8.8.8:53 s3.sitepoint.com udp
US 8.8.8.8:53 36.179.244.18.in-addr.arpa udp
US 8.8.8.8:53 58.250.149.34.in-addr.arpa udp
DE 18.195.247.28:443 eu.i.posthog.com tcp
DE 18.195.247.28:443 eu.i.posthog.com tcp
DE 18.195.247.28:443 eu.i.posthog.com tcp
US 8.8.8.8:53 o388912.ingest.sentry.io udp
GB 143.204.68.94:443 www.sitepoint.com tcp
GB 143.204.68.94:443 www.sitepoint.com tcp
US 34.120.195.249:443 o388912.ingest.sentry.io tcp
US 8.8.8.8:53 249.195.120.34.in-addr.arpa udp
US 34.149.250.58:443 cdn.sanity.io udp
US 34.120.195.249:443 o388912.ingest.sentry.io udp
GB 18.244.114.102:443 cmp.inmobi.com tcp
GB 18.245.162.85:443 script.tapfiliate.com tcp
GB 18.244.114.102:443 cmp.inmobi.com tcp
DK 157.240.200.14:443 connect.facebook.net tcp
DK 157.240.200.14:443 connect.facebook.net tcp
US 8.8.8.8:53 a.omappapi.com udp
US 8.8.8.8:53 85.162.245.18.in-addr.arpa udp
US 8.8.8.8:53 102.114.244.18.in-addr.arpa udp
US 8.8.8.8:53 14.200.240.157.in-addr.arpa udp
GB 143.244.38.136:443 a.omappapi.com tcp
DE 3.125.91.136:443 api.cmp.inmobi.com tcp
DE 3.125.91.136:443 api.cmp.inmobi.com tcp
US 172.64.154.78:443 static.vidazoo.com tcp
DE 3.125.91.136:443 api.cmp.inmobi.com tcp
DE 3.125.91.136:443 api.cmp.inmobi.com tcp
US 8.8.8.8:53 78.154.64.172.in-addr.arpa udp
NL 152.42.150.143:443 cdn4.buysellads.net tcp
NL 152.42.150.143:443 cdn4.buysellads.net tcp
US 8.8.8.8:53 api.omappapi.com udp
US 172.66.41.8:443 api.omappapi.com tcp
US 172.66.41.8:443 api.omappapi.com tcp
GB 108.138.217.76:443 learnable-images.sitepoint.com tcp
GB 108.138.217.76:443 learnable-images.sitepoint.com tcp
US 8.8.8.8:53 76.217.138.108.in-addr.arpa udp
US 8.8.8.8:53 8.41.66.172.in-addr.arpa udp
US 8.8.8.8:53 www.facebook.com udp
FR 157.240.196.35:443 www.facebook.com tcp
US 34.222.117.141:443 meta-events.sitepoint.com tcp
US 34.222.117.141:443 meta-events.sitepoint.com tcp
US 34.222.117.141:443 meta-events.sitepoint.com tcp
FR 157.240.196.35:443 www.facebook.com tcp
FR 157.240.196.35:443 www.facebook.com tcp
US 8.8.8.8:53 141.117.222.34.in-addr.arpa udp
US 8.8.8.8:53 35.196.240.157.in-addr.arpa udp
US 8.8.8.8:53 143.150.42.152.in-addr.arpa udp
US 8.8.8.8:53 btloader.com udp
US 8.8.8.8:53 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 c.amazon-adsystem.com udp
FR 216.58.215.34:443 securepubads.g.doubleclick.net tcp
US 104.22.74.216:443 btloader.com tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
US 104.22.74.216:443 btloader.com tcp
FR 216.58.215.34:443 securepubads.g.doubleclick.net tcp
GB 13.224.223.9:443 c.amazon-adsystem.com tcp
US 104.26.2.70:443 ad-delivery.net tcp
US 8.8.8.8:53 166.214.58.216.in-addr.arpa udp
US 104.26.2.70:443 ad-delivery.net tcp
FR 216.58.215.34:443 securepubads.g.doubleclick.net udp
US 8.8.8.8:53 prg.smartadserver.com udp
US 8.8.8.8:53 onetag-sys.com udp
US 8.8.8.8:53 hb-api.omnitagjs.com udp
US 8.8.8.8:53 fastlane.rubiconproject.com udp
US 8.8.8.8:53 bidder.criteo.com udp
US 8.8.8.8:53 pbjs.e-planning.net udp
US 8.8.8.8:53 ads.servenobid.com udp
US 8.8.8.8:53 hbopenbid.pubmatic.com udp
US 8.8.8.8:53 ib.adnxs.com udp
US 8.8.8.8:53 rtb.openx.net udp
US 34.120.63.153:443 prebid.media.net tcp
DE 51.89.9.252:443 onetag-sys.com tcp
FR 51.178.195.208:443 prg.smartadserver.com tcp
FR 51.178.195.208:443 prg.smartadserver.com tcp
NL 178.250.1.8:443 bidder.criteo.com tcp
US 159.89.225.186:443 exchange.cootlogix.com tcp
US 159.89.225.186:443 exchange.cootlogix.com tcp
NL 185.64.189.112:443 hbopenbid.pubmatic.com tcp
FR 185.255.84.151:443 hb-api.omnitagjs.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
NL 69.173.156.139:443 fastlane.rubiconproject.com tcp
US 35.227.252.103:443 rtb.openx.net tcp
US 172.67.75.241:443 script.4dex.io tcp
IE 52.17.71.243:443 ads.servenobid.com tcp
DE 37.252.171.149:443 ib.adnxs.com tcp
NL 193.3.178.3:443 pbjs.e-planning.net tcp
GB 159.65.211.77:443 srv.buysellads.com tcp
US 172.67.75.241:443 script.4dex.io tcp
US 104.18.23.145:443 cadmus.script.ac tcp
US 8.8.8.8:53 149.171.252.37.in-addr.arpa udp
US 8.8.8.8:53 3.178.3.193.in-addr.arpa udp
US 8.8.8.8:53 77.211.65.159.in-addr.arpa udp
US 8.8.8.8:53 186.225.89.159.in-addr.arpa udp
US 8.8.8.8:53 151.84.255.185.in-addr.arpa udp
GB 108.156.39.15:443 config.aps.amazon-adsystem.com tcp
GB 18.245.189.34:443 aax.amazon-adsystem.com tcp
GB 18.245.143.100:443 tags.crwdcntrl.net tcp
GB 23.53.174.156:443 secure.cdn.fastclick.net tcp
US 104.22.53.173:443 cdn.hadronid.net tcp
FR 142.250.179.65:443 33d955c3200799d9834fd819230d2a31.safeframe.googlesyndication.com tcp
US 104.22.53.86:443 cdn.id5-sync.com tcp
FR 216.58.214.66:443 ep1.adtrafficquality.google tcp
US 104.22.4.69:443 id.hadron.ad.gt tcp
FR 142.250.179.97:443 ep2.adtrafficquality.google tcp
US 8.8.8.8:53 65.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 86.53.22.104.in-addr.arpa udp
US 8.8.8.8:53 66.214.58.216.in-addr.arpa udp
US 8.8.8.8:53 66.179.250.142.in-addr.arpa udp
US 8.8.8.8:53 69.4.22.104.in-addr.arpa udp
FR 142.250.179.97:443 ep2.adtrafficquality.google tcp
GB 159.65.211.77:443 srv.buysellads.com tcp
NL 178.250.1.3:443 static.criteo.net tcp
US 172.67.23.234:443 a.ad.gt tcp
FR 142.250.178.129:443 tpc.googlesyndication.com tcp
FR 142.250.178.129:443 tpc.googlesyndication.com tcp
FR 178.250.7.13:443 gum.criteo.com tcp
FR 178.250.7.13:443 gum.criteo.com tcp
FR 142.250.178.129:443 tpc.googlesyndication.com udp
DE 51.89.9.252:443 onetag-sys.com udp
FR 185.255.84.152:443 visitor.omnitagjs.com tcp
GB 2.16.170.43:443 hb.trustedstack.com tcp
GB 95.100.245.251:443 eus.rubiconproject.com tcp
GB 108.156.39.36:443 public.servenobid.com tcp
US 157.230.226.111:443 sync.cootlogix.com tcp
GB 95.100.244.20:443 contextual.media.net tcp
US 34.98.64.218:443 buysellads-d.openx.net tcp
GB 2.18.108.192:443 ads.pubmatic.com tcp
US 151.101.1.108:443 acdn.adnxs.com tcp
US 67.202.105.24:443 pixel.33across.com tcp
IE 54.77.40.67:443 rtb.gumgum.com tcp
NL 89.149.192.76:443 ssbsync.smartadserver.com tcp
US 172.64.151.101:443 ssum-sec.casalemedia.com tcp
GB 23.214.129.249:443 secure-assets.rubiconproject.com tcp
US 54.90.152.160:443 cs-server-s2s.yellowblue.io tcp
US 172.64.145.29:443 cdn.dxkulture.com tcp
US 8.8.8.8:53 67.40.77.54.in-addr.arpa udp
US 8.8.8.8:53 24.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 76.192.149.89.in-addr.arpa udp
US 8.8.8.8:53 101.151.64.172.in-addr.arpa udp
US 8.8.8.8:53 eu-west-1-cs-rtb.openwebmp.com udp
US 8.8.8.8:53 gum.aidemsrv.com udp
GB 13.224.222.128:443 eu-west-1-cs-rtb.openwebmp.com tcp
US 104.17.44.93:443 gum.aidemsrv.com tcp
GB 92.123.143.216:443 player.aniview.com tcp
IE 3.248.128.118:443 ce.lijit.com tcp
DK 37.157.5.84:443 c1.adform.net tcp
US 67.202.105.21:443 ssc-cms.33across.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com tcp
NL 178.250.1.9:443 dis.criteo.com tcp
IE 108.128.4.40:443 ap.lijit.com tcp
FR 142.250.75.226:443 cm.g.doubleclick.net tcp
US 15.197.193.217:443 match.adsrvr.org tcp
JP 124.146.153.151:443 tg.socdm.com tcp
NL 46.228.174.117:443 sync.1rx.io tcp
NL 46.228.174.117:443 sync.1rx.io tcp
IE 108.128.4.40:443 ap.lijit.com tcp
NL 185.184.8.90:443 creativecdn.com tcp
FR 142.250.75.226:443 cm.g.doubleclick.net udp
NL 69.173.156.148:443 token.rubiconproject.com tcp
US 34.36.216.150:443 pixel-sync.sitescout.com udp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 15.197.193.217:443 match.adsrvr.org tcp
JP 124.146.153.151:443 tg.socdm.com tcp
US 216.200.232.253:443 sync.mathtag.com tcp
NL 193.0.160.130:443 p.rfihub.com tcp
DE 162.55.233.29:443 sync.richaudience.com tcp
US 8.8.8.8:53 118.128.248.3.in-addr.arpa udp
US 8.8.8.8:53 249.129.214.23.in-addr.arpa udp
US 8.8.8.8:53 93.44.17.104.in-addr.arpa udp
US 8.8.8.8:53 84.5.157.37.in-addr.arpa udp
US 8.8.8.8:53 150.216.36.34.in-addr.arpa udp
US 8.8.8.8:53 21.105.202.67.in-addr.arpa udp
US 8.8.8.8:53 9.1.250.178.in-addr.arpa udp
US 8.8.8.8:53 226.75.250.142.in-addr.arpa udp
US 8.8.8.8:53 40.4.128.108.in-addr.arpa udp
US 8.8.8.8:53 117.174.228.46.in-addr.arpa udp
US 8.8.8.8:53 90.8.184.185.in-addr.arpa udp
US 8.8.8.8:53 148.156.173.69.in-addr.arpa udp
US 8.8.8.8:53 91.149.214.35.in-addr.arpa udp
US 8.8.8.8:53 217.193.197.15.in-addr.arpa udp
US 8.8.8.8:53 151.153.146.124.in-addr.arpa udp
IE 34.247.233.198:443 usersync.gumgum.com tcp
US 172.240.45.78:443 sync.aniview.com tcp
DE 162.55.233.29:443 sync.richaudience.com tcp
DE 141.95.98.65:443 id5-sync.com tcp
US 45.55.126.71:443 ads.dxkulture.com tcp
US 69.166.1.66:443 sync.go.sonobi.com tcp
US 34.98.64.218:443 us-u.openx.net udp
IE 34.248.152.121:443 pr-bh.ybp.yahoo.com tcp
FR 217.182.178.234:443 rtb-csync.smartadserver.com tcp
NL 147.75.34.153:443 prebid.a-mo.net tcp
US 52.1.95.45:443 api-2-0.spot.im tcp
NL 35.214.149.91:443 x.bidswitch.net tcp
US 192.132.33.67:443 bttrack.com tcp
US 52.73.22.15:443 sync.ipredictive.com tcp
US 169.197.150.8:443 match.deepintent.com tcp
US 8.8.8.8:53 66.1.166.69.in-addr.arpa udp
US 8.8.8.8:53 153.34.75.147.in-addr.arpa udp
US 8.8.8.8:53 45.95.1.52.in-addr.arpa udp
US 52.73.22.15:443 sync.ipredictive.com tcp
DE 18.184.119.72:443 match.sharethrough.com tcp
US 70.42.32.31:443 b1sync.zemanta.com tcp
US 54.87.10.112:443 ssp.disqus.com tcp
IE 34.252.6.15:443 match.prod.bidr.io tcp
US 216.239.34.36:443 region1.google-analytics.com tcp
NL 208.93.169.131:443 bh.contextweb.com tcp
NL 77.245.57.72:443 sync.adkernel.com tcp
GB 185.64.191.214:443 image8.pubmatic.com tcp
US 45.55.126.71:443 ads.dxkulture.com tcp
US 45.55.126.71:443 ads.dxkulture.com tcp
GB 2.18.108.20:443 hbx.media.net tcp
US 45.55.126.71:443 ads.dxkulture.com tcp
US 8.8.8.8:53 idsync.rlcdn.com udp
US 35.244.174.68:443 idsync.rlcdn.com tcp
US 54.204.207.243:443 sync.srv.stackadapt.com tcp
NL 35.214.199.88:443 rtb.mfadsrvr.com tcp
US 8.8.8.8:53 20.108.18.2.in-addr.arpa udp
US 8.8.8.8:53 68.174.244.35.in-addr.arpa udp
US 172.111.38.54:443 tracker.open-adsyield.com tcp
US 172.111.38.54:443 tracker.open-adsyield.com tcp
US 8.8.8.8:53 233.38.18.104.in-addr.arpa udp
NL 35.214.199.88:443 rtb.mfadsrvr.com udp
US 8.8.8.8:53 jadserve.postrelease.com udp
IE 34.253.170.144:443 jadserve.postrelease.com tcp
US 8.8.8.8:53 144.170.253.34.in-addr.arpa udp
US 8.8.8.8:53 th.bing.com udp
US 8.8.8.8:53 r.bing.com udp
US 204.79.197.200:443 bing.com tcp
US 8.8.8.8:53 id.rlcdn.com udp
US 204.79.197.200:443 bing.com tcp
US 8.8.8.8:53 chatgpt.com udp
US 172.64.154.167:443 www2.bing.com tcp
US 172.64.155.209:443 chatgpt.com tcp
US 172.64.154.167:443 www2.bing.com tcp
US 104.18.94.41:443 challenges.cloudflare.com tcp
US 8.8.8.8:53 209.155.64.172.in-addr.arpa udp
GB 95.101.129.218:443 th.bing.com tcp
US 8.8.8.8:53 challenges.cloudflare.com udp
US 104.18.94.41:443 challenges.cloudflare.com tcp
US 8.8.8.8:53 218.129.101.95.in-addr.arpa udp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 104.18.41.158:443 cdn.oaistatic.com tcp
US 172.64.155.209:443 ab.chatgpt.com tcp
US 104.18.32.47:443 ab.chatgpt.com tcp
US 8.8.8.8:53 158.41.18.104.in-addr.arpa udp
US 104.18.41.241:443 auth.openai.com tcp
US 104.18.41.241:443 auth.openai.com tcp
US 35.190.80.1:443 a.nel.cloudflare.com udp
GB 95.101.129.146:443 www.bing.com tcp
GB 95.101.129.218:443 www.bing.com tcp
US 172.64.154.167:443 www2.bing.com tcp
US 172.64.154.167:443 www2.bing.com tcp
US 150.171.28.10:443 tse1.mm.bing.net tcp
US 8.8.8.8:53 tse4.mm.bing.net udp
US 8.8.8.8:53 tse3.mm.bing.net udp
US 8.8.8.8:53 tse2.mm.bing.net udp
FR 216.58.214.174:443 www.youtube.com tcp
FR 216.58.214.174:443 www.youtube.com udp
FR 142.250.179.118:443 i.ytimg.com tcp
US 8.8.8.8:53 118.179.250.142.in-addr.arpa udp
GB 184.28.176.96:443 tcp
GB 184.28.176.96:443 tcp
GB 184.28.176.96:443 tcp
GB 184.28.176.96:443 tcp
GB 184.28.176.96:443 tcp
FR 216.58.214.162:443 googleads.g.doubleclick.net tcp
GB 184.28.176.96:443 tcp
FR 216.58.214.162:443 googleads.g.doubleclick.net udp
US 8.8.8.8:53 yt3.ggpht.com udp
FR 216.58.213.74:443 jnn-pa.googleapis.com tcp
FR 142.250.179.97:443 yt3.ggpht.com tcp
FR 142.250.179.68:443 www.google.com tcp
US 52.123.129.254:443 dual-s-ring.msedge.net tcp
FR 216.58.213.74:443 jnn-pa.googleapis.com udp
US 8.8.8.8:53 74.213.58.216.in-addr.arpa udp
US 8.8.8.8:53 68.179.250.142.in-addr.arpa udp
FR 152.199.21.118:443 static-ecst.licdn.com tcp
US 52.182.143.214:443 browser.pipe.aria.microsoft.com tcp
FR 142.250.75.238:443 play.google.com tcp
FR 142.250.75.238:443 play.google.com tcp
FR 142.250.75.238:443 play.google.com tcp
FR 142.250.75.238:443 play.google.com udp
US 172.64.154.167:443 www2.bing.com tcp
US 172.64.154.167:443 www2.bing.com tcp
GB 173.222.211.40:443 aefd.nelreports.net udp
FR 142.250.75.238:443 play.google.com udp
FR 142.250.178.142:443 support.google.com tcp
GB 184.28.176.82:443 tcp
GB 184.28.176.82:443 tcp
GB 184.28.176.82:443 tcp
GB 184.28.176.82:443 tcp
GB 184.28.176.82:443 tcp
US 152.199.19.161:443 fp-vs.azureedge.net tcp
US 150.171.75.254:443 bx-ring-fallback.msedge.net tcp
GB 184.28.176.82:443 tcp
SE 51.12.13.90:443 06580f55f43ce170e18236ef890e3360.azr.footprintdns.com tcp
GB 95.101.129.235:443 www.bing.com tcp
GB 95.101.129.235:443 www.bing.com tcp
GB 95.101.129.235:443 www.bing.com tcp
GB 95.101.129.235:443 www.bing.com tcp
GB 95.101.129.235:443 www.bing.com tcp
US 8.8.8.8:53 r.bing.com udp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.211:443 r.bing.com tcp
GB 95.101.129.235:443 www.bing.com tcp
DE 3.66.14.62:443 eu.i.posthog.com tcp
US 8.8.8.8:53 62.14.66.3.in-addr.arpa udp

Files

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 9f081a02d8bbd5d800828ed8c769f5d9
SHA1 978d807096b7e7a4962a001b7bba6b2e77ce419a
SHA256 a7645e1b16115e9afec86efa139d35d5fecc6c5c7c59174c9901b4213b1fae0e
SHA512 7f3045f276f5bd8d3c65a23592419c3b98f1311c214c8e54a4dfe09122a08afb08ab7967b49bd413bc748ce6363658640bc87958d5e0a78974680a8f9beadf44

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 3e681bda746d695b173a54033103efa8
SHA1 ae07be487e65914bb068174b99660fb8deb11a1d
SHA256 fee5f7377e5ca213c1d8d7827b788723d0dd2538e7ce3f35581fc613fde834c2
SHA512 0f4381c769d4ae18ff3ac93fd97e8d879043b8ec825611db27f08bd44c08babc1710672c3f93435a61e40db1ccbf5b74c6363aaaf5f4a7fc95a6a7786d1aced8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 f1018498b598dfa7aeb1666ea112c734
SHA1 396c4f0690f86da4935759f11012076ef2692fa4
SHA256 6379a903fc1c3c4d1ff5f54990a25b6fd5c9e3aff7cb79020167ab4ffe650c12
SHA512 9b71b22426dbb0da934e7e4985b97f515b6ae7ae2dc65605ad336492431d1d74eb9cc2cf1929637d712948ac9dfc9200e1eda78a141d8e3e74bdbaabf536d58b

\??\pipe\LOCAL\crashpad_3768_NLIOEGSTWQIFBJBA

MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512 cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 46295cac801e5d4857d09837238a6394
SHA1 44e0fa1b517dbf802b18faf0785eeea6ac51594b
SHA256 0f1bad70c7bd1e0a69562853ec529355462fcd0423263a3d39d6d0d70b780443
SHA512 8969402593f927350e2ceb4b5bc2a277f3754697c1961e3d6237da322257fbab42909e1a742e22223447f3a4805f8d8ef525432a7c3515a549e984d3eff72b23

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 206702161f94c5cd39fadd03f4014d98
SHA1 bd8bfc144fb5326d21bd1531523d9fb50e1b600a
SHA256 1005a525006f148c86efcbfb36c6eac091b311532448010f70f7de9a68007167
SHA512 0af09f26941b11991c750d1a2b525c39a8970900e98cba96fd1b55dbf93fee79e18b8aab258f48b4f7bda40d059629bc7770d84371235cdb1352a4f17f80e145

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 040e9e34b9a78bad9916d7db64450cb8
SHA1 8dae723b7a9c5760023f640524305ffff78a336c
SHA256 6e7365982392716ecc5c4b0f39dec5b4956cbfa6df6fbf27c192776e7f716987
SHA512 6f93ed07f88373f988b113d40a07eb3b59017e83c818262ced675ba820a5eae6dfb1847dcf6f5ad5514d5d75cbc0ac1570a494fc00fa83b67aaec76ebd45a915

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 22e49f7a43aea015d4c24080dd689744
SHA1 d0d9880bd3b7d44052f2f726c0c69fc5eb9e6548
SHA256 3b91c40d5d27c1a5661cbf7aa90703f4438bbdb7e5b696b8f3b7727b2fe714de
SHA512 5ed4e3e2c5ea8c822ba08a4e3600def567a3b8599d2ffbf5cf59651f7c8ec7782364ddf8c90c0d8291ab5fb9158bb4168a91d5c8deb7007fe8e729a4b289f42f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 acdf82b0f69f7d4dbf7f98340be85371
SHA1 74507c7c5e7f8cf53ac372019eafac1cb2253aa7
SHA256 6a351d68fd110f46349a727caf21eef93424c0195a837a827c6807e18d5d7e50
SHA512 6c5fb661bcd7c9c8db60b2eebab593d28e2d13a749b4f2ea851d7b2f5ca067b9190695275f72584a2d0fd57af35ab2082cdd457e128ce579d5b53f20063b7371

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity~RFe58530d.TMP

MD5 f57cea0854359915a57b745e64b92c33
SHA1 1f7ab7ffd8e23f0d09bb8d423ddaf33daa258a12
SHA256 ecb3139e9c4d9f93d20f1f3a2ffb7ab64667c3548108eae5582dd01d7df22a25
SHA512 99464490c54de60a4226988b5c92be5d912ebd1b0bd89559bc1124d4b6dbe0fe19d635c5f60e672c10584bf22204f4dcddf96a5621379e1b4eb5eb90fe6428c5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 cb717ae24e1c3cb6746c535299c21a26
SHA1 48727f921b1ca7e8aa830784d93eb8c8967241c0
SHA256 9478fd7c8d84a42bc8dd07e84563125d02b5b0dc6771a52740c67eb1db164d3b
SHA512 d9b62717c3bd689fde26bcc7175f7543c2e0422ad1ce5f23b3eaf2b1932b167910194addff6939cbc5fb6f1665a919bdbc69aa8f138f02a3fe109ed251dfa187

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 75715b56b019658512e553604a90ea04
SHA1 4c9501bd298f1d14354cc7dee275c995a2b4bc98
SHA256 a847e12550802c8c7447fcc9b50653deaa0dd6b821189dcaf0fe6820dc32c4e4
SHA512 3252911fde3d730967b55e66e89712f8263ebf0ac47e7e5a39c48196fd5e13afbbfdffc51b8a080e69433dc166bd56974188a8e8448ec7264ffbcc8e4b627a13

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 58c61f943a40c440b98d64b47a189563
SHA1 25956220c30027e5884c590a4cde4720e8a81ee2
SHA256 d59a6acf9d49f2d2f0056d9576d45a631c1249d3c232a38806c4abb6309a318e
SHA512 304f12441462bc898b0a24fda6097e0102c40dc897a32a75e14f31293483e2beabd4843ff3f5f459e978b06309ba54d9140bcea9c868f525e386219b0384109d

C:\Users\Admin\Downloads\Unconfirmed 242951.crdownload

MD5 7355a16e62b44bae42ef6d2775e0797f
SHA1 f78d71a324f85490f0868a2e8527232dfdfd2ad0
SHA256 793d8850b2bc88071892297a2db39d044c8fe8db19918a0530cec893f4d795a0
SHA512 98042ab4a2c293a47f108b39d6d2576e3501f8fa2dc9468edba0ee65028c78d2c7472e0c0020eb52f3861e2bd539391ac70002ef9be544d0a8b2c8f5c3d1985a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 4defee7e462a22352e6c2136a44b9a2d
SHA1 b0d48be91381047a37cf364008f8e9f73907163e
SHA256 9bb8ee6524284b4543e4646ec0a6f1d9a20b9d3735c5dfd62c55c112f6bf315d
SHA512 f79da192fe7a0e9f7ee06e611e808903a4a7b14a85276678adc811ad9632e2907cd74fa3f73e95b287348ace90a3094e71df92fda6da66b667a95366ceded59e

C:\Users\Admin\Downloads\AHHHHHHH.exe:Zone.Identifier

MD5 ab2d815a082d1aac70b82a990cc38576
SHA1 74633c3bba693ad21f44e5d4f31faa5480371775
SHA256 ed93bf8e0680123dca93015336fdeeceb9a25202bcc1bd1934b32d4e0ebb4648
SHA512 464b522afbcc6fdfe1eeb143408fbdfacba8679930b959edad62819afa9916cf89dc220c84e805b111135f90070e598244aa9c8e2671d10f9601906042f5a723

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 956684bbfdd2e5dd2165445713fcd8a7
SHA1 8b29c5d7065326449509932efdec33a97501e6d8
SHA256 5586cb49deedc8b907b5f82074ce1043ba8d0f6b526fb4c6e1973c6b1d7f0a35
SHA512 8bcd2d13ee6d4123641f062a115c90e289a464ab3824ce1e5d42f1d5048b7b21f515ff3b5f52754d7194bce1788c9cfc56220c5aff0ce08fecb80a3232f9485b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 58a325803f81b40fbd1d31afde3594f2
SHA1 e1fe61ce699cc1a09afddd079dc8621e5386f5b4
SHA256 cf2b8744c0df123036941b02f0c3177b331a1aaff1a8b0bf1794bbcbdd4c6d05
SHA512 3706b2c04c383e9afe70e9559bd4945d29d9ecfc42a2e2101bb204b989116ab7932b1147e4ae79bb09b5ed16285cf5a39ffab8413a88bf1d1620cadb65a0cde2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 761cdfee7b934a81a96a04ea9200b9b9
SHA1 da501382558491a18bb504f8a8f19d50b17ad5b4
SHA256 5e60fe03fdc078072fc8727b9c11dc4a901ce3899119b39813562064fd365a79
SHA512 521ccfa933ca8fb6296beeaf0c259a3ac183c3f7ffdeb3592efc0ba90b738888061bc383a32eefe206315117864d74736230b34b2478f51ac6616376bfc1d976

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 3a4d2a1dfdb99d6ac58e088e2cd56a5f
SHA1 078775e833a812431a74174e8a3bf6c1c0e788ef
SHA256 50a501898abaaced7a56a4e8b95d9dc40d3b5c388567e14fa770e8cbe99e4397
SHA512 cfc36ff621ecf1eb803f80e39ad3ca71fb240b78861fd89c18394c97e4b9633f924fe6df5b07a1a9d5e78318a76402954291ddf3c178123e2a94ed9dad8e2722

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 3fe1b2bff204b11b5611bd6ca1434d5e
SHA1 6694e8c58f1653a08428ded49915c2e9f103b57a
SHA256 489d29358a3ceee68b9e3a11ae8cc71767b4a370d7bf6a316682b615152c7013
SHA512 f4cbcb7d6445f4fa065c72c0a60c244c72d09dd5d51e3f9091521c301dff1644995590a25c216521cb3ba8ed62c40211bb0db5b5be7f70175e89492dccf46714

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 7b5aef4566f2c7db748c62601ca4394c
SHA1 6d64404c789a8a639a75d0afe06d2af88876a6b9
SHA256 e3b5ad440467c3929263d9d92aa6e554018329a0ce30d4650902d28ae4a7addf
SHA512 83303db8814bdfa14b1f911863c6a642bf81dd316579ffea91f90e45e5e1d18e906c38086a322efd2afcd33278daa0b3e68e161ee40497e167078bba1949dcd5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 a3ef6b9e633ad9ec9338795cc3bdfc19
SHA1 91c5d259b358d0bbab5e279e21b514a577cfeb2d
SHA256 b4215121676301e101faf85d7bef70c48b34e9c97b6d33747eceb301d87e9f7d
SHA512 18af3c5a768eb4bc9810d6cf0998333e62966d86d8a6c60c02ddc804406252fb4bb0c0f1ff1092687a4337dd3c5775a44f7ee2bb580557d2dc2aecd0a4e499f3

memory/196-756-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-755-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-754-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-760-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-766-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-765-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-764-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-763-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-762-0x00000215FD510000-0x00000215FD511000-memory.dmp

memory/196-761-0x00000215FD510000-0x00000215FD511000-memory.dmp

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 48bdcb266f69c7e6e311c6f324e3eda1
SHA1 e5ecbba603db4794747321a1f2bb0399760915bc
SHA256 4186b96dcecde88db79de1cf7a8ced84b6ab6537574f56930e96c9d22309196b
SHA512 b796815d501c4c3eb3bc23dc8c93dd5b53c1b0326726c5d40a6e18b6dce9057e14b18cd22573335afea1cf78b46fecfe78432a0bd5b3070dfc4aec2aec387bec

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Visited Links

MD5 dea94aed15ede2ca8a8b35a48633c232
SHA1 3da98557ef94d7e6a0cb3ffd25cf8891759cbad3
SHA256 d294b675a370170f5376eaced4af90a23b6d865d3c5d2a18a1ff8c7f0d9bbb94
SHA512 6fd6aadaa08d61b4196a21b51ad7e5812ffbab32fc13424d25f5daa73fa2bcf556b24eef6ea732f559cc5a3d3bef11972bd0ad7113f6c2e993ac8fc5e8c66b6d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Crashpad\settings.dat

MD5 149156627178c3118bad440b08949fab
SHA1 3c5eec9817f1217d010c4dfa049a24a318256e09
SHA256 5dde48aeaaadb0f747afc4aa0788b2ebf7c1bd6eab0366096b7b470eb015377c
SHA512 30ccc9f03079f8880be6ba97ca2180e76b6e090342f485e7c04a46a5caca9045d131857bad0e24030829c361f848f4280489d893be06c11eb9531be746d6c4fc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\000003.log

MD5 1f9bf4e585489efecfa5d547bdfe8f8a
SHA1 5d8e60815947318239d7cc732578411825484d8e
SHA256 3ade5ed6d9c2896fbbad10478a6ea84e8adb36bdf8ee0ac34edcaf7eff77f145
SHA512 be9b6925f0d0cec22f84ee373ae29deba1e828f08e677d7dbb13a22b15e93c86d0484394c7d31e01fc1cccb42ab82c81e13469a4541f3e4cabb6e99a5d21c72f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\LOG

MD5 8e9a243bd1ee67c6a2493440ddc77db1
SHA1 1c5992710c7fd8edc5ebc235166dc738116ce7a5
SHA256 9d927fad40a107587ba177b1addbc0478b05909eac3f96e649c2517777ef020d
SHA512 957b2aa8fad16502cd5e05dea44ff0b0fc2628aded22df9a8006e8a06757b4ad7e75753e32739fda80e98d59fd1555dd2818611330038a4583bd12a8acb2a05b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 9249c7185a8333c8d8312fbfae695f8c
SHA1 36d96a22950cc4528fd4b4517c1d3562c6f003d7
SHA256 3aae1a82ac293e31217c5dd429518dd61ba2e6e8d648f6ba447e5541163b392b
SHA512 1ca18eb07b4b88c2b087c4e3c9b7c73f88f380f19ae0bf2538ec0be022acd05f9fd3ee9a46e56b0893317ed7552333fa1d3281e177deb21d253728791f0986a5

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\load_statistics.db-wal

MD5 3cb70f6fb5d593f6cab4c100c9c2fd7e
SHA1 48e439d78549ba81ed14667e4b8e5263e485b457
SHA256 d4c88861811e66a3c7d8cb89b03515e2e5b41525525f39c5fc10a52ccbdc9da9
SHA512 93542ec2bf0a5402ca741e6a49668ab2681da5143779697213adac3aedd0b405e19c20eef5635a179fbb34fc418a46aad0ca24a02ab8290057e79a9d1d8d63e4

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Session_13369222575651766

MD5 943ea95dd6118306dec750baf2fc570b
SHA1 3a935874d636afea080a73b498b48942398604a9
SHA256 24ff9174022df95b21b13abb6145242970d1c0b645147ae910b3f776a688bb9d
SHA512 1bb88c6f77f8436bc660b1ae56081d18155ffe1e1f67838c4d5545ebbf84883bde1a30d4cc7487f98136d0c31379af00009b695b465cfb518db822e9961c3cea

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sessions\Tabs_13369222575759766

MD5 fdf79b9a93704a64650358d294de75fc
SHA1 a2404298343ca13c5bc657815e8303008934beb5
SHA256 9d780e57f1d5bf5e3b33ea562ecbb39604fa2d8b8be0553bf9464f4e20555eee
SHA512 b0e37598e6726a104018ca9e52d33655a32e3c559f3ee593f276d3a5ea944560016d5844f0d3c12a4b528de4146d528a2915d87f05e3269f6462cc686a9e285d

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Login Data

MD5 3cc34b433f292642da37a5839d577d9e
SHA1 8213e083ad6551edda82d5559b5401d309ff1135
SHA256 e1164bdf42664d1c9ae3b780931cb2772d7337d774e0296b06706bd6e96c3b7f
SHA512 275aac611034ec77dadd9bdedd0fcf6fc37955758d4de997d7843ada233fae85f07945df156d3e8e2d5d813f7fe9cdb074f5c397d355ce175123f8813b71e325

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Site Characteristics Database\LOG

MD5 533a2614fcf544c1f36c52f9fc134449
SHA1 9d28f71e43f6e8df9cdef229ef50011922feea3e
SHA256 e62da0503964a1923babf8d9d78635d8a1343d72360ca26def82b11872794ae1
SHA512 10417f96bc592adec9abd5ee803d1e8adc8866a25721078235ae7f602f637e182dbf25f4f72f597d69c45ef6a468bc98876d9f1c3b031f58c9b27e67684b238f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Media History

MD5 8166489c910fe2968fc1d040976589bd
SHA1 b9d77906dd5d2e64855d629dd747acc3e46a93da
SHA256 4c956d4ff14f2052fe58b3e28cc0f01ca4a3c921cc8da572f502d60802da6b69
SHA512 656aba4156113077709445c37d2588522d729bbe07604154257fcbd0740e8c7eb570068babdbbbed296b9a033cd041c043d5e5178fc8550278d2423960873744

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Sync Data\LevelDB\LOG

MD5 e5d509e551ee1e8f2952e05ca39aca29
SHA1 ee39c9c21de02e1eab28b7fb2b7e89a3785a83a5
SHA256 4bcd6b7784f2a3c9ac7fb0efb18d4897d5e6a9f26f601cc469ce378e20e1e844
SHA512 3ff05282686519ee0c56bef0ebf75f20b217e1128c1175a32d08a7cd25f932ee296b84bf941fee8607f36d77b0d4cd6e58fc64116d2d8067d36a3a7e58d098d7

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Web Data

MD5 a497e08deef8d631647f2299063ff3b1
SHA1 d20460e0079c1d99625479f631bb22d98566137c
SHA256 737eec164ae71cdd474ccacde56045ac54eb814119fae60b7e25b856a540ccab
SHA512 23d321a3cbdf28e8087405865dfb4aa64bf3812b5ea24abd23481a5170edf80a5802b6a1340969858a2c0ee2a2db07b49fb50e309cf87fe891c1e8ae76836c0a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Favicons

MD5 f426450c84c5d44a4060b259815dfa51
SHA1 6c0163d5e720e9cf311423a8bfb7dd9eec306af9
SHA256 00656029009331f001f7f3e3d8e16a844e32e641458a79203b21b57b39b97044
SHA512 3ff0d00112c7914b9daca5453ea9ae353059c7549079ceea7f7dfb9d3898f975ace06a2f2242641211331a5c67966556793f2c4e9da7a36d5f7c758cf15b00ce

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\History

MD5 42f11eca78d3520c34052a9a2d0047b5
SHA1 9160930b21a667e8fb38e70c095d9d7c1d3ce923
SHA256 8d35fbed33438976a86486718a1a1f79628c316d5e97be0696a95748eba0445a
SHA512 d7d4818d7799f4d262219bab1fb26b3cc6090d7ee73c3eae8c60b51ab43e5bb608c713c9cf5ad23766bba93adaf74a622a05ac67f6dbb30abe9e06d523c11a7f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 c2eaa60a9fae21b596e8f900283907c4
SHA1 c9d200fc9d4550ede442d02f451171904cf061fd
SHA256 d44b21f1c26645c62246fba88c1d8275837df14bcbe0bf5f9c63eb36490dbc54
SHA512 02b343d7762965e18b697d0c1f9740e22060010d8755cd5eff3581ac738b564b0373d6a563280d913430656072fe08ca856af5bdd241d48842f4b9ad89333892

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\000003.log

MD5 cbc17bb48b28c8d0752a359e46e926d6
SHA1 c9b5abde39d0eb13d64225faf38e43c6dcf7f542
SHA256 5cb50a22d12ce65995c55f6a490ae995ac850cbf8caac58540f01ce8db40c19b
SHA512 f1cb51a1ca1ab0d19633ef07879e5f58dc1394168c3003bcdbedbc5968a9bd45e53cfc48a35951dbc9b15e62c40f64e5cde8add60784e70d17d5d5acc059e89b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\shared_proto_db\metadata\LOG

MD5 672ad9d71ae917ae43accaa56bdd681c
SHA1 48f1a8cf2e2a4acea48bdbf7727b401b6362c88c
SHA256 5906bba7f2f44c164572f85c6d9f7f17f23767e318ea96b8d5c07d7c75bf5545
SHA512 288eef38aa95871ed3e346d87bd1ab7a5b44faa73dd456d959f009465ffb9dda68281a2e8ceb4d6d8173fa56dd4e818e93425a00c3e0356066b7a9746bb3fe46

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Last Version

MD5 b29bcf9cd0e55f93000b4bb265a9810b
SHA1 e662b8c98bd5eced29495dbe2a8f1930e3f714b8
SHA256 f53ab2877a33ef4dbde62f23f0cbfb572924a80a3921f47fc080d680107064b4
SHA512 e15f515e4177d38d6bb83a939a0a8f901ce64dffe45e635063161497d527fbddaf2b1261195fde90b72b4c3e64ac0a0500003faceffcc749471733c9e83eb011

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\data_reduction_proxy_leveldb\CURRENT

MD5 6752a1d65b201c13b62ea44016eb221f
SHA1 58ecf154d01a62233ed7fb494ace3c3d4ffce08b
SHA256 0861415cada612ea5834d56e2cf1055d3e63979b69eb71d32ae9ae394d8306cd
SHA512 9cfd838d3fb570b44fc3461623ab2296123404c6c8f576b0de0aabd9a6020840d4c9125eb679ed384170dbcaac2fa30dc7fa9ee5b77d6df7c344a0aa030e0389

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 1a8e806e58a6194d9958ec5bdf37ede2
SHA1 69400a94c7d8f95db6f548723b485d59597bdbce
SHA256 8d30eaac0cb459e8caf1566dc3f42cd75a55a05a660ce12d9a7220c374cf13c3
SHA512 ba5f0d66fd3ad42c23f66c6ecb4abafc4f748af9f38984c9bccd6ad03c1ee7151e1ebc5f48754d43e97d45c4b0f8c06fa54f612157b060e73e91bf1ae69b7b7b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 17dc981820baa28111d88001c120b390
SHA1 e3699fea22d8c9fcd68cb3452b790b2ec4e497b4
SHA256 046b9f7009d8fc98eb69b1380d7b65d24e356f5d3fe12069eaed23fc5088af24
SHA512 c2eb2e450c60d7e7b201287799553157a2c4e3b5537550878da498738aa88958ea827dbddb618b8332fc74c7178250d9db2496820c7f97ce3490aca69d47432a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 0531cfb5624a4473cbb6d10d1fe35000
SHA1 0e36f7e5e0d08fe6fa3541d6123ab6625311d1e1
SHA256 65f49ca8e053165420509588fa97491dbe69bf90ce45bdd6dd0e0642d2bde43c
SHA512 069c0cd1827ef856df9ffa7a66b30a99bf81804ec7655567d2ba7f84da3399b42247dea51d5d0751b0ad1b78215c83fe5f3352b8eb1507d706fe03f5b9dff8c1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 e46caadd1f207fe5093720cc5f18ca1d
SHA1 f1f27dcb3732ad50d47ec67df96a78a68254b4be
SHA256 2b2697b46a1377af6827e23b43114310690c8d70a20a8f6fdd52228fb499e8fc
SHA512 253afe8d3ae7f614a31ead8e0c5293f2ad1b37d3439db4bdb2dcfa02f43f9c116726b58a5f5a47b400ece3809e84ff3685549b94d2587ba95021f1ff0afd8fbc

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 3bacdc6a0a39b7ad6f8d02a872e233d1
SHA1 73398ff859dc2094e4ffd73432133017924b2d06
SHA256 17431d5e699c4aed5ec1d460789f7f9a9f7747aa03d4ee3ca92175965cf871cd
SHA512 6eb8602eaeace81007930b0995e39ec01f8894ee04be46ed6686eb88d8436aa9cedc698a5e7bd675526b6dd147cd6c1fb4e91a4d919fe948bc754d9f9c4e7be9

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\GrShaderCache\GPUCache\f_000022

MD5 8235f98068f731038d8520df4727c625
SHA1 6ef1e3ca36d59de490e593ec195b632e8e09565d
SHA256 98280dcf81e7ed7a29b2d383c12027481bf771aa6358012ee5ffcc8b3af21e38
SHA512 d75d4b688898ee9c9ee07f7be6e9dafd0154518ac54042270666969dd15dbc3b7c8cf92997c510f42f20a5ad8270d5324dd8f2ef91666a9d6d0450d60bacfd83

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 454d9f3e8e4b0a157d1699a75eac5e22
SHA1 75903b66db2390791957fdcc679a32eb151a3d88
SHA256 8e98e2b9adab6227fcf0eacdc065ca6fb6ad6e61795e1cb01212aac31207063f
SHA512 120aca6351566a1b578e4da69012099f35d919bc0c7e074471c38cac98f0b5c59579cb594342c92f4b5c5d4a37a186148dd0fdd5008cf430cca2529eb5644253

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 913ed018d0e3951e80672e17d4f984c7
SHA1 2d6c458123ff368c6d12e28aa6cffc46a5d2bb61
SHA256 5878b6afb5548aa67f2cee8da46bc841c7f0c5ff9ba3d12e23e5aeac5c46f190
SHA512 ddda953f449c5c11d4f3508c44ecca06c3da9c819e7de373dc88340d0c2982d049d2e8ca7fc3aabdc4df92a2e926076b6859ee54e91412504887f7e368f70cc8

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 196b879a33a7c3b49d64238f532f1765
SHA1 78f4787a7f22c9c58e9461b615eebb5a540125a3
SHA256 ae08841443c7f7b90b9d94788a1ace83cf1660b7dabc1f6dc7694bbeb920775e
SHA512 9dfb13f50d73cd9d03b4d6963f490f37f667f74af6b31163214f5d1fae57200b923b6d093693f3326d3e9853f8d826ca8aa26dad01daa47574807b3f9ca49c0c

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 2536fee1fe63c93b0838dc3334f9ac23
SHA1 48909da32f4285075c566f8b6ab629eb0cc5381f
SHA256 c8674d3dd70d46770f0ecd63b2b48e8c4190a8df46590b8a4538f57cca821d27
SHA512 ec7fcdb1b68b1cbfbb4332997d520c82641f98532629df85d6d8f3a708d366a624369c1b1141f9d1b3df56b1d0e1437e8cbc8c3be9e71ab1e8d83b61210a222b

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 8a58e083b2ee0d6d7dc9b1cd776c7f51
SHA1 7031d53d98b53db7251a14297a8ece49d5ddb83f
SHA256 c86fd87faef77d4654b9a1b23f3b87db5ba6dcff8dd5e8f6a2dbad5f07cf0567
SHA512 7c077f91c2d0d508907d67bded2ea10fc25dcfcf93916a8fd1800436e952221390dd15af90cbbeeb1228a61bd4cff2b346bc8052af03b7c42e6aed0ec2f31645

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 b4513b7de6f7df3187c2e08f1a592557
SHA1 1042b3730a18150b69d769d3b8004224640b042b
SHA256 41b2c37cfbfa2e84cd65d01870f1922458c520b1ed14d8f26464a041d7bb4612
SHA512 9a0f2bf5574fbe8683b9f2158f98e7a617d8af1aaec9e9bfbbec0c5e2ddbd157564f0b1ee3c51baa0f4d4e09de9390420b58b7bb5da2e2c9743bc2b274e4786a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 5b811dceece0e17e8118b0f0beb1df31
SHA1 3651e6fc08c318b640ea59575123d21db933c05d
SHA256 86658871b3ed09a35c13237580d8c730ed74a1ed8ce95ef82fcbe06e7c12f118
SHA512 acc55d2ec5bfc18b3ddccbfce034a4228f789bfd132616eafb8439077181d9bd6d6094a74b020a12c15bfff50d09d5a7e1e3522fe0cc68e358b5337dacd081ed

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 b97d9bf2ea19584a021bc3bb4a33b6a4
SHA1 6c53bd0f87c17e92c31716dd2ef10020a1f49c26
SHA256 719113f5cee7e7e505e2dd437e894bf4579cc7b16994107a86e8a40a295c5c0c
SHA512 9c0c9f25d95f08bd97e57c40b2520c45f1b7a02c201c77e1e6c8a880f827d0755ae44956427355e991d6c400e6253d189ee9d10e2918110e707a7a1b743894a2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 a307c55a3f5bf6177a84335f5b47d09d
SHA1 c1b805ee2de18d82a568a7dc715fb9ff38323199
SHA256 9a1837090ef2324bf31c028ff7dfdc09e0e26fddb0e0afe4c4baf2830d68ec3c
SHA512 08d70edbf381942d4eb0dcf42018febde929a5f1474d81b9b48a77a52342f150e68ba353f1b90bdef59b9fa7f542fd5c6a4671e412f99cc722eee9c8fce8efa2

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 8209e1dbaf1ac69c85d377c429d6e533
SHA1 f1a6bde8e02098dad4a2257635c43084dd2091a2
SHA256 be0b60a0633414d81c2623795dcc05d087d1886a88308a29aaf9eef308dbdf4f
SHA512 03fb3c014340ab0fb8af140725e3276e02a4a1b14178015d5cf9df8855d490cf0360ba08023d4c3fed04c6c8a75981565a57b97116a4d9702c17a35ef0b3a8bf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00009a

MD5 bcb4e507765fc2b0734fd40f64dd33c0
SHA1 75c19c649e4c3cfec223d9f8d7c20ef15ad6a85d
SHA256 1011babd91b4a1411f834ab87223b028e8c05298d5249df70adfcf1c413a05f7
SHA512 900ff979c7b3b0cdfa620f12c8c92c68707303b377e678f7cdcc4baa2f87bcb311ac27ca227d8715a3c6008a142baf418d5c7e36fdafe289c7a9a1aa0942be63

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 5006237b05874529be32495586d0acd9
SHA1 58ad7aeea6baea795617d4f0e397ef5fe51d58ee
SHA256 efb84c37f8794400079dbdcbb230adb34244d8326dd8d87fd85012f7afb6a91e
SHA512 3afd9c8af3041b93d283c14265d73214461d2a5ccd7578f4208bef594cf56f651ec85e13109d501fcd314a1ddabf8ba83a83a5667318cce0331866225548e02e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 67533ea4c50c64f6e99dcdf295c100d6
SHA1 ff948d379a88020a03182b4cc1a247391f7ae0db
SHA256 bf7b239622cc2ebb7b34b0087db4925be77270d30a0c02f7b525c268bd0f8bf7
SHA512 67792e76c04eb29e7d89bc386d4ee37a468ab0ec75d80a296e8756828135cbde5ce8fda367666daec0de41d413a56d20e42699c2f3c99df994eca1dde92a1eeb

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 13b2c5642e392e0fce3c7b085a431137
SHA1 fab40f86660d4f9cc326bcacc9163939dc130595
SHA256 62014925309490dcb3eda81cdad0c454ae4685aac12ddbc2f09f09060e897c86
SHA512 8c9b89425904e8abf890c0a00f0bc9b4aeae91c4864b16ee5a1f3013a825226e1570c09883378b14188fc58159c22d8fef6754a73cc11e2c27ad5e5b1773e3bf

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 23bd3b5754bf153cbbcbb83693462c4a
SHA1 ce38cb15d251274944c043582085dd588e0fff78
SHA256 510e16f066f1278e6e7c5ac1e93768e584102556587d2d1ed49ec7560582a986
SHA512 2f8ac36f134724378085d8e3c9639bbd3bd7d85b5c04fb63c9a186d894d800f0e5e6064b7efe02dc2602d9a04f57eb03c253d5e9ae9fdeaa2d6a23b53eafadc0

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_00006f

MD5 8ab35848768f30a7eb81d525d18ce96d
SHA1 7833667f5d08d58837c0a9d01ea0a15c6b3759e6
SHA256 4135303df903224b2d6bc416bac09060665f6b35ae845571c6442326b921f18f
SHA512 6877caaf873bfab09ddd31dd86aa557ac8e0066fcee7843d68258933c31051a589f3c4943189b22a42795f2d975b66ab8c641187ee6ee4b4e48d552a7cda8487

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 953c017fef08571d31e7dde23fef7391
SHA1 c12a2f01a243b5d8eb62eb7cebf9b96234ac6db1
SHA256 0c0daf3c4734433b6733f4cd0074bfaa78b6e547a11235adfb782c919a9a7ba3
SHA512 c837c503f748405465e20cbc11334d8cde7700f4ed2da430b204cbf881efe789366e1ecdeffd44332899021d1068bfeb4b41aa4a0751b5bd601bad7ede785cf6

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 64a3dce99f964c388b29c93fd81e578c
SHA1 dc433025b1f12b2c9ff891465c0275d847f64599
SHA256 93bb0344c5269189351b9d2f95e12126690e790b61c5c57db42bcb2bfc011f5a
SHA512 a190c392be01034b998028952f3c4ae054c13f546d76f8544a0a84376a1a44915e173ef09eed176b0f3b7d34cc372b2514941b329fe85203aa644ea962ab5f00

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 8b15a1882709e68bc1e7c5f0b8f6198b
SHA1 e37b0c18e684a92d99d943a47f6faea0608f77ed
SHA256 dee008b6bb809313f37de900d576d7ce60e0cd36cdc3fbc8af8231512054b6b7
SHA512 20fd18a12d64bd608ae1d12ad5e3af5fae572d3620343b708816a2eb62774a0c1b09c9fe57a41247a81b0a7d65a2710e9797b6f00e83d7c5f9868705df1e3115

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Cache\f_0000a8

MD5 167477f02da2ddecd77412fb3e802c71
SHA1 4736c6e85698e47699963c73cc1b38b3d51307b2
SHA256 cea7fb90727ee77593d90f74ad0bde2f71ea1a71b7b974853b3a76875928f46f
SHA512 216ff299606418148c64cf8562689c17e3dcd5b283745be4de1b7799829470a799a05ab1a34f8bad17a6d62fb374d20e1272adc2b8725dbc35d9e1d76a9bc0e1

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 1c814efef7361978f239c077eea33526
SHA1 d5220d6cead2f864d2acbeb2f20211b9a0e40478
SHA256 801b5e1a03911ec607b76b298610ec292461086575e60147b16dd00ed03da044
SHA512 f35d6ac5c2d22bdb68e695ed8c2aa5eb45b0cddc56f3b8f8bddcf9bb5d32503864fc266583bae28bfc23d8e9e1c2af7ed1333a6320848c196b845c17a055d7fe

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 3d593df56249cae3c6eea4e34f9f931a
SHA1 6d74c815e330397ff0206dadf0d3d470328a6545
SHA256 e14cd90d66eec615057a7babcafa813efb4c58f093d5ca2cd6fb2aa453fff116
SHA512 44a94d59428381ccda7918b10ae85d79732a7dac8b930a89f94e5f67163236533bd913adf5025b406093a62d6039f3feb37192f021c1b70f7b2971e546f39e1a

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 5487cbd1cc728d4ca23412f2a464ef93
SHA1 403d2154cf624d3157b74c5d401d6fe5ee89cd34
SHA256 c9f66e71a157454e7fc947a7de98676b0193c993d3cc1330b664f03de9d90fbf
SHA512 c7ddafb948e84f6a95a2e2dd19b4c4c721228acf6243e43c6e510f16dcf72f735d963dfd99ab0d98c3010307a763ba38ee7752ed99714ee0224f62b0fac094dd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 d23ceced99caf19b43cae308eb0b42c4
SHA1 94f89469512d1e78a284aa622e362578f3b46c07
SHA256 52a6b65863fb1a64b63d0d22a872b4f8bc3ea7f82b0f5353c3d6cb547f23851c
SHA512 9d580d9e920793b40d4458e8230b09aefad0d5233ee486d889904881c605a1c5c948d32c73a2d9e7213d3928fc19ad22961cc08345fb863a06c9296b1fc3f3cd

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Code Cache\js\index-dir\the-real-index

MD5 b15e0682ab5f0368510cf629d6c24fa9
SHA1 2b2cec59cee07fb6d330bfd02d1e84cf499f2bed
SHA256 3d870de056ccfe010e23584736f1c32bbde8f7d1444b134509a9fe176650ab4e
SHA512 e66afa9c8dd0edb5231afbfd5dca05bdd08ede410b4b0aff33d02df0b6c0e4ef47d683b0b86998d7a4c604a66938c109eda3433bd981d7cc0349133d7170fd78

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 632531d6a5e6567d0466c631126b7e21
SHA1 5f01e2c3348a398c13a41fdac2feec93bcc164ca
SHA256 a5eb72a3439f4dd5c1106c3d819287de3a43f994c374a49f4ac5f3f9497e7674
SHA512 b3a43bc9e1202c4a148425a14a97832c14ac9e1c0991b1fa97d9e45c3bbe95b7a03b2bf63c4f4313dad46237f30bae25f8c6e9474dfededa5add83140fad5a1f

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Local State

MD5 5156534bc76cd53ed36f819f501641bc
SHA1 3068709f682c7fe66fc1d528c3f5a074bdc191f0
SHA256 a1a8c8798ce8c9f59bfae50beb2454f4b5ea2f1e3847d8951018ad13384a11a1
SHA512 ad219d39ba99257ba51e4eb5d3d5fea848b999407f6172c8b1d48e8da14ab0460ada88608fa8978d98dc1306300f4b1c0beb1335124125b46fc9241259b8a464

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Preferences

MD5 ac910939aa061f2e317527a3cfefe9f8
SHA1 365784d3872c0f39422d3325602a972f88fe65f2
SHA256 f45befe084e6d42dcebda961d5d320e942973c0476557399b39bb9cc9a184a17
SHA512 b55accc94379490cfbf60b547d780a1a5926cf1a66ed29c53dc622b690d574e7bf2827a2fa78b39178ef40244fc11a579fb9c53a1d463de5ade0b075365a9877

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\Network Persistent State

MD5 a589a866dc9ba5361855605c03209f9c
SHA1 85e64045d73db4fc272619128674dabb8fc8597b
SHA256 7faecc95bec232d304023132dfd3b5f7d180e2aeb738a138171b236f61d86b4a
SHA512 67c4aba70312e8b03c155c32a65cbf990244815be49ee3ded3a881594c1274318487e66e208d70d7a36b5db8da8e1cc33f80a39452e815ddf7369b71b41a916e

C:\Users\Admin\AppData\Local\Microsoft\Edge\User Data\Default\TransportSecurity

MD5 d94012428a486f6a840e921bfbc0b3c1
SHA1 633523a320bd7372772c747ccfc0c764499e6f44
SHA256 518e4ac025dc95b90cfcc39658daf6d026cfa25b7557befc95959c5f83672695
SHA512 b0af791ffab253816b1fbe551f2e122e8383d81e370da69f6dec4ac43d92c66674df03ca112fd88d12073cd3561b990a278859fa7f1d3ab264f101a1a2b11ba4